Dobrý den, mám tu notebook, který se vypíná v náhodných časových intervalech, což asi vůbec nemusí být softwarový problém. Ale navíc je extrémně pomalý. Přeinstalace bohužel momentálně nepřichází v úvahu. Můžu poprosit o kontrolu logu?
Děkuji mnohokrát.
Logfile of random's system information tool 1.10 (written by random/random)
Run by vlastnik at 2021-02-26 17:14:42
Microsoft Windows 10 Home
System drive C: has 205 GB (74%) free of 276 GB
Total RAM: 3318 MB (45% free)
HijackThis download failed
=========Mozilla firefox=========
ProfilePath - C:\Users\vlastnik\AppData\Roaming\Mozilla\Firefox\Profiles\32gylciq.default
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 32.0.0.465 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_32_0_0_465.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.6.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Windows\system32\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.6.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/Lync,version=15.0]
"Description"=Microsoft Lync Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@update.avastbrowser.com/Avast Browser;version=3]
"Description"=Avast Browser
"Path"=C:\Program Files\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@update.avastbrowser.com/Avast Browser;version=9]
"Description"=Avast Browser
"Path"=C:\Program Files\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\csas.cz/Partner24]
"Description"=
"Path"=C:\Program Files\Partner24\npPartner24.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}]
IEToEdge BHO - C:\Program Files\Microsoft\Edge\Application\88.0.705.74\BHO\ie_to_edge_bho.dll [2021-02-17 409984]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2021-02-04 151360]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2012-08-16 449512]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2012-08-16 157672]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\WINDOWS\system32\SecurityHealthSystray.exe [2019-12-07 74752]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2011-10-17 11430504]
"RtHDVBg_Dolby"=C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe [2011-10-14 1571432]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2012-07-03 252848]
"CDAServer"=C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [2010-12-17 332288]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2021-02-24 104160]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2017-06-02 3536576]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\vlastnik\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2021-02-19 1942400]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CBDHSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NgcCtnrSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NgcSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\aswSP.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CBDHSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsQuic]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NgcCtnrSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NgcSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"aux"=wdmaud.drv
"midi"=wdmaud.drv
"midimapper"=midimap.dll
"mixer"=wdmaud.drv
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.cvid"=iccvid.dll
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wave"=wdmaud.drv
"wavemapper"=msacm32.drv
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"aux1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
======File associations======
.inf - install -
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2021-02-26 17:14:42 ----D---- C:\Program Files\trend micro
2021-02-26 17:14:41 ----D---- C:\rsit
2021-02-24 08:33:13 ----A---- C:\WINDOWS\system32\aswBoot.exe
2021-02-24 08:33:11 ----A---- C:\WINDOWS\system32\drivers\aswStm.sys
2021-02-12 12:57:37 ----A---- C:\WINDOWS\system32\FXSUNATD.exe
2021-02-12 12:57:37 ----A---- C:\WINDOWS\system32\FXSSVC.exe
2021-02-12 12:57:37 ----A---- C:\WINDOWS\system32\FXSROUTE.dll
2021-02-12 12:57:37 ----A---- C:\WINDOWS\system32\FXSMON.dll
2021-02-12 12:57:37 ----A---- C:\WINDOWS\system32\FXSEVENT.dll
2021-02-12 12:57:35 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2021-02-12 12:57:35 ----A---- C:\WINDOWS\system32\drivers\dumpfve.sys
2021-02-12 12:57:34 ----A---- C:\WINDOWS\system32\fvewiz.dll
2021-02-12 12:57:34 ----A---- C:\WINDOWS\system32\fveapibase.dll
