Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
najednou nelze mazat, omezení přístupu v adr.
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
najednou nelze mazat, omezení přístupu v adr.
Dobrý den,
najednou nejde mazat to co vždycky šlo, zkoušel jsem změnit atributy, ale pořád stejně, vkládám log:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-11-2020
Ran by uživatel (30-11-2020 09:36:05)
Running from C:\new
Windows 7 Professional Service Pack 1 (X64) (2018-01-05 10:04:13)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-2849485344-80999641-4290860500-500 - Administrator - Disabled)
Guest (S-1-5-21-2849485344-80999641-4290860500-501 - Limited - Disabled)
uživatel (S-1-5-21-2849485344-80999641-4290860500-1000 - Administrator - Enabled) => C:\Users\uživatel
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Microsoft Security Essentials (Disabled - Up to date) {71A27EC9-3DA6-45FC-60A7-004F623C6189}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Microsoft Security Essentials (Disabled - Up to date) {CAC39F2D-1B9C-4A72-5A17-3B3D19BB2B34}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {5078598A-1FA2-C888-AA5F-A9C66537DB12}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Acrobat 9 Pro - English, Français, Deutsch (HKLM-x32\...\{AC76BA86-1033-F400-7760-000000000004}{AC76BA86-1033-F400-7760-000000000004}) (Version: 9.0.0 - Adobe Systems)
Aladin verze 4.0 (HKLM-x32\...\{77D91700-C34E-47C5-83A5-238F19FF3C48}_is1) (Version: 4.0 - Slavia Pojišťovna a.s.)
ASUS USB-N10 Wireless LAN Driver (HKLM-x32\...\{B20F9D1C-A0A5-4cd8-8306-DA03872311B1}) (Version: 1.0.1.1 - ASUS)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 20.9.2437 - Avast Software)
Backup and Sync from Google (HKLM\...\{3A8CD593-8CF9-45B4-9932-FC41CBC14E15}) (Version: 3.53.3404.7585 - Google, Inc.)
Balíček ovladače systému Windows - Nokia Modem (02/25/2011 4.7) (HKLM\...\E0AC723A3DE3A04256288CADBBB011B112AED454) (Version: 02/25/2011 4.7 - Nokia)
Balíček ovladače systému Windows - Nokia Modem (02/25/2011 7.01.0.9) (HKLM\...\72A50F48CC5601190B9C4E74D81161693133E7F7) (Version: 02/25/2011 7.01.0.9 - Nokia)
Balíček ovladače systému Windows - Nokia pccsmcfd LegacyDriver (05/31/2012 7.1.2.0) (HKLM\...\62BBD193ADFDBB228C7E1ADB56463F5732FF7F6F) (Version: 05/31/2012 7.1.2.0 - Nokia)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: - Canon Inc.)
Canon MG2500 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG2500_series) (Version: 1.02 - Canon Inc.)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.7.6229 - CDBurnerXP)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
ČSOBP Kalkulátory 1.27.0.x (HKLM-x32\...\Kalkulátory_is1) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 86.0.4240.198 - Google LLC)
Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.31 - Google LLC) Hidden
HL-1110 series (HKLM-x32\...\{4F2442B7-A89E-42A4-8F0E-6937499855CA}) (Version: 1.0.1.0 - Brother Industries, Ltd.)
IrfanView 64 (remove only) (HKLM\...\IrfanView64) (Version: 4.41 - Irfan Skiljan)
LibreOffice 5.1 Help Pack (Czech) (HKLM-x32\...\{E4C8ED36-852C-4BA9-AF83-919572C4AC84}) (Version: 5.1.4.2 - The Document Foundation)
LibreOffice 5.1.4.2 (HKLM-x32\...\{D5D4AC5C-C757-4EB2-857C-B021DB22482C}) (Version: 5.1.4.2 - The Document Foundation)
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile CSY Language Pack (HKLM\...\Microsoft .NET Framework 4 Client Profile CSY Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.10.209.0 - Microsoft Corporation)
MSVC90_x64 (HKLM\...\{AB071C8B-873C-459F-ACA9-9EBE03C3E89B}) (Version: 1.0.1.2 - Nokia) Hidden
MSVC90_x86 (HKLM-x32\...\{AF111648-99A1-453E-81DD-80DBBF6DAD0D}) (Version: 1.0.1.2 - Nokia) Hidden
Nokia Connectivity Cable Driver (HKLM-x32\...\{D4BF151C-70A8-4CE2-906F-4173A575BAD9}) (Version: 7.1.182.0 - Nokia)
Nokia PC Suite (HKLM-x32\...\{866C4563-ED53-43F3-A29D-8BEE2BD1BA3C}) (Version: 7.1.180.94 - Nokia) Hidden
Nokia PC Suite (HKLM-x32\...\Nokia PC Suite) (Version: 7.1.180.94 - Nokia)
PC Connectivity Solution (HKLM-x32\...\{644F4910-E812-49AD-93EC-86828CB81A0D}) (Version: 12.0.27.0 - Nokia)
Rainlendar2 (remove only) (HKLM-x32\...\Rainlendar2) (Version: - )
Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.6 - VideoLAN)
xat.com Image Optimizer (HKLM-x32\...\xat.com Image Optimizer) (Version: - )
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2217832 2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-11-03] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-11-03] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-11-03] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-11-30] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {D25B2CAB-8A9A-4517-A9B2-CB5F68A5A802} => C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\..\Acrobat Elements\ContextMenu64.dll [2008-06-11] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-11-30] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-11-03] (Google LLC -> Google)
ContextMenuHandlers2: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-11-30] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-11-03] (Google LLC -> Google)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2014-03-20] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {D25B2CAB-8A9A-4517-A9B2-CB5F68A5A802} => C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\..\Acrobat Elements\ContextMenu64.dll [2008-06-11] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-11-30] (Avast Software s.r.o. -> AVAST Software)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]
==================== Loaded Modules (Whitelisted) =============
2008-06-11 22:32 - 2008-06-11 22:32 - 002666496 _____ () [File not signed] C:\Program Files (x86)\Adobe\Acrobat 9.0\PDFMaker\Common\AdobePDFMakerX.dll
2018-01-16 15:02 - 2009-02-27 16:38 - 000139264 ____R () [File not signed] C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
2012-06-26 12:38 - 2012-06-26 12:38 - 000009728 _____ () [File not signed] C:\Program Files (x86)\Nokia\Nokia PC Suite 7\Lang\OneTouchAccess_cze.NLR
2007-12-30 11:24 - 2007-12-30 11:24 - 000140288 _____ () [File not signed] C:\Program Files (x86)\Rainlendar2\plugins\iCalendarPlugin.dll
2020-11-30 08:51 - 2020-11-30 08:51 - 000114176 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\_ctypes.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000172544 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\_elementtree.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 002255872 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\_hashlib.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000032256 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\_multiprocessing.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000046080 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\_psutil_windows.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000047616 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\_socket.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 002824704 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\_ssl.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000026112 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\_yappi.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000080896 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\bz2.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000016384 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\common.time34.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000007680 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\hashobjs_ext.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000301568 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\PIL._imaging.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000168448 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\pyexpat.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 001084416 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\pysqlite2._sqlite.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000548864 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\pythoncom27.dll
2020-11-30 08:51 - 2020-11-30 08:51 - 000137728 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\pywintypes27.dll
2020-11-30 08:51 - 2020-11-30 08:51 - 000010752 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\select.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000020992 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\thumbnails_ext.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000689664 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\unicodedata.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000119808 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\usb_ext.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000128512 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\win32api.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000438784 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\win32com.shell.shell.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000011776 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\win32crypt.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000023040 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\win32event.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000149504 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\win32file.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000223232 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\win32gui.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000048128 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\win32inet.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000029696 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\win32pdh.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000027648 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\win32pipe.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000044032 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\win32process.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000020480 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\win32profile.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000136192 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\win32security.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000026624 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\win32ts.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000034816 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\windows.conditional.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000038400 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\windows.connectivity.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000071680 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\windows.device_monitor.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000109056 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\windows.volumes.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000020480 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\windows.winwrap.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 001325056 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\wx._controls_.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 001489408 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\wx._core_.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 001007104 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\wx._gdi_.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000103424 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\wx._html2.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000916992 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\wx._misc_.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 001039872 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\wx._windows_.pyd
2008-06-12 02:19 - 2008-06-12 02:19 - 000019968 _____ (Adobe Systems Inc.) [File not signed] C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\AcroTray.DEU
2008-06-12 02:08 - 2008-06-12 02:08 - 000019968 _____ (Adobe Systems Inc.) [File not signed] C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\AcroTray.FRA
2018-01-16 15:02 - 2008-08-18 18:27 - 000122880 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\brlmw03a.dll
2018-01-16 15:02 - 2012-07-13 13:09 - 000385024 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\BrMonitor.dll
2018-01-16 15:02 - 2011-02-28 11:32 - 000208896 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\Brother\BrFirmUpdateCheck.dll
2018-01-16 15:03 - 2012-08-30 15:30 - 002040832 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\Brother\BrStMonWRes.dll
2003-03-18 21:14 - 2003-03-18 21:14 - 000499712 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Rainlendar2\MSVCP71.dll
2003-02-21 05:42 - 2003-02-21 05:42 - 000348160 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Rainlendar2\MSVCR71.dll
2018-01-09 18:39 - 2018-01-09 18:39 - 000096256 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.762_none_11ecb0ab9b2caf3c\ATL80.DLL
2018-01-09 18:39 - 2018-01-09 18:39 - 001093120 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.762_none_0c178a139ee2a7ed\MFC80U.DLL
2020-09-11 07:09 - 2020-09-11 07:09 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2020-09-11 07:09 - 2020-09-11 07:09 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2020-09-11 07:09 - 2020-09-11 07:09 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2020-09-11 07:09 - 2020-09-11 07:09 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2020-09-11 07:09 - 2020-09-11 07:09 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2020-09-11 07:09 - 2020-09-11 07:09 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2020-09-11 07:09 - 2020-09-11 07:09 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2020-09-11 07:09 - 2020-09-11 07:09 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2020-09-11 07:09 - 2020-09-11 07:09 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2020-09-11 07:09 - 2020-09-11 07:09 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2020-09-11 07:09 - 2020-09-11 07:09 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2020-09-11 07:09 - 2020-09-11 07:09 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\ucrtbase.DLL
2020-09-11 07:09 - 2020-09-11 07:09 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\VCRUNTIME140.dll
2020-11-30 08:06 - 2020-11-30 08:06 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20112906\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2020-11-30 08:06 - 2020-11-30 08:06 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20112906\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2020-11-30 08:06 - 2020-11-30 08:06 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20112906\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2020-11-30 08:06 - 2020-11-30 08:06 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20112906\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2020-11-30 08:06 - 2020-11-30 08:06 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20112906\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2020-11-30 08:06 - 2020-11-30 08:06 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20112906\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2020-11-30 08:06 - 2020-11-30 08:06 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20112906\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2020-11-30 08:06 - 2020-11-30 08:06 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20112906\avast.local_vc142.crt\api-ms-win-crt-environment-l1-1-0.dll
2020-11-30 08:06 - 2020-11-30 08:06 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20112906\avast.local_vc142.crt\api-ms-win-crt-filesystem-l1-1-0.dll
2020-11-30 08:06 - 2020-11-30 08:06 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20112906\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2020-11-30 08:06 - 2020-11-30 08:06 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20112906\avast.local_vc142.crt\api-ms-win-crt-locale-l1-1-0.dll
2020-11-30 08:06 - 2020-11-30 08:06 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20112906\avast.local_vc142.crt\api-ms-win-crt-math-l1-1-0.dll
2020-11-30 08:06 - 2020-11-30 08:06 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20112906\avast.local_vc142.crt\api-ms-win-crt-multibyte-l1-1-0.dll
2020-11-30 08:06 - 2020-11-30 08:06 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20112906\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2020-11-30 08:06 - 2020-11-30 08:06 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20112906\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2020-11-30 08:06 - 2020-11-30 08:06 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20112906\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2020-11-30 08:06 - 2020-11-30 08:06 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20112906\avast.local_vc142.crt\api-ms-win-crt-time-l1-1-0.dll
2020-11-30 08:06 - 2020-11-30 08:06 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20112906\avast.local_vc142.crt\api-ms-win-crt-utility-l1-1-0.dll
2020-11-30 08:06 - 2020-11-30 08:06 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20112906\avast.local_vc142.crt\MSVCP140.dll
2020-11-30 08:06 - 2020-11-30 08:06 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20112906\avast.local_vc142.crt\ucrtbase.DLL
2020-11-30 08:06 - 2020-11-30 08:06 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20112906\avast.local_vc142.crt\VCRUNTIME140.dll
2020-11-30 08:06 - 2020-11-30 08:06 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20112906\avast.local_vc142.crt\VCRUNTIME140_1.dll
2012-06-26 13:08 - 2012-06-26 13:08 - 000026624 _____ (Nokia) [File not signed] C:\Program Files (x86)\Nokia\Nokia PC Suite 7\Lang\PhoneBrowser_cze.nlr
2012-06-26 11:57 - 2012-06-26 11:57 - 000918016 _____ (Nokia) [File not signed] C:\Program Files (x86)\Nokia\Nokia PC Suite 7\NGSCM.DLL
2012-06-26 11:58 - 2012-06-26 11:58 - 001262592 _____ (Nokia) [File not signed] C:\Program Files (x86)\Nokia\Nokia PC Suite 7\NGSCM64.DLL
2012-06-26 12:38 - 2012-06-26 12:38 - 000286720 _____ (Nokia) [File not signed] C:\Program Files (x86)\Nokia\Nokia PC Suite 7\Resource\OneTouchAccess_Nokia.NGR
2012-06-26 13:08 - 2012-06-26 13:08 - 000572928 _____ (Nokia) [File not signed] C:\Program Files (x86)\Nokia\Nokia PC Suite 7\Resource\PhoneBrowser_Nokia.ngr
2020-11-30 08:51 - 2020-11-30 08:51 - 003043328 _____ (Python Software Foundation) [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\python27.dll
2020-11-30 08:51 - 2020-11-30 08:51 - 000202240 _____ (wxWidgets development team) [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\wxbase30u_net_vc90_x64.dll
2020-11-30 08:51 - 2020-11-30 08:51 - 002831872 _____ (wxWidgets development team) [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\wxbase30u_vc90_x64.dll
2020-11-30 08:51 - 2020-11-30 08:51 - 001654784 _____ (wxWidgets development team) [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\wxmsw30u_adv_vc90_x64.dll
2020-11-30 08:51 - 2020-11-30 08:51 - 006542336 _____ (wxWidgets development team) [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\wxmsw30u_core_vc90_x64.dll
2020-11-30 08:51 - 2020-11-30 08:51 - 000773632 _____ (wxWidgets development team) [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\wxmsw30u_html_vc90_x64.dll
2020-11-30 08:51 - 2020-11-30 08:51 - 000137216 _____ (wxWidgets development team) [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\wxmsw30u_webview_vc90_x64.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Version 11) (Whitelisted) ==========
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2018-01-05] (Google Inc -> Google Inc.)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2018-01-05] (Google Inc -> Google Inc.)
BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2018-01-05] (Google Inc -> Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2018-01-05] (Google Inc -> Google Inc.)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKU\S-1-5-21-2849485344-80999641-4290860500-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2018-01-05] (Google Inc -> Google Inc.)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 03:34 - 2019-01-04 08:57 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\PC Connectivity Solution\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\
HKU\S-1-5-21-2849485344-80999641-4290860500-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\uživatel\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 217.77.165.211 - 217.77.165.81
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [SPPSVC-In-TCP] => (Allow) C:\Windows\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) C:\Windows\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{6A2D4471-05CD-4865-BBFF-E17407636E53}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Restore Points =========================
16-11-2020 08:18:45 Windows Update
23-11-2020 08:07:08 Windows Update
30-11-2020 09:04:52 Windows Update
==================== Faulty Device Manager Devices ============
Name: Myš Microsoft pro port PS/2
Description: Myš Microsoft pro port PS/2
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
Name: Standardní klávesnice PS/2
Description: Standardní klávesnice PS/2
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standardní klávesnice)
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
==================== Event log errors: ========================
Application errors:
==================
Error: (11/30/2020 08:53:11 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Error: (11/30/2020 08:38:32 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Error: (11/26/2020 11:23:16 AM) (Source: RasClient) (EventID: 20227) (User: )
Description: CoID={A2767CE4-C7C6-4854-8347-9D7AE991AA58}: Uživatel uživatel-PC\uživatel vytočil připojení s názvem Nokia USB Modem (OTA), které se nezdařilo. Kód chyby vrácený při selhání je 618.
Error: (11/24/2020 10:35:58 AM) (Source: RasClient) (EventID: 20227) (User: )
Description: CoID={5568EA2F-7B6D-49AC-B090-47BA70E45D90}: Uživatel uživatel-PC\uživatel vytočil připojení s názvem Nokia USB Modem (OTA), které se nezdařilo. Kód chyby vrácený při selhání je 0.
