Kontrola Laptopu
Napsal: 18 srp 2024 11:22
Dobrý den,
poprosím o kontrolu laptopu přítelkyně, pro odstranění veškeré možné havěti.
Děkuji moc.
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 12-08.2024
Ran by divee (administrator) on LAPTOP-4NE9KT28 (LENOVO 81UT) (18-08-2024 12:08:25)
Running from C:\Users\divee\OneDrive\Plocha\FRST64.exe
Loaded Profiles: divee
Platform: Microsoft Windows 11 Home Version 23H2 22631.3880 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12132.3.2017.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\AVAST Software\Avast\AvastUI.exe <4>
(C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\LenovoVantage-(DeviceSettingsSystemAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\LenovoVantage-(GenericMessagingAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\LenovoVantage-(VantageCoreAddin).exe
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(C:\Program Files\AVAST Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_524.18500.10.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\127.0.2651.105\msedgewebview2.exe <7>
(C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe
(DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_0222c12a396c055f\DAX3API.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories) C:\Windows\System32\DriverStore\FileRepository\DAX3_S~1.INF\DAX3API.exe
(DriverStore\FileRepository\u0361441.inf_amd64_122c374e035e7595\B361368\atiesrxx.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0361441.inf_amd64_122c374e035e7595\B361368\atieclxx.exe
(iMobie Inc. -> iMobie Inc.) C:\Program Files (x86)\iMobie\AnyTrans\AirBackupHelper.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <16>
(services.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0361441.inf_amd64_122c374e035e7595\B361368\atiesrxx.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\AVAST Software\Avast\afwServ.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(services.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories) C:\Windows\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_0222c12a396c055f\DAX3API.exe
(services.exe ->) (Lavasoft Software Canada Inc. -> ) C:\Program Files (x86)\Lavasoft\Web Companion\Service\x64\DCIService.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(services.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\LenovoVantageService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Locator.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia) C:\Windows\System32\FMService64.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(services.exe ->) (Qualcomm Atheros, Inc. -> ) C:\Windows\System32\drivers\QcomWlanSrvx64.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_12a8d6d742c436e2\RtkAudUService64.exe <2>
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnhService.exe
(sihost.exe ->) (20E7E2C9-A2A9-4A02-BB29-6FCFB9E042BB -> Lenovo) C:\Program Files\WindowsApps\E0469640.LenovoUtility_4.6.12.0_x64__5grkq8ppsgwt4\LaunchUtility\utility.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_524.18500.10.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe
(SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnh.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_12a8d6d742c436e2\RtkAudUService64.exe [1211184 2020-12-10] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [426904 2024-08-18] (Avast Software s.r.o. -> Gen Digital Inc.)
HKLM-x32\...\Run: [AirBackupHelper] => C:\Program Files (x86)\iMobie\AnyTrans\AirBackupHelper.exe [2747016 2023-06-01] (iMobie Inc. -> iMobie Inc.)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-450335177-2361977270-321031083-1001\...\Run: [AMDDVR] => C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe [2486376 2020-02-28] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKU\S-1-5-21-450335177-2361977270-321031083-1001\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe [9250224 2022-06-11] (Lavasoft Software Canada Inc. -> Lavasoft) <==== ATTENTION
HKU\S-1-5-21-450335177-2361977270-321031083-1001\...\Run: [MicrosoftEdgeAutoLaunch_87336ED17E3B5BCF7536925A44E78558] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3814952 2024-08-14] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\127.0.6533.120\Installer\chrmstp.exe [2024-08-18] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {6CD2A154-21A0-4B9C-AC71-7D171A8AA247} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1628160 2020-02-29] (Advanced Micro Devices, Inc.) [File not signed]
Task: {D8B968F5-7BB6-47D6-BC2E-648BE05809C1} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1628160 2020-02-29] (Advanced Micro Devices, Inc.) [File not signed]
Task: {25C9443A-D7B5-4875-9629-5309BAD59F03} - System32\Tasks\Avast Software\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [5157272 2024-08-18] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {5B3B5D45-455C-496B-9437-DC24599F9E20} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2144664 2023-08-03] (Avast Software s.r.o. -> Avast Software)
Task: {95B7A660-F805-4F2F-B689-3D077A9DCAE0} - System32\Tasks\Driver Booster Scheduler => D:\Programy\DriverBooster\Scheduler.exe [157784 2023-02-10] (IObit CO., LTD -> IObit)
Task: {0BDDFAF1-D7E7-4F0F-9B1F-F10F1C4CC775} - System32\Tasks\Driver Booster SkipUAC (divee) => D:\Programy\DriverBooster\DriverBooster.exe [8998912 2023-03-01] (IObit) [File not signed]
Task: {0C600214-2C00-43B6-8A65-60C65EA2ABA0} - System32\Tasks\Driver Booster Update => D:\Programy\DriverBooster\AutoUpdate.exe [82680 2020-05-30] (IObit) [File not signed]
Task: {D8506ED1-E16A-4F5F-AD2C-3F3D92030402} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem129.0.6651.0{63081F46-D2E2-4FF8-AAB8-53BEFF684E56} => C:\Program Files (x86)\Google\GoogleUpdater\129.0.6651.0\updater.exe [4906600 2024-08-11] (Google LLC -> Google LLC)
Task: {FC838AF8-4096-4146-9F71-18AD01F7AFBF} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [94496 2024-06-26] (Lenovo -> Lenovo Group Ltd.)
Task: {F53AB391-3A6C-4A88-ABA8-8D5F58D048E1} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => C:\WINDOWS\system32\sc.exe [98304 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> START ImControllerService
Task: {E23DE5E9-5312-4551-9D55-300840630E1C} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => C:\WINDOWS\System32\reg.exe [102400 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {E0854AB6-A74C-4DE8-94E9-4F1153391834} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\392d8132-4cc7-449e-b461-4e798ec3e311 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [113224 2024-06-26] (Lenovo -> Lenovo Group Ltd.)
Task: {8754B273-DABB-4EF4-A70E-1EB5641FA864} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\560ee6e7-951a-4301-8641-cef1a7a75945 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [113224 2024-06-26] (Lenovo -> Lenovo Group Ltd.)
Task: {49C6C4AD-1968-4239-8AB4-4480C7AFF212} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\59a7d169-00ba-4882-81ae-4e377a6219d6 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [113224 2024-06-26] (Lenovo -> Lenovo Group Ltd.)
Task: {551EC51A-C033-4AC7-87FB-A27C960BD072} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\8696f093-a919-4c7b-9b97-b29565a21f2f => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [113224 2024-06-26] (Lenovo -> Lenovo Group Ltd.)
Task: {3199FE45-6907-4E41-A27D-6B4F6A6F2B21} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\c7a8da4d-4960-4cb1-aa03-effe33e322b7 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [113224 2024-06-26] (Lenovo -> Lenovo Group Ltd.)
Task: {2B90EF7E-DCCE-4D1A-A918-E75FF61F9061} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => C:\WINDOWS\system32\sc.exe [98304 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> start LenovoVantageService
Task: {56CD301B-54CE-44EC-B1E0-F1F3AD9E4BC6} - System32\Tasks\Lenovo\Vantage\Schedule\BatteryGaugeAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe [30160 2024-07-16] (Lenovo -> Lenovo)
Task: {E0202A9A-CDA7-4A8D-B0DF-171CA361EC4D} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe [30160 2024-07-16] (Lenovo -> Lenovo)
Task: {506F2830-22CC-4F72-AC98-535C19F364E7} - System32\Tasks\Lenovo\Vantage\Schedule\GenericMessagingAddin => C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe [30160 2024-07-16] (Lenovo -> Lenovo)
Task: {2B4B3815-7D58-4196-ACBD-D4EA41F2C28F} - System32\Tasks\Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe [30160 2024-07-16] (Lenovo -> Lenovo)
Task: {0C4F05C8-4BFC-4674-B5DE-477AF225A71B} - System32\Tasks\Lenovo\Vantage\Schedule\IdeaNotebookAddinDailyEvent => C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe [30160 2024-07-16] (Lenovo -> Lenovo)
Task: {2EF4C925-EBBC-4233-9E31-488406244B51} - System32\Tasks\Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.MonthlyReport => C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe [30160 2024-07-16] (Lenovo -> Lenovo)
Task: {6335459D-1B47-4C5E-B175-C3ED8949E8D2} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoCompanionAppAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe [30160 2024-07-16] (Lenovo -> Lenovo)
Task: {E7E2CA35-41A5-4216-A391-12575B5E2759} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask => C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe [30160 2024-07-16] (Lenovo -> Lenovo)
Task: {210A9FD3-A82E-49DD-9245-5A5258E5BB36} - System32\Tasks\Lenovo\Vantage\Schedule\NotificationCenter => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe NotificationCenter (No File)
Task: {A4425BCA-EE1A-4F82-9B59-7EF24227D6FA} - System32\Tasks\Lenovo\Vantage\Schedule\SettingsWidgetAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe [30160 2024-07-16] (Lenovo -> Lenovo)
Task: {EF5171FE-78A8-4CE2-8BC1-AE06B56824E7} - System32\Tasks\Lenovo\Vantage\Schedule\SmartPerformance.ExpireReminder => C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe [30160 2024-07-16] (Lenovo -> Lenovo)
Task: {979E0E43-F7DB-4960-A428-192F538B2CB8} - System32\Tasks\Lenovo\Vantage\Schedule\VantageCoreAddinWeekScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe [30160 2024-07-16] (Lenovo -> Lenovo)
Task: {04217496-8C1A-4749-BDCD-08FC6A61CC32} - System32\Tasks\Lenovo\Vantage\Schedule\VantageTelemetryAddinTask => C:\Program Files (x86)\Lenovo\VantageService\3.6.15.0\ScheduleEventAction.exe VantageTelemetryAddinTask (No File)
Task: {E1176839-3119-4BF6-A4D6-ED6271D053F6} - System32\Tasks\Lenovo\Vantage\StartupFixPlan => C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\uninstall.exe [345448 2024-07-16] (Lenovo -> Lenovo)
Task: {33194DBA-94F8-4090-A66E-B1C1ADE3597D} - System32\Tasks\LenovoUtility Startup => C:\Windows\explorer.exe [5513520 2024-08-18] (Microsoft Windows -> Microsoft Corporation)
Task: {D8F8AEE6-E383-4DD5-8268-D19CC2C5D983} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28584424 2024-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {A7143789-0234-4FBB-A3B8-4B24C23F3478} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28584424 2024-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {654E9B43-C8CF-414B-AAC3-1DA97A605714} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [312288 2024-08-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {431D697D-2063-450F-876B-5F832152A30F} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [312288 2024-08-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {8D72DB8D-3CE3-4E06-BE98-582D355BA9D2} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\operfmon.exe [182240 2024-08-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {8E7891ED-E5BA-4BE3-ABE6-A58A2F9CF068} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe (No File)
Task: {A8885E7B-DC0A-4422-AE32-CE86F01B7046} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => %systemroot%\system32\MusNotification.exe /RunOnAC RebootDialog (No File)
Task: {035A7493-620F-4E0C-93B5-406B243C8984} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => %systemroot%\system32\MusNotification.exe /RunOnBattery RebootDialog (No File)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
Task: {406B25CA-552E-4FE0-BD3A-6ACA3707DE97} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1628160 2020-02-29] (Advanced Micro Devices, Inc.) [File not signed]
Task: {98E8914A-58F9-4CCF-8EA5-2996E791CFD4} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34376 2024-08-18] (Mozilla Corporation -> Mozilla Foundation)
Task: {16EA2D1D-406F-4B17-A040-18ABE3E9F94E} - System32\Tasks\Opera scheduled Autoupdate 1654970705 => C:\Users\divee\AppData\Local\Programs\Opera\launcher.exe [2515200 2022-06-07] (Opera Software AS -> Opera Software)
Task: {DBCF67FA-3355-4700-A50A-5CE55EE8B683} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [60008 2020-02-28] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {7FD11246-1F07-4EFF-A290-27B1DA2D6613} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [67688 2020-02-28] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 10.152.101.1
Tcpip\..\Interfaces\{5b67082b-7fe1-4905-808f-26375ed9c11f}: [DhcpNameServer] 10.152.101.1
Tcpip\..\Interfaces\{9f1e3243-e225-4b6d-8c61-e5e5f95c0bc5}: [DhcpNameServer] 150.203.1.3
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\divee\AppData\Local\Microsoft\Edge\User Data\Default [2024-08-18]
Edge HomePage: Default -> hxxps://go-go.tech?fr=ps&gp=496723&altserp=1
Edge StartupUrls: Default -> "hxxps://go-go.tech?fr=ps&gp=496723&altserp=1"
Edge DefaultSearchURL: Default -> hxxps://go-go.tech/search?q={searchTerms}&fr=ps&gp=496723&altserp=1
Edge DefaultSearchKeyword: Default -> go go tech search
Edge DefaultSuggestURL: Default -> hxxps://suggest.finditnowonline.com/suggestionfeed/suggestion?format=json&gd=496721&q={searchTerms}
Edge Extension: (Dokumenty Google offline) - C:\Users\divee\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-01]
Edge Extension: (Edge relevant text changes) - C:\Users\divee\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-08-18]
FireFox:
========
FF DefaultProfile: 2x870yzf.default
FF ProfilePath: C:\Users\divee\AppData\Roaming\Mozilla\Firefox\Profiles\2x870yzf.default [2023-12-20]
FF Homepage: Mozilla\Firefox\Profiles\2x870yzf.default -> hxxps://poshukach.com?fr=ps&gp=496723&altserp=1
FF NewTab: Mozilla\Firefox\Profiles\2x870yzf.default -> hxxps://poshukach.com?fr=ps&gp=496723&altserp=1
FF Extension: (Seznam doplněk - Esko) - C:\Users\divee\AppData\Roaming\Mozilla\Firefox\Profiles\2x870yzf.default\Extensions\sko-extension@firma.seznam.cz [2020-07-21]
FF Extension: (Seznam doplněk - Email) - C:\Users\divee\AppData\Roaming\Mozilla\Firefox\Profiles\2x870yzf.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2020-07-21]
FF ProfilePath: C:\Users\divee\AppData\Roaming\Mozilla\Firefox\Profiles\gs7nzp1a.default-release [2024-08-18]
FF Homepage: Mozilla\Firefox\Profiles\gs7nzp1a.default-release -> hxxps://www.google.com
FF NewTab: Mozilla\Firefox\Profiles\gs7nzp1a.default-release -> hxxps://poshukach.com?fr=ps&gp=496723&altserp=1
FF Session Restore: Mozilla\Firefox\Profiles\gs7nzp1a.default-release -> is enabled.