Error: (11/24/2020 10:35:45 AM) (Source: RasClient) (EventID: 20227) (User: )
Description: CoID={ADF5A8EB-62C6-4CB3-BAC2-B3B3DD018C65}: Uživatel uživatel-PC\uživatel vytočil připojení s názvem Nokia USB Modem (OTA), které se nezdařilo. Kód chyby vrácený při selhání je 618.
Error: (11/24/2020 09:43:11 AM) (Source: RasClient) (EventID: 20227) (User: )
Description: CoID={C2DFB952-2DE7-4D30-ADB3-179B8EF37A4E}: Uživatel uživatel-PC\uživatel vytočil připojení s názvem Nokia USB Modem (OTA), které se nezdařilo. Kód chyby vrácený při selhání je 633.
Error: (11/24/2020 09:43:08 AM) (Source: RasClient) (EventID: 20227) (User: )
Description: CoID={03BD292A-5781-46B0-B63E-A9E1F9D98A25}: Uživatel uživatel-PC\uživatel vytočil připojení s názvem Nokia USB Modem (OTA), které se nezdařilo. Kód chyby vrácený při selhání je 633.
Error: (11/24/2020 08:55:53 AM) (Source: RasClient) (EventID: 20227) (User: )
Description: CoID={EA4F3AE8-B581-401C-80D1-8B2993C3160C}: Uživatel uživatel-PC\uživatel vytočil připojení s názvem Nokia USB Modem (OTA), které se nezdařilo. Kód chyby vrácený při selhání je 618.
System errors:
=============
Error: (11/30/2020 08:51:39 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN se nepodařilo spustit.
Cesta k modulu: C:\Windows\system32\Rtlihvs.dll
Kód chyby: 126
Error: (11/30/2020 08:46:06 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 70.
Error: (11/30/2020 08:46:06 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 70.
Error: (11/30/2020 08:46:05 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 70.
Error: (11/30/2020 08:46:05 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 70.
Error: (11/30/2020 08:44:50 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 20.
Error: (11/30/2020 08:37:05 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN se nepodařilo spustit.
Cesta k modulu: C:\Windows\system32\Rtlihvs.dll
Kód chyby: 126
Error: (11/30/2020 08:35:19 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {995C996E-D918-4A8C-A302-45719A6F4EA7} se v daném časovém limitu neregistroval u služby DCOM.
==================== Memory info ===========================
BIOS: Hewlett-Packard J01 v02.15 11/10/2011
Motherboard: Hewlett-Packard 1497
Processor: Intel(R) Core(TM) i3-2100 CPU @ 3.10GHz
Percentage of memory in use: 90%
Total physical RAM: 3984.04 MB
Available physical RAM: 394.79 MB
Total Virtual: 7966.25 MB
Available Virtual: 2780.43 MB
==================== Drives ================================
Drive c: (znalecký ústav- odbor pojištění) (Fixed) (Total:193.6 GB) (Free:112.48 GB) NTFS
Drive h: (Nový svazek) (Fixed) (Total:39.06 GB) (Free:26.27 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 232.9 GB) (Disk ID: 00000000)
Partition: GPT.
==================== End of Addition.txt =======================
najednou nejde mazat to co vždycky šlo, zkoušel jsem změnit atributy, ale pořád stejně, vkládám log:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-11-2020
Ran by uživatel (30-11-2020 09:36:05)
Running from C:\new
Windows 7 Professional Service Pack 1 (X64) (2018-01-05 10:04:13)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-2849485344-80999641-4290860500-500 - Administrator - Disabled)
Guest (S-1-5-21-2849485344-80999641-4290860500-501 - Limited - Disabled)
uživatel (S-1-5-21-2849485344-80999641-4290860500-1000 - Administrator - Enabled) => C:\Users\uživatel
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Microsoft Security Essentials (Disabled - Up to date) {71A27EC9-3DA6-45FC-60A7-004F623C6189}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Microsoft Security Essentials (Disabled - Up to date) {CAC39F2D-1B9C-4A72-5A17-3B3D19BB2B34}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {5078598A-1FA2-C888-AA5F-A9C66537DB12}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Acrobat 9 Pro - English, Français, Deutsch (HKLM-x32\...\{AC76BA86-1033-F400-7760-000000000004}{AC76BA86-1033-F400-7760-000000000004}) (Version: 9.0.0 - Adobe Systems)
Aladin verze 4.0 (HKLM-x32\...\{77D91700-C34E-47C5-83A5-238F19FF3C48}_is1) (Version: 4.0 - Slavia Pojišťovna a.s.)
ASUS USB-N10 Wireless LAN Driver (HKLM-x32\...\{B20F9D1C-A0A5-4cd8-8306-DA03872311B1}) (Version: 1.0.1.1 - ASUS)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 20.9.2437 - Avast Software)
Backup and Sync from Google (HKLM\...\{3A8CD593-8CF9-45B4-9932-FC41CBC14E15}) (Version: 3.53.3404.7585 - Google, Inc.)
Balíček ovladače systému Windows - Nokia Modem (02/25/2011 4.7) (HKLM\...\E0AC723A3DE3A04256288CADBBB011B112AED454) (Version: 02/25/2011 4.7 - Nokia)
Balíček ovladače systému Windows - Nokia Modem (02/25/2011 7.01.0.9) (HKLM\...\72A50F48CC5601190B9C4E74D81161693133E7F7) (Version: 02/25/2011 7.01.0.9 - Nokia)
Balíček ovladače systému Windows - Nokia pccsmcfd LegacyDriver (05/31/2012 7.1.2.0) (HKLM\...\62BBD193ADFDBB228C7E1ADB56463F5732FF7F6F) (Version: 05/31/2012 7.1.2.0 - Nokia)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: - Canon Inc.)
Canon MG2500 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG2500_series) (Version: 1.02 - Canon Inc.)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.7.6229 - CDBurnerXP)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
ČSOBP Kalkulátory 1.27.0.x (HKLM-x32\...\Kalkulátory_is1) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 86.0.4240.198 - Google LLC)
Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.31 - Google LLC) Hidden
HL-1110 series (HKLM-x32\...\{4F2442B7-A89E-42A4-8F0E-6937499855CA}) (Version: 1.0.1.0 - Brother Industries, Ltd.)
IrfanView 64 (remove only) (HKLM\...\IrfanView64) (Version: 4.41 - Irfan Skiljan)
LibreOffice 5.1 Help Pack (Czech) (HKLM-x32\...\{E4C8ED36-852C-4BA9-AF83-919572C4AC84}) (Version: 5.1.4.2 - The Document Foundation)
LibreOffice 5.1.4.2 (HKLM-x32\...\{D5D4AC5C-C757-4EB2-857C-B021DB22482C}) (Version: 5.1.4.2 - The Document Foundation)
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile CSY Language Pack (HKLM\...\Microsoft .NET Framework 4 Client Profile CSY Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.10.209.0 - Microsoft Corporation)
MSVC90_x64 (HKLM\...\{AB071C8B-873C-459F-ACA9-9EBE03C3E89B}) (Version: 1.0.1.2 - Nokia) Hidden
MSVC90_x86 (HKLM-x32\...\{AF111648-99A1-453E-81DD-80DBBF6DAD0D}) (Version: 1.0.1.2 - Nokia) Hidden
Nokia Connectivity Cable Driver (HKLM-x32\...\{D4BF151C-70A8-4CE2-906F-4173A575BAD9}) (Version: 7.1.182.0 - Nokia)
Nokia PC Suite (HKLM-x32\...\{866C4563-ED53-43F3-A29D-8BEE2BD1BA3C}) (Version: 7.1.180.94 - Nokia) Hidden
Nokia PC Suite (HKLM-x32\...\Nokia PC Suite) (Version: 7.1.180.94 - Nokia)
PC Connectivity Solution (HKLM-x32\...\{644F4910-E812-49AD-93EC-86828CB81A0D}) (Version: 12.0.27.0 - Nokia)
Rainlendar2 (remove only) (HKLM-x32\...\Rainlendar2) (Version: - )
Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.6 - VideoLAN)
xat.com Image Optimizer (HKLM-x32\...\xat.com Image Optimizer) (Version: - )
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2217832 2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-11-03] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-11-03] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-11-03] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-11-30] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {D25B2CAB-8A9A-4517-A9B2-CB5F68A5A802} => C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\..\Acrobat Elements\ContextMenu64.dll [2008-06-11] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-11-30] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-11-03] (Google LLC -> Google)
ContextMenuHandlers2: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-11-30] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-11-03] (Google LLC -> Google)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2014-03-20] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {D25B2CAB-8A9A-4517-A9B2-CB5F68A5A802} => C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\..\Acrobat Elements\ContextMenu64.dll [2008-06-11] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-11-30] (Avast Software s.r.o. -> AVAST Software)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]
==================== Loaded Modules (Whitelisted) =============
2008-06-11 22:32 - 2008-06-11 22:32 - 002666496 _____ () [File not signed] C:\Program Files (x86)\Adobe\Acrobat 9.0\PDFMaker\Common\AdobePDFMakerX.dll
2018-01-16 15:02 - 2009-02-27 16:38 - 000139264 ____R () [File not signed] C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
2012-06-26 12:38 - 2012-06-26 12:38 - 000009728 _____ () [File not signed] C:\Program Files (x86)\Nokia\Nokia PC Suite 7\Lang\OneTouchAccess_cze.NLR
2007-12-30 11:24 - 2007-12-30 11:24 - 000140288 _____ () [File not signed] C:\Program Files (x86)\Rainlendar2\plugins\iCalendarPlugin.dll
2020-11-30 08:51 - 2020-11-30 08:51 - 000114176 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\_ctypes.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000172544 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\_elementtree.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 002255872 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\_hashlib.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000032256 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\_multiprocessing.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000046080 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\_psutil_windows.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000047616 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\_socket.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 002824704 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\_ssl.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000026112 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\_yappi.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000080896 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\bz2.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000016384 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\common.time34.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000007680 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\hashobjs_ext.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000301568 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\PIL._imaging.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000168448 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\pyexpat.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 001084416 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\pysqlite2._sqlite.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000548864 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\pythoncom27.dll
2020-11-30 08:51 - 2020-11-30 08:51 - 000137728 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\pywintypes27.dll
2020-11-30 08:51 - 2020-11-30 08:51 - 000010752 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\select.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000020992 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\thumbnails_ext.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000689664 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\unicodedata.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000119808 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\usb_ext.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000128512 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\win32api.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000438784 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\win32com.shell.shell.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000011776 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\win32crypt.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000023040 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\win32event.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000149504 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\win32file.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000223232 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\win32gui.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000048128 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\win32inet.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000029696 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\win32pdh.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000027648 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\win32pipe.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000044032 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\win32process.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000020480 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\win32profile.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000136192 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\win32security.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000026624 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\win32ts.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000034816 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\windows.conditional.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000038400 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\windows.connectivity.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000071680 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\windows.device_monitor.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000109056 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\windows.volumes.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000020480 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\windows.winwrap.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 001325056 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\wx._controls_.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 001489408 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\wx._core_.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 001007104 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\wx._gdi_.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000103424 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\wx._html2.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 000916992 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\wx._misc_.pyd
2020-11-30 08:51 - 2020-11-30 08:51 - 001039872 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\wx._windows_.pyd
2008-06-12 02:19 - 2008-06-12 02:19 - 000019968 _____ (Adobe Systems Inc.) [File not signed] C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\AcroTray.DEU
2008-06-12 02:08 - 2008-06-12 02:08 - 000019968 _____ (Adobe Systems Inc.) [File not signed] C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\AcroTray.FRA
2018-01-16 15:02 - 2008-08-18 18:27 - 000122880 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\brlmw03a.dll
2018-01-16 15:02 - 2012-07-13 13:09 - 000385024 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\BrMonitor.dll
2018-01-16 15:02 - 2011-02-28 11:32 - 000208896 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\Brother\BrFirmUpdateCheck.dll
2018-01-16 15:03 - 2012-08-30 15:30 - 002040832 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\Brother\BrStMonWRes.dll
2003-03-18 21:14 - 2003-03-18 21:14 - 000499712 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Rainlendar2\MSVCP71.dll
2003-02-21 05:42 - 2003-02-21 05:42 - 000348160 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Rainlendar2\MSVCR71.dll
2018-01-09 18:39 - 2018-01-09 18:39 - 000096256 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.762_none_11ecb0ab9b2caf3c\ATL80.DLL
2018-01-09 18:39 - 2018-01-09 18:39 - 001093120 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.762_none_0c178a139ee2a7ed\MFC80U.DLL
2020-09-11 07:09 - 2020-09-11 07:09 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2020-09-11 07:09 - 2020-09-11 07:09 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2020-09-11 07:09 - 2020-09-11 07:09 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2020-09-11 07:09 - 2020-09-11 07:09 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2020-09-11 07:09 - 2020-09-11 07:09 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2020-09-11 07:09 - 2020-09-11 07:09 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2020-09-11 07:09 - 2020-09-11 07:09 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2020-09-11 07:09 - 2020-09-11 07:09 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2020-09-11 07:09 - 2020-09-11 07:09 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2020-09-11 07:09 - 2020-09-11 07:09 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2020-09-11 07:09 - 2020-09-11 07:09 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2020-09-11 07:09 - 2020-09-11 07:09 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\ucrtbase.DLL
2020-09-11 07:09 - 2020-09-11 07:09 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\VCRUNTIME140.dll
2020-11-30 08:06 - 2020-11-30 08:06 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20112906\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2020-11-30 08:06 - 2020-11-30 08:06 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20112906\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2020-11-30 08:06 - 2020-11-30 08:06 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20112906\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2020-11-30 08:06 - 2020-11-30 08:06 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20112906\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2020-11-30 08:06 - 2020-11-30 08:06 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20112906\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2020-11-30 08:06 - 2020-11-30 08:06 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20112906\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2020-11-30 08:06 - 2020-11-30 08:06 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20112906\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2020-11-30 08:06 - 2020-11-30 08:06 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20112906\avast.local_vc142.crt\api-ms-win-crt-environment-l1-1-0.dll
2020-11-30 08:06 - 2020-11-30 08:06 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20112906\avast.local_vc142.crt\api-ms-win-crt-filesystem-l1-1-0.dll
2020-11-30 08:06 - 2020-11-30 08:06 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20112906\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2020-11-30 08:06 - 2020-11-30 08:06 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20112906\avast.local_vc142.crt\api-ms-win-crt-locale-l1-1-0.dll
2020-11-30 08:06 - 2020-11-30 08:06 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20112906\avast.local_vc142.crt\api-ms-win-crt-math-l1-1-0.dll
2020-11-30 08:06 - 2020-11-30 08:06 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20112906\avast.local_vc142.crt\api-ms-win-crt-multibyte-l1-1-0.dll
2020-11-30 08:06 - 2020-11-30 08:06 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20112906\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2020-11-30 08:06 - 2020-11-30 08:06 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20112906\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2020-11-30 08:06 - 2020-11-30 08:06 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20112906\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2020-11-30 08:06 - 2020-11-30 08:06 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20112906\avast.local_vc142.crt\api-ms-win-crt-time-l1-1-0.dll
2020-11-30 08:06 - 2020-11-30 08:06 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20112906\avast.local_vc142.crt\api-ms-win-crt-utility-l1-1-0.dll
2020-11-30 08:06 - 2020-11-30 08:06 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20112906\avast.local_vc142.crt\MSVCP140.dll
2020-11-30 08:06 - 2020-11-30 08:06 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20112906\avast.local_vc142.crt\ucrtbase.DLL
2020-11-30 08:06 - 2020-11-30 08:06 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20112906\avast.local_vc142.crt\VCRUNTIME140.dll
2020-11-30 08:06 - 2020-11-30 08:06 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20112906\avast.local_vc142.crt\VCRUNTIME140_1.dll
2012-06-26 13:08 - 2012-06-26 13:08 - 000026624 _____ (Nokia) [File not signed] C:\Program Files (x86)\Nokia\Nokia PC Suite 7\Lang\PhoneBrowser_cze.nlr
2012-06-26 11:57 - 2012-06-26 11:57 - 000918016 _____ (Nokia) [File not signed] C:\Program Files (x86)\Nokia\Nokia PC Suite 7\NGSCM.DLL
2012-06-26 11:58 - 2012-06-26 11:58 - 001262592 _____ (Nokia) [File not signed] C:\Program Files (x86)\Nokia\Nokia PC Suite 7\NGSCM64.DLL
2012-06-26 12:38 - 2012-06-26 12:38 - 000286720 _____ (Nokia) [File not signed] C:\Program Files (x86)\Nokia\Nokia PC Suite 7\Resource\OneTouchAccess_Nokia.NGR
2012-06-26 13:08 - 2012-06-26 13:08 - 000572928 _____ (Nokia) [File not signed] C:\Program Files (x86)\Nokia\Nokia PC Suite 7\Resource\PhoneBrowser_Nokia.ngr
2020-11-30 08:51 - 2020-11-30 08:51 - 003043328 _____ (Python Software Foundation) [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\python27.dll
2020-11-30 08:51 - 2020-11-30 08:51 - 000202240 _____ (wxWidgets development team) [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\wxbase30u_net_vc90_x64.dll
2020-11-30 08:51 - 2020-11-30 08:51 - 002831872 _____ (wxWidgets development team) [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\wxbase30u_vc90_x64.dll
2020-11-30 08:51 - 2020-11-30 08:51 - 001654784 _____ (wxWidgets development team) [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\wxmsw30u_adv_vc90_x64.dll
2020-11-30 08:51 - 2020-11-30 08:51 - 006542336 _____ (wxWidgets development team) [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\wxmsw30u_core_vc90_x64.dll
2020-11-30 08:51 - 2020-11-30 08:51 - 000773632 _____ (wxWidgets development team) [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\wxmsw30u_html_vc90_x64.dll
2020-11-30 08:51 - 2020-11-30 08:51 - 000137216 _____ (wxWidgets development team) [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17402\wxmsw30u_webview_vc90_x64.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Version 11) (Whitelisted) ==========
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2018-01-05] (Google Inc -> Google Inc.)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2018-01-05] (Google Inc -> Google Inc.)
BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2018-01-05] (Google Inc -> Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2018-01-05] (Google Inc -> Google Inc.)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKU\S-1-5-21-2849485344-80999641-4290860500-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2018-01-05] (Google Inc -> Google Inc.)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 03:34 - 2019-01-04 08:57 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\PC Connectivity Solution\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\
HKU\S-1-5-21-2849485344-80999641-4290860500-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\uživatel\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 217.77.165.211 - 217.77.165.81
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [SPPSVC-In-TCP] => (Allow) C:\Windows\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) C:\Windows\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{6A2D4471-05CD-4865-BBFF-E17407636E53}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Restore Points =========================
16-11-2020 08:18:45 Windows Update
23-11-2020 08:07:08 Windows Update
30-11-2020 09:04:52 Windows Update
==================== Faulty Device Manager Devices ============
Name: Myš Microsoft pro port PS/2
Description: Myš Microsoft pro port PS/2
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
Name: Standardní klávesnice PS/2
Description: Standardní klávesnice PS/2
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standardní klávesnice)
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
==================== Event log errors: ========================
Application errors:
==================
Error: (11/30/2020 08:53:11 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Error: (11/30/2020 08:38:32 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Error: (11/26/2020 11:23:16 AM) (Source: RasClient) (EventID: 20227) (User: )
Description: CoID={A2767CE4-C7C6-4854-8347-9D7AE991AA58}: Uživatel uživatel-PC\uživatel vytočil připojení s názvem Nokia USB Modem (OTA), které se nezdařilo. Kód chyby vrácený při selhání je 618.
Error: (11/24/2020 10:35:58 AM) (Source: RasClient) (EventID: 20227) (User: )
Description: CoID={5568EA2F-7B6D-49AC-B090-47BA70E45D90}: Uživatel uživatel-PC\uživatel vytočil připojení s názvem Nokia USB Modem (OTA), které se nezdařilo. Kód chyby vrácený při selhání je 0.
Error: (11/24/2020 10:35:45 AM) (Source: RasClient) (EventID: 20227) (User: )
Description: CoID={ADF5A8EB-62C6-4CB3-BAC2-B3B3DD018C65}: Uživatel uživatel-PC\uživatel vytočil připojení s názvem Nokia USB Modem (OTA), které se nezdařilo. Kód chyby vrácený při selhání je 618.
Error: (11/24/2020 09:43:11 AM) (Source: RasClient) (EventID: 20227) (User: )
Description: CoID={C2DFB952-2DE7-4D30-ADB3-179B8EF37A4E}: Uživatel uživatel-PC\uživatel vytočil připojení s názvem Nokia USB Modem (OTA), které se nezdařilo. Kód chyby vrácený při selhání je 633.
Error: (11/24/2020 09:43:08 AM) (Source: RasClient) (EventID: 20227) (User: )
Description: CoID={03BD292A-5781-46B0-B63E-A9E1F9D98A25}: Uživatel uživatel-PC\uživatel vytočil připojení s názvem Nokia USB Modem (OTA), které se nezdařilo. Kód chyby vrácený při selhání je 633.
Error: (11/24/2020 08:55:53 AM) (Source: RasClient) (EventID: 20227) (User: )
Description: CoID={EA4F3AE8-B581-401C-80D1-8B2993C3160C}: Uživatel uživatel-PC\uživatel vytočil připojení s názvem Nokia USB Modem (OTA), které se nezdařilo. Kód chyby vrácený při selhání je 618.
System errors:
=============
Error: (11/30/2020 08:51:39 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN se nepodařilo spustit.
Cesta k modulu: C:\Windows\system32\Rtlihvs.dll
Kód chyby: 126
Error: (11/30/2020 08:46:06 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 70.
Error: (11/30/2020 08:46:06 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 70.
Error: (11/30/2020 08:46:05 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 70.
Error: (11/30/2020 08:46:05 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 70.
Error: (11/30/2020 08:44:50 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 20.
Error: (11/30/2020 08:37:05 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN se nepodařilo spustit.
Cesta k modulu: C:\Windows\system32\Rtlihvs.dll
Kód chyby: 126
Error: (11/30/2020 08:35:19 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {995C996E-D918-4A8C-A302-45719A6F4EA7} se v daném časovém limitu neregistroval u služby DCOM.
==================== Memory info ===========================
BIOS: Hewlett-Packard J01 v02.15 11/10/2011
Motherboard: Hewlett-Packard 1497
Processor: Intel(R) Core(TM) i3-2100 CPU @ 3.10GHz
Percentage of memory in use: 90%
Total physical RAM: 3984.04 MB
Available physical RAM: 394.79 MB
Total Virtual: 7966.25 MB
Available Virtual: 2780.43 MB
==================== Drives ================================
Drive c: (znalecký ústav- odbor pojištění) (Fixed) (Total:193.6 GB) (Free:112.48 GB) NTFS
Drive h: (Nový svazek) (Fixed) (Total:39.06 GB) (Free:26.27 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 232.9 GB) (Disk ID: 00000000)
Partition: GPT.
==================== End of Addition.txt =======================
- Rudy
- Site Admin
- Příspěvky: 118715
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: najednou nelze mazat, omezení přístupu v adr.
Zdravím!
Ještě přidejte log FRST (toto je pouze Addition). Je v adresáři C:\new v souboru frst.txt.
Ještě přidejte log FRST (toto je pouze Addition). Je v adresáři C:\new v souboru frst.txt.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: najednou nelze mazat, omezení přístupu v adr.
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 29-11-2020
Ran by uživatel (administrator) on UŽIVATEL-PC (Hewlett-Packard HP Compaq 6200 Pro SFF PC) (30-11-2020 09:34:31)
Running from C:\new
Loaded Profiles: uživatel
Platform: Windows 7 Professional Service Pack 1 (X64) Language: Čeština (Česká republika)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
() [File not signed] C:\Program Files (x86)\Rainlendar2\Rainlendar2.exe
(Adobe Systems, Incorporated -> Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrotray.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <3>
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\BrYNSvc.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\BrownyInd\Brother\BrIndicator.exe
(C. Ghisler & Co.) [File not signed] C:\Program Files\totalcmd\TOTALCMD.EXE
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe <2>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <23>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.32\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.32\GoogleCrashHandler64.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\igfxtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Nokia -> Nokia) C:\Program Files (x86)\Nokia\Nokia PC Suite 7\OneTouchAccess.exe
(Nokia -> Nokia) C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe
(Nokia -> Nokia) C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
(Nokia -> Nokia) C:\Program Files (x86)\PC Connectivity Solution\Transports\NclRSSrv.exe
(Nokia -> Nokia) C:\Program Files (x86)\PC Connectivity Solution\Transports\NclUSBSrv64.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1353680 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [117344 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] => C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe [37232 2008-06-12] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe [640376 2008-06-11] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [4509184 2012-12-27] (Brother Industries, Ltd.) [File not signed]
HKLM-x32\...\Run: [BrStsInd00] => C:\Program Files (x86)\BrownyInd\Brother\BrIndicator.exe [1885184 2012-12-18] (Brother Industries, Ltd.) [File not signed]
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-2849485344-80999641-4290860500-1000\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [50010064 2020-11-03] (Google LLC -> )
HKU\S-1-5-21-2849485344-80999641-4290860500-1000\...\Run: [PC Suite Tray] => C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe [1516632 2012-06-26] (Nokia -> Nokia)
HKU\S-1-5-21-2849485344-80999641-4290860500-1000\...\Run: [Rainlendar2] => C:\Program Files (x86)\Rainlendar2\Rainlendar2.exe [1365504 2007-12-30] () [File not signed]
HKU\S-1-5-21-2849485344-80999641-4290860500-1000\...\MountPoints2: {ba74590f-a926-11e7-8837-806e6f6e6963} - D:\setup.exe
HKLM\...\Windows x64\Print Processors\Canon MG2500 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDBX.DLL [30208 2013-03-24] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\Windows\system32\AdobePDF.dll [51032 2008-04-07] (Adobe Systems, Incorporated -> Adobe Systems Inc)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG2500 series: C:\Windows\system32\CNMLMBX.DLL [391168 2013-03-24] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\86.0.4240.198\Installer\chrmstp.exe [2020-11-18] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
Startup: C:\Users\uživatel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\googledrivesync – zástupce.lnk [2018-01-09]
ShortcutTarget: googledrivesync – zástupce.lnk -> C:\Program Files (x86)\Google\Drive\googledrivesync.exe (No File)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {157525A2-458C-49AD-8E3B-DA49AAA64194} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2018-01-05] (Google Inc -> Google Inc.)
Task: {908E2BFF-CDD5-47B9-83A4-076F1E0CA869} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4617832 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
Task: {A3B9A6BA-4D8D-431E-ADC5-BB4F46394400} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2018-01-05] (Google Inc -> Google Inc.)
Task: {B1EF08D9-6369-4FA8-B60F-360BDFCAA3B7} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1741416 2020-09-18] (Avast Software s.r.o. -> Avast Software)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\..\Interfaces\{65613182-0863-493C-8D9C-BF6EDE9B7B46}: [DhcpNameServer] 10.0.0.138 0.0.0.0
Tcpip\..\Interfaces\{A4272E00-9054-47B1-879C-794C08284219}: [NameServer] 217.77.165.211 217.77.165.81
Tcpip\..\Interfaces\{C5DC3B8A-599D-4ECB-AB50-123B604FF28A}: [DhcpNameServer] 192.168.0.1
FireFox:
========
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN -> VideoLAN)
Chrome:
=======
CHR Profile: C:\Users\uživatel\AppData\Local\Google\Chrome\User Data\Default [2020-11-30]
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Session Restore: Default -> is enabled.
CHR Extension: (Prezentace) - C:\Users\uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-01-05]
CHR Extension: (Dokumenty) - C:\Users\uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-01-05]
CHR Extension: (Disk Google) - C:\Users\uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-22]
CHR Extension: (YouTube) - C:\Users\uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-01-05]
CHR Extension: (Tabulky) - C:\Users\uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-01-05]
CHR Extension: (Dokumenty Google offline) - C:\Users\uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-18]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2020-10-13]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-07]
CHR Extension: (Gmail) - C:\Users\uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (Chrome Media Router) - C:\Users\uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-10-07]
CHR HKU\S-1-5-21-2849485344-80999641-4290860500-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8454552 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [365648 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [3096160 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [282112 2012-10-26] (Brother Industries, Ltd.) [File not signed]
S3 FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [651720 2018-01-09] (Macrovision Corporation -> Macrovision Europe Ltd.) [File not signed]
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [119864 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
S3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [361816 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [37152 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [206408 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [332368 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [247888 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [97352 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42784 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [176744 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [521752 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [38152 2020-04-16] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [109280 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [84856 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [851608 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [469832 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [217336 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [326416 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [295000 2016-08-25] (Microsoft Corporation -> Microsoft Corporation)
S3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [135928 2016-08-25] (Microsoft Corporation -> Microsoft Corporation)
R3 nmwcd; C:\Windows\System32\drivers\ccdcmbx64.sys [19968 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
R3 nmwcdc; C:\Windows\System32\drivers\ccdcmbox64.sys [27136 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
R3 pccsmcfd; C:\Windows\System32\DRIVERS\pccsmcfdx64.sys [26112 2012-06-11] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
R3 RtlWlanu; C:\Windows\System32\DRIVERS\rtwlanu.sys [3821064 2016-10-01] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation)
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] (Empty Loop -> )
R3 upperdev; C:\Windows\System32\DRIVERS\usbser_lowerfltx64.sys [9216 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
R3 UsbserFilt; C:\Windows\System32\DRIVERS\usbser_lowerfltjx64.sys [9216 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
U1 aswbdisk; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-11-30 09:34 - 2020-11-30 09:34 - 002290176 _____ (Farbar) C:\Users\uživatel\Downloads\Nepotvrzeno 16283.crdownload
2020-11-30 09:33 - 2020-11-30 09:34 - 000000000 ____D C:\new
2020-11-30 09:30 - 2020-11-30 09:30 - 000000000 _____ C:\Users\uživatel\Downloads\Addition.txt
2020-11-30 09:21 - 2020-11-30 09:34 - 000000000 ____D C:\FRST
2020-11-30 09:21 - 2020-11-30 09:21 - 002290176 _____ (Farbar) C:\Users\uživatel\Downloads\FRST64.exe
2020-11-30 08:50 - 2020-11-30 08:50 - 000044568 _____ () C:\Windows\system32\Drivers\staport.sys
2020-11-30 08:49 - 2020-11-30 08:47 - 000217336 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2020-11-30 08:49 - 2020-11-30 08:46 - 000339552 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2020-11-30 08:48 - 2020-11-30 08:48 - 000000000 ____D C:\Users\uživatel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
2020-11-30 08:48 - 2020-11-30 08:48 - 000000000 ____D C:\Program Files\Unlocker
2020-11-30 08:47 - 2020-11-30 08:47 - 000000000 ____D C:\Users\uživatel\AppData\Roaming\Babylon
2020-11-30 08:47 - 2020-11-30 08:47 - 000000000 ____D C:\Users\uživatel\AppData\Local\Babylon
2020-11-30 08:47 - 2020-11-30 08:47 - 000000000 ____D C:\ProgramData\Babylon
2020-11-30 08:46 - 2020-11-30 08:46 - 001078591 _____ C:\Users\uživatel\Downloads\Unlocker1.9.2.exe
2020-11-13 10:05 - 2020-11-13 10:05 - 000090654 _____ C:\Users\uživatel\Desktop\Potvrzení o rozsahu pojištění a ZK.pdf
2020-11-09 13:38 - 2020-11-09 13:38 - 000152224 _____ C:\Users\uživatel\Desktop\RE_ prosím o potvrzení přijetí - valko ELV 4319720613 do fap.pdf
2020-11-09 13:36 - 2020-11-09 13:37 - 000250713 _____ C:\Users\uživatel\Desktop\RE_ prosím o potvrzení přijetí smluv - Honzík 4289875247 a Bardel 4289816930.pdf
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-11-30 09:33 - 2018-01-09 16:36 - 000005420 _____ C:\Windows\WINCMD.INI
2020-11-30 09:16 - 2018-01-09 17:12 - 000000000 ____D C:\temp
2020-11-30 09:08 - 2009-07-14 05:45 - 000022416 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-11-30 09:08 - 2009-07-14 05:45 - 000022416 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-11-30 08:58 - 2018-01-09 14:05 - 000000000 ____D C:\ProgramData\AVAST Software
2020-11-30 08:56 - 2017-02-14 16:48 - 000633958 _____ C:\Windows\system32\perfh005.dat
2020-11-30 08:56 - 2017-02-14 16:48 - 000122552 _____ C:\Windows\system32\perfc005.dat
2020-11-30 08:56 - 2009-07-14 06:13 - 001477954 _____ C:\Windows\system32\PerfStringBackup.INI
2020-11-30 08:56 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2020-11-30 08:55 - 2018-01-09 14:13 - 000004168 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2020-11-30 08:52 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-11-30 08:51 - 2019-01-03 11:51 - 000000000 ____D C:\Users\uživatel\.rainlendar2
2020-11-30 08:47 - 2020-10-16 08:05 - 000176744 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2020-11-30 08:47 - 2020-04-16 07:08 - 000521752 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2020-11-30 08:47 - 2019-01-07 08:04 - 000247888 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2020-11-30 08:47 - 2019-01-07 08:04 - 000097352 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2020-11-30 08:47 - 2018-10-23 06:50 - 000042784 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2020-11-30 08:47 - 2018-01-09 14:12 - 000469832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2020-11-30 08:47 - 2018-01-09 14:12 - 000326416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2020-11-30 08:47 - 2018-01-09 14:12 - 000109280 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2020-11-30 08:47 - 2018-01-09 14:12 - 000084856 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2020-11-30 08:46 - 2019-01-07 08:04 - 000332368 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2020-11-30 08:46 - 2019-01-07 08:04 - 000037152 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys
2020-11-30 08:46 - 2018-01-09 14:12 - 000851608 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2020-11-30 08:46 - 2018-01-09 14:12 - 000206408 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2020-11-27 10:03 - 2018-01-11 17:31 - 000000000 ___HD C:\Users\uživatel\Desktop\.tmp.drivedownload
2020-11-20 11:19 - 2018-01-09 14:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2020-11-19 09:03 - 2018-01-05 11:19 - 000000000 ____D C:\Users\uživatel\AppData\Roaming\vlc
2020-11-18 08:16 - 2018-01-05 12:35 - 000002255 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-11-02 09:49 - 2018-01-10 10:38 - 000000000 ____D C:\ProgramData\FLEXnet
==================== Files in the root of some directories ========
2019-07-04 05:29 - 2019-07-04 05:29 - 000004096 ____H () C:\Users\uživatel\AppData\Local\keyfile3.drm
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
LastRegBack: 2020-11-27 00:54
==================== End of FRST.txt ========================
Ran by uživatel (administrator) on UŽIVATEL-PC (Hewlett-Packard HP Compaq 6200 Pro SFF PC) (30-11-2020 09:34:31)
Running from C:\new
Loaded Profiles: uživatel
Platform: Windows 7 Professional Service Pack 1 (X64) Language: Čeština (Česká republika)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
() [File not signed] C:\Program Files (x86)\Rainlendar2\Rainlendar2.exe
(Adobe Systems, Incorporated -> Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrotray.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <3>
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\BrYNSvc.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\BrownyInd\Brother\BrIndicator.exe
(C. Ghisler & Co.) [File not signed] C:\Program Files\totalcmd\TOTALCMD.EXE
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe <2>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <23>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.32\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.32\GoogleCrashHandler64.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\igfxtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Nokia -> Nokia) C:\Program Files (x86)\Nokia\Nokia PC Suite 7\OneTouchAccess.exe
(Nokia -> Nokia) C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe
(Nokia -> Nokia) C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
(Nokia -> Nokia) C:\Program Files (x86)\PC Connectivity Solution\Transports\NclRSSrv.exe
(Nokia -> Nokia) C:\Program Files (x86)\PC Connectivity Solution\Transports\NclUSBSrv64.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1353680 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [117344 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] => C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe [37232 2008-06-12] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe [640376 2008-06-11] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [4509184 2012-12-27] (Brother Industries, Ltd.) [File not signed]
HKLM-x32\...\Run: [BrStsInd00] => C:\Program Files (x86)\BrownyInd\Brother\BrIndicator.exe [1885184 2012-12-18] (Brother Industries, Ltd.) [File not signed]
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-2849485344-80999641-4290860500-1000\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [50010064 2020-11-03] (Google LLC -> )
HKU\S-1-5-21-2849485344-80999641-4290860500-1000\...\Run: [PC Suite Tray] => C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe [1516632 2012-06-26] (Nokia -> Nokia)
HKU\S-1-5-21-2849485344-80999641-4290860500-1000\...\Run: [Rainlendar2] => C:\Program Files (x86)\Rainlendar2\Rainlendar2.exe [1365504 2007-12-30] () [File not signed]
HKU\S-1-5-21-2849485344-80999641-4290860500-1000\...\MountPoints2: {ba74590f-a926-11e7-8837-806e6f6e6963} - D:\setup.exe
HKLM\...\Windows x64\Print Processors\Canon MG2500 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDBX.DLL [30208 2013-03-24] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\Windows\system32\AdobePDF.dll [51032 2008-04-07] (Adobe Systems, Incorporated -> Adobe Systems Inc)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG2500 series: C:\Windows\system32\CNMLMBX.DLL [391168 2013-03-24] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\86.0.4240.198\Installer\chrmstp.exe [2020-11-18] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
Startup: C:\Users\uživatel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\googledrivesync – zástupce.lnk [2018-01-09]
ShortcutTarget: googledrivesync – zástupce.lnk -> C:\Program Files (x86)\Google\Drive\googledrivesync.exe (No File)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {157525A2-458C-49AD-8E3B-DA49AAA64194} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2018-01-05] (Google Inc -> Google Inc.)