FF Extension: (Český slovník pro kontrolu pravopisu) - C:\Users\divee\AppData\Roaming\Mozilla\Firefox\Profiles\gs7nzp1a.default-release\Extensions\cs@dictionaries.addons.mozilla.org.xpi [2021-06-20]
FF Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\divee\AppData\Roaming\Mozilla\Firefox\Profiles\gs7nzp1a.default-release\Extensions\jid1-NIfFY2CA8fy1tg@jetpack.xpi [2024-08-18]
FF Extension: (Avast Passwords) - C:\Users\divee\AppData\Roaming\Mozilla\Firefox\Profiles\gs7nzp1a.default-release\Extensions\jid1-r1tDuNiNb4SEww@jetpack.xpi [2020-03-27] [UpdateUrl:hxxps://pamcdn.avast.com/pamcdn/extensions/firefox/update.json]
FF Extension: (Language: Čeština (Czech)) - C:\Users\divee\AppData\Roaming\Mozilla\Firefox\Profiles\gs7nzp1a.default-release\Extensions\langpack-cs@firefox.mozilla.org.xpi [2024-08-18]
FF Extension: (block-miners) - C:\Users\divee\AppData\Roaming\Mozilla\Firefox\Profiles\gs7nzp1a.default-release\Extensions\{74b0af75-8791-44e2-95a6-7f0ab94143ec}.xpi [2024-05-21]
FF SearchPlugin: C:\Users\divee\AppData\Roaming\Mozilla\Firefox\Profiles\gs7nzp1a.default-release\searchplugins\Poshukach Engin Search.xml [2022-06-11]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-04-07] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-04-07] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR Profile: C:\Users\divee\AppData\Local\Google\Chrome\User Data\Default [2024-08-18]
CHR HomePage: Default -> hxxps://go-go.tech?fr=ps&gp=496723&altserp=1
CHR StartupUrls: Default -> "hxxps://go-go.tech?fr=ps&gp=496723&altserp=1"
CHR DefaultSearchURL: Default -> hxxps://go-go.tech/search?q={searchTerms}&fr=ps&gp=496723&altserp=1
CHR DefaultSearchKeyword: Default -> go go tech search
CHR DefaultSuggestURL: Default -> hxxps://suggest.finditnowonline.com/suggestionfeed/suggestion?format=json&gd=496721&q={searchTerms}
CHR Extension: (Dokumenty Google offline) - C:\Users\divee\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-18]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\divee\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-05-20]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [9014680 2024-08-18] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [771480 2024-08-18] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [2312488 2024-08-18] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [1208216 2024-08-18] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-06-09] (Avast Software s.r.o. -> AVAST Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13995624 2024-07-31] (Microsoft Corporation -> Microsoft Corporation)
U2 DCIService; C:\Program Files (x86)\Lavasoft\Web Companion\Service\x64\DCIService.exe [3413424 2022-06-11] (Lavasoft Software Canada Inc. -> ) <==== ATTENTION
R2 DolbyDAXAPI; C:\WINDOWS\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_0222c12a396c055f\DAX3API.exe [2301912 2021-01-04] (Dolby Laboratories, Inc. -> Dolby Laboratories)
R2 FMAPOService; C:\WINDOWS\System32\FMService64.exe [334728 2020-12-20] (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [113224 2024-06-26] (Lenovo -> Lenovo Group Ltd.)
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\LenovoVantageService.exe [34664 2024-07-16] (Lenovo -> Lenovo)
S3 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpDefenderCoreService.exe [1427024 2024-08-18] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 QcomWlanSrv; C:\WINDOWS\System32\drivers\QcomWlanSrvx64.exe [189768 2023-09-17] (Qualcomm Atheros, Inc. -> )
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\NisSrv.exe [3199648 2024-08-18] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MsMpEng.exe [133704 2024-08-18] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [20536 2024-08-18] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [229944 2024-08-18] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [380984 2024-08-18] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [293944 2024-08-18] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [84536 2024-08-18] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [27744 2024-08-18] (Microsoft Windows Early Launch Anti-malware Publisher -> Gen Digital Inc.)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [28728 2024-08-18] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [271928 2024-08-18] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [549848 2024-08-18] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [97840 2024-08-18] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [69176 2024-08-18] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [948792 2024-08-18] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [1198648 2024-08-18] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [203728 2024-08-18] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [306648 2024-08-18] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R2 BdDci; C:\WINDOWS\system32\DRIVERS\bddci.sys [367096 2022-06-11] (Bitdefender SRL -> Bitdefender)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [22080 2024-08-18] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [602504 2024-08-18] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105864 2024-08-18] (Microsoft Windows -> Microsoft Corporation)
S3 ew_usbccgpfilter; \SystemRoot\System32\drivers\ew_usbccgpfilter.sys [X]
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2024-08-18 12:08 - 2024-08-18 12:09 - 000030853 _____ C:\Users\divee\OneDrive\Plocha\FRST.txt
2024-08-18 12:08 - 2024-08-18 12:08 - 000000000 ____D C:\FRST
2024-08-18 12:07 - 2024-08-18 12:07 - 002397184 _____ (Farbar) C:\Users\divee\OneDrive\Plocha\FRST64.exe
2024-08-18 11:54 - 2024-08-18 11:54 - 000727012 _____ C:\WINDOWS\system32\perfh005.dat
2024-08-18 11:54 - 2024-08-18 11:54 - 000151244 _____ C:\WINDOWS\system32\perfc005.dat
2024-08-18 11:51 - 2024-08-18 11:51 - 000001157 _____ C:\Users\divee\OneDrive\Plocha\DriverBooster – zástupce.lnk
2024-08-18 11:50 - 2024-08-18 11:50 - 000001607 _____ C:\WINDOWS\system32\config\VSMIDK
2024-08-18 11:44 - 2024-08-18 11:51 - 000003256 _____ C:\WINDOWS\system32\Tasks\Driver Booster SkipUAC (divee)
2024-08-18 11:44 - 2024-08-18 11:51 - 000003144 _____ C:\WINDOWS\system32\Tasks\Driver Booster Scheduler
2024-08-18 11:44 - 2024-08-18 11:51 - 000003130 _____ C:\WINDOWS\system32\Tasks\Driver Booster Update
2024-08-18 10:42 - 2024-08-18 10:42 - 000526048 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdtee_api.dll
2024-08-18 10:42 - 2024-08-18 10:42 - 000397536 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdtee_api.dll
2024-08-18 10:42 - 2024-08-18 10:42 - 000059208 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\Drivers\amdpsp.sys
2024-08-18 10:42 - 2024-08-18 10:42 - 000052344 _____ (Advanced Micro Devices, Inc) C:\WINDOWS\system32\Drivers\amdgpio2.sys
2024-08-18 10:41 - 2024-08-18 10:41 - 000092480 _____ (Advanced Micro Devices, Inc) C:\WINDOWS\system32\Drivers\amdi2c.sys
2024-08-18 10:34 - 2024-08-18 10:34 - 000002171 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2024-08-18 10:34 - 2024-08-18 10:34 - 000000000 ____D C:\WINDOWS\system32\o2
2024-08-18 10:34 - 2024-08-18 08:52 - 000314776 _____ (Gen Digital Inc.) C:\WINDOWS\system32\aswBoot.exe
2024-08-18 10:27 - 2024-08-18 10:48 - 000000000 ____D C:\Program Files\Mozilla Firefox
2024-08-18 10:27 - 2024-08-18 10:27 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2024-08-18 09:38 - 2024-08-18 09:38 - 000025684 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-08-18 09:37 - 2024-08-18 09:37 - 000025684 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-08-18 09:28 - 2024-08-18 09:28 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2024-08-18 12:07 - 2020-03-27 19:07 - 000000000 ____D C:\Users\divee\AppData\Local\AVAST Software
2024-08-18 12:06 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-08-18 11:57 - 2020-03-28 09:17 - 000000000 ___RD C:\Users\divee\OneDrive
2024-08-18 11:55 - 2022-06-12 09:02 - 000000000 ___HD C:\Users\divee\Downloads\.opera
2024-08-18 11:55 - 2022-06-12 09:02 - 000000000 ___HD C:\Users\divee\.opera
2024-08-18 11:54 - 2023-04-26 20:25 - 001718028 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-08-18 11:54 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF
2024-08-18 11:53 - 2022-06-11 19:58 - 000000000 ____D C:\Users\divee\AppData\Roaming\vlc
2024-08-18 11:50 - 2023-04-24 20:57 - 000003296 _____ C:\WINDOWS\system32\Tasks\AMDInstallLauncher
2024-08-18 11:50 - 2023-04-24 20:57 - 000003112 _____ C:\WINDOWS\system32\Tasks\AMDLinkUpdate
2024-08-18 11:50 - 2023-04-24 20:57 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-08-18 11:50 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ServiceState
2024-08-18 11:50 - 2022-05-07 07:17 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2024-08-18 11:50 - 2021-02-07 23:00 - 000012288 ___SH C:\DumpStack.log.tmp
2024-08-18 11:50 - 2020-03-28 09:29 - 000000000 ____D C:\ProgramData\AVAST Software
2024-08-18 11:40 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-08-18 11:10 - 2023-04-24 20:50 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-08-18 10:58 - 2020-05-31 21:41 - 000000000 ____D C:\Users\divee\AppData\Local\CrashDumps
2024-08-18 10:57 - 2020-03-27 20:13 - 000000000 ____D C:\Users\divee\AppData\Roaming\IObit
2024-08-18 10:57 - 2020-03-27 20:13 - 000000000 ____D C:\ProgramData\IObit
2024-08-18 10:48 - 2020-03-28 09:26 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2024-08-18 10:44 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-08-18 10:44 - 2019-12-07 06:28 - 000000000 ____D C:\ProgramData\Package Cache
2024-08-18 10:34 - 2023-04-24 20:57 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2024-08-18 10:34 - 2022-05-07 07:24 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2024-08-18 10:34 - 2020-04-20 22:08 - 000549848 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2024-08-18 10:34 - 2020-03-27 17:30 - 000306648 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswVmm.sys
2024-08-18 10:33 - 2020-03-28 09:15 - 000000000 ____D C:\Users\divee\AppData\Local\D3DSCache
2024-08-18 10:27 - 2020-03-28 09:26 - 000001016 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-08-18 10:05 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-08-18 10:02 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate
2024-08-18 09:46 - 2023-04-24 20:50 - 000632544 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-08-18 09:45 - 2023-12-20 20:44 - 000000000 ____D C:\WINDOWS\InboxApps
2024-08-18 09:45 - 2023-10-18 22:16 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2024-08-18 09:45 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-08-18 09:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\UUS
2024-08-18 09:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2024-08-18 09:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemResources
2024-08-18 09:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2024-08-18 09:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2024-08-18 09:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\setup
2024-08-18 09:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2024-08-18 09:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-08-18 09:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-08-18 09:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2024-08-18 09:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\Provisioning
2024-08-18 09:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2024-08-18 09:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-08-18 09:45 - 2020-03-27 18:35 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-08-18 09:44 - 2020-03-27 18:35 - 197093640 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-08-18 09:38 - 2023-04-24 20:55 - 003212800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-08-18 09:27 - 2019-12-07 06:14 - 000000000 ____D C:\Program Files\Microsoft Office
2024-08-18 09:24 - 2022-05-07 07:17 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2024-08-18 09:24 - 2019-04-19 07:00 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2024-08-18 09:22 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps
2024-08-18 09:22 - 2020-06-22 15:46 - 000918944 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2024-08-18 08:56 - 2020-06-18 17:11 - 000002447 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-08-18 08:52 - 2022-10-21 15:32 - 000027744 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswElam.sys
2024-08-18 08:52 - 2020-10-21 19:51 - 000271928 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2024-08-18 08:52 - 2020-03-27 17:30 - 001198648 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswSP.sys
2024-08-18 08:52 - 2020-03-27 17:30 - 000948792 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswSnx.sys
2024-08-18 08:52 - 2020-03-27 17:30 - 000380984 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2024-08-18 08:52 - 2020-03-27 17:30 - 000293944 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2024-08-18 08:52 - 2020-03-27 17:30 - 000229944 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswArPot.sys
2024-08-18 08:52 - 2020-03-27 17:30 - 000203728 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\asw84e3e7894811703a.tmp
2024-08-18 08:52 - 2020-03-27 17:30 - 000097840 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2024-08-18 08:52 - 2020-03-27 17:30 - 000084536 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2024-08-18 08:52 - 2020-03-27 17:30 - 000069176 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2024-08-18 08:52 - 2020-03-27 17:30 - 000028728 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswKbd.sys
2024-08-18 08:52 - 2020-03-27 17:30 - 000020536 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2024-08-18 08:51 - 2021-01-16 22:00 - 000002258 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-08-18 08:50 - 2023-04-24 20:57 - 000003640 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-08-18 08:50 - 2023-04-24 20:57 - 000003516 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-08-18 08:49 - 2023-04-24 20:57 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-450335177-2361977270-321031083-1001
2024-08-18 08:49 - 2023-04-24 20:57 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-450335177-2361977270-321031083-1001
2024-08-18 08:49 - 2021-02-07 23:01 - 000002388 _____ C:\Users\divee\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-07-24 17:30 - 2020-03-28 09:21 - 000000000 ____D C:\ProgramData\Packages
2024-07-24 17:30 - 2020-03-28 09:15 - 000000000 ____D C:\Users\divee\AppData\Local\Packages
==================== FCheck ================================
(If an entry is included in the fixlist, the file/folder will be moved.)
FCheck: C:\WINDOWS\SysWOW64\version_IObitDel.dll [2022-06-12] <==== ATTENTION (zero byte File/Folder)
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12-08.2024
Ran by divee (18-08-2024 12:09:55)
Running from C:\Users\divee\OneDrive\Plocha
Microsoft Windows 11 Home Version 23H2 22631.3880 (X64) (2023-04-26 18:18:02)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-450335177-2361977270-321031083-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-450335177-2361977270-321031083-503 - Limited - Disabled)
divee (S-1-5-21-450335177-2361977270-321031083-1001 - Administrator - Enabled) => C:\Users\divee
Guest (S-1-5-21-450335177-2361977270-321031083-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-450335177-2361977270-321031083-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
FW: Avast Antivirus (Enabled) {D322394B-73F7-C65E-BBB0-3B81E063D6D4}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 20.2.2 - Advanced Micro Devices, Inc.)
AnyTrans (HKLM-x32\...\AnyTrans) (Version: 8.4.0.0 - ${PROGRAM_PUBLISHER})
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 24.7.6124 - Avast Software)
BitTorrent (HKU\S-1-5-21-450335177-2361977270-321031083-1001\...\BitTorrent) (Version: 7.10.5.46211 - BitTorrent Inc.)
Branding64 (HKLM\...\{856DA29A-EA4A-468B-BBC2-B5F60DD75BFE}) (Version: 1.00.0002 - Advanced Micro Devices, Inc.) Hidden
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Fotogalerie (HKLM-x32\...\{F37D360D-9308-4BB1-8515-DC6B637B9486}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 127.0.6533.120 - Google LLC)
Junk Mail filter update (HKLM-x32\...\{0BE9E708-5DC0-4963-9CFD-0AA519090E79}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Kontrola stavu osobního počítače s Windows (HKLM\...\{D1F15F7A-707A-42BD-BE6B-3380616F796D}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Lenovo Vantage Service (HKLM-x32\...\VantageSRV_is1) (Version: 4.1.22.0 - Lenovo Group Ltd.)
LibreOffice 6.4.0.3 (HKLM\...\{5DE38E8F-2A6F-44E7-9D24-0C6D056597D6}) (Version: 6.4.0.3 - The Document Foundation)
Microsoft 365 - cs-cz (HKLM\...\O365HomePremRetail - cs-cz) (Version: 16.0.17830.20138 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 127.0.2651.105 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 127.0.2651.105 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-450335177-2361977270-321031083-1001\...\OneDriveSetup.exe) (Version: 24.151.0728.0003 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{C6FD611E-7EFE-488C-A0E0-974C09EF6473}) (Version: 5.72.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.40.33810 (HKLM-x32\...\{5af95fd8-a22e-458f-acee-c61bd787178e}) (Version: 14.40.33810.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.40.33810 (HKLM-x32\...\{47109d57-d746-4f8b-9618-ed6a17cc922b}) (Version: 14.40.33810.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.40.33810 (HKLM\...\{59CED48F-EBFE-480C-8A38-FC079C2BEC0F}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.40.33810 (HKLM\...\{B8B3BB4A-A10D-4F51-91B7-A64FFAC31EA7}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.40.33810 (HKLM-x32\...\{5EA6C998-D5AC-4ED9-89C3-9F25B17CCD3D}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.40.33810 (HKLM-x32\...\{0C3457A0-3DCE-4A33-BEF0-9B528C557771}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{3D2CF65C-B544-4308-B996-700D3E5F6C4C}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox (x64 en-US) (HKLM\...\Mozilla Firefox 129.0.1 (x64 en-US)) (Version: 129.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 74.0 - Mozilla)
MSVCRT (HKLM-x32\...\{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}) (Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (HKLM-x32\...\{D0B44725-3666-492D-BEF6-587A14BD9BD9}) (Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (HKLM-x32\...\{8E14DDC8-EA60-4E18-B3E3-1937104D5BDA}) (Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (HKLM\...\{E9FA781F-3E80-4399-825A-AD3E11C28C77}) (Version: 16.4.1109.0912 - Microsoft) Hidden
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.17830.20138 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.17830.20138 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-1000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Photo Common (HKLM-x32\...\{15BFD731-A10E-43E9-9D18-0F682BC0480F}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Photo Gallery (HKLM-x32\...\{07AAB66E-4718-422D-9218-4AFB3C922A71}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Planet Coaster (HKLM-x32\...\Planet Coaster_is1) (Version: - )
The Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.0.631 - Electronic Arts)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.20 - VideoLAN)
Web Companion (HKLM-x32\...\{6101ce4c-c072-49bb-9561-6fb325dcb329}) (Version: 8.9.0.371 - Lavasoft) <==== ATTENTION
Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc)
Windows Live Communications Platform (HKLM-x32\...\{41C61308-6CFD-4D54-AB6A-7136ED08A18E}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\{9A470EA9-FF86-4C0E-992C-572BF2B9D6FF}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows Live Installer (HKLM-x32\...\{659CB81C-B54E-4DF1-B618-F35777393A54}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Mail (HKLM-x32\...\{3EE8FA69-F2A5-4BDB-9E23-3ABB2421B4FA}) (Version: 16.4.3528.0331 - společnost Microsoft Corporation) Hidden
Windows Live Mail (HKLM-x32\...\{B775C26B-EAA8-4A11-ACBF-76E52DF6B805}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Messenger (HKLM-x32\...\{88B9357F-0845-465F-96B9-50976FB9C6C2}) (Version: 16.4.3528.0331 - společnost Microsoft Corporation) Hidden
Windows Live Messenger (HKLM-x32\...\{E703613B-BDAB-433E-A66A-DE0263E3D35D}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (HKLM\...\{25058321-C33E-496B-8915-6FD64D362CAF}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Photo Common (HKLM-x32\...\{1D6432B4-E24D-405E-A4AB-D7E6D088CBC9}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (HKLM-x32\...\{B2611F8A-EFE7-4E88-875D-19F0EFAE87E4}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live SOXE (HKLM-x32\...\{CDC1AB00-01FF-4FC7-816A-16C67F0923C0}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (HKLM-x32\...\{D1893000-EA77-493C-8DDD-E262436E959B}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live UX Platform (HKLM-x32\...\{00F9DB8C-65D7-4D47-AB5F-F698EE38580D}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (HKLM-x32\...\{E100E2B5-F2EF-4955-AB7A-C3F2125A3BCD}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Writer (HKLM-x32\...\{04BE4035-3C8E-4B48-BFB8-1655849C0C8B}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Writer (HKLM-x32\...\{124A05DC-3C47-4EEF-85CE-56D6C1CAE62B}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Writer (HKLM-x32\...\{714E162E-CD4F-4F1B-8302-7F5179409C25}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Writer Resources (HKLM-x32\...\{E5807449-CA84-42F6-9CE3-A0E2BDA9E24B}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
WinRAR 6.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.00.0 - win.rar GmbH)
Packages:
=========
AMD Radeon Software -> C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.20.10028.0_x64__0a9344xs7nr4m [2021-06-18] (Advanced Micro Devices Inc.) [Startup Task]
Dolby Audio -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAudio_3.20900.902.0_x64__rz1tebttyb220 [2021-04-25] (Dolby Laboratories)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-10-04] (Microsoft Corporation)
Fotografie -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2024.11070.19012.0_x64__8wekyb3d8bbwe [2024-07-24] (Microsoft Corporation) [Startup Task]
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12132.3.2017.0_x64__nzyj5cx40ttqa [2024-05-26] (Apple Inc.) [Startup Task]
Lenovo Companion -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2406.36.0_x64__k1h2ywk1493x8 [2024-08-18] (LENOVO INC.)
Lenovo Hotkeys -> C:\Program Files\WindowsApps\E0469640.LenovoUtility_4.6.12.0_x64__5grkq8ppsgwt4 [2024-05-26] (LENOVO INC) [Startup Task]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2022-06-11] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2022-06-11] (Microsoft Corporation) [MS Ad]
Microsoft Defender -> C:\Program Files\WindowsApps\Microsoft.6365217CE6EB4_102.2406.5002.0_x64__8wekyb3d8bbwe [2024-07-24] (Microsoft Corporation) [Startup Task]
Microsoft Family -> C:\Program Files\WindowsApps\MicrosoftCorporationII.MicrosoftFamily_0.2.40.0_x64__8wekyb3d8bbwe [2023-09-17] (Microsoft Corp.)
Microsoft.BingSearch -> C:\Program Files\WindowsApps\Microsoft.BingSearch_1.0.95.0_x64__8wekyb3d8bbwe [2024-07-24] (Microsoft Corporation)
Microsoft.MPEG2VideoExtension -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.61931.0_x64__8wekyb3d8bbwe [2023-08-30] (Microsoft Corporation)
MicrosoftWindows.CrossDevice -> C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.24072.45.0_x64__cw5n1h2txyewy [2024-08-18] (Microsoft Windows) [Startup Task]
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.20.238.0_x64__dt26b99r8h8gj [2023-09-13] (Realtek Semiconductor Corp)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0 [2024-07-24] (Spotify AB) [Startup Task]
WinAppRuntime.Main.1.5 -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Main.1.5_5001.178.1908.0_x64__8wekyb3d8bbwe [2024-07-24] (Microsoft Corp.)
WinAppRuntime.Singleton -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Singleton_5001.178.1908.0_x64__8wekyb3d8bbwe [2024-07-24] (Microsoft Corp.)
Windows Feature Experience Pack -> C:\WINDOWS\SystemApps\MicrosoftWindows.Client.LKG_cw5n1h2txyewy [2024-08-18] (Microsoft Windows)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2024-08-18] (Avast Software s.r.o. -> Gen Digital Inc.)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2024-08-18] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2024-08-18] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2024-08-18] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2020-02-28] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2024-08-18] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [vidc.VP60] => C:\Windows\SysWOW64\vp6vfw.dll [447752 2008-09-04] (Electronic Arts -> On2.com)
HKLM\...\Drivers32: [vidc.VP61] => C:\Windows\SysWOW64\vp6vfw.dll [447752 2008-09-04] (Electronic Arts -> On2.com)
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2023-07-14 17:22 - 2017-09-04 05:52 - 000089600 _____ () [File not signed] C:\Program Files (x86)\iMobie\AnyTrans\zlib1.dll
2019-07-18 11:16 - 2019-07-18 11:16 - 000017920 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libEGL.dll
2019-07-18 11:16 - 2019-07-18 11:16 - 003567616 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2023-07-14 17:22 - 2021-06-07 08:33 - 001353216 _____ (Robert Simpson, et al.) [File not signed] [File is in use] C:\Program Files (x86)\iMobie\AnyTrans\System.Data.SQLite.dll
2019-07-18 11:17 - 2019-07-18 11:17 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qgif.dll
2019-07-18 11:17 - 2019-07-18 11:17 - 000039424 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qicns.dll
2019-07-18 11:17 - 2019-07-18 11:17 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qico.dll
2019-07-18 11:17 - 2019-07-18 11:17 - 000413696 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qjpeg.dll
2019-07-18 11:17 - 2019-07-18 11:17 - 000025088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qsvg.dll
2019-07-18 11:17 - 2019-07-18 11:17 - 000025088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qtga.dll
2019-07-18 11:17 - 2019-07-18 11:17 - 000023552 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwbmp.dll
2019-07-18 11:17 - 2019-07-18 11:17 - 000519168 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwebp.dll
2019-07-18 11:17 - 2019-07-18 11:17 - 001431040 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\platforms\qwindows.dll
2019-07-18 11:17 - 2019-07-18 11:17 - 001180672 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\sqldrivers\qsqlite.dll
2019-07-18 11:17 - 2019-07-18 11:17 - 000135680 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\styles\qwindowsvistastyle.dll
2020-02-28 19:30 - 2020-02-28 19:30 - 006010880 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
2019-07-18 11:16 - 2019-07-18 11:16 - 006345216 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
2019-07-18 11:16 - 2019-07-18 11:16 - 001078272 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
2019-07-18 11:16 - 2019-07-18 11:16 - 000313856 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll
2019-07-18 11:16 - 2019-07-18 11:16 - 004000256 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
2019-07-18 11:16 - 2019-07-18 11:16 - 003802624 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
2019-07-18 11:16 - 2019-07-18 11:16 - 000171008 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QuickControls2.dll
2019-07-18 11:16 - 2019-07-18 11:16 - 001083904 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QuickTemplates2.dll
2019-07-18 11:16 - 2019-07-18 11:16 - 000205312 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Sql.dll
2019-07-18 11:16 - 2019-07-18 11:16 - 000329728 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll
2019-07-18 11:16 - 2019-07-18 11:16 - 000376320 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll
2019-07-18 11:16 - 2019-07-18 11:16 - 092323328 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll
2019-07-18 11:16 - 2019-07-18 11:16 - 000113152 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll
2019-07-18 11:16 - 2019-07-18 11:16 - 005560832 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
2019-07-18 11:16 - 2019-07-18 11:16 - 000463360 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
2019-07-18 11:16 - 2019-07-18 11:16 - 000188416 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll
2019-07-18 11:16 - 2019-07-18 11:16 - 002888704 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll
2019-07-18 11:17 - 2019-07-18 11:17 - 000053760 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
2019-07-18 11:17 - 2019-07-18 11:17 - 000059392 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
2019-07-18 11:17 - 2019-07-18 11:17 - 000017408 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2019-07-18 11:17 - 2019-07-18 11:17 - 000287232 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls.2\qtquickcontrols2plugin.dll
2019-07-18 11:17 - 2019-07-18 11:17 - 000329216 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2019-07-18 11:17 - 2019-07-18 11:17 - 000136192 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll
2019-07-18 11:17 - 2019-07-18 11:17 - 000089088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2019-07-18 11:17 - 2019-07-18 11:17 - 000312320 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Templates.2\qtquicktemplates2plugin.dll
2019-07-18 11:17 - 2019-07-18 11:17 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2020-02-28 19:30 - 2020-02-28 19:30 - 000085504 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtWebEngine\qtwebengineplugin.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
HKU\S-1-5-21-450335177-2361977270-321031083-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo17win10.msn.com/?pc=LCTE
HKU\S-1-5-21-450335177-2361977270-321031083-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo17win10.msn.com/?pc=LCTE
HKU\S-1-5-21-450335177-2361977270-321031083-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com/
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2024-04-07] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-08-18] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-08-18] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-08-18] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-08-18] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-08-18] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-08-18] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-08-18] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-08-18] (Microsoft Corporation -> Microsoft Corporation)
Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll [2022-05-07] (Lenovo -> Microsoft Corporation)
Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll [2022-05-07] (Lenovo -> Microsoft Corporation)
Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll [2022-05-07] (Lenovo -> Microsoft Corporation)
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
IE trusted site: HKU\.DEFAULT\...\webcompanion.com -> hxxp://webcompanion.com
IE trusted site: HKU\S-1-5-21-450335177-2361977270-321031083-1001\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-450335177-2361977270-321031083-1001\...\webcompanion.com -> hxxp://webcompanion.com
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-03-19 06:49 - 2019-03-19 06:49 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-450335177-2361977270-321031083-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\divee\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\3CD8Flu-pc-wallpaper-love.jpg
DNS Servers: 10.152.101.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
Network Binding:
=============
Wi-Fi: Qualcomm Atheros QCA9377 Wireless Network Adapter -> Qcamain10x64.sys
Síťové připojení Bluetooth: Bluetooth Device (Personal Area Network) -> bthpan.sys
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run32: => "seznam-listicka-distribuce"
HKU\S-1-5-21-450335177-2361977270-321031083-1001\...\StartupApproved\Run: => "cz.seznam.software.autoupdate"
HKU\S-1-5-21-450335177-2361977270-321031083-1001\...\StartupApproved\Run: => "cz.seznam.software.szndesktop"
HKU\S-1-5-21-450335177-2361977270-321031083-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_87336ED17E3B5BCF7536925A44E78558"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{313DF260-1340-4060-A801-65611732F09E}] => (Allow) C:\Users\divee\AppData\Local\Programs\Opera\88.0.4412.27\opera.exe => No File
FirewallRules: [{1772C4F5-C988-4A8A-85B8-07FC0F508370}] => (Allow) C:\Users\divee\AppData\Roaming\BitTorrent\BitTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{3BE2FB78-A6EE-4C33-9E1D-8E86EE77C3E8}] => (Allow) C:\Users\divee\AppData\Roaming\BitTorrent\BitTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{F22A821C-4E1F-4968-9EAF-676016DE7FD3}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_22082.402.1279.2578_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{690DD415-2AE5-4F99-A82C-B51C9C982661}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_22082.402.1279.2578_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{69FA3A1B-BF0A-4151-A8F1-EC78CA039508}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [{0933CFD0-1B3F-4846-9214-60FD19BD8956}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [{72F53117-F954-4CB1-9C77-3CD105A143F8}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{12F166A0-CD14-427E-8665-51C61046FCAC}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{2E21E5E0-F5BB-4F9A-8A0E-5643B5FFA5BE}] => (Allow) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHost.exe => No File
FirewallRules: [{9553D52C-F909-4A97-A4C3-F82922233AEA}] => (Allow) C:\Program Files (x86)\Common Files\Mcafee\MMSSHost\MMSSHost.exe => No File
FirewallRules: [{FB0D34DF-8828-4FB6-B2A3-7F6C4702EE96}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{49378DE4-CC70-47D9-BB41-F33A4191029B}] => (Allow) LPort=2869
FirewallRules: [{D0895ED3-5945-4DD2-83C7-B0802D416692}] => (Allow) LPort=1900
FirewallRules: [{B01EF028-4887-47E5-B010-F5B8AA5170A6}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{969FA5EE-E854-463B-8B20-3319EDEE9391}] => (Allow) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{32D72274-A4CA-45C0-8BD7-37C52BB43F16}] => (Allow) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{472A6B2D-99DF-4404-BC08-4B8EB5A79892}] => (Allow) C:\Program Files (x86)\iMobie\AnyTrans\xldownload\download\MiniThunderPlatform.exe (ShenZhen Thunder Networking Technologies Ltd. -> 深圳市迅雷网络技术有限公司)
FirewallRules: [{6E46B6BE-FFF6-4CA8-9681-9DED416FFD12}] => (Allow) C:\Program Files (x86)\iMobie\AnyTrans\xldownload\download\MiniThunderPlatform.exe (ShenZhen Thunder Networking Technologies Ltd. -> 深圳市迅雷网络技术有限公司)
FirewallRules: [TCP Query User{69868C52-2644-438F-828E-D97257D56CBA}C:\program files (x86)\imobie\anytrans\anytrans.exe] => (Allow) C:\program files (x86)\imobie\anytrans\anytrans.exe (iMobie Inc. -> iMobie Inc.)