Task: {908E2BFF-CDD5-47B9-83A4-076F1E0CA869} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4617832 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
Task: {A3B9A6BA-4D8D-431E-ADC5-BB4F46394400} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2018-01-05] (Google Inc -> Google Inc.)
Task: {B1EF08D9-6369-4FA8-B60F-360BDFCAA3B7} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1741416 2020-09-18] (Avast Software s.r.o. -> Avast Software)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\..\Interfaces\{65613182-0863-493C-8D9C-BF6EDE9B7B46}: [DhcpNameServer] 10.0.0.138 0.0.0.0
Tcpip\..\Interfaces\{A4272E00-9054-47B1-879C-794C08284219}: [NameServer] 217.77.165.211 217.77.165.81
Tcpip\..\Interfaces\{C5DC3B8A-599D-4ECB-AB50-123B604FF28A}: [DhcpNameServer] 192.168.0.1
FireFox:
========
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN -> VideoLAN)
Chrome:
=======
CHR Profile: C:\Users\uživatel\AppData\Local\Google\Chrome\User Data\Default [2020-11-30]
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Session Restore: Default -> is enabled.
CHR Extension: (Prezentace) - C:\Users\uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-01-05]
CHR Extension: (Dokumenty) - C:\Users\uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-01-05]
CHR Extension: (Disk Google) - C:\Users\uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-22]
CHR Extension: (YouTube) - C:\Users\uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-01-05]
CHR Extension: (Tabulky) - C:\Users\uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-01-05]
CHR Extension: (Dokumenty Google offline) - C:\Users\uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-18]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2020-10-13]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-07]
CHR Extension: (Gmail) - C:\Users\uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (Chrome Media Router) - C:\Users\uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-10-07]
CHR HKU\S-1-5-21-2849485344-80999641-4290860500-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8454552 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [365648 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [3096160 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [282112 2012-10-26] (Brother Industries, Ltd.) [File not signed]
S3 FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [651720 2018-01-09] (Macrovision Corporation -> Macrovision Europe Ltd.) [File not signed]
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [119864 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
S3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [361816 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [37152 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [206408 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [332368 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [247888 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [97352 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42784 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [176744 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [521752 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [38152 2020-04-16] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [109280 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [84856 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [851608 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [469832 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [217336 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [326416 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [295000 2016-08-25] (Microsoft Corporation -> Microsoft Corporation)
S3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [135928 2016-08-25] (Microsoft Corporation -> Microsoft Corporation)
R3 nmwcd; C:\Windows\System32\drivers\ccdcmbx64.sys [19968 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
R3 nmwcdc; C:\Windows\System32\drivers\ccdcmbox64.sys [27136 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
R3 pccsmcfd; C:\Windows\System32\DRIVERS\pccsmcfdx64.sys [26112 2012-06-11] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
R3 RtlWlanu; C:\Windows\System32\DRIVERS\rtwlanu.sys [3821064 2016-10-01] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation)
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] (Empty Loop -> )
R3 upperdev; C:\Windows\System32\DRIVERS\usbser_lowerfltx64.sys [9216 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
R3 UsbserFilt; C:\Windows\System32\DRIVERS\usbser_lowerfltjx64.sys [9216 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
U1 aswbdisk; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-11-30 09:34 - 2020-11-30 09:34 - 002290176 _____ (Farbar) C:\Users\uživatel\Downloads\Nepotvrzeno 16283.crdownload
2020-11-30 09:33 - 2020-11-30 09:34 - 000000000 ____D C:\new
2020-11-30 09:30 - 2020-11-30 09:30 - 000000000 _____ C:\Users\uživatel\Downloads\Addition.txt
2020-11-30 09:21 - 2020-11-30 09:34 - 000000000 ____D C:\FRST
2020-11-30 09:21 - 2020-11-30 09:21 - 002290176 _____ (Farbar) C:\Users\uživatel\Downloads\FRST64.exe
2020-11-30 08:50 - 2020-11-30 08:50 - 000044568 _____ () C:\Windows\system32\Drivers\staport.sys
2020-11-30 08:49 - 2020-11-30 08:47 - 000217336 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2020-11-30 08:49 - 2020-11-30 08:46 - 000339552 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2020-11-30 08:48 - 2020-11-30 08:48 - 000000000 ____D C:\Users\uživatel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
2020-11-30 08:48 - 2020-11-30 08:48 - 000000000 ____D C:\Program Files\Unlocker
2020-11-30 08:47 - 2020-11-30 08:47 - 000000000 ____D C:\Users\uživatel\AppData\Roaming\Babylon
2020-11-30 08:47 - 2020-11-30 08:47 - 000000000 ____D C:\Users\uživatel\AppData\Local\Babylon
2020-11-30 08:47 - 2020-11-30 08:47 - 000000000 ____D C:\ProgramData\Babylon
2020-11-30 08:46 - 2020-11-30 08:46 - 001078591 _____ C:\Users\uživatel\Downloads\Unlocker1.9.2.exe
2020-11-13 10:05 - 2020-11-13 10:05 - 000090654 _____ C:\Users\uživatel\Desktop\Potvrzení o rozsahu pojištění a ZK.pdf
2020-11-09 13:38 - 2020-11-09 13:38 - 000152224 _____ C:\Users\uživatel\Desktop\RE_ prosím o potvrzení přijetí - valko ELV 4319720613 do fap.pdf
2020-11-09 13:36 - 2020-11-09 13:37 - 000250713 _____ C:\Users\uživatel\Desktop\RE_ prosím o potvrzení přijetí smluv - Honzík 4289875247 a Bardel 4289816930.pdf
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-11-30 09:33 - 2018-01-09 16:36 - 000005420 _____ C:\Windows\WINCMD.INI
2020-11-30 09:16 - 2018-01-09 17:12 - 000000000 ____D C:\temp
2020-11-30 09:08 - 2009-07-14 05:45 - 000022416 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-11-30 09:08 - 2009-07-14 05:45 - 000022416 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-11-30 08:58 - 2018-01-09 14:05 - 000000000 ____D C:\ProgramData\AVAST Software
2020-11-30 08:56 - 2017-02-14 16:48 - 000633958 _____ C:\Windows\system32\perfh005.dat
2020-11-30 08:56 - 2017-02-14 16:48 - 000122552 _____ C:\Windows\system32\perfc005.dat
2020-11-30 08:56 - 2009-07-14 06:13 - 001477954 _____ C:\Windows\system32\PerfStringBackup.INI
2020-11-30 08:56 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2020-11-30 08:55 - 2018-01-09 14:13 - 000004168 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2020-11-30 08:52 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-11-30 08:51 - 2019-01-03 11:51 - 000000000 ____D C:\Users\uživatel\.rainlendar2
2020-11-30 08:47 - 2020-10-16 08:05 - 000176744 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2020-11-30 08:47 - 2020-04-16 07:08 - 000521752 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2020-11-30 08:47 - 2019-01-07 08:04 - 000247888 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2020-11-30 08:47 - 2019-01-07 08:04 - 000097352 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2020-11-30 08:47 - 2018-10-23 06:50 - 000042784 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2020-11-30 08:47 - 2018-01-09 14:12 - 000469832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2020-11-30 08:47 - 2018-01-09 14:12 - 000326416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2020-11-30 08:47 - 2018-01-09 14:12 - 000109280 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2020-11-30 08:47 - 2018-01-09 14:12 - 000084856 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2020-11-30 08:46 - 2019-01-07 08:04 - 000332368 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2020-11-30 08:46 - 2019-01-07 08:04 - 000037152 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys
2020-11-30 08:46 - 2018-01-09 14:12 - 000851608 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2020-11-30 08:46 - 2018-01-09 14:12 - 000206408 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2020-11-27 10:03 - 2018-01-11 17:31 - 000000000 ___HD C:\Users\uživatel\Desktop\.tmp.drivedownload
2020-11-20 11:19 - 2018-01-09 14:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2020-11-19 09:03 - 2018-01-05 11:19 - 000000000 ____D C:\Users\uživatel\AppData\Roaming\vlc
2020-11-18 08:16 - 2018-01-05 12:35 - 000002255 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-11-02 09:49 - 2018-01-10 10:38 - 000000000 ____D C:\ProgramData\FLEXnet
==================== Files in the root of some directories ========
2019-07-04 05:29 - 2019-07-04 05:29 - 000004096 ____H () C:\Users\uživatel\AppData\Local\keyfile3.drm
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
LastRegBack: 2020-11-27 00:54
==================== End of FRST.txt ========================
- Rudy
- Site Admin
- Příspěvky: 118715
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: najednou nelze mazat, omezení přístupu v adr.
OK. Teď spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/
ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: najednou nelze mazat, omezení přístupu v adr.
# -------------------------------
# Malwarebytes AdwCleaner 8.0.8.0
# -------------------------------
# Build: 10-08-2020
# Database: 2020-09-29.1 (Local)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 12-01-2020
# Duration: 00:00:03
# OS: Windows 7 Professional
# Cleaned: 1
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
Deleted HKLM\Software\Classes\Prod.cap
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [1439 octets] - [01/12/2020 06:58:54]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
# Malwarebytes AdwCleaner 8.0.8.0
# -------------------------------
# Build: 10-08-2020
# Database: 2020-09-29.1 (Local)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 12-01-2020
# Duration: 00:00:03
# OS: Windows 7 Professional
# Cleaned: 1
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
Deleted HKLM\Software\Classes\Prod.cap
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [1439 octets] - [01/12/2020 06:58:54]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
- Rudy
- Site Admin
- Příspěvky: 118715
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: najednou nelze mazat, omezení přístupu v adr.
Dejte nové logy FRST+Addition.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: najednou nelze mazat, omezení přístupu v adr.
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-11-2020
Ran by uživatel (02-12-2020 08:47:07)
Running from C:\temp
Windows 7 Professional Service Pack 1 (X64) (2018-01-05 10:04:13)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-2849485344-80999641-4290860500-500 - Administrator - Disabled)
Guest (S-1-5-21-2849485344-80999641-4290860500-501 - Limited - Disabled)
uživatel (S-1-5-21-2849485344-80999641-4290860500-1000 - Administrator - Enabled) => C:\Users\uživatel
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Microsoft Security Essentials (Disabled - Up to date) {71A27EC9-3DA6-45FC-60A7-004F623C6189}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Microsoft Security Essentials (Disabled - Up to date) {CAC39F2D-1B9C-4A72-5A17-3B3D19BB2B34}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {5078598A-1FA2-C888-AA5F-A9C66537DB12}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Acrobat 9 Pro - English, Français, Deutsch (HKLM-x32\...\{AC76BA86-1033-F400-7760-000000000004}{AC76BA86-1033-F400-7760-000000000004}) (Version: 9.0.0 - Adobe Systems)
Aladin verze 4.0 (HKLM-x32\...\{77D91700-C34E-47C5-83A5-238F19FF3C48}_is1) (Version: 4.0 - Slavia Pojišťovna a.s.)
ASUS USB-N10 Wireless LAN Driver (HKLM-x32\...\{B20F9D1C-A0A5-4cd8-8306-DA03872311B1}) (Version: 1.0.1.1 - ASUS)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 20.9.2437 - Avast Software)
Backup and Sync from Google (HKLM\...\{3A8CD593-8CF9-45B4-9932-FC41CBC14E15}) (Version: 3.53.3404.7585 - Google, Inc.)
Balíček ovladače systému Windows - Nokia Modem (02/25/2011 4.7) (HKLM\...\E0AC723A3DE3A04256288CADBBB011B112AED454) (Version: 02/25/2011 4.7 - Nokia)
Balíček ovladače systému Windows - Nokia Modem (02/25/2011 7.01.0.9) (HKLM\...\72A50F48CC5601190B9C4E74D81161693133E7F7) (Version: 02/25/2011 7.01.0.9 - Nokia)
Balíček ovladače systému Windows - Nokia pccsmcfd LegacyDriver (05/31/2012 7.1.2.0) (HKLM\...\62BBD193ADFDBB228C7E1ADB56463F5732FF7F6F) (Version: 05/31/2012 7.1.2.0 - Nokia)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: - Canon Inc.)
Canon MG2500 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG2500_series) (Version: 1.02 - Canon Inc.)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.7.6229 - CDBurnerXP)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
ČSOBP Kalkulátory 1.27.0.x (HKLM-x32\...\Kalkulátory_is1) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 86.0.4240.198 - Google LLC)
Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.31 - Google LLC) Hidden
HL-1110 series (HKLM-x32\...\{4F2442B7-A89E-42A4-8F0E-6937499855CA}) (Version: 1.0.1.0 - Brother Industries, Ltd.)