FirewallRules: [UDP Query User{ACC10BB8-9E91-4030-B8CB-205AD7F9CF8B}C:\program files (x86)\imobie\anytrans\anytrans.exe] => (Allow) C:\program files (x86)\imobie\anytrans\anytrans.exe (iMobie Inc. -> iMobie Inc.)
FirewallRules: [{1D3150EB-B975-415C-913F-8C5D2C3D8A9B}] => (Allow) C:\Program Files (x86)\iMobie\AnyTrans\AnyTrans.exe (iMobie Inc. -> iMobie Inc.)
FirewallRules: [{C91476D3-4EFF-4CED-8475-F4E2B71A7CDD}] => (Allow) C:\Program Files (x86)\iMobie\AnyTrans\AnyTrans.exe (iMobie Inc. -> iMobie Inc.)
FirewallRules: [TCP Query User{DEB31D4B-1B29-4FE3-A99A-44940A188F6D}C:\program files (x86)\imobie\anytrans\airbackuphelper.exe] => (Allow) C:\program files (x86)\imobie\anytrans\airbackuphelper.exe (iMobie Inc. -> iMobie Inc.)
FirewallRules: [UDP Query User{BC2D236A-9BE8-45C7-9871-88685FDDFE73}C:\program files (x86)\imobie\anytrans\airbackuphelper.exe] => (Allow) C:\program files (x86)\imobie\anytrans\airbackuphelper.exe (iMobie Inc. -> iMobie Inc.)
FirewallRules: [{EBDD4821-9F18-4150-8D8E-8182A9294B18}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12132.3.2017.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{B657EAB2-BFAD-4109-B6BE-DCF9BB7D726B}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12132.3.2017.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{EA86C323-34F4-4425-8475-1CE6DA7B8DBC}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12132.3.2017.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{B62B23CD-48AB-48A0-8F42-CB7D92937D0D}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12132.3.2017.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{ABE7BB1D-909A-4DC1-8DE1-BDD75AD10E3C}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12132.3.2017.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{53654E5E-2EFC-49E3-B5A7-AB4B3B3C4F57}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12132.3.2017.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{F1F63E09-A679-4CDF-B5E3-B32AE4B9A03E}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12132.3.2017.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{7C512AEE-7C3A-4637-B2D3-730BCE0695C2}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12132.3.2017.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{09B2D058-C990-45FA-A07E-B9B405A8915C}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{032C3C82-79FC-4B04-91D3-EDAF8FA666B7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.123.3203.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{01DB9A12-A720-437E-B4EC-4418A12F433C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.123.3203.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F96A8AF2-0373-4CCF-940B-4DFB04D8E899}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.123.3203.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{77CB4338-CFB7-40EB-90D2-2CD6FBFAAC30}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.123.3203.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{07F2F286-1B6F-4F70-8A84-4BC676F33C06}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{19FF6105-471F-4DAC-B6E4-156E951EA7DC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{DB14531B-95A2-4CDA-9CEC-05766C3DB497}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{B4E54EE2-2F29-4D2F-BEA1-6C389C45E08D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{86A0DA5A-C30B-4348-A1FF-A08690B4FDAE}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{C75A8554-0DA7-46F3-8FA1-87D852080405}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{41C9A07A-2031-4993-BBD8-03C308B5FA31}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{4186ECCC-32B5-4837-83EA-754EEB39CE99}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{58D5956D-9293-478A-8C8E-947B641CB121}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{3BC55EEC-90A7-4B4C-BC75-5786E8E94EB3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{7A23EE5A-134B-42E0-B97E-7AD36C327157}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{DD0E7137-239A-447B-AAB5-86BE967FCDEA}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\127.0.2651.105\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
==================== Restore Points =========================
18-08-2024 10:41:24 Driver Booster : AMD High Definition Audio Device
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (08/18/2024 11:51:01 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: WebCompanion.exe, verze: 8.9.0.371, časové razítko: 0x618bad9f
Název chybujícího modulu: KERNELBASE.dll, verze: 6.2.22621.3880, časové razítko: 0xee1eae1c
Kód výjimky: 0xe0434f4d
Posun chyby: 0x0014a782
ID chybujícího procesu: 0x%9
Čas spuštění chybující aplikace: 0xWebCompanion.exe0
Cesta k chybující aplikaci: WebCompanion.exe1
Cesta k chybujícímu modulu: WebCompanion.exe2
ID zprávy: WebCompanion.exe3
Úplný název chybujícího balíčku: WebCompanion.exe4
ID aplikace související s chybujícím balíčkem: WebCompanion.exe5
Error: (08/18/2024 11:42:02 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: WebCompanion.exe, verze: 8.9.0.371, časové razítko: 0x618bad9f
Název chybujícího modulu: KERNELBASE.dll, verze: 6.2.22621.3880, časové razítko: 0xee1eae1c
Kód výjimky: 0xe0434f4d
Posun chyby: 0x0014a782
ID chybujícího procesu: 0x%9
Čas spuštění chybující aplikace: 0xWebCompanion.exe0
Cesta k chybující aplikaci: WebCompanion.exe1
Cesta k chybujícímu modulu: WebCompanion.exe2
ID zprávy: WebCompanion.exe3
Úplný název chybujícího balíčku: WebCompanion.exe4
ID aplikace související s chybujícím balíčkem: WebCompanion.exe5
Error: (08/18/2024 11:22:17 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: WebCompanion.exe, verze: 8.9.0.371, časové razítko: 0x618bad9f
Název chybujícího modulu: KERNELBASE.dll, verze: 6.2.22621.3880, časové razítko: 0xee1eae1c
Kód výjimky: 0xe0434f4d
Posun chyby: 0x0014a782
ID chybujícího procesu: 0x%9
Čas spuštění chybující aplikace: 0xWebCompanion.exe0
Cesta k chybující aplikaci: WebCompanion.exe1
Cesta k chybujícímu modulu: WebCompanion.exe2
ID zprávy: WebCompanion.exe3
Úplný název chybujícího balíčku: WebCompanion.exe4
ID aplikace související s chybujícím balíčkem: WebCompanion.exe5
Error: (08/18/2024 11:10:51 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: WebCompanion.exe, verze: 8.9.0.371, časové razítko: 0x618bad9f
Název chybujícího modulu: KERNELBASE.dll, verze: 6.2.22621.3880, časové razítko: 0xee1eae1c
Kód výjimky: 0xe0434f4d
Posun chyby: 0x0014a782
ID chybujícího procesu: 0x%9
Čas spuštění chybující aplikace: 0xWebCompanion.exe0
Cesta k chybující aplikaci: WebCompanion.exe1
Cesta k chybujícímu modulu: WebCompanion.exe2
ID zprávy: WebCompanion.exe3
Úplný název chybujícího balíčku: WebCompanion.exe4
ID aplikace související s chybujícím balíčkem: WebCompanion.exe5
Error: (08/18/2024 10:58:23 AM) (Source: Application Error) (EventID: 1000) (User: LAPTOP-4NE9KT28)
Description: Název chybující aplikace: DriverBooster.exe, verze: 9.4.0.233, časové razítko: 0x62908b5f
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x00ed3d90
ID chybujícího procesu: 0x0x9ac
Čas spuštění chybující aplikace: 0x0x1daf14cc68bbefa
Cesta k chybující aplikaci: D:\Programy\IObit Driver Booster Pro v9.4.0.233 Multilingual Portable [FTUApps]\App\ProgramFiles\DriverBooster.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: 38f63824-c79e-440c-b5db-6c65b6306e97
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (08/18/2024 10:57:43 AM) (Source: Application Error) (EventID: 1000) (User: LAPTOP-4NE9KT28)
Description: Název chybující aplikace: Loader-IDB.exe, verze: 0.0.0.0, časové razítko: 0x5d5410c1
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x007c42a8
ID chybujícího procesu: 0x0x3408
Čas spuštění chybující aplikace: 0x0x1daf14caf8b3516
Cesta k chybující aplikaci: D:\Programy\IObit Driver Booster Pro v9.4.0.233 Multilingual Portable [FTUApps]\App\ProgramFiles\Loader-IDB.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: 87124f98-a7e2-4e53-a228-aacbd751ac5b
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (08/18/2024 10:57:22 AM) (Source: Application Error) (EventID: 1000) (User: LAPTOP-4NE9KT28)
Description: Název chybující aplikace: Loader-IDB.exe, verze: 0.0.0.0, časové razítko: 0x5d5410c1
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x008c73b8
ID chybujícího procesu: 0x0x2bf4
Čas spuštění chybující aplikace: 0x0x1daf14ca2e69441
Cesta k chybující aplikaci: D:\Programy\IObit Driver Booster Pro v9.4.0.233 Multilingual Portable [FTUApps]\App\ProgramFiles\Loader-IDB.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: 04529733-75ae-4145-8210-47b1a0c14100
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (08/18/2024 10:56:57 AM) (Source: Application Error) (EventID: 1000) (User: LAPTOP-4NE9KT28)
Description: Název chybující aplikace: Loader-IDB.exe, verze: 0.0.0.0, časové razítko: 0x5d5410c1
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x006b8790
ID chybujícího procesu: 0x0x3134
Čas spuštění chybující aplikace: 0x0x1daf14c93e1353a
Cesta k chybující aplikaci: D:\Programy\IObit Driver Booster Pro v9.4.0.233 Multilingual Portable [FTUApps]\App\ProgramFiles\Loader-IDB.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: 6b0a61e7-d336-42c9-a40d-42e795771328
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
System errors:
=============
Error: (08/18/2024 11:52:32 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba Aktualizace Google (gupdate) neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (08/18/2024 11:52:32 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Služba Aktualizace Google (gupdate) bylo dosaženo časového limitu (30000 ms).
Error: (08/18/2024 11:50:26 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba HvHost byla ukončena s následující chybou:
Systém nemůže nalézt uvedený soubor.
Error: (08/18/2024 11:43:48 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba Aktualizace Google (gupdate) neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (08/18/2024 11:43:48 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Služba Aktualizace Google (gupdate) bylo dosaženo časového limitu (30000 ms).
Error: (08/18/2024 11:23:58 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba Aktualizace Google (gupdate) neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (08/18/2024 11:23:58 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Služba Aktualizace Google (gupdate) bylo dosaženo časového limitu (30000 ms).
Error: (08/18/2024 11:12:32 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba Aktualizace Google (gupdate) neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Windows Defender:
================
Date: 2024-08-18 10:25:12
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {7604611C-2D71-434F-9F84-65D247057C23}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2024-08-18 10:02:37
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {B3607A56-F255-4686-A1A3-167FC6538644}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2024-08-18 09:44:09
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {256323E0-D68C-4129-8D8D-43748E98DC49}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Event[0]
Date: 2024-08-18 09:23:44
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.343.1653.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.18300.4
Kód chyby: 0x80240016
Popis chyby: Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.
CodeIntegrity:
===============
Date: 2024-08-18 12:00:51
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SecurityHealthService.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
Date: 2024-08-18 11:53:02
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
Date: 2024-08-18 11:51:45
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: LENOVO BUCN22WW 10/31/2019
Motherboard: LENOVO LNVNB161216
Processor: AMD Ryzen 5 3500U with Radeon Vega Mobile Gfx
Percentage of memory in use: 82%
Total physical RAM: 6020.26 MB
Available physical RAM: 1050.1 MB
Total Virtual: 12164.26 MB
Available Virtual: 4848.2 MB
==================== Drives ================================
Drive c: (Windows-SSD) (Fixed) (Total:118 GB) (Free:54.13 GB) (Model: SAMSUNG MZALQ128HBHQ-000L2) NTFS
Drive d: (Data) (Fixed) (Total:931.5 GB) (Free:818.7 GB) (Model: ST1000LM035-1RK172) NTFS
\\?\Volume{884a0ca6-398e-4c45-a913-129cfd2e6094}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.24 GB) NTFS
\\?\Volume{1b6608af-4621-4f76-88b0-bdbe40ac0f69}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: C1F835FC)
Partition: GPT.
==========================================================
Disk: 1 (Size: 119.2 GB) (Disk ID: 3AF4C4C7)
Partition: GPT.
==================== End of Addition.txt =======================
poprosím o kontrolu laptopu přítelkyně, pro odstranění veškeré možné havěti.
Děkuji moc.
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 12-08.2024
Ran by divee (administrator) on LAPTOP-4NE9KT28 (LENOVO 81UT) (18-08-2024 12:08:25)
Running from C:\Users\divee\OneDrive\Plocha\FRST64.exe
Loaded Profiles: divee
Platform: Microsoft Windows 11 Home Version 23H2 22631.3880 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12132.3.2017.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\AVAST Software\Avast\AvastUI.exe <4>
(C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\LenovoVantage-(DeviceSettingsSystemAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\LenovoVantage-(GenericMessagingAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\LenovoVantage-(VantageCoreAddin).exe
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(C:\Program Files\AVAST Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_524.18500.10.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\127.0.2651.105\msedgewebview2.exe <7>
(C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe
(DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_0222c12a396c055f\DAX3API.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories) C:\Windows\System32\DriverStore\FileRepository\DAX3_S~1.INF\DAX3API.exe
(DriverStore\FileRepository\u0361441.inf_amd64_122c374e035e7595\B361368\atiesrxx.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0361441.inf_amd64_122c374e035e7595\B361368\atieclxx.exe
(iMobie Inc. -> iMobie Inc.) C:\Program Files (x86)\iMobie\AnyTrans\AirBackupHelper.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <16>
(services.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0361441.inf_amd64_122c374e035e7595\B361368\atiesrxx.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\AVAST Software\Avast\afwServ.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(services.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories) C:\Windows\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_0222c12a396c055f\DAX3API.exe
(services.exe ->) (Lavasoft Software Canada Inc. -> ) C:\Program Files (x86)\Lavasoft\Web Companion\Service\x64\DCIService.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(services.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\LenovoVantageService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Locator.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia) C:\Windows\System32\FMService64.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(services.exe ->) (Qualcomm Atheros, Inc. -> ) C:\Windows\System32\drivers\QcomWlanSrvx64.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_12a8d6d742c436e2\RtkAudUService64.exe <2>
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnhService.exe
(sihost.exe ->) (20E7E2C9-A2A9-4A02-BB29-6FCFB9E042BB -> Lenovo) C:\Program Files\WindowsApps\E0469640.LenovoUtility_4.6.12.0_x64__5grkq8ppsgwt4\LaunchUtility\utility.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_524.18500.10.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe
(SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnh.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_12a8d6d742c436e2\RtkAudUService64.exe [1211184 2020-12-10] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [426904 2024-08-18] (Avast Software s.r.o. -> Gen Digital Inc.)
HKLM-x32\...\Run: [AirBackupHelper] => C:\Program Files (x86)\iMobie\AnyTrans\AirBackupHelper.exe [2747016 2023-06-01] (iMobie Inc. -> iMobie Inc.)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-450335177-2361977270-321031083-1001\...\Run: [AMDDVR] => C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe [2486376 2020-02-28] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKU\S-1-5-21-450335177-2361977270-321031083-1001\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe [9250224 2022-06-11] (Lavasoft Software Canada Inc. -> Lavasoft) <==== ATTENTION
HKU\S-1-5-21-450335177-2361977270-321031083-1001\...\Run: [MicrosoftEdgeAutoLaunch_87336ED17E3B5BCF7536925A44E78558] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3814952 2024-08-14] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\127.0.6533.120\Installer\chrmstp.exe [2024-08-18] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {6CD2A154-21A0-4B9C-AC71-7D171A8AA247} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1628160 2020-02-29] (Advanced Micro Devices, Inc.) [File not signed]
Task: {D8B968F5-7BB6-47D6-BC2E-648BE05809C1} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1628160 2020-02-29] (Advanced Micro Devices, Inc.) [File not signed]
Task: {25C9443A-D7B5-4875-9629-5309BAD59F03} - System32\Tasks\Avast Software\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [5157272 2024-08-18] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {5B3B5D45-455C-496B-9437-DC24599F9E20} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2144664 2023-08-03] (Avast Software s.r.o. -> Avast Software)
Task: {95B7A660-F805-4F2F-B689-3D077A9DCAE0} - System32\Tasks\Driver Booster Scheduler => D:\Programy\DriverBooster\Scheduler.exe [157784 2023-02-10] (IObit CO., LTD -> IObit)
Task: {0BDDFAF1-D7E7-4F0F-9B1F-F10F1C4CC775} - System32\Tasks\Driver Booster SkipUAC (divee) => D:\Programy\DriverBooster\DriverBooster.exe [8998912 2023-03-01] (IObit) [File not signed]
Task: {0C600214-2C00-43B6-8A65-60C65EA2ABA0} - System32\Tasks\Driver Booster Update => D:\Programy\DriverBooster\AutoUpdate.exe [82680 2020-05-30] (IObit) [File not signed]
Task: {D8506ED1-E16A-4F5F-AD2C-3F3D92030402} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem129.0.6651.0{63081F46-D2E2-4FF8-AAB8-53BEFF684E56} => C:\Program Files (x86)\Google\GoogleUpdater\129.0.6651.0\updater.exe [4906600 2024-08-11] (Google LLC -> Google LLC)
Task: {FC838AF8-4096-4146-9F71-18AD01F7AFBF} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [94496 2024-06-26] (Lenovo -> Lenovo Group Ltd.)
Task: {F53AB391-3A6C-4A88-ABA8-8D5F58D048E1} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => C:\WINDOWS\system32\sc.exe [98304 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> START ImControllerService
Task: {E23DE5E9-5312-4551-9D55-300840630E1C} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => C:\WINDOWS\System32\reg.exe [102400 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {E0854AB6-A74C-4DE8-94E9-4F1153391834} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\392d8132-4cc7-449e-b461-4e798ec3e311 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [113224 2024-06-26] (Lenovo -> Lenovo Group Ltd.)
Task: {8754B273-DABB-4EF4-A70E-1EB5641FA864} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\560ee6e7-951a-4301-8641-cef1a7a75945 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [113224 2024-06-26] (Lenovo -> Lenovo Group Ltd.)
Task: {49C6C4AD-1968-4239-8AB4-4480C7AFF212} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\59a7d169-00ba-4882-81ae-4e377a6219d6 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [113224 2024-06-26] (Lenovo -> Lenovo Group Ltd.)
Task: {551EC51A-C033-4AC7-87FB-A27C960BD072} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\8696f093-a919-4c7b-9b97-b29565a21f2f => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [113224 2024-06-26] (Lenovo -> Lenovo Group Ltd.)
Task: {3199FE45-6907-4E41-A27D-6B4F6A6F2B21} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\c7a8da4d-4960-4cb1-aa03-effe33e322b7 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [113224 2024-06-26] (Lenovo -> Lenovo Group Ltd.)
Task: {2B90EF7E-DCCE-4D1A-A918-E75FF61F9061} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => C:\WINDOWS\system32\sc.exe [98304 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> start LenovoVantageService
Task: {56CD301B-54CE-44EC-B1E0-F1F3AD9E4BC6} - System32\Tasks\Lenovo\Vantage\Schedule\BatteryGaugeAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe [30160 2024-07-16] (Lenovo -> Lenovo)
Task: {E0202A9A-CDA7-4A8D-B0DF-171CA361EC4D} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe [30160 2024-07-16] (Lenovo -> Lenovo)
Task: {506F2830-22CC-4F72-AC98-535C19F364E7} - System32\Tasks\Lenovo\Vantage\Schedule\GenericMessagingAddin => C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe [30160 2024-07-16] (Lenovo -> Lenovo)
Task: {2B4B3815-7D58-4196-ACBD-D4EA41F2C28F} - System32\Tasks\Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe [30160 2024-07-16] (Lenovo -> Lenovo)
Task: {0C4F05C8-4BFC-4674-B5DE-477AF225A71B} - System32\Tasks\Lenovo\Vantage\Schedule\IdeaNotebookAddinDailyEvent => C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe [30160 2024-07-16] (Lenovo -> Lenovo)
Task: {2EF4C925-EBBC-4233-9E31-488406244B51} - System32\Tasks\Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.MonthlyReport => C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe [30160 2024-07-16] (Lenovo -> Lenovo)
Task: {6335459D-1B47-4C5E-B175-C3ED8949E8D2} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoCompanionAppAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe [30160 2024-07-16] (Lenovo -> Lenovo)
Task: {E7E2CA35-41A5-4216-A391-12575B5E2759} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask => C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe [30160 2024-07-16] (Lenovo -> Lenovo)
Task: {210A9FD3-A82E-49DD-9245-5A5258E5BB36} - System32\Tasks\Lenovo\Vantage\Schedule\NotificationCenter => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe NotificationCenter (No File)
Task: {A4425BCA-EE1A-4F82-9B59-7EF24227D6FA} - System32\Tasks\Lenovo\Vantage\Schedule\SettingsWidgetAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe [30160 2024-07-16] (Lenovo -> Lenovo)
Task: {EF5171FE-78A8-4CE2-8BC1-AE06B56824E7} - System32\Tasks\Lenovo\Vantage\Schedule\SmartPerformance.ExpireReminder => C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe [30160 2024-07-16] (Lenovo -> Lenovo)
Task: {979E0E43-F7DB-4960-A428-192F538B2CB8} - System32\Tasks\Lenovo\Vantage\Schedule\VantageCoreAddinWeekScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe [30160 2024-07-16] (Lenovo -> Lenovo)
Task: {04217496-8C1A-4749-BDCD-08FC6A61CC32} - System32\Tasks\Lenovo\Vantage\Schedule\VantageTelemetryAddinTask => C:\Program Files (x86)\Lenovo\VantageService\3.6.15.0\ScheduleEventAction.exe VantageTelemetryAddinTask (No File)
Task: {E1176839-3119-4BF6-A4D6-ED6271D053F6} - System32\Tasks\Lenovo\Vantage\StartupFixPlan => C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\uninstall.exe [345448 2024-07-16] (Lenovo -> Lenovo)
Task: {33194DBA-94F8-4090-A66E-B1C1ADE3597D} - System32\Tasks\LenovoUtility Startup => C:\Windows\explorer.exe [5513520 2024-08-18] (Microsoft Windows -> Microsoft Corporation)
Task: {D8F8AEE6-E383-4DD5-8268-D19CC2C5D983} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28584424 2024-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {A7143789-0234-4FBB-A3B8-4B24C23F3478} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28584424 2024-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {654E9B43-C8CF-414B-AAC3-1DA97A605714} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [312288 2024-08-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {431D697D-2063-450F-876B-5F832152A30F} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [312288 2024-08-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {8D72DB8D-3CE3-4E06-BE98-582D355BA9D2} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\operfmon.exe [182240 2024-08-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {8E7891ED-E5BA-4BE3-ABE6-A58A2F9CF068} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe (No File)
Task: {A8885E7B-DC0A-4422-AE32-CE86F01B7046} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => %systemroot%\system32\MusNotification.exe /RunOnAC RebootDialog (No File)
Task: {035A7493-620F-4E0C-93B5-406B243C8984} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => %systemroot%\system32\MusNotification.exe /RunOnBattery RebootDialog (No File)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
Task: {406B25CA-552E-4FE0-BD3A-6ACA3707DE97} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1628160 2020-02-29] (Advanced Micro Devices, Inc.) [File not signed]
Task: {98E8914A-58F9-4CCF-8EA5-2996E791CFD4} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34376 2024-08-18] (Mozilla Corporation -> Mozilla Foundation)
Task: {16EA2D1D-406F-4B17-A040-18ABE3E9F94E} - System32\Tasks\Opera scheduled Autoupdate 1654970705 => C:\Users\divee\AppData\Local\Programs\Opera\launcher.exe [2515200 2022-06-07] (Opera Software AS -> Opera Software)
Task: {DBCF67FA-3355-4700-A50A-5CE55EE8B683} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [60008 2020-02-28] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {7FD11246-1F07-4EFF-A290-27B1DA2D6613} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [67688 2020-02-28] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 10.152.101.1
Tcpip\..\Interfaces\{5b67082b-7fe1-4905-808f-26375ed9c11f}: [DhcpNameServer] 10.152.101.1
Tcpip\..\Interfaces\{9f1e3243-e225-4b6d-8c61-e5e5f95c0bc5}: [DhcpNameServer] 150.203.1.3
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\divee\AppData\Local\Microsoft\Edge\User Data\Default [2024-08-18]
Edge HomePage: Default -> hxxps://go-go.tech?fr=ps&gp=496723&altserp=1
Edge StartupUrls: Default -> "hxxps://go-go.tech?fr=ps&gp=496723&altserp=1"
Edge DefaultSearchURL: Default -> hxxps://go-go.tech/search?q={searchTerms}&fr=ps&gp=496723&altserp=1
Edge DefaultSearchKeyword: Default -> go go tech search
Edge DefaultSuggestURL: Default -> hxxps://suggest.finditnowonline.com/suggestionfeed/suggestion?format=json&gd=496721&q={searchTerms}
Edge Extension: (Dokumenty Google offline) - C:\Users\divee\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-01]
Edge Extension: (Edge relevant text changes) - C:\Users\divee\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-08-18]
FireFox:
========
FF DefaultProfile: 2x870yzf.default
FF ProfilePath: C:\Users\divee\AppData\Roaming\Mozilla\Firefox\Profiles\2x870yzf.default [2023-12-20]
FF Homepage: Mozilla\Firefox\Profiles\2x870yzf.default -> hxxps://poshukach.com?fr=ps&gp=496723&altserp=1
FF NewTab: Mozilla\Firefox\Profiles\2x870yzf.default -> hxxps://poshukach.com?fr=ps&gp=496723&altserp=1
FF Extension: (Seznam doplněk - Esko) - C:\Users\divee\AppData\Roaming\Mozilla\Firefox\Profiles\2x870yzf.default\Extensions\sko-extension@firma.seznam.cz [2020-07-21]
FF Extension: (Seznam doplněk - Email) - C:\Users\divee\AppData\Roaming\Mozilla\Firefox\Profiles\2x870yzf.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2020-07-21]
FF ProfilePath: C:\Users\divee\AppData\Roaming\Mozilla\Firefox\Profiles\gs7nzp1a.default-release [2024-08-18]
FF Homepage: Mozilla\Firefox\Profiles\gs7nzp1a.default-release -> hxxps://www.google.com
FF NewTab: Mozilla\Firefox\Profiles\gs7nzp1a.default-release -> hxxps://poshukach.com?fr=ps&gp=496723&altserp=1
FF Session Restore: Mozilla\Firefox\Profiles\gs7nzp1a.default-release -> is enabled.