IrfanView 64 (remove only) (HKLM\...\IrfanView64) (Version: 4.41 - Irfan Skiljan)
LibreOffice 5.1 Help Pack (Czech) (HKLM-x32\...\{E4C8ED36-852C-4BA9-AF83-919572C4AC84}) (Version: 5.1.4.2 - The Document Foundation)
LibreOffice 5.1.4.2 (HKLM-x32\...\{D5D4AC5C-C757-4EB2-857C-B021DB22482C}) (Version: 5.1.4.2 - The Document Foundation)
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile CSY Language Pack (HKLM\...\Microsoft .NET Framework 4 Client Profile CSY Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.10.209.0 - Microsoft Corporation)
MSVC90_x64 (HKLM\...\{AB071C8B-873C-459F-ACA9-9EBE03C3E89B}) (Version: 1.0.1.2 - Nokia) Hidden
MSVC90_x86 (HKLM-x32\...\{AF111648-99A1-453E-81DD-80DBBF6DAD0D}) (Version: 1.0.1.2 - Nokia) Hidden
Nokia Connectivity Cable Driver (HKLM-x32\...\{D4BF151C-70A8-4CE2-906F-4173A575BAD9}) (Version: 7.1.182.0 - Nokia)
Nokia PC Suite (HKLM-x32\...\{866C4563-ED53-43F3-A29D-8BEE2BD1BA3C}) (Version: 7.1.180.94 - Nokia) Hidden
Nokia PC Suite (HKLM-x32\...\Nokia PC Suite) (Version: 7.1.180.94 - Nokia)
PC Connectivity Solution (HKLM-x32\...\{644F4910-E812-49AD-93EC-86828CB81A0D}) (Version: 12.0.27.0 - Nokia)
Rainlendar2 (remove only) (HKLM-x32\...\Rainlendar2) (Version: - )
Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.6 - VideoLAN)
xat.com Image Optimizer (HKLM-x32\...\xat.com Image Optimizer) (Version: - )
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2217832 2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-11-03] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-11-03] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-11-03] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-11-30] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {D25B2CAB-8A9A-4517-A9B2-CB5F68A5A802} => C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\..\Acrobat Elements\ContextMenu64.dll [2008-06-11] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-11-30] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-11-03] (Google LLC -> Google)
ContextMenuHandlers2: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-11-30] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-11-03] (Google LLC -> Google)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2014-03-20] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {D25B2CAB-8A9A-4517-A9B2-CB5F68A5A802} => C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\..\Acrobat Elements\ContextMenu64.dll [2008-06-11] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-11-30] (Avast Software s.r.o. -> AVAST Software)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]
==================== Loaded Modules (Whitelisted) =============
2008-06-11 22:32 - 2008-06-11 22:32 - 002666496 _____ () [File not signed] C:\Program Files (x86)\Adobe\Acrobat 9.0\PDFMaker\Common\AdobePDFMakerX.dll
2018-01-16 15:02 - 2009-02-27 16:38 - 000139264 ____R () [File not signed] C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
2012-06-26 12:38 - 2012-06-26 12:38 - 000009728 _____ () [File not signed] C:\Program Files (x86)\Nokia\Nokia PC Suite 7\Lang\OneTouchAccess_cze.NLR
2007-12-30 11:24 - 2007-12-30 11:24 - 000140288 _____ () [File not signed] C:\Program Files (x86)\Rainlendar2\plugins\iCalendarPlugin.dll
2020-12-01 07:07 - 2020-12-01 07:07 - 000114176 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\_ctypes.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000172544 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\_elementtree.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 002255872 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\_hashlib.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000032256 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\_multiprocessing.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000046080 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\_psutil_windows.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000047616 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\_socket.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 002824704 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\_ssl.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000026112 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\_yappi.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000080896 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\bz2.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000016384 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\common.time34.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000007680 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\hashobjs_ext.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000301568 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\PIL._imaging.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000168448 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\pyexpat.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 001084416 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\pysqlite2._sqlite.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000548864 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\pythoncom27.dll
2020-12-01 07:07 - 2020-12-01 07:07 - 000137728 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\pywintypes27.dll
2020-12-01 07:07 - 2020-12-01 07:07 - 000010752 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\select.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000020992 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\thumbnails_ext.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000689664 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\unicodedata.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000119808 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\usb_ext.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000128512 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\win32api.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000438784 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\win32com.shell.shell.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000011776 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\win32crypt.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000023040 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\win32event.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000149504 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\win32file.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000223232 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\win32gui.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000048128 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\win32inet.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000029696 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\win32pdh.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000027648 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\win32pipe.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000044032 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\win32process.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000020480 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\win32profile.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000136192 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\win32security.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000026624 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\win32ts.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000034816 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\windows.conditional.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000038400 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\windows.connectivity.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000071680 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\windows.device_monitor.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000109056 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\windows.volumes.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000020480 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\windows.winwrap.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 001325056 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\wx._controls_.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 001489408 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\wx._core_.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 001007104 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\wx._gdi_.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000103424 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\wx._html2.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000916992 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\wx._misc_.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 001039872 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\wx._windows_.pyd
2008-06-12 02:19 - 2008-06-12 02:19 - 000019968 _____ (Adobe Systems Inc.) [File not signed] C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\AcroTray.DEU
2008-06-12 02:08 - 2008-06-12 02:08 - 000019968 _____ (Adobe Systems Inc.) [File not signed] C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\AcroTray.FRA
2018-01-16 15:02 - 2008-08-18 18:27 - 000122880 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\brlmw03a.dll
2018-01-16 15:02 - 2012-07-13 13:09 - 000385024 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\BrMonitor.dll
2018-01-16 15:02 - 2011-02-28 11:32 - 000208896 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\Brother\BrFirmUpdateCheck.dll
2018-01-16 15:03 - 2012-08-30 15:30 - 002040832 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\Brother\BrStMonWRes.dll
2003-03-18 21:14 - 2003-03-18 21:14 - 000499712 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Rainlendar2\MSVCP71.dll
2003-02-21 05:42 - 2003-02-21 05:42 - 000348160 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Rainlendar2\MSVCR71.dll
2018-01-09 18:39 - 2018-01-09 18:39 - 000096256 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.762_none_11ecb0ab9b2caf3c\ATL80.DLL
2018-01-09 18:39 - 2018-01-09 18:39 - 001093120 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.762_none_0c178a139ee2a7ed\MFC80U.DLL
2020-09-11 07:09 - 2020-09-11 07:09 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2020-09-11 07:09 - 2020-09-11 07:09 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2020-09-11 07:09 - 2020-09-11 07:09 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2020-09-11 07:09 - 2020-09-11 07:09 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2020-09-11 07:09 - 2020-09-11 07:09 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2020-09-11 07:09 - 2020-09-11 07:09 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2020-09-11 07:09 - 2020-09-11 07:09 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2020-09-11 07:09 - 2020-09-11 07:09 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2020-09-11 07:09 - 2020-09-11 07:09 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2020-09-11 07:09 - 2020-09-11 07:09 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2020-09-11 07:09 - 2020-09-11 07:09 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2020-09-11 07:09 - 2020-09-11 07:09 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\ucrtbase.DLL
2020-09-11 07:09 - 2020-09-11 07:09 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\VCRUNTIME140.dll
2020-12-02 07:59 - 2020-12-02 07:59 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20120106\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2020-12-02 07:59 - 2020-12-02 07:59 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20120106\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2020-12-02 07:59 - 2020-12-02 07:59 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20120106\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2020-12-02 07:59 - 2020-12-02 07:59 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20120106\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2020-12-02 07:59 - 2020-12-02 07:59 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20120106\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2020-12-02 07:59 - 2020-12-02 07:59 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20120106\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2020-12-02 07:59 - 2020-12-02 07:59 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20120106\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2020-12-02 07:59 - 2020-12-02 07:59 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20120106\avast.local_vc142.crt\api-ms-win-crt-environment-l1-1-0.dll
2020-12-02 07:59 - 2020-12-02 07:59 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20120106\avast.local_vc142.crt\api-ms-win-crt-filesystem-l1-1-0.dll
2020-12-02 07:59 - 2020-12-02 07:59 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20120106\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2020-12-02 07:59 - 2020-12-02 07:59 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20120106\avast.local_vc142.crt\api-ms-win-crt-locale-l1-1-0.dll
2020-12-02 07:59 - 2020-12-02 07:59 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20120106\avast.local_vc142.crt\api-ms-win-crt-math-l1-1-0.dll
2020-12-02 07:59 - 2020-12-02 07:59 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20120106\avast.local_vc142.crt\api-ms-win-crt-multibyte-l1-1-0.dll
2020-12-02 07:59 - 2020-12-02 07:59 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20120106\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2020-12-02 07:59 - 2020-12-02 07:59 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20120106\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2020-12-02 07:59 - 2020-12-02 07:59 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20120106\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2020-12-02 07:59 - 2020-12-02 07:59 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20120106\avast.local_vc142.crt\api-ms-win-crt-time-l1-1-0.dll
2020-12-02 07:59 - 2020-12-02 07:59 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20120106\avast.local_vc142.crt\api-ms-win-crt-utility-l1-1-0.dll
2020-12-02 07:59 - 2020-12-02 07:59 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20120106\avast.local_vc142.crt\MSVCP140.dll
2020-12-02 07:59 - 2020-12-02 07:59 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20120106\avast.local_vc142.crt\ucrtbase.DLL
2020-12-02 07:59 - 2020-12-02 07:59 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20120106\avast.local_vc142.crt\VCRUNTIME140.dll
2020-12-02 07:59 - 2020-12-02 07:59 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20120106\avast.local_vc142.crt\VCRUNTIME140_1.dll
2012-06-26 13:08 - 2012-06-26 13:08 - 000026624 _____ (Nokia) [File not signed] C:\Program Files (x86)\Nokia\Nokia PC Suite 7\Lang\PhoneBrowser_cze.nlr
2012-06-26 11:57 - 2012-06-26 11:57 - 000918016 _____ (Nokia) [File not signed] C:\Program Files (x86)\Nokia\Nokia PC Suite 7\NGSCM.DLL
2012-06-26 11:58 - 2012-06-26 11:58 - 001262592 _____ (Nokia) [File not signed] C:\Program Files (x86)\Nokia\Nokia PC Suite 7\NGSCM64.DLL
2012-06-26 12:38 - 2012-06-26 12:38 - 000286720 _____ (Nokia) [File not signed] C:\Program Files (x86)\Nokia\Nokia PC Suite 7\Resource\OneTouchAccess_Nokia.NGR
2012-06-26 13:08 - 2012-06-26 13:08 - 000572928 _____ (Nokia) [File not signed] C:\Program Files (x86)\Nokia\Nokia PC Suite 7\Resource\PhoneBrowser_Nokia.ngr
2020-12-01 07:07 - 2020-12-01 07:07 - 003043328 _____ (Python Software Foundation) [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\python27.dll
2020-12-01 07:07 - 2020-12-01 07:07 - 000202240 _____ (wxWidgets development team) [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\wxbase30u_net_vc90_x64.dll
2020-12-01 07:07 - 2020-12-01 07:07 - 002831872 _____ (wxWidgets development team) [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\wxbase30u_vc90_x64.dll
2020-12-01 07:07 - 2020-12-01 07:07 - 001654784 _____ (wxWidgets development team) [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\wxmsw30u_adv_vc90_x64.dll
2020-12-01 07:07 - 2020-12-01 07:07 - 006542336 _____ (wxWidgets development team) [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\wxmsw30u_core_vc90_x64.dll
2020-12-01 07:07 - 2020-12-01 07:07 - 000773632 _____ (wxWidgets development team) [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\wxmsw30u_html_vc90_x64.dll
2020-12-01 07:07 - 2020-12-01 07:07 - 000137216 _____ (wxWidgets development team) [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\wxmsw30u_webview_vc90_x64.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Version 11) (Whitelisted) ==========
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2018-01-05] (Google Inc -> Google Inc.)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2018-01-05] (Google Inc -> Google Inc.)
BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2018-01-05] (Google Inc -> Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2018-01-05] (Google Inc -> Google Inc.)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKU\S-1-5-21-2849485344-80999641-4290860500-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2018-01-05] (Google Inc -> Google Inc.)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 03:34 - 2019-01-04 08:57 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\PC Connectivity Solution\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\
HKU\S-1-5-21-2849485344-80999641-4290860500-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\uživatel\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 217.77.165.211 - 217.77.165.81
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [SPPSVC-In-TCP] => (Allow) C:\Windows\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) C:\Windows\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{6A2D4471-05CD-4865-BBFF-E17407636E53}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Restore Points =========================
16-11-2020 08:18:45 Windows Update
23-11-2020 08:07:08 Windows Update
30-11-2020 09:04:52 Windows Update
==================== Faulty Device Manager Devices ============
Name: Myš Microsoft pro port PS/2
Description: Myš Microsoft pro port PS/2
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
Name: Standardní klávesnice PS/2
Description: Standardní klávesnice PS/2
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standardní klávesnice)
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
==================== Event log errors: ========================
Application errors:
==================
Error: (12/01/2020 09:38:13 AM) (Source: RasClient) (EventID: 20227) (User: )
Description: CoID={50B59692-2099-409F-AA6B-5E1E41A46DBB}: Uživatel uživatel-PC\uživatel vytočil připojení s názvem Nokia USB Modem (OTA), které se nezdařilo. Kód chyby vrácený při selhání je 618.
Error: (12/01/2020 07:08:52 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Error: (11/30/2020 10:18:32 AM) (Source: RasClient) (EventID: 20227) (User: )
Description: CoID={18ECF51C-9E46-4B23-9DDC-F4FAEA63415C}: Uživatel uživatel-PC\uživatel vytočil připojení s názvem Nokia USB Modem (OTA), které se nezdařilo. Kód chyby vrácený při selhání je 0.
Error: (11/30/2020 10:17:47 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Acrobat.exe, verze: 9.0.0.332, časové razítko: 0x4850eb76
Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.24000, časové razítko: 0x5a49962f
Kód výjimky: 0xc0000005
Posun chyby: 0x0004ebcb
ID chybujícího procesu: 0x1884
Čas spuštění chybující aplikace: 0x01d6c6f79013ac7d
Cesta k chybující aplikaci: C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrobat.exe
Cesta k chybujícímu modulu: C:\Windows\SysWOW64\ntdll.dll
ID zprávy: e8d155af-32ec-11eb-b79c-001185750532
Error: (11/30/2020 08:53:11 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Error: (11/30/2020 08:38:32 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Error: (11/26/2020 11:23:16 AM) (Source: RasClient) (EventID: 20227) (User: )
Description: CoID={A2767CE4-C7C6-4854-8347-9D7AE991AA58}: Uživatel uživatel-PC\uživatel vytočil připojení s názvem Nokia USB Modem (OTA), které se nezdařilo. Kód chyby vrácený při selhání je 618.
Error: (11/24/2020 10:35:58 AM) (Source: RasClient) (EventID: 20227) (User: )
Description: CoID={5568EA2F-7B6D-49AC-B090-47BA70E45D90}: Uživatel uživatel-PC\uživatel vytočil připojení s názvem Nokia USB Modem (OTA), které se nezdařilo. Kód chyby vrácený při selhání je 0.
System errors:
=============
Error: (12/01/2020 07:07:15 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN se nepodařilo spustit.
Cesta k modulu: C:\Windows\system32\Rtlihvs.dll
Kód chyby: 126
Error: (12/01/2020 07:06:03 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {ACF50018-41F8-476D-85FD-CD953DAE4A49} se v daném časovém limitu neregistroval u služby DCOM.
Error: (12/01/2020 07:05:33 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba BrYNSvc byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (12/01/2020 07:05:33 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba ServiceLayer byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (11/30/2020 08:51:39 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN se nepodařilo spustit.
Cesta k modulu: C:\Windows\system32\Rtlihvs.dll
Kód chyby: 126
Error: (11/30/2020 08:46:06 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 70.
Error: (11/30/2020 08:46:06 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 70.
Error: (11/30/2020 08:46:05 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 70.
==================== Memory info ===========================
BIOS: Hewlett-Packard J01 v02.15 11/10/2011
Motherboard: Hewlett-Packard 1497
Processor: Intel(R) Core(TM) i3-2100 CPU @ 3.10GHz
Percentage of memory in use: 91%
Total physical RAM: 3984.04 MB
Available physical RAM: 346.54 MB
Total Virtual: 7966.25 MB
Available Virtual: 3723.95 MB
==================== Drives ================================
Drive c: (znalecký ústav- odbor pojištění) (Fixed) (Total:193.6 GB) (Free:109.81 GB) NTFS
Drive h: (Nový svazek) (Fixed) (Total:39.06 GB) (Free:26.25 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 232.9 GB) (Disk ID: 00000000)
Partition: GPT.