FF Extension: (Český slovník pro kontrolu pravopisu) - C:\Users\divee\AppData\Roaming\Mozilla\Firefox\Profiles\gs7nzp1a.default-release\Extensions\cs@dictionaries.addons.mozilla.org.xpi [2021-06-20]
FF Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\divee\AppData\Roaming\Mozilla\Firefox\Profiles\gs7nzp1a.default-release\Extensions\jid1-NIfFY2CA8fy1tg@jetpack.xpi [2024-08-18]
FF Extension: (Avast Passwords) - C:\Users\divee\AppData\Roaming\Mozilla\Firefox\Profiles\gs7nzp1a.default-release\Extensions\jid1-r1tDuNiNb4SEww@jetpack.xpi [2020-03-27] [UpdateUrl:hxxps://pamcdn.avast.com/pamcdn/extensions/firefox/update.json]
FF Extension: (Language: Čeština (Czech)) - C:\Users\divee\AppData\Roaming\Mozilla\Firefox\Profiles\gs7nzp1a.default-release\Extensions\langpack-cs@firefox.mozilla.org.xpi [2024-08-18]
FF Extension: (block-miners) - C:\Users\divee\AppData\Roaming\Mozilla\Firefox\Profiles\gs7nzp1a.default-release\Extensions\{74b0af75-8791-44e2-95a6-7f0ab94143ec}.xpi [2024-05-21]
FF SearchPlugin: C:\Users\divee\AppData\Roaming\Mozilla\Firefox\Profiles\gs7nzp1a.default-release\searchplugins\Poshukach Engin Search.xml [2022-06-11]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-04-07] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-04-07] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR Profile: C:\Users\divee\AppData\Local\Google\Chrome\User Data\Default [2024-08-18]
CHR HomePage: Default -> hxxps://go-go.tech?fr=ps&gp=496723&altserp=1
CHR StartupUrls: Default -> "hxxps://go-go.tech?fr=ps&gp=496723&altserp=1"
CHR DefaultSearchURL: Default -> hxxps://go-go.tech/search?q={searchTerms}&fr=ps&gp=496723&altserp=1
CHR DefaultSearchKeyword: Default -> go go tech search
CHR DefaultSuggestURL: Default -> hxxps://suggest.finditnowonline.com/suggestionfeed/suggestion?format=json&gd=496721&q={searchTerms}
CHR Extension: (Dokumenty Google offline) - C:\Users\divee\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-18]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\divee\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-05-20]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [9014680 2024-08-18] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [771480 2024-08-18] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [2312488 2024-08-18] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [1208216 2024-08-18] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-06-09] (Avast Software s.r.o. -> AVAST Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13995624 2024-07-31] (Microsoft Corporation -> Microsoft Corporation)
U2 DCIService; C:\Program Files (x86)\Lavasoft\Web Companion\Service\x64\DCIService.exe [3413424 2022-06-11] (Lavasoft Software Canada Inc. -> ) <==== ATTENTION
R2 DolbyDAXAPI; C:\WINDOWS\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_0222c12a396c055f\DAX3API.exe [2301912 2021-01-04] (Dolby Laboratories, Inc. -> Dolby Laboratories)
R2 FMAPOService; C:\WINDOWS\System32\FMService64.exe [334728 2020-12-20] (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [113224 2024-06-26] (Lenovo -> Lenovo Group Ltd.)
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\LenovoVantageService.exe [34664 2024-07-16] (Lenovo -> Lenovo)
S3 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpDefenderCoreService.exe [1427024 2024-08-18] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 QcomWlanSrv; C:\WINDOWS\System32\drivers\QcomWlanSrvx64.exe [189768 2023-09-17] (Qualcomm Atheros, Inc. -> )
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\NisSrv.exe [3199648 2024-08-18] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MsMpEng.exe [133704 2024-08-18] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [20536 2024-08-18] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [229944 2024-08-18] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [380984 2024-08-18] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [293944 2024-08-18] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [84536 2024-08-18] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [27744 2024-08-18] (Microsoft Windows Early Launch Anti-malware Publisher -> Gen Digital Inc.)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [28728 2024-08-18] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [271928 2024-08-18] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [549848 2024-08-18] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [97840 2024-08-18] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [69176 2024-08-18] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [948792 2024-08-18] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [1198648 2024-08-18] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [203728 2024-08-18] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [306648 2024-08-18] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R2 BdDci; C:\WINDOWS\system32\DRIVERS\bddci.sys [367096 2022-06-11] (Bitdefender SRL -> Bitdefender)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [22080 2024-08-18] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [602504 2024-08-18] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105864 2024-08-18] (Microsoft Windows -> Microsoft Corporation)
S3 ew_usbccgpfilter; \SystemRoot\System32\drivers\ew_usbccgpfilter.sys [X]
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2024-08-18 12:08 - 2024-08-18 12:09 - 000030853 _____ C:\Users\divee\OneDrive\Plocha\FRST.txt
2024-08-18 12:08 - 2024-08-18 12:08 - 000000000 ____D C:\FRST
2024-08-18 12:07 - 2024-08-18 12:07 - 002397184 _____ (Farbar) C:\Users\divee\OneDrive\Plocha\FRST64.exe
2024-08-18 11:54 - 2024-08-18 11:54 - 000727012 _____ C:\WINDOWS\system32\perfh005.dat
2024-08-18 11:54 - 2024-08-18 11:54 - 000151244 _____ C:\WINDOWS\system32\perfc005.dat
2024-08-18 11:51 - 2024-08-18 11:51 - 000001157 _____ C:\Users\divee\OneDrive\Plocha\DriverBooster – zástupce.lnk
2024-08-18 11:50 - 2024-08-18 11:50 - 000001607 _____ C:\WINDOWS\system32\config\VSMIDK
2024-08-18 11:44 - 2024-08-18 11:51 - 000003256 _____ C:\WINDOWS\system32\Tasks\Driver Booster SkipUAC (divee)
2024-08-18 11:44 - 2024-08-18 11:51 - 000003144 _____ C:\WINDOWS\system32\Tasks\Driver Booster Scheduler
2024-08-18 11:44 - 2024-08-18 11:51 - 000003130 _____ C:\WINDOWS\system32\Tasks\Driver Booster Update
2024-08-18 10:42 - 2024-08-18 10:42 - 000526048 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdtee_api.dll
2024-08-18 10:42 - 2024-08-18 10:42 - 000397536 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdtee_api.dll
2024-08-18 10:42 - 2024-08-18 10:42 - 000059208 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\Drivers\amdpsp.sys
2024-08-18 10:42 - 2024-08-18 10:42 - 000052344 _____ (Advanced Micro Devices, Inc) C:\WINDOWS\system32\Drivers\amdgpio2.sys
2024-08-18 10:41 - 2024-08-18 10:41 - 000092480 _____ (Advanced Micro Devices, Inc) C:\WINDOWS\system32\Drivers\amdi2c.sys
2024-08-18 10:34 - 2024-08-18 10:34 - 000002171 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2024-08-18 10:34 - 2024-08-18 10:34 - 000000000 ____D C:\WINDOWS\system32\o2
2024-08-18 10:34 - 2024-08-18 08:52 - 000314776 _____ (Gen Digital Inc.) C:\WINDOWS\system32\aswBoot.exe
2024-08-18 10:27 - 2024-08-18 10:48 - 000000000 ____D C:\Program Files\Mozilla Firefox
2024-08-18 10:27 - 2024-08-18 10:27 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2024-08-18 09:38 - 2024-08-18 09:38 - 000025684 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-08-18 09:37 - 2024-08-18 09:37 - 000025684 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-08-18 09:28 - 2024-08-18 09:28 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2024-08-18 12:07 - 2020-03-27 19:07 - 000000000 ____D C:\Users\divee\AppData\Local\AVAST Software
2024-08-18 12:06 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-08-18 11:57 - 2020-03-28 09:17 - 000000000 ___RD C:\Users\divee\OneDrive
2024-08-18 11:55 - 2022-06-12 09:02 - 000000000 ___HD C:\Users\divee\Downloads\.opera
2024-08-18 11:55 - 2022-06-12 09:02 - 000000000 ___HD C:\Users\divee\.opera
2024-08-18 11:54 - 2023-04-26 20:25 - 001718028 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-08-18 11:54 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF
2024-08-18 11:53 - 2022-06-11 19:58 - 000000000 ____D C:\Users\divee\AppData\Roaming\vlc
2024-08-18 11:50 - 2023-04-24 20:57 - 000003296 _____ C:\WINDOWS\system32\Tasks\AMDInstallLauncher
2024-08-18 11:50 - 2023-04-24 20:57 - 000003112 _____ C:\WINDOWS\system32\Tasks\AMDLinkUpdate
2024-08-18 11:50 - 2023-04-24 20:57 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-08-18 11:50 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ServiceState
2024-08-18 11:50 - 2022-05-07 07:17 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2024-08-18 11:50 - 2021-02-07 23:00 - 000012288 ___SH C:\DumpStack.log.tmp
2024-08-18 11:50 - 2020-03-28 09:29 - 000000000 ____D C:\ProgramData\AVAST Software
2024-08-18 11:40 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-08-18 11:10 - 2023-04-24 20:50 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-08-18 10:58 - 2020-05-31 21:41 - 000000000 ____D C:\Users\divee\AppData\Local\CrashDumps
2024-08-18 10:57 - 2020-03-27 20:13 - 000000000 ____D C:\Users\divee\AppData\Roaming\IObit
2024-08-18 10:57 - 2020-03-27 20:13 - 000000000 ____D C:\ProgramData\IObit
2024-08-18 10:48 - 2020-03-28 09:26 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2024-08-18 10:44 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-08-18 10:44 - 2019-12-07 06:28 - 000000000 ____D C:\ProgramData\Package Cache
2024-08-18 10:34 - 2023-04-24 20:57 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2024-08-18 10:34 - 2022-05-07 07:24 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2024-08-18 10:34 - 2020-04-20 22:08 - 000549848 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2024-08-18 10:34 - 2020-03-27 17:30 - 000306648 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswVmm.sys
2024-08-18 10:33 - 2020-03-28 09:15 - 000000000 ____D C:\Users\divee\AppData\Local\D3DSCache
2024-08-18 10:27 - 2020-03-28 09:26 - 000001016 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-08-18 10:05 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-08-18 10:02 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate
2024-08-18 09:46 - 2023-04-24 20:50 - 000632544 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-08-18 09:45 - 2023-12-20 20:44 - 000000000 ____D C:\WINDOWS\InboxApps
2024-08-18 09:45 - 2023-10-18 22:16 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2024-08-18 09:45 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-08-18 09:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\UUS
2024-08-18 09:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2024-08-18 09:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemResources
2024-08-18 09:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2024-08-18 09:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2024-08-18 09:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\setup
2024-08-18 09:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2024-08-18 09:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-08-18 09:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-08-18 09:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2024-08-18 09:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\Provisioning
2024-08-18 09:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2024-08-18 09:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-08-18 09:45 - 2020-03-27 18:35 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-08-18 09:44 - 2020-03-27 18:35 - 197093640 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-08-18 09:38 - 2023-04-24 20:55 - 003212800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-08-18 09:27 - 2019-12-07 06:14 - 000000000 ____D C:\Program Files\Microsoft Office
2024-08-18 09:24 - 2022-05-07 07:17 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2024-08-18 09:24 - 2019-04-19 07:00 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2024-08-18 09:22 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps
2024-08-18 09:22 - 2020-06-22 15:46 - 000918944 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2024-08-18 08:56 - 2020-06-18 17:11 - 000002447 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-08-18 08:52 - 2022-10-21 15:32 - 000027744 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswElam.sys
2024-08-18 08:52 - 2020-10-21 19:51 - 000271928 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2024-08-18 08:52 - 2020-03-27 17:30 - 001198648 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswSP.sys
2024-08-18 08:52 - 2020-03-27 17:30 - 000948792 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswSnx.sys
2024-08-18 08:52 - 2020-03-27 17:30 - 000380984 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2024-08-18 08:52 - 2020-03-27 17:30 - 000293944 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2024-08-18 08:52 - 2020-03-27 17:30 - 000229944 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswArPot.sys
2024-08-18 08:52 - 2020-03-27 17:30 - 000203728 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\asw84e3e7894811703a.tmp
2024-08-18 08:52 - 2020-03-27 17:30 - 000097840 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2024-08-18 08:52 - 2020-03-27 17:30 - 000084536 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2024-08-18 08:52 - 2020-03-27 17:30 - 000069176 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2024-08-18 08:52 - 2020-03-27 17:30 - 000028728 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswKbd.sys
2024-08-18 08:52 - 2020-03-27 17:30 - 000020536 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2024-08-18 08:51 - 2021-01-16 22:00 - 000002258 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-08-18 08:50 - 2023-04-24 20:57 - 000003640 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-08-18 08:50 - 2023-04-24 20:57 - 000003516 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-08-18 08:49 - 2023-04-24 20:57 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-450335177-2361977270-321031083-1001
2024-08-18 08:49 - 2023-04-24 20:57 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-450335177-2361977270-321031083-1001
2024-08-18 08:49 - 2021-02-07 23:01 - 000002388 _____ C:\Users\divee\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-07-24 17:30 - 2020-03-28 09:21 - 000000000 ____D C:\ProgramData\Packages
2024-07-24 17:30 - 2020-03-28 09:15 - 000000000 ____D C:\Users\divee\AppData\Local\Packages
==================== FCheck ================================
(If an entry is included in the fixlist, the file/folder will be moved.)
FCheck: C:\WINDOWS\SysWOW64\version_IObitDel.dll [2022-06-12] <==== ATTENTION (zero byte File/Folder)
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12-08.2024
Ran by divee (18-08-2024 12:09:55)
Running from C:\Users\divee\OneDrive\Plocha
Microsoft Windows 11 Home Version 23H2 22631.3880 (X64) (2023-04-26 18:18:02)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-450335177-2361977270-321031083-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-450335177-2361977270-321031083-503 - Limited - Disabled)
divee (S-1-5-21-450335177-2361977270-321031083-1001 - Administrator - Enabled) => C:\Users\divee
Guest (S-1-5-21-450335177-2361977270-321031083-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-450335177-2361977270-321031083-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
FW: Avast Antivirus (Enabled) {D322394B-73F7-C65E-BBB0-3B81E063D6D4}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 20.2.2 - Advanced Micro Devices, Inc.)
AnyTrans (HKLM-x32\...\AnyTrans) (Version: 8.4.0.0 - ${PROGRAM_PUBLISHER})
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 24.7.6124 - Avast Software)
BitTorrent (HKU\S-1-5-21-450335177-2361977270-321031083-1001\...\BitTorrent) (Version: 7.10.5.46211 - BitTorrent Inc.)