==================== End of Addition.txt =======================
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 29-11-2020
Ran by uživatel (administrator) on UŽIVATEL-PC (Hewlett-Packard HP Compaq 6200 Pro SFF PC) (02-12-2020 08:45:06)
Running from C:\temp
Loaded Profiles: uživatel
Platform: Windows 7 Professional Service Pack 1 (X64) Language: Čeština (Česká republika)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
() [File not signed] C:\Program Files (x86)\Rainlendar2\Rainlendar2.exe
(Adobe Systems, Incorporated -> Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrotray.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated.) C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrodist.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <3>
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\BrYNSvc.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\BrownyInd\Brother\BrIndicator.exe
(C. Ghisler & Co.) [File not signed] C:\Program Files\totalcmd\TOTALCMD.EXE
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe <2>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <11>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.32\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.32\GoogleCrashHandler64.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\igfxtray.exe
(Macrovision Corporation -> Macrovision Europe Ltd.) [File not signed] C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
(Malwarebytes Inc -> Malwarebytes) C:\temp\adwcleaner_8.0.8.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe <2>
(Nokia -> Nokia) C:\Program Files (x86)\Nokia\Nokia PC Suite 7\OneTouchAccess.exe
(Nokia -> Nokia) C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe
(Nokia -> Nokia) C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
(Nokia -> Nokia) C:\Program Files (x86)\PC Connectivity Solution\Transports\NclRSSrv.exe
(Nokia -> Nokia) C:\Program Files (x86)\PC Connectivity Solution\Transports\NclUSBSrv64.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1353680 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [117344 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] => C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe [37232 2008-06-12] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe [640376 2008-06-11] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [4509184 2012-12-27] (Brother Industries, Ltd.) [File not signed]
HKLM-x32\...\Run: [BrStsInd00] => C:\Program Files (x86)\BrownyInd\Brother\BrIndicator.exe [1885184 2012-12-18] (Brother Industries, Ltd.) [File not signed]
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-2849485344-80999641-4290860500-1000\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [50010064 2020-11-03] (Google LLC -> )
HKU\S-1-5-21-2849485344-80999641-4290860500-1000\...\Run: [PC Suite Tray] => C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe [1516632 2012-06-26] (Nokia -> Nokia)
HKU\S-1-5-21-2849485344-80999641-4290860500-1000\...\Run: [Rainlendar2] => C:\Program Files (x86)\Rainlendar2\Rainlendar2.exe [1365504 2007-12-30] () [File not signed]
HKU\S-1-5-21-2849485344-80999641-4290860500-1000\...\MountPoints2: {ba74590f-a926-11e7-8837-806e6f6e6963} - D:\setup.exe
HKLM\...\Windows x64\Print Processors\Canon MG2500 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDBX.DLL [30208 2013-03-24] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\Windows\system32\AdobePDF.dll [51032 2008-04-07] (Adobe Systems, Incorporated -> Adobe Systems Inc)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG2500 series: C:\Windows\system32\CNMLMBX.DLL [391168 2013-03-24] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\86.0.4240.198\Installer\chrmstp.exe [2020-11-18] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
Startup: C:\Users\uživatel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\googledrivesync – zástupce.lnk [2018-01-09]
ShortcutTarget: googledrivesync – zástupce.lnk -> C:\Program Files (x86)\Google\Drive\googledrivesync.exe (No File)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {157525A2-458C-49AD-8E3B-DA49AAA64194} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2018-01-05] (Google Inc -> Google Inc.)
Task: {908E2BFF-CDD5-47B9-83A4-076F1E0CA869} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4617832 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
Task: {A3B9A6BA-4D8D-431E-ADC5-BB4F46394400} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2018-01-05] (Google Inc -> Google Inc.)
Task: {B1EF08D9-6369-4FA8-B60F-360BDFCAA3B7} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1741416 2020-09-18] (Avast Software s.r.o. -> Avast Software)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\..\Interfaces\{65613182-0863-493C-8D9C-BF6EDE9B7B46}: [DhcpNameServer] 10.0.0.138 0.0.0.0
Tcpip\..\Interfaces\{A4272E00-9054-47B1-879C-794C08284219}: [NameServer] 217.77.165.211 217.77.165.81
Tcpip\..\Interfaces\{C5DC3B8A-599D-4ECB-AB50-123B604FF28A}: [DhcpNameServer] 192.168.0.1
FireFox:
========
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN -> VideoLAN)
Chrome:
=======
CHR Profile: C:\Users\uživatel\AppData\Local\Google\Chrome\User Data\Default [2020-12-02]
CHR DownloadDir: C:\temp
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Session Restore: Default -> is enabled.
CHR Extension: (Prezentace) - C:\Users\uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-01-05]
CHR Extension: (Dokumenty) - C:\Users\uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-01-05]
CHR Extension: (Disk Google) - C:\Users\uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-22]
CHR Extension: (YouTube) - C:\Users\uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-01-05]
CHR Extension: (Tabulky) - C:\Users\uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-01-05]
CHR Extension: (Dokumenty Google offline) - C:\Users\uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-18]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2020-10-13]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-07]
CHR Extension: (Gmail) - C:\Users\uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (Chrome Media Router) - C:\Users\uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-10-07]
CHR HKU\S-1-5-21-2849485344-80999641-4290860500-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8454552 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [365648 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [3096160 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [282112 2012-10-26] (Brother Industries, Ltd.) [File not signed]
R3 FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [651720 2018-01-09] (Macrovision Corporation -> Macrovision Europe Ltd.) [File not signed]
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [119864 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
S3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [361816 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [37152 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [206408 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [332368 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [247888 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [97352 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42784 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [176744 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [521752 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [38152 2020-04-16] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [109280 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [84856 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [851608 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [469832 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [217336 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [326416 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [295000 2016-08-25] (Microsoft Corporation -> Microsoft Corporation)
S3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [135928 2016-08-25] (Microsoft Corporation -> Microsoft Corporation)
R3 nmwcd; C:\Windows\System32\drivers\ccdcmbx64.sys [19968 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
R3 nmwcdc; C:\Windows\System32\drivers\ccdcmbox64.sys [27136 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
R3 pccsmcfd; C:\Windows\System32\DRIVERS\pccsmcfdx64.sys [26112 2012-06-11] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
R3 RtlWlanu; C:\Windows\System32\DRIVERS\rtwlanu.sys [3821064 2016-10-01] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation)
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] (Empty Loop -> )
R3 upperdev; C:\Windows\System32\DRIVERS\usbser_lowerfltx64.sys [9216 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
R3 UsbserFilt; C:\Windows\System32\DRIVERS\usbser_lowerfltjx64.sys [9216 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
U1 aswbdisk; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-12-01 06:57 - 2020-12-01 07:05 - 000000000 ____D C:\AdwCleaner
2020-11-30 09:33 - 2020-11-30 09:36 - 000000000 ____D C:\new
2020-11-30 09:30 - 2020-11-30 09:30 - 000000000 _____ C:\Users\uživatel\Downloads\Addition.txt
2020-11-30 09:21 - 2020-12-02 08:45 - 000000000 ____D C:\FRST
2020-11-30 08:50 - 2020-11-30 08:50 - 000044568 _____ () C:\Windows\system32\Drivers\staport.sys
2020-11-30 08:49 - 2020-11-30 08:47 - 000217336 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2020-11-30 08:49 - 2020-11-30 08:46 - 000339552 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2020-11-30 08:48 - 2020-11-30 08:48 - 000000000 ____D C:\Users\uživatel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
2020-11-30 08:48 - 2020-11-30 08:48 - 000000000 ____D C:\Program Files\Unlocker
2020-11-30 08:47 - 2020-11-30 08:47 - 000000000 ____D C:\Users\uživatel\AppData\Roaming\Babylon
2020-11-30 08:47 - 2020-11-30 08:47 - 000000000 ____D C:\Users\uživatel\AppData\Local\Babylon
2020-11-30 08:47 - 2020-11-30 08:47 - 000000000 ____D C:\ProgramData\Babylon
2020-11-13 10:05 - 2020-11-13 10:05 - 000090654 _____ C:\Users\uživatel\Desktop\Potvrzení o rozsahu pojištění a ZK.pdf
2020-11-09 13:38 - 2020-11-09 13:38 - 000152224 _____ C:\Users\uživatel\Desktop\RE_ prosím o potvrzení přijetí - valko ELV 4319720613 do fap.pdf
2020-11-09 13:36 - 2020-11-09 13:37 - 000250713 _____ C:\Users\uživatel\Desktop\RE_ prosím o potvrzení přijetí smluv - Honzík 4289875247 a Bardel 4289816930.pdf
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-12-02 08:45 - 2018-01-09 17:12 - 000000000 ____D C:\temp
2020-12-02 08:24 - 2018-01-09 16:36 - 000005455 _____ C:\Windows\WINCMD.INI
2020-12-02 07:57 - 2019-01-03 11:51 - 000000000 ____D C:\Users\uživatel\.rainlendar2
2020-12-01 08:50 - 2018-01-09 14:13 - 000004168 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2020-12-01 07:22 - 2009-07-14 05:45 - 000022416 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-12-01 07:22 - 2009-07-14 05:45 - 000022416 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-12-01 07:13 - 2017-02-14 16:48 - 000633958 _____ C:\Windows\system32\perfh005.dat
2020-12-01 07:13 - 2017-02-14 16:48 - 000122552 _____ C:\Windows\system32\perfc005.dat
2020-12-01 07:13 - 2009-07-14 06:13 - 001477954 _____ C:\Windows\system32\PerfStringBackup.INI
2020-12-01 07:13 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2020-12-01 07:10 - 2018-01-09 14:05 - 000000000 ____D C:\ProgramData\AVAST Software
2020-12-01 07:07 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-12-01 07:06 - 2018-01-10 09:02 - 000000000 ____D C:\ProgramData\PC Suite
2020-11-30 08:47 - 2020-10-16 08:05 - 000176744 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2020-11-30 08:47 - 2020-04-16 07:08 - 000521752 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2020-11-30 08:47 - 2019-01-07 08:04 - 000247888 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2020-11-30 08:47 - 2019-01-07 08:04 - 000097352 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2020-11-30 08:47 - 2018-10-23 06:50 - 000042784 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2020-11-30 08:47 - 2018-01-09 14:12 - 000469832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2020-11-30 08:47 - 2018-01-09 14:12 - 000326416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2020-11-30 08:47 - 2018-01-09 14:12 - 000109280 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2020-11-30 08:47 - 2018-01-09 14:12 - 000084856 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2020-11-30 08:46 - 2019-01-07 08:04 - 000332368 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2020-11-30 08:46 - 2019-01-07 08:04 - 000037152 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys
2020-11-30 08:46 - 2018-01-09 14:12 - 000851608 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2020-11-30 08:46 - 2018-01-09 14:12 - 000206408 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2020-11-27 10:03 - 2018-01-11 17:31 - 000000000 ___HD C:\Users\uživatel\Desktop\.tmp.drivedownload
2020-11-20 11:19 - 2018-01-09 14:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2020-11-19 09:03 - 2018-01-05 11:19 - 000000000 ____D C:\Users\uživatel\AppData\Roaming\vlc
2020-11-18 08:16 - 2018-01-05 12:35 - 000002255 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-11-02 09:49 - 2018-01-10 10:38 - 000000000 ____D C:\ProgramData\FLEXnet
==================== Files in the root of some directories ========
2019-07-04 05:29 - 2019-07-04 05:29 - 000004096 ____H () C:\Users\uživatel\AppData\Local\keyfile3.drm
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
LastRegBack: 2020-11-27 00:54
==================== End of FRST.txt ========================
Ran by uživatel (02-12-2020 08:47:07)
Running from C:\temp
Windows 7 Professional Service Pack 1 (X64) (2018-01-05 10:04:13)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-2849485344-80999641-4290860500-500 - Administrator - Disabled)
Guest (S-1-5-21-2849485344-80999641-4290860500-501 - Limited - Disabled)
uživatel (S-1-5-21-2849485344-80999641-4290860500-1000 - Administrator - Enabled) => C:\Users\uživatel
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Microsoft Security Essentials (Disabled - Up to date) {71A27EC9-3DA6-45FC-60A7-004F623C6189}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Microsoft Security Essentials (Disabled - Up to date) {CAC39F2D-1B9C-4A72-5A17-3B3D19BB2B34}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {5078598A-1FA2-C888-AA5F-A9C66537DB12}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Acrobat 9 Pro - English, Français, Deutsch (HKLM-x32\...\{AC76BA86-1033-F400-7760-000000000004}{AC76BA86-1033-F400-7760-000000000004}) (Version: 9.0.0 - Adobe Systems)
Aladin verze 4.0 (HKLM-x32\...\{77D91700-C34E-47C5-83A5-238F19FF3C48}_is1) (Version: 4.0 - Slavia Pojišťovna a.s.)
ASUS USB-N10 Wireless LAN Driver (HKLM-x32\...\{B20F9D1C-A0A5-4cd8-8306-DA03872311B1}) (Version: 1.0.1.1 - ASUS)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 20.9.2437 - Avast Software)
Backup and Sync from Google (HKLM\...\{3A8CD593-8CF9-45B4-9932-FC41CBC14E15}) (Version: 3.53.3404.7585 - Google, Inc.)
Balíček ovladače systému Windows - Nokia Modem (02/25/2011 4.7) (HKLM\...\E0AC723A3DE3A04256288CADBBB011B112AED454) (Version: 02/25/2011 4.7 - Nokia)
Balíček ovladače systému Windows - Nokia Modem (02/25/2011 7.01.0.9) (HKLM\...\72A50F48CC5601190B9C4E74D81161693133E7F7) (Version: 02/25/2011 7.01.0.9 - Nokia)
Balíček ovladače systému Windows - Nokia pccsmcfd LegacyDriver (05/31/2012 7.1.2.0) (HKLM\...\62BBD193ADFDBB228C7E1ADB56463F5732FF7F6F) (Version: 05/31/2012 7.1.2.0 - Nokia)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: - Canon Inc.)
Canon MG2500 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG2500_series) (Version: 1.02 - Canon Inc.)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.7.6229 - CDBurnerXP)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
ČSOBP Kalkulátory 1.27.0.x (HKLM-x32\...\Kalkulátory_is1) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 86.0.4240.198 - Google LLC)
Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.31 - Google LLC) Hidden
HL-1110 series (HKLM-x32\...\{4F2442B7-A89E-42A4-8F0E-6937499855CA}) (Version: 1.0.1.0 - Brother Industries, Ltd.)
IrfanView 64 (remove only) (HKLM\...\IrfanView64) (Version: 4.41 - Irfan Skiljan)
LibreOffice 5.1 Help Pack (Czech) (HKLM-x32\...\{E4C8ED36-852C-4BA9-AF83-919572C4AC84}) (Version: 5.1.4.2 - The Document Foundation)
LibreOffice 5.1.4.2 (HKLM-x32\...\{D5D4AC5C-C757-4EB2-857C-B021DB22482C}) (Version: 5.1.4.2 - The Document Foundation)
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile CSY Language Pack (HKLM\...\Microsoft .NET Framework 4 Client Profile CSY Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.10.209.0 - Microsoft Corporation)
MSVC90_x64 (HKLM\...\{AB071C8B-873C-459F-ACA9-9EBE03C3E89B}) (Version: 1.0.1.2 - Nokia) Hidden
MSVC90_x86 (HKLM-x32\...\{AF111648-99A1-453E-81DD-80DBBF6DAD0D}) (Version: 1.0.1.2 - Nokia) Hidden
Nokia Connectivity Cable Driver (HKLM-x32\...\{D4BF151C-70A8-4CE2-906F-4173A575BAD9}) (Version: 7.1.182.0 - Nokia)
Nokia PC Suite (HKLM-x32\...\{866C4563-ED53-43F3-A29D-8BEE2BD1BA3C}) (Version: 7.1.180.94 - Nokia) Hidden
Nokia PC Suite (HKLM-x32\...\Nokia PC Suite) (Version: 7.1.180.94 - Nokia)
PC Connectivity Solution (HKLM-x32\...\{644F4910-E812-49AD-93EC-86828CB81A0D}) (Version: 12.0.27.0 - Nokia)
Rainlendar2 (remove only) (HKLM-x32\...\Rainlendar2) (Version: - )
Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.6 - VideoLAN)
xat.com Image Optimizer (HKLM-x32\...\xat.com Image Optimizer) (Version: - )
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2217832 2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-11-03] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-11-03] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-11-03] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-11-30] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {D25B2CAB-8A9A-4517-A9B2-CB5F68A5A802} => C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\..\Acrobat Elements\ContextMenu64.dll [2008-06-11] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-11-30] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-11-03] (Google LLC -> Google)
ContextMenuHandlers2: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-11-30] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-11-03] (Google LLC -> Google)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2014-03-20] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {D25B2CAB-8A9A-4517-A9B2-CB5F68A5A802} => C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\..\Acrobat Elements\ContextMenu64.dll [2008-06-11] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-11-30] (Avast Software s.r.o. -> AVAST Software)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]
==================== Loaded Modules (Whitelisted) =============
2008-06-11 22:32 - 2008-06-11 22:32 - 002666496 _____ () [File not signed] C:\Program Files (x86)\Adobe\Acrobat 9.0\PDFMaker\Common\AdobePDFMakerX.dll
2018-01-16 15:02 - 2009-02-27 16:38 - 000139264 ____R () [File not signed] C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
2012-06-26 12:38 - 2012-06-26 12:38 - 000009728 _____ () [File not signed] C:\Program Files (x86)\Nokia\Nokia PC Suite 7\Lang\OneTouchAccess_cze.NLR
2007-12-30 11:24 - 2007-12-30 11:24 - 000140288 _____ () [File not signed] C:\Program Files (x86)\Rainlendar2\plugins\iCalendarPlugin.dll
2020-12-01 07:07 - 2020-12-01 07:07 - 000114176 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\_ctypes.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000172544 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\_elementtree.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 002255872 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\_hashlib.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000032256 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\_multiprocessing.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000046080 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\_psutil_windows.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000047616 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\_socket.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 002824704 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\_ssl.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000026112 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\_yappi.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000080896 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\bz2.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000016384 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\common.time34.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000007680 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\hashobjs_ext.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000301568 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\PIL._imaging.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000168448 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\pyexpat.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 001084416 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\pysqlite2._sqlite.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000548864 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\pythoncom27.dll
2020-12-01 07:07 - 2020-12-01 07:07 - 000137728 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\pywintypes27.dll
2020-12-01 07:07 - 2020-12-01 07:07 - 000010752 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\select.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000020992 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\thumbnails_ext.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000689664 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\unicodedata.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000119808 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\usb_ext.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000128512 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\win32api.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000438784 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\win32com.shell.shell.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000011776 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\win32crypt.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000023040 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\win32event.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000149504 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\win32file.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000223232 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\win32gui.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000048128 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\win32inet.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000029696 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\win32pdh.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000027648 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\win32pipe.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000044032 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\win32process.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000020480 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\win32profile.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000136192 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\win32security.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000026624 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\win32ts.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000034816 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\windows.conditional.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000038400 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\windows.connectivity.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000071680 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\windows.device_monitor.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000109056 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\windows.volumes.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000020480 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\windows.winwrap.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 001325056 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\wx._controls_.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 001489408 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\wx._core_.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 001007104 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\wx._gdi_.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000103424 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\wx._html2.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 000916992 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\wx._misc_.pyd
2020-12-01 07:07 - 2020-12-01 07:07 - 001039872 _____ () [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\wx._windows_.pyd
2008-06-12 02:19 - 2008-06-12 02:19 - 000019968 _____ (Adobe Systems Inc.) [File not signed] C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\AcroTray.DEU
2008-06-12 02:08 - 2008-06-12 02:08 - 000019968 _____ (Adobe Systems Inc.) [File not signed] C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\AcroTray.FRA
2018-01-16 15:02 - 2008-08-18 18:27 - 000122880 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\brlmw03a.dll
2018-01-16 15:02 - 2012-07-13 13:09 - 000385024 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\BrMonitor.dll
2018-01-16 15:02 - 2011-02-28 11:32 - 000208896 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\Brother\BrFirmUpdateCheck.dll
2018-01-16 15:03 - 2012-08-30 15:30 - 002040832 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\Brother\BrStMonWRes.dll
2003-03-18 21:14 - 2003-03-18 21:14 - 000499712 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Rainlendar2\MSVCP71.dll
2003-02-21 05:42 - 2003-02-21 05:42 - 000348160 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Rainlendar2\MSVCR71.dll
2018-01-09 18:39 - 2018-01-09 18:39 - 000096256 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.762_none_11ecb0ab9b2caf3c\ATL80.DLL
2018-01-09 18:39 - 2018-01-09 18:39 - 001093120 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.762_none_0c178a139ee2a7ed\MFC80U.DLL
2020-09-11 07:09 - 2020-09-11 07:09 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2020-09-11 07:09 - 2020-09-11 07:09 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2020-09-11 07:09 - 2020-09-11 07:09 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2020-09-11 07:09 - 2020-09-11 07:09 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2020-09-11 07:09 - 2020-09-11 07:09 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2020-09-11 07:09 - 2020-09-11 07:09 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2020-09-11 07:09 - 2020-09-11 07:09 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2020-09-11 07:09 - 2020-09-11 07:09 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2020-09-11 07:09 - 2020-09-11 07:09 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2020-09-11 07:09 - 2020-09-11 07:09 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2020-09-11 07:09 - 2020-09-11 07:09 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2020-09-11 07:09 - 2020-09-11 07:09 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\ucrtbase.DLL
2020-09-11 07:09 - 2020-09-11 07:09 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\VCRUNTIME140.dll
2020-12-02 07:59 - 2020-12-02 07:59 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20120106\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2020-12-02 07:59 - 2020-12-02 07:59 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20120106\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2020-12-02 07:59 - 2020-12-02 07:59 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20120106\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2020-12-02 07:59 - 2020-12-02 07:59 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20120106\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2020-12-02 07:59 - 2020-12-02 07:59 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20120106\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2020-12-02 07:59 - 2020-12-02 07:59 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20120106\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2020-12-02 07:59 - 2020-12-02 07:59 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20120106\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2020-12-02 07:59 - 2020-12-02 07:59 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20120106\avast.local_vc142.crt\api-ms-win-crt-environment-l1-1-0.dll
2020-12-02 07:59 - 2020-12-02 07:59 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20120106\avast.local_vc142.crt\api-ms-win-crt-filesystem-l1-1-0.dll
2020-12-02 07:59 - 2020-12-02 07:59 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20120106\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2020-12-02 07:59 - 2020-12-02 07:59 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20120106\avast.local_vc142.crt\api-ms-win-crt-locale-l1-1-0.dll
2020-12-02 07:59 - 2020-12-02 07:59 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20120106\avast.local_vc142.crt\api-ms-win-crt-math-l1-1-0.dll
2020-12-02 07:59 - 2020-12-02 07:59 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20120106\avast.local_vc142.crt\api-ms-win-crt-multibyte-l1-1-0.dll
2020-12-02 07:59 - 2020-12-02 07:59 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20120106\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2020-12-02 07:59 - 2020-12-02 07:59 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20120106\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2020-12-02 07:59 - 2020-12-02 07:59 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20120106\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2020-12-02 07:59 - 2020-12-02 07:59 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20120106\avast.local_vc142.crt\api-ms-win-crt-time-l1-1-0.dll
2020-12-02 07:59 - 2020-12-02 07:59 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20120106\avast.local_vc142.crt\api-ms-win-crt-utility-l1-1-0.dll
2020-12-02 07:59 - 2020-12-02 07:59 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20120106\avast.local_vc142.crt\MSVCP140.dll
2020-12-02 07:59 - 2020-12-02 07:59 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20120106\avast.local_vc142.crt\ucrtbase.DLL
2020-12-02 07:59 - 2020-12-02 07:59 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20120106\avast.local_vc142.crt\VCRUNTIME140.dll
2020-12-02 07:59 - 2020-12-02 07:59 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20120106\avast.local_vc142.crt\VCRUNTIME140_1.dll
2012-06-26 13:08 - 2012-06-26 13:08 - 000026624 _____ (Nokia) [File not signed] C:\Program Files (x86)\Nokia\Nokia PC Suite 7\Lang\PhoneBrowser_cze.nlr
2012-06-26 11:57 - 2012-06-26 11:57 - 000918016 _____ (Nokia) [File not signed] C:\Program Files (x86)\Nokia\Nokia PC Suite 7\NGSCM.DLL
2012-06-26 11:58 - 2012-06-26 11:58 - 001262592 _____ (Nokia) [File not signed] C:\Program Files (x86)\Nokia\Nokia PC Suite 7\NGSCM64.DLL
2012-06-26 12:38 - 2012-06-26 12:38 - 000286720 _____ (Nokia) [File not signed] C:\Program Files (x86)\Nokia\Nokia PC Suite 7\Resource\OneTouchAccess_Nokia.NGR
2012-06-26 13:08 - 2012-06-26 13:08 - 000572928 _____ (Nokia) [File not signed] C:\Program Files (x86)\Nokia\Nokia PC Suite 7\Resource\PhoneBrowser_Nokia.ngr
2020-12-01 07:07 - 2020-12-01 07:07 - 003043328 _____ (Python Software Foundation) [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\python27.dll
2020-12-01 07:07 - 2020-12-01 07:07 - 000202240 _____ (wxWidgets development team) [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\wxbase30u_net_vc90_x64.dll
2020-12-01 07:07 - 2020-12-01 07:07 - 002831872 _____ (wxWidgets development team) [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\wxbase30u_vc90_x64.dll
2020-12-01 07:07 - 2020-12-01 07:07 - 001654784 _____ (wxWidgets development team) [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\wxmsw30u_adv_vc90_x64.dll
2020-12-01 07:07 - 2020-12-01 07:07 - 006542336 _____ (wxWidgets development team) [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\wxmsw30u_core_vc90_x64.dll
2020-12-01 07:07 - 2020-12-01 07:07 - 000773632 _____ (wxWidgets development team) [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\wxmsw30u_html_vc90_x64.dll
2020-12-01 07:07 - 2020-12-01 07:07 - 000137216 _____ (wxWidgets development team) [File not signed] C:\Users\uživatel\AppData\Local\Temp\_MEI17403\wxmsw30u_webview_vc90_x64.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Version 11) (Whitelisted) ==========
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2018-01-05] (Google Inc -> Google Inc.)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2018-01-05] (Google Inc -> Google Inc.)
BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2018-01-05] (Google Inc -> Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2018-01-05] (Google Inc -> Google Inc.)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKU\S-1-5-21-2849485344-80999641-4290860500-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2018-01-05] (Google Inc -> Google Inc.)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 03:34 - 2019-01-04 08:57 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\PC Connectivity Solution\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\
HKU\S-1-5-21-2849485344-80999641-4290860500-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\uživatel\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 217.77.165.211 - 217.77.165.81
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [SPPSVC-In-TCP] => (Allow) C:\Windows\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) C:\Windows\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{6A2D4471-05CD-4865-BBFF-E17407636E53}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Restore Points =========================
16-11-2020 08:18:45 Windows Update
23-11-2020 08:07:08 Windows Update
30-11-2020 09:04:52 Windows Update
==================== Faulty Device Manager Devices ============
Name: Myš Microsoft pro port PS/2
Description: Myš Microsoft pro port PS/2
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
Name: Standardní klávesnice PS/2
Description: Standardní klávesnice PS/2
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standardní klávesnice)
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
==================== Event log errors: ========================
Application errors:
==================
Error: (12/01/2020 09:38:13 AM) (Source: RasClient) (EventID: 20227) (User: )
Description: CoID={50B59692-2099-409F-AA6B-5E1E41A46DBB}: Uživatel uživatel-PC\uživatel vytočil připojení s názvem Nokia USB Modem (OTA), které se nezdařilo. Kód chyby vrácený při selhání je 618.
Error: (12/01/2020 07:08:52 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Error: (11/30/2020 10:18:32 AM) (Source: RasClient) (EventID: 20227) (User: )
Description: CoID={18ECF51C-9E46-4B23-9DDC-F4FAEA63415C}: Uživatel uživatel-PC\uživatel vytočil připojení s názvem Nokia USB Modem (OTA), které se nezdařilo. Kód chyby vrácený při selhání je 0.
Error: (11/30/2020 10:17:47 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Acrobat.exe, verze: 9.0.0.332, časové razítko: 0x4850eb76
Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.24000, časové razítko: 0x5a49962f
Kód výjimky: 0xc0000005
Posun chyby: 0x0004ebcb
ID chybujícího procesu: 0x1884
Čas spuštění chybující aplikace: 0x01d6c6f79013ac7d
Cesta k chybující aplikaci: C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrobat.exe
Cesta k chybujícímu modulu: C:\Windows\SysWOW64\ntdll.dll
ID zprávy: e8d155af-32ec-11eb-b79c-001185750532
Error: (11/30/2020 08:53:11 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Error: (11/30/2020 08:38:32 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Error: (11/26/2020 11:23:16 AM) (Source: RasClient) (EventID: 20227) (User: )
Description: CoID={A2767CE4-C7C6-4854-8347-9D7AE991AA58}: Uživatel uživatel-PC\uživatel vytočil připojení s názvem Nokia USB Modem (OTA), které se nezdařilo. Kód chyby vrácený při selhání je 618.
Error: (11/24/2020 10:35:58 AM) (Source: RasClient) (EventID: 20227) (User: )
Description: CoID={5568EA2F-7B6D-49AC-B090-47BA70E45D90}: Uživatel uživatel-PC\uživatel vytočil připojení s názvem Nokia USB Modem (OTA), které se nezdařilo. Kód chyby vrácený při selhání je 0.
System errors:
=============
Error: (12/01/2020 07:07:15 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN se nepodařilo spustit.
Cesta k modulu: C:\Windows\system32\Rtlihvs.dll
Kód chyby: 126
Error: (12/01/2020 07:06:03 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {ACF50018-41F8-476D-85FD-CD953DAE4A49} se v daném časovém limitu neregistroval u služby DCOM.
Error: (12/01/2020 07:05:33 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba BrYNSvc byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (12/01/2020 07:05:33 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba ServiceLayer byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (11/30/2020 08:51:39 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN se nepodařilo spustit.
Cesta k modulu: C:\Windows\system32\Rtlihvs.dll
Kód chyby: 126
Error: (11/30/2020 08:46:06 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 70.
Error: (11/30/2020 08:46:06 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 70.
Error: (11/30/2020 08:46:05 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 70.
==================== Memory info ===========================
BIOS: Hewlett-Packard J01 v02.15 11/10/2011
Motherboard: Hewlett-Packard 1497
Processor: Intel(R) Core(TM) i3-2100 CPU @ 3.10GHz
Percentage of memory in use: 91%
Total physical RAM: 3984.04 MB
Available physical RAM: 346.54 MB
Total Virtual: 7966.25 MB
Available Virtual: 3723.95 MB
==================== Drives ================================
Drive c: (znalecký ústav- odbor pojištění) (Fixed) (Total:193.6 GB) (Free:109.81 GB) NTFS
Drive h: (Nový svazek) (Fixed) (Total:39.06 GB) (Free:26.25 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 232.9 GB) (Disk ID: 00000000)
Partition: GPT.
==================== End of Addition.txt =======================
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 29-11-2020
Ran by uživatel (administrator) on UŽIVATEL-PC (Hewlett-Packard HP Compaq 6200 Pro SFF PC) (02-12-2020 08:45:06)
Running from C:\temp
Loaded Profiles: uživatel
Platform: Windows 7 Professional Service Pack 1 (X64) Language: Čeština (Česká republika)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
() [File not signed] C:\Program Files (x86)\Rainlendar2\Rainlendar2.exe
(Adobe Systems, Incorporated -> Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrotray.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated.) C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrodist.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <3>
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\BrYNSvc.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\BrownyInd\Brother\BrIndicator.exe
(C. Ghisler & Co.) [File not signed] C:\Program Files\totalcmd\TOTALCMD.EXE
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe <2>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <11>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.32\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.32\GoogleCrashHandler64.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\igfxtray.exe
(Macrovision Corporation -> Macrovision Europe Ltd.) [File not signed] C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
(Malwarebytes Inc -> Malwarebytes) C:\temp\adwcleaner_8.0.8.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe <2>
(Nokia -> Nokia) C:\Program Files (x86)\Nokia\Nokia PC Suite 7\OneTouchAccess.exe
(Nokia -> Nokia) C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe
(Nokia -> Nokia) C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
(Nokia -> Nokia) C:\Program Files (x86)\PC Connectivity Solution\Transports\NclRSSrv.exe
(Nokia -> Nokia) C:\Program Files (x86)\PC Connectivity Solution\Transports\NclUSBSrv64.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1353680 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [117344 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] => C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe [37232 2008-06-12] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe [640376 2008-06-11] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [4509184 2012-12-27] (Brother Industries, Ltd.) [File not signed]
HKLM-x32\...\Run: [BrStsInd00] => C:\Program Files (x86)\BrownyInd\Brother\BrIndicator.exe [1885184 2012-12-18] (Brother Industries, Ltd.) [File not signed]
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-2849485344-80999641-4290860500-1000\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [50010064 2020-11-03] (Google LLC -> )
HKU\S-1-5-21-2849485344-80999641-4290860500-1000\...\Run: [PC Suite Tray] => C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe [1516632 2012-06-26] (Nokia -> Nokia)
HKU\S-1-5-21-2849485344-80999641-4290860500-1000\...\Run: [Rainlendar2] => C:\Program Files (x86)\Rainlendar2\Rainlendar2.exe [1365504 2007-12-30] () [File not signed]
HKU\S-1-5-21-2849485344-80999641-4290860500-1000\...\MountPoints2: {ba74590f-a926-11e7-8837-806e6f6e6963} - D:\setup.exe
HKLM\...\Windows x64\Print Processors\Canon MG2500 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDBX.DLL [30208 2013-03-24] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\Windows\system32\AdobePDF.dll [51032 2008-04-07] (Adobe Systems, Incorporated -> Adobe Systems Inc)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG2500 series: C:\Windows\system32\CNMLMBX.DLL [391168 2013-03-24] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\86.0.4240.198\Installer\chrmstp.exe [2020-11-18] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
Startup: C:\Users\uživatel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\googledrivesync – zástupce.lnk [2018-01-09]
ShortcutTarget: googledrivesync – zástupce.lnk -> C:\Program Files (x86)\Google\Drive\googledrivesync.exe (No File)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {157525A2-458C-49AD-8E3B-DA49AAA64194} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2018-01-05] (Google Inc -> Google Inc.)