Branding64 (HKLM\...\{856DA29A-EA4A-468B-BBC2-B5F60DD75BFE}) (Version: 1.00.0002 - Advanced Micro Devices, Inc.) Hidden
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Fotogalerie (HKLM-x32\...\{F37D360D-9308-4BB1-8515-DC6B637B9486}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 127.0.6533.120 - Google LLC)
Junk Mail filter update (HKLM-x32\...\{0BE9E708-5DC0-4963-9CFD-0AA519090E79}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Kontrola stavu osobního počítače s Windows (HKLM\...\{D1F15F7A-707A-42BD-BE6B-3380616F796D}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Lenovo Vantage Service (HKLM-x32\...\VantageSRV_is1) (Version: 4.1.22.0 - Lenovo Group Ltd.)
LibreOffice 6.4.0.3 (HKLM\...\{5DE38E8F-2A6F-44E7-9D24-0C6D056597D6}) (Version: 6.4.0.3 - The Document Foundation)
Microsoft 365 - cs-cz (HKLM\...\O365HomePremRetail - cs-cz) (Version: 16.0.17830.20138 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 127.0.2651.105 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 127.0.2651.105 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-450335177-2361977270-321031083-1001\...\OneDriveSetup.exe) (Version: 24.151.0728.0003 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{C6FD611E-7EFE-488C-A0E0-974C09EF6473}) (Version: 5.72.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.40.33810 (HKLM-x32\...\{5af95fd8-a22e-458f-acee-c61bd787178e}) (Version: 14.40.33810.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.40.33810 (HKLM-x32\...\{47109d57-d746-4f8b-9618-ed6a17cc922b}) (Version: 14.40.33810.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.40.33810 (HKLM\...\{59CED48F-EBFE-480C-8A38-FC079C2BEC0F}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.40.33810 (HKLM\...\{B8B3BB4A-A10D-4F51-91B7-A64FFAC31EA7}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.40.33810 (HKLM-x32\...\{5EA6C998-D5AC-4ED9-89C3-9F25B17CCD3D}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.40.33810 (HKLM-x32\...\{0C3457A0-3DCE-4A33-BEF0-9B528C557771}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{3D2CF65C-B544-4308-B996-700D3E5F6C4C}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox (x64 en-US) (HKLM\...\Mozilla Firefox 129.0.1 (x64 en-US)) (Version: 129.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 74.0 - Mozilla)
MSVCRT (HKLM-x32\...\{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}) (Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (HKLM-x32\...\{D0B44725-3666-492D-BEF6-587A14BD9BD9}) (Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (HKLM-x32\...\{8E14DDC8-EA60-4E18-B3E3-1937104D5BDA}) (Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (HKLM\...\{E9FA781F-3E80-4399-825A-AD3E11C28C77}) (Version: 16.4.1109.0912 - Microsoft) Hidden
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.17830.20138 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.17830.20138 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-1000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Photo Common (HKLM-x32\...\{15BFD731-A10E-43E9-9D18-0F682BC0480F}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Photo Gallery (HKLM-x32\...\{07AAB66E-4718-422D-9218-4AFB3C922A71}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Planet Coaster (HKLM-x32\...\Planet Coaster_is1) (Version: - )
The Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.0.631 - Electronic Arts)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.20 - VideoLAN)
Web Companion (HKLM-x32\...\{6101ce4c-c072-49bb-9561-6fb325dcb329}) (Version: 8.9.0.371 - Lavasoft) <==== ATTENTION
Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc)
Windows Live Communications Platform (HKLM-x32\...\{41C61308-6CFD-4D54-AB6A-7136ED08A18E}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\{9A470EA9-FF86-4C0E-992C-572BF2B9D6FF}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows Live Installer (HKLM-x32\...\{659CB81C-B54E-4DF1-B618-F35777393A54}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Mail (HKLM-x32\...\{3EE8FA69-F2A5-4BDB-9E23-3ABB2421B4FA}) (Version: 16.4.3528.0331 - společnost Microsoft Corporation) Hidden
Windows Live Mail (HKLM-x32\...\{B775C26B-EAA8-4A11-ACBF-76E52DF6B805}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Messenger (HKLM-x32\...\{88B9357F-0845-465F-96B9-50976FB9C6C2}) (Version: 16.4.3528.0331 - společnost Microsoft Corporation) Hidden
Windows Live Messenger (HKLM-x32\...\{E703613B-BDAB-433E-A66A-DE0263E3D35D}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (HKLM\...\{25058321-C33E-496B-8915-6FD64D362CAF}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Photo Common (HKLM-x32\...\{1D6432B4-E24D-405E-A4AB-D7E6D088CBC9}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (HKLM-x32\...\{B2611F8A-EFE7-4E88-875D-19F0EFAE87E4}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live SOXE (HKLM-x32\...\{CDC1AB00-01FF-4FC7-816A-16C67F0923C0}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (HKLM-x32\...\{D1893000-EA77-493C-8DDD-E262436E959B}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live UX Platform (HKLM-x32\...\{00F9DB8C-65D7-4D47-AB5F-F698EE38580D}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (HKLM-x32\...\{E100E2B5-F2EF-4955-AB7A-C3F2125A3BCD}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Writer (HKLM-x32\...\{04BE4035-3C8E-4B48-BFB8-1655849C0C8B}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Writer (HKLM-x32\...\{124A05DC-3C47-4EEF-85CE-56D6C1CAE62B}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Writer (HKLM-x32\...\{714E162E-CD4F-4F1B-8302-7F5179409C25}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Writer Resources (HKLM-x32\...\{E5807449-CA84-42F6-9CE3-A0E2BDA9E24B}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
WinRAR 6.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.00.0 - win.rar GmbH)
Packages:
=========
AMD Radeon Software -> C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.20.10028.0_x64__0a9344xs7nr4m [2021-06-18] (Advanced Micro Devices Inc.) [Startup Task]
Dolby Audio -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAudio_3.20900.902.0_x64__rz1tebttyb220 [2021-04-25] (Dolby Laboratories)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-10-04] (Microsoft Corporation)
Fotografie -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2024.11070.19012.0_x64__8wekyb3d8bbwe [2024-07-24] (Microsoft Corporation) [Startup Task]
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12132.3.2017.0_x64__nzyj5cx40ttqa [2024-05-26] (Apple Inc.) [Startup Task]
Lenovo Companion -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2406.36.0_x64__k1h2ywk1493x8 [2024-08-18] (LENOVO INC.)
Lenovo Hotkeys -> C:\Program Files\WindowsApps\E0469640.LenovoUtility_4.6.12.0_x64__5grkq8ppsgwt4 [2024-05-26] (LENOVO INC) [Startup Task]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2022-06-11] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2022-06-11] (Microsoft Corporation) [MS Ad]
Microsoft Defender -> C:\Program Files\WindowsApps\Microsoft.6365217CE6EB4_102.2406.5002.0_x64__8wekyb3d8bbwe [2024-07-24] (Microsoft Corporation) [Startup Task]
Microsoft Family -> C:\Program Files\WindowsApps\MicrosoftCorporationII.MicrosoftFamily_0.2.40.0_x64__8wekyb3d8bbwe [2023-09-17] (Microsoft Corp.)
Microsoft.BingSearch -> C:\Program Files\WindowsApps\Microsoft.BingSearch_1.0.95.0_x64__8wekyb3d8bbwe [2024-07-24] (Microsoft Corporation)
Microsoft.MPEG2VideoExtension -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.61931.0_x64__8wekyb3d8bbwe [2023-08-30] (Microsoft Corporation)
MicrosoftWindows.CrossDevice -> C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.24072.45.0_x64__cw5n1h2txyewy [2024-08-18] (Microsoft Windows) [Startup Task]
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.20.238.0_x64__dt26b99r8h8gj [2023-09-13] (Realtek Semiconductor Corp)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0 [2024-07-24] (Spotify AB) [Startup Task]
WinAppRuntime.Main.1.5 -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Main.1.5_5001.178.1908.0_x64__8wekyb3d8bbwe [2024-07-24] (Microsoft Corp.)
WinAppRuntime.Singleton -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Singleton_5001.178.1908.0_x64__8wekyb3d8bbwe [2024-07-24] (Microsoft Corp.)
Windows Feature Experience Pack -> C:\WINDOWS\SystemApps\MicrosoftWindows.Client.LKG_cw5n1h2txyewy [2024-08-18] (Microsoft Windows)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2024-08-18] (Avast Software s.r.o. -> Gen Digital Inc.)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2024-08-18] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2024-08-18] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2024-08-18] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2020-02-28] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2024-08-18] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [vidc.VP60] => C:\Windows\SysWOW64\vp6vfw.dll [447752 2008-09-04] (Electronic Arts -> On2.com)
HKLM\...\Drivers32: [vidc.VP61] => C:\Windows\SysWOW64\vp6vfw.dll [447752 2008-09-04] (Electronic Arts -> On2.com)
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2023-07-14 17:22 - 2017-09-04 05:52 - 000089600 _____ () [File not signed] C:\Program Files (x86)\iMobie\AnyTrans\zlib1.dll
2019-07-18 11:16 - 2019-07-18 11:16 - 000017920 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libEGL.dll
2019-07-18 11:16 - 2019-07-18 11:16 - 003567616 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2023-07-14 17:22 - 2021-06-07 08:33 - 001353216 _____ (Robert Simpson, et al.) [File not signed] [File is in use] C:\Program Files (x86)\iMobie\AnyTrans\System.Data.SQLite.dll
2019-07-18 11:17 - 2019-07-18 11:17 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qgif.dll
2019-07-18 11:17 - 2019-07-18 11:17 - 000039424 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qicns.dll
2019-07-18 11:17 - 2019-07-18 11:17 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qico.dll
2019-07-18 11:17 - 2019-07-18 11:17 - 000413696 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qjpeg.dll
2019-07-18 11:17 - 2019-07-18 11:17 - 000025088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qsvg.dll
2019-07-18 11:17 - 2019-07-18 11:17 - 000025088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qtga.dll
2019-07-18 11:17 - 2019-07-18 11:17 - 000023552 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwbmp.dll
2019-07-18 11:17 - 2019-07-18 11:17 - 000519168 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwebp.dll
2019-07-18 11:17 - 2019-07-18 11:17 - 001431040 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\platforms\qwindows.dll
2019-07-18 11:17 - 2019-07-18 11:17 - 001180672 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\sqldrivers\qsqlite.dll
2019-07-18 11:17 - 2019-07-18 11:17 - 000135680 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\styles\qwindowsvistastyle.dll
2020-02-28 19:30 - 2020-02-28 19:30 - 006010880 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
2019-07-18 11:16 - 2019-07-18 11:16 - 006345216 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
2019-07-18 11:16 - 2019-07-18 11:16 - 001078272 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
2019-07-18 11:16 - 2019-07-18 11:16 - 000313856 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll
2019-07-18 11:16 - 2019-07-18 11:16 - 004000256 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
2019-07-18 11:16 - 2019-07-18 11:16 - 003802624 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
2019-07-18 11:16 - 2019-07-18 11:16 - 000171008 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QuickControls2.dll
2019-07-18 11:16 - 2019-07-18 11:16 - 001083904 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QuickTemplates2.dll
2019-07-18 11:16 - 2019-07-18 11:16 - 000205312 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Sql.dll
2019-07-18 11:16 - 2019-07-18 11:16 - 000329728 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll
2019-07-18 11:16 - 2019-07-18 11:16 - 000376320 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll
2019-07-18 11:16 - 2019-07-18 11:16 - 092323328 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll
2019-07-18 11:16 - 2019-07-18 11:16 - 000113152 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll
2019-07-18 11:16 - 2019-07-18 11:16 - 005560832 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
2019-07-18 11:16 - 2019-07-18 11:16 - 000463360 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
2019-07-18 11:16 - 2019-07-18 11:16 - 000188416 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll
2019-07-18 11:16 - 2019-07-18 11:16 - 002888704 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll
2019-07-18 11:17 - 2019-07-18 11:17 - 000053760 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
2019-07-18 11:17 - 2019-07-18 11:17 - 000059392 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
2019-07-18 11:17 - 2019-07-18 11:17 - 000017408 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2019-07-18 11:17 - 2019-07-18 11:17 - 000287232 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls.2\qtquickcontrols2plugin.dll
2019-07-18 11:17 - 2019-07-18 11:17 - 000329216 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2019-07-18 11:17 - 2019-07-18 11:17 - 000136192 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll
2019-07-18 11:17 - 2019-07-18 11:17 - 000089088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2019-07-18 11:17 - 2019-07-18 11:17 - 000312320 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Templates.2\qtquicktemplates2plugin.dll
2019-07-18 11:17 - 2019-07-18 11:17 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2020-02-28 19:30 - 2020-02-28 19:30 - 000085504 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtWebEngine\qtwebengineplugin.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
HKU\S-1-5-21-450335177-2361977270-321031083-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo17win10.msn.com/?pc=LCTE
HKU\S-1-5-21-450335177-2361977270-321031083-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo17win10.msn.com/?pc=LCTE
HKU\S-1-5-21-450335177-2361977270-321031083-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com/
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2024-04-07] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-08-18] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-08-18] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-08-18] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-08-18] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-08-18] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-08-18] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-08-18] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-08-18] (Microsoft Corporation -> Microsoft Corporation)
Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll [2022-05-07] (Lenovo -> Microsoft Corporation)
Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll [2022-05-07] (Lenovo -> Microsoft Corporation)
Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll [2022-05-07] (Lenovo -> Microsoft Corporation)
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
IE trusted site: HKU\.DEFAULT\...\webcompanion.com -> hxxp://webcompanion.com
IE trusted site: HKU\S-1-5-21-450335177-2361977270-321031083-1001\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-450335177-2361977270-321031083-1001\...\webcompanion.com -> hxxp://webcompanion.com
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-03-19 06:49 - 2019-03-19 06:49 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-450335177-2361977270-321031083-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\divee\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\3CD8Flu-pc-wallpaper-love.jpg
DNS Servers: 10.152.101.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
Network Binding:
=============
Wi-Fi: Qualcomm Atheros QCA9377 Wireless Network Adapter -> Qcamain10x64.sys
Síťové připojení Bluetooth: Bluetooth Device (Personal Area Network) -> bthpan.sys
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run32: => "seznam-listicka-distribuce"
HKU\S-1-5-21-450335177-2361977270-321031083-1001\...\StartupApproved\Run: => "cz.seznam.software.autoupdate"
HKU\S-1-5-21-450335177-2361977270-321031083-1001\...\StartupApproved\Run: => "cz.seznam.software.szndesktop"
HKU\S-1-5-21-450335177-2361977270-321031083-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_87336ED17E3B5BCF7536925A44E78558"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{313DF260-1340-4060-A801-65611732F09E}] => (Allow) C:\Users\divee\AppData\Local\Programs\Opera\88.0.4412.27\opera.exe => No File
FirewallRules: [{1772C4F5-C988-4A8A-85B8-07FC0F508370}] => (Allow) C:\Users\divee\AppData\Roaming\BitTorrent\BitTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{3BE2FB78-A6EE-4C33-9E1D-8E86EE77C3E8}] => (Allow) C:\Users\divee\AppData\Roaming\BitTorrent\BitTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{F22A821C-4E1F-4968-9EAF-676016DE7FD3}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_22082.402.1279.2578_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{690DD415-2AE5-4F99-A82C-B51C9C982661}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_22082.402.1279.2578_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{69FA3A1B-BF0A-4151-A8F1-EC78CA039508}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [{0933CFD0-1B3F-4846-9214-60FD19BD8956}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [{72F53117-F954-4CB1-9C77-3CD105A143F8}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{12F166A0-CD14-427E-8665-51C61046FCAC}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{2E21E5E0-F5BB-4F9A-8A0E-5643B5FFA5BE}] => (Allow) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHost.exe => No File
FirewallRules: [{9553D52C-F909-4A97-A4C3-F82922233AEA}] => (Allow) C:\Program Files (x86)\Common Files\Mcafee\MMSSHost\MMSSHost.exe => No File
FirewallRules: [{FB0D34DF-8828-4FB6-B2A3-7F6C4702EE96}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{49378DE4-CC70-47D9-BB41-F33A4191029B}] => (Allow) LPort=2869
FirewallRules: [{D0895ED3-5945-4DD2-83C7-B0802D416692}] => (Allow) LPort=1900
FirewallRules: [{B01EF028-4887-47E5-B010-F5B8AA5170A6}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{969FA5EE-E854-463B-8B20-3319EDEE9391}] => (Allow) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{32D72274-A4CA-45C0-8BD7-37C52BB43F16}] => (Allow) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{472A6B2D-99DF-4404-BC08-4B8EB5A79892}] => (Allow) C:\Program Files (x86)\iMobie\AnyTrans\xldownload\download\MiniThunderPlatform.exe (ShenZhen Thunder Networking Technologies Ltd. -> 深圳市迅雷网络技术有限公司)
FirewallRules: [{6E46B6BE-FFF6-4CA8-9681-9DED416FFD12}] => (Allow) C:\Program Files (x86)\iMobie\AnyTrans\xldownload\download\MiniThunderPlatform.exe (ShenZhen Thunder Networking Technologies Ltd. -> 深圳市迅雷网络技术有限公司)
FirewallRules: [TCP Query User{69868C52-2644-438F-828E-D97257D56CBA}C:\program files (x86)\imobie\anytrans\anytrans.exe] => (Allow) C:\program files (x86)\imobie\anytrans\anytrans.exe (iMobie Inc. -> iMobie Inc.)