Task: {908E2BFF-CDD5-47B9-83A4-076F1E0CA869} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4617832 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
Task: {A3B9A6BA-4D8D-431E-ADC5-BB4F46394400} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2018-01-05] (Google Inc -> Google Inc.)
Task: {B1EF08D9-6369-4FA8-B60F-360BDFCAA3B7} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1741416 2020-09-18] (Avast Software s.r.o. -> Avast Software)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\..\Interfaces\{65613182-0863-493C-8D9C-BF6EDE9B7B46}: [DhcpNameServer] 10.0.0.138 0.0.0.0
Tcpip\..\Interfaces\{A4272E00-9054-47B1-879C-794C08284219}: [NameServer] 217.77.165.211 217.77.165.81
Tcpip\..\Interfaces\{C5DC3B8A-599D-4ECB-AB50-123B604FF28A}: [DhcpNameServer] 192.168.0.1
FireFox:
========
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN -> VideoLAN)
Chrome:
=======
CHR Profile: C:\Users\uživatel\AppData\Local\Google\Chrome\User Data\Default [2020-12-02]
CHR DownloadDir: C:\temp
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Session Restore: Default -> is enabled.
CHR Extension: (Prezentace) - C:\Users\uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-01-05]
CHR Extension: (Dokumenty) - C:\Users\uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-01-05]
CHR Extension: (Disk Google) - C:\Users\uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-22]
CHR Extension: (YouTube) - C:\Users\uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-01-05]
CHR Extension: (Tabulky) - C:\Users\uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-01-05]
CHR Extension: (Dokumenty Google offline) - C:\Users\uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-18]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2020-10-13]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-07]
CHR Extension: (Gmail) - C:\Users\uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (Chrome Media Router) - C:\Users\uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-10-07]
CHR HKU\S-1-5-21-2849485344-80999641-4290860500-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8454552 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [365648 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [3096160 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [282112 2012-10-26] (Brother Industries, Ltd.) [File not signed]
R3 FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [651720 2018-01-09] (Macrovision Corporation -> Macrovision Europe Ltd.) [File not signed]
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [119864 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
S3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [361816 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [37152 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [206408 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [332368 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [247888 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [97352 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42784 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [176744 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [521752 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [38152 2020-04-16] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [109280 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [84856 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [851608 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [469832 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [217336 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [326416 2020-11-30] (Avast Software s.r.o. -> AVAST Software)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [295000 2016-08-25] (Microsoft Corporation -> Microsoft Corporation)
S3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [135928 2016-08-25] (Microsoft Corporation -> Microsoft Corporation)
R3 nmwcd; C:\Windows\System32\drivers\ccdcmbx64.sys [19968 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
R3 nmwcdc; C:\Windows\System32\drivers\ccdcmbox64.sys [27136 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
R3 pccsmcfd; C:\Windows\System32\DRIVERS\pccsmcfdx64.sys [26112 2012-06-11] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
R3 RtlWlanu; C:\Windows\System32\DRIVERS\rtwlanu.sys [3821064 2016-10-01] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation)
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] (Empty Loop -> )
R3 upperdev; C:\Windows\System32\DRIVERS\usbser_lowerfltx64.sys [9216 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
R3 UsbserFilt; C:\Windows\System32\DRIVERS\usbser_lowerfltjx64.sys [9216 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
U1 aswbdisk; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-12-01 06:57 - 2020-12-01 07:05 - 000000000 ____D C:\AdwCleaner
2020-11-30 09:33 - 2020-11-30 09:36 - 000000000 ____D C:\new
2020-11-30 09:30 - 2020-11-30 09:30 - 000000000 _____ C:\Users\uživatel\Downloads\Addition.txt
2020-11-30 09:21 - 2020-12-02 08:45 - 000000000 ____D C:\FRST
2020-11-30 08:50 - 2020-11-30 08:50 - 000044568 _____ () C:\Windows\system32\Drivers\staport.sys
2020-11-30 08:49 - 2020-11-30 08:47 - 000217336 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2020-11-30 08:49 - 2020-11-30 08:46 - 000339552 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2020-11-30 08:48 - 2020-11-30 08:48 - 000000000 ____D C:\Users\uživatel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
2020-11-30 08:48 - 2020-11-30 08:48 - 000000000 ____D C:\Program Files\Unlocker
2020-11-30 08:47 - 2020-11-30 08:47 - 000000000 ____D C:\Users\uživatel\AppData\Roaming\Babylon
2020-11-30 08:47 - 2020-11-30 08:47 - 000000000 ____D C:\Users\uživatel\AppData\Local\Babylon
2020-11-30 08:47 - 2020-11-30 08:47 - 000000000 ____D C:\ProgramData\Babylon
2020-11-13 10:05 - 2020-11-13 10:05 - 000090654 _____ C:\Users\uživatel\Desktop\Potvrzení o rozsahu pojištění a ZK.pdf
2020-11-09 13:38 - 2020-11-09 13:38 - 000152224 _____ C:\Users\uživatel\Desktop\RE_ prosím o potvrzení přijetí - valko ELV 4319720613 do fap.pdf
2020-11-09 13:36 - 2020-11-09 13:37 - 000250713 _____ C:\Users\uživatel\Desktop\RE_ prosím o potvrzení přijetí smluv - Honzík 4289875247 a Bardel 4289816930.pdf
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-12-02 08:45 - 2018-01-09 17:12 - 000000000 ____D C:\temp
2020-12-02 08:24 - 2018-01-09 16:36 - 000005455 _____ C:\Windows\WINCMD.INI
2020-12-02 07:57 - 2019-01-03 11:51 - 000000000 ____D C:\Users\uživatel\.rainlendar2
2020-12-01 08:50 - 2018-01-09 14:13 - 000004168 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2020-12-01 07:22 - 2009-07-14 05:45 - 000022416 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-12-01 07:22 - 2009-07-14 05:45 - 000022416 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-12-01 07:13 - 2017-02-14 16:48 - 000633958 _____ C:\Windows\system32\perfh005.dat
2020-12-01 07:13 - 2017-02-14 16:48 - 000122552 _____ C:\Windows\system32\perfc005.dat
2020-12-01 07:13 - 2009-07-14 06:13 - 001477954 _____ C:\Windows\system32\PerfStringBackup.INI
2020-12-01 07:13 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2020-12-01 07:10 - 2018-01-09 14:05 - 000000000 ____D C:\ProgramData\AVAST Software
2020-12-01 07:07 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-12-01 07:06 - 2018-01-10 09:02 - 000000000 ____D C:\ProgramData\PC Suite
2020-11-30 08:47 - 2020-10-16 08:05 - 000176744 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2020-11-30 08:47 - 2020-04-16 07:08 - 000521752 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2020-11-30 08:47 - 2019-01-07 08:04 - 000247888 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2020-11-30 08:47 - 2019-01-07 08:04 - 000097352 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2020-11-30 08:47 - 2018-10-23 06:50 - 000042784 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2020-11-30 08:47 - 2018-01-09 14:12 - 000469832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2020-11-30 08:47 - 2018-01-09 14:12 - 000326416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2020-11-30 08:47 - 2018-01-09 14:12 - 000109280 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2020-11-30 08:47 - 2018-01-09 14:12 - 000084856 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2020-11-30 08:46 - 2019-01-07 08:04 - 000332368 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2020-11-30 08:46 - 2019-01-07 08:04 - 000037152 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys
2020-11-30 08:46 - 2018-01-09 14:12 - 000851608 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2020-11-30 08:46 - 2018-01-09 14:12 - 000206408 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2020-11-27 10:03 - 2018-01-11 17:31 - 000000000 ___HD C:\Users\uživatel\Desktop\.tmp.drivedownload
2020-11-20 11:19 - 2018-01-09 14:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2020-11-19 09:03 - 2018-01-05 11:19 - 000000000 ____D C:\Users\uživatel\AppData\Roaming\vlc
2020-11-18 08:16 - 2018-01-05 12:35 - 000002255 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-11-02 09:49 - 2018-01-10 10:38 - 000000000 ____D C:\ProgramData\FLEXnet
==================== Files in the root of some directories ========
2019-07-04 05:29 - 2019-07-04 05:29 - 000004096 ____H () C:\Users\uživatel\AppData\Local\keyfile3.drm
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
LastRegBack: 2020-11-27 00:54
==================== End of FRST.txt ========================
- Rudy
- Site Admin
- Příspěvky: 118715
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: najednou nelze mazat, omezení přístupu v adr.
Otevřte poznámkový blok a zkopírujte do něj:
Uložte do C:\temp jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CloseProcesses:
C:\Users\uživatel\AppData\Local\Temp
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2018-01-05] (Google Inc -> Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2018-01-05] (Google Inc -> Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2018-01-05] (Google Inc -> Google Inc.)
Toolbar: HKU\S-1-5-21-2849485344-80999641-4290860500-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2018-01-05] (Google Inc -> Google Inc.)
HKLM-x32\...\Run: [] => [X]
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-2849485344-80999641-4290860500-1000\...\MountPoints2: {ba74590f-a926-11e7-8837-806e6f6e6963} - D:\setup.exe
ShortcutTarget: googledrivesync – zástupce.lnk -> C:\Program Files (x86)\Google\Drive\googledrivesync.exe (No File)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {157525A2-458C-49AD-8E3B-DA49AAA64194} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2018-01-05] (Google Inc -> Google Inc.)
Task: {A3B9A6BA-4D8D-431E-ADC5-BB4F46394400} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2018-01-05] (Google Inc -> Google Inc.)
U1 aswbdisk; no ImagePath
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: najednou nelze mazat, omezení přístupu v adr.
Fix result of Farbar Recovery Scan Tool (x64) Version: 29-11-2020
Ran by uživatel (02-12-2020 11:39:45) Run:1
Running from C:\temp
Loaded Profiles: uživatel
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
C:\Users\u�ivatel\AppData\Local\Temp
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2018-01-05] (Google Inc -> Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2018-01-05] (Google Inc -> Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2018-01-05] (Google Inc -> Google Inc.)
Toolbar: HKU\S-1-5-21-2849485344-80999641-4290860500-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2018-01-05] (Google Inc -> Google Inc.)
HKLM-x32\...\Run: [] => [X]
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-2849485344-80999641-4290860500-1000\...\MountPoints2: {ba74590f-a926-11e7-8837-806e6f6e6963} - D:\setup.exe
ShortcutTarget: googledrivesync � z�stupce.lnk -> C:\Program Files (x86)\Google\Drive\googledrivesync.exe (No File)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {157525A2-458C-49AD-8E3B-DA49AAA64194} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2018-01-05] (Google Inc -> Google Inc.)
Task: {A3B9A6BA-4D8D-431E-ADC5-BB4F46394400} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2018-01-05] (Google Inc -> Google Inc.)
U1 aswbdisk; no ImagePath
EmptyTemp:
End
*****************
Processes closed successfully.
"C:\Users\u�ivatel\AppData\Local\Temp" => not found
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7} => removed successfully
HKLM\Software\Classes\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7} => removed successfully
"HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F}" => removed successfully
HKLM\Software\Classes\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F} => removed successfully
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F}" => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F} => removed successfully
"HKU\S-1-5-21-2849485344-80999641-4290860500-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F}" => removed successfully
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\" => removed successfully
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => removed successfully
HKU\S-1-5-21-2849485344-80999641-4290860500-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ba74590f-a926-11e7-8837-806e6f6e6963} => removed successfully
"C:\Program Files (x86)\Google\Drive\googledrivesync.exe" => not found
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
HKLM\SOFTWARE\Policies\Google => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{157525A2-458C-49AD-8E3B-DA49AAA64194}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{157525A2-458C-49AD-8E3B-DA49AAA64194}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A3B9A6BA-4D8D-431E-ADC5-BB4F46394400}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A3B9A6BA-4D8D-431E-ADC5-BB4F46394400}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
HKLM\System\CurrentControlSet\Services\aswbdisk => could not remove, key could be protected
=========== EmptyTemp: ==========
BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 38314880 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 464781287 B
Edge => 0 B
Chrome => 168017345 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 66228 B
systemprofile32 => 132584 B
LocalService => 132584 B
NetworkService => 3582268 B
uživatel => 2566288144 B
RecycleBin => 876703823 B
EmptyTemp: => 3.8 GB temporary data Removed.
================================
Ran by uživatel (02-12-2020 11:39:45) Run:1
Running from C:\temp
Loaded Profiles: uživatel
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
C:\Users\u�ivatel\AppData\Local\Temp
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2018-01-05] (Google Inc -> Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2018-01-05] (Google Inc -> Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2018-01-05] (Google Inc -> Google Inc.)
Toolbar: HKU\S-1-5-21-2849485344-80999641-4290860500-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2018-01-05] (Google Inc -> Google Inc.)
HKLM-x32\...\Run: [] => [X]
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-2849485344-80999641-4290860500-1000\...\MountPoints2: {ba74590f-a926-11e7-8837-806e6f6e6963} - D:\setup.exe
ShortcutTarget: googledrivesync � z�stupce.lnk -> C:\Program Files (x86)\Google\Drive\googledrivesync.exe (No File)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {157525A2-458C-49AD-8E3B-DA49AAA64194} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2018-01-05] (Google Inc -> Google Inc.)
Task: {A3B9A6BA-4D8D-431E-ADC5-BB4F46394400} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2018-01-05] (Google Inc -> Google Inc.)
U1 aswbdisk; no ImagePath
EmptyTemp:
End
*****************
Processes closed successfully.
"C:\Users\u�ivatel\AppData\Local\Temp" => not found
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7} => removed successfully
HKLM\Software\Classes\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7} => removed successfully
"HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F}" => removed successfully
HKLM\Software\Classes\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F} => removed successfully
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F}" => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F} => removed successfully
"HKU\S-1-5-21-2849485344-80999641-4290860500-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F}" => removed successfully
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\" => removed successfully
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => removed successfully
HKU\S-1-5-21-2849485344-80999641-4290860500-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ba74590f-a926-11e7-8837-806e6f6e6963} => removed successfully
"C:\Program Files (x86)\Google\Drive\googledrivesync.exe" => not found
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
HKLM\SOFTWARE\Policies\Google => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{157525A2-458C-49AD-8E3B-DA49AAA64194}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{157525A2-458C-49AD-8E3B-DA49AAA64194}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A3B9A6BA-4D8D-431E-ADC5-BB4F46394400}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A3B9A6BA-4D8D-431E-ADC5-BB4F46394400}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
HKLM\System\CurrentControlSet\Services\aswbdisk => could not remove, key could be protected
=========== EmptyTemp: ==========
BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 38314880 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 464781287 B
Edge => 0 B
Chrome => 168017345 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 66228 B
systemprofile32 => 132584 B
LocalService => 132584 B
NetworkService => 3582268 B
uživatel => 2566288144 B
RecycleBin => 876703823 B
EmptyTemp: => 3.8 GB temporary data Removed.
================================
- Rudy
- Site Admin
- Příspěvky: 118715
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: najednou nelze mazat, omezení přístupu v adr.
OK, smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: najednou nelze mazat, omezení přístupu v adr.
ne, ale mám podezření že to začal dělat avast, příští týden dotáhnu, pak dám vědět, v pondělí pošlu 300
děkuji
děkuji
- Rudy
- Site Admin
- Příspěvky: 118715
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: najednou nelze mazat, omezení přístupu v adr.
Na zkoušku ho odinstalujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: najednou nelze mazat, omezení přístupu v adr.
byl to avast, 300 posláno až dnes, děkuji za vyčištění
- Rudy
- Site Admin
- Příspěvky: 118715
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: najednou nelze mazat, omezení přístupu v adr.
Nemáte zač a za příspěvek děkujeme!
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.