FirewallRules: [UDP Query User{ACC10BB8-9E91-4030-B8CB-205AD7F9CF8B}C:\program files (x86)\imobie\anytrans\anytrans.exe] => (Allow) C:\program files (x86)\imobie\anytrans\anytrans.exe (iMobie Inc. -> iMobie Inc.)
FirewallRules: [{1D3150EB-B975-415C-913F-8C5D2C3D8A9B}] => (Allow) C:\Program Files (x86)\iMobie\AnyTrans\AnyTrans.exe (iMobie Inc. -> iMobie Inc.)
FirewallRules: [{C91476D3-4EFF-4CED-8475-F4E2B71A7CDD}] => (Allow) C:\Program Files (x86)\iMobie\AnyTrans\AnyTrans.exe (iMobie Inc. -> iMobie Inc.)
FirewallRules: [TCP Query User{DEB31D4B-1B29-4FE3-A99A-44940A188F6D}C:\program files (x86)\imobie\anytrans\airbackuphelper.exe] => (Allow) C:\program files (x86)\imobie\anytrans\airbackuphelper.exe (iMobie Inc. -> iMobie Inc.)
FirewallRules: [UDP Query User{BC2D236A-9BE8-45C7-9871-88685FDDFE73}C:\program files (x86)\imobie\anytrans\airbackuphelper.exe] => (Allow) C:\program files (x86)\imobie\anytrans\airbackuphelper.exe (iMobie Inc. -> iMobie Inc.)
FirewallRules: [{EBDD4821-9F18-4150-8D8E-8182A9294B18}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12132.3.2017.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{B657EAB2-BFAD-4109-B6BE-DCF9BB7D726B}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12132.3.2017.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{EA86C323-34F4-4425-8475-1CE6DA7B8DBC}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12132.3.2017.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{B62B23CD-48AB-48A0-8F42-CB7D92937D0D}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12132.3.2017.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{ABE7BB1D-909A-4DC1-8DE1-BDD75AD10E3C}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12132.3.2017.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{53654E5E-2EFC-49E3-B5A7-AB4B3B3C4F57}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12132.3.2017.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{F1F63E09-A679-4CDF-B5E3-B32AE4B9A03E}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12132.3.2017.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{7C512AEE-7C3A-4637-B2D3-730BCE0695C2}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12132.3.2017.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{09B2D058-C990-45FA-A07E-B9B405A8915C}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{032C3C82-79FC-4B04-91D3-EDAF8FA666B7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.123.3203.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{01DB9A12-A720-437E-B4EC-4418A12F433C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.123.3203.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F96A8AF2-0373-4CCF-940B-4DFB04D8E899}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.123.3203.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{77CB4338-CFB7-40EB-90D2-2CD6FBFAAC30}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.123.3203.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{07F2F286-1B6F-4F70-8A84-4BC676F33C06}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{19FF6105-471F-4DAC-B6E4-156E951EA7DC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{DB14531B-95A2-4CDA-9CEC-05766C3DB497}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{B4E54EE2-2F29-4D2F-BEA1-6C389C45E08D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{86A0DA5A-C30B-4348-A1FF-A08690B4FDAE}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{C75A8554-0DA7-46F3-8FA1-87D852080405}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{41C9A07A-2031-4993-BBD8-03C308B5FA31}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{4186ECCC-32B5-4837-83EA-754EEB39CE99}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{58D5956D-9293-478A-8C8E-947B641CB121}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{3BC55EEC-90A7-4B4C-BC75-5786E8E94EB3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{7A23EE5A-134B-42E0-B97E-7AD36C327157}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{DD0E7137-239A-447B-AAB5-86BE967FCDEA}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\127.0.2651.105\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
==================== Restore Points =========================
18-08-2024 10:41:24 Driver Booster : AMD High Definition Audio Device
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (08/18/2024 11:51:01 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: WebCompanion.exe, verze: 8.9.0.371, časové razítko: 0x618bad9f
Název chybujícího modulu: KERNELBASE.dll, verze: 6.2.22621.3880, časové razítko: 0xee1eae1c
Kód výjimky: 0xe0434f4d
Posun chyby: 0x0014a782
ID chybujícího procesu: 0x%9
Čas spuštění chybující aplikace: 0xWebCompanion.exe0
Cesta k chybující aplikaci: WebCompanion.exe1
Cesta k chybujícímu modulu: WebCompanion.exe2
ID zprávy: WebCompanion.exe3
Úplný název chybujícího balíčku: WebCompanion.exe4
ID aplikace související s chybujícím balíčkem: WebCompanion.exe5
Error: (08/18/2024 11:42:02 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: WebCompanion.exe, verze: 8.9.0.371, časové razítko: 0x618bad9f
Název chybujícího modulu: KERNELBASE.dll, verze: 6.2.22621.3880, časové razítko: 0xee1eae1c
Kód výjimky: 0xe0434f4d
Posun chyby: 0x0014a782
ID chybujícího procesu: 0x%9
Čas spuštění chybující aplikace: 0xWebCompanion.exe0
Cesta k chybující aplikaci: WebCompanion.exe1
Cesta k chybujícímu modulu: WebCompanion.exe2
ID zprávy: WebCompanion.exe3
Úplný název chybujícího balíčku: WebCompanion.exe4
ID aplikace související s chybujícím balíčkem: WebCompanion.exe5
Error: (08/18/2024 11:22:17 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: WebCompanion.exe, verze: 8.9.0.371, časové razítko: 0x618bad9f
Název chybujícího modulu: KERNELBASE.dll, verze: 6.2.22621.3880, časové razítko: 0xee1eae1c
Kód výjimky: 0xe0434f4d
Posun chyby: 0x0014a782
ID chybujícího procesu: 0x%9
Čas spuštění chybující aplikace: 0xWebCompanion.exe0
Cesta k chybující aplikaci: WebCompanion.exe1
Cesta k chybujícímu modulu: WebCompanion.exe2
ID zprávy: WebCompanion.exe3
Úplný název chybujícího balíčku: WebCompanion.exe4
ID aplikace související s chybujícím balíčkem: WebCompanion.exe5
Error: (08/18/2024 11:10:51 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: WebCompanion.exe, verze: 8.9.0.371, časové razítko: 0x618bad9f
Název chybujícího modulu: KERNELBASE.dll, verze: 6.2.22621.3880, časové razítko: 0xee1eae1c
Kód výjimky: 0xe0434f4d
Posun chyby: 0x0014a782
ID chybujícího procesu: 0x%9
Čas spuštění chybující aplikace: 0xWebCompanion.exe0
Cesta k chybující aplikaci: WebCompanion.exe1
Cesta k chybujícímu modulu: WebCompanion.exe2
ID zprávy: WebCompanion.exe3
Úplný název chybujícího balíčku: WebCompanion.exe4
ID aplikace související s chybujícím balíčkem: WebCompanion.exe5
Error: (08/18/2024 10:58:23 AM) (Source: Application Error) (EventID: 1000) (User: LAPTOP-4NE9KT28)
Description: Název chybující aplikace: DriverBooster.exe, verze: 9.4.0.233, časové razítko: 0x62908b5f
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x00ed3d90
ID chybujícího procesu: 0x0x9ac
Čas spuštění chybující aplikace: 0x0x1daf14cc68bbefa
Cesta k chybující aplikaci: D:\Programy\IObit Driver Booster Pro v9.4.0.233 Multilingual Portable [FTUApps]\App\ProgramFiles\DriverBooster.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: 38f63824-c79e-440c-b5db-6c65b6306e97
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (08/18/2024 10:57:43 AM) (Source: Application Error) (EventID: 1000) (User: LAPTOP-4NE9KT28)
Description: Název chybující aplikace: Loader-IDB.exe, verze: 0.0.0.0, časové razítko: 0x5d5410c1
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x007c42a8
ID chybujícího procesu: 0x0x3408
Čas spuštění chybující aplikace: 0x0x1daf14caf8b3516
Cesta k chybující aplikaci: D:\Programy\IObit Driver Booster Pro v9.4.0.233 Multilingual Portable [FTUApps]\App\ProgramFiles\Loader-IDB.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: 87124f98-a7e2-4e53-a228-aacbd751ac5b
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (08/18/2024 10:57:22 AM) (Source: Application Error) (EventID: 1000) (User: LAPTOP-4NE9KT28)
Description: Název chybující aplikace: Loader-IDB.exe, verze: 0.0.0.0, časové razítko: 0x5d5410c1
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x008c73b8
ID chybujícího procesu: 0x0x2bf4
Čas spuštění chybující aplikace: 0x0x1daf14ca2e69441
Cesta k chybující aplikaci: D:\Programy\IObit Driver Booster Pro v9.4.0.233 Multilingual Portable [FTUApps]\App\ProgramFiles\Loader-IDB.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: 04529733-75ae-4145-8210-47b1a0c14100
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (08/18/2024 10:56:57 AM) (Source: Application Error) (EventID: 1000) (User: LAPTOP-4NE9KT28)
Description: Název chybující aplikace: Loader-IDB.exe, verze: 0.0.0.0, časové razítko: 0x5d5410c1
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x006b8790
ID chybujícího procesu: 0x0x3134
Čas spuštění chybující aplikace: 0x0x1daf14c93e1353a
Cesta k chybující aplikaci: D:\Programy\IObit Driver Booster Pro v9.4.0.233 Multilingual Portable [FTUApps]\App\ProgramFiles\Loader-IDB.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: 6b0a61e7-d336-42c9-a40d-42e795771328
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
System errors:
=============
Error: (08/18/2024 11:52:32 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba Aktualizace Google (gupdate) neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (08/18/2024 11:52:32 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Služba Aktualizace Google (gupdate) bylo dosaženo časového limitu (30000 ms).
Error: (08/18/2024 11:50:26 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba HvHost byla ukončena s následující chybou:
Systém nemůže nalézt uvedený soubor.
Error: (08/18/2024 11:43:48 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba Aktualizace Google (gupdate) neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (08/18/2024 11:43:48 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Služba Aktualizace Google (gupdate) bylo dosaženo časového limitu (30000 ms).
Error: (08/18/2024 11:23:58 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba Aktualizace Google (gupdate) neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (08/18/2024 11:23:58 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Služba Aktualizace Google (gupdate) bylo dosaženo časového limitu (30000 ms).
Error: (08/18/2024 11:12:32 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba Aktualizace Google (gupdate) neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Windows Defender:
================
Date: 2024-08-18 10:25:12
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {7604611C-2D71-434F-9F84-65D247057C23}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2024-08-18 10:02:37
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {B3607A56-F255-4686-A1A3-167FC6538644}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2024-08-18 09:44:09
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {256323E0-D68C-4129-8D8D-43748E98DC49}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Event[0]
Date: 2024-08-18 09:23:44
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.343.1653.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.18300.4
Kód chyby: 0x80240016
Popis chyby: Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.
CodeIntegrity:
===============
Date: 2024-08-18 12:00:51
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SecurityHealthService.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
Date: 2024-08-18 11:53:02
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
Date: 2024-08-18 11:51:45
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: LENOVO BUCN22WW 10/31/2019
Motherboard: LENOVO LNVNB161216
Processor: AMD Ryzen 5 3500U with Radeon Vega Mobile Gfx
Percentage of memory in use: 82%
Total physical RAM: 6020.26 MB
Available physical RAM: 1050.1 MB
Total Virtual: 12164.26 MB
Available Virtual: 4848.2 MB
==================== Drives ================================
Drive c: (Windows-SSD) (Fixed) (Total:118 GB) (Free:54.13 GB) (Model: SAMSUNG MZALQ128HBHQ-000L2) NTFS
Drive d: (Data) (Fixed) (Total:931.5 GB) (Free:818.7 GB) (Model: ST1000LM035-1RK172) NTFS
\\?\Volume{884a0ca6-398e-4c45-a913-129cfd2e6094}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.24 GB) NTFS
\\?\Volume{1b6608af-4621-4f76-88b0-bdbe40ac0f69}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: C1F835FC)
Partition: GPT.
==========================================================
Disk: 1 (Size: 119.2 GB) (Disk ID: 3AF4C4C7)
Partition: GPT.
==================== End of Addition.txt =======================