2021-02-12 12:57:34 ----A---- C:\WINDOWS\system32\fveapi.dll
2021-02-12 12:57:34 ----A---- C:\WINDOWS\system32\bdesvc.dll
2021-02-12 12:57:33 ----A---- C:\WINDOWS\system32\fveui.dll
2021-02-12 12:57:31 ----A---- C:\WINDOWS\system32\Windows.Devices.Picker.dll
2021-02-12 12:57:30 ----A---- C:\WINDOWS\system32\cdp.dll
2021-02-12 12:57:30 ----A---- C:\WINDOWS\system32\AppReadiness.dll
2021-02-12 12:57:23 ----A---- C:\WINDOWS\system32\DolbyDecMFT.dll
2021-02-12 12:57:22 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2021-02-12 12:57:02 ----A---- C:\WINDOWS\system32\mfsvr.dll
2021-02-12 12:57:02 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2021-02-12 12:57:01 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2021-02-12 12:57:01 ----A---- C:\WINDOWS\system32\msvproc.dll
2021-02-12 12:57:01 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2021-02-12 12:57:00 ----A---- C:\WINDOWS\system32\mfps.dll
2021-02-12 12:57:00 ----A---- C:\WINDOWS\system32\mfcore.dll
2021-02-12 12:56:59 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2021-02-12 12:56:58 ----A---- C:\WINDOWS\system32\MSPhotography.dll
2021-02-12 12:56:57 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2021-02-12 12:56:54 ----A---- C:\WINDOWS\system32\WindowsCodecsRaw.dll
2021-02-12 12:56:52 ----A---- C:\WINDOWS\system32\fhtask.dll
2021-02-12 12:56:52 ----A---- C:\WINDOWS\system32\fhsvcctl.dll
2021-02-12 12:56:52 ----A---- C:\WINDOWS\system32\fhsvc.dll
2021-02-12 12:56:52 ----A---- C:\WINDOWS\system32\fhshl.dll
2021-02-12 12:56:52 ----A---- C:\WINDOWS\system32\fhsettingsprovider.dll
2021-02-12 12:56:52 ----A---- C:\WINDOWS\system32\fhmanagew.exe
2021-02-12 12:56:52 ----A---- C:\WINDOWS\system32\fhlisten.dll
2021-02-12 12:56:52 ----A---- C:\WINDOWS\system32\fhcleanup.dll
2021-02-12 12:56:51 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2021-02-12 12:56:51 ----A---- C:\WINDOWS\system32\WorkFolders.exe
2021-02-12 12:56:51 ----A---- C:\WINDOWS\system32\fhsrchph.dll
2021-02-12 12:56:51 ----A---- C:\WINDOWS\system32\fhsrchapi.dll
2021-02-12 12:56:51 ----A---- C:\WINDOWS\system32\fhevents.dll
2021-02-12 12:56:51 ----A---- C:\WINDOWS\system32\fhengine.dll
2021-02-12 12:56:51 ----A---- C:\WINDOWS\system32\fhcfg.dll
2021-02-12 12:56:51 ----A---- C:\WINDOWS\system32\fhcat.dll
2021-02-12 12:56:50 ----A---- C:\WINDOWS\system32\WorkFoldersShell.dll
2021-02-12 12:56:50 ----A---- C:\WINDOWS\system32\WorkfoldersControl.dll
2021-02-12 12:56:50 ----A---- C:\WINDOWS\system32\rdsdwmdr.dll
2021-02-12 12:56:50 ----A---- C:\WINDOWS\system32\DiagSvc.dll
2021-02-12 12:56:49 ----A---- C:\WINDOWS\system32\tsgqec.dll
2021-02-12 12:56:49 ----A---- C:\WINDOWS\system32\termsrv.dll
2021-02-12 12:56:49 ----A---- C:\WINDOWS\system32\mstscax.dll
2021-02-12 12:56:48 ----A---- C:\WINDOWS\system32\wsp_health.dll
2021-02-12 12:56:48 ----A---- C:\WINDOWS\system32\wsp_fs.dll
2021-02-12 12:56:48 ----A---- C:\WINDOWS\system32\cryptuiwizard.dll
2021-02-12 12:56:47 ----A---- C:\WINDOWS\system32\nshwfp.dll
2021-02-12 12:56:47 ----A---- C:\WINDOWS\system32\nltest.exe
2021-02-12 12:56:47 ----A---- C:\WINDOWS\system32\msimsg.dll
2021-02-12 12:56:47 ----A---- C:\WINDOWS\system32\CertPKICmdlet.dll
2021-02-12 12:56:46 ----A---- C:\WINDOWS\system32\msi.dll
2021-02-12 12:56:42 ----A---- C:\WINDOWS\system32\iemigplugin.dll
2021-02-12 12:56:41 ----A---- C:\WINDOWS\system32\IESettingSync.exe
2021-02-12 12:56:40 ----A---- C:\WINDOWS\system32\IndexedDbLegacy.dll
2021-02-12 12:56:40 ----A---- C:\WINDOWS\system32\ieproxy.dll
2021-02-12 12:56:40 ----A---- C:\WINDOWS\system32\ieframe.dll
2021-02-12 12:56:38 ----A---- C:\WINDOWS\system32\mshtml.dll
2021-02-12 12:56:38 ----A---- C:\WINDOWS\system32\EdgeManager.dll
2021-02-12 12:56:37 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2021-02-12 12:56:36 ----A---- C:\WINDOWS\system32\edgehtml.dll
2021-02-12 12:56:35 ----A---- C:\WINDOWS\system32\werui.dll
2021-02-12 12:56:35 ----A---- C:\WINDOWS\system32\StorageUsage.dll
2021-02-12 12:56:35 ----A---- C:\WINDOWS\system32\imapi2fs.dll
2021-02-12 12:56:34 ----A---- C:\WINDOWS\system32\StorSvc.dll
2021-02-12 12:56:34 ----A---- C:\WINDOWS\system32\packager.dll
2021-02-12 12:56:34 ----A---- C:\WINDOWS\system32\edpcsp.dll
2021-02-12 12:56:34 ----A---- C:\WINDOWS\system32\EDPCleanup.exe
2021-02-12 12:56:34 ----A---- C:\WINDOWS\system32\autofmt.exe
2021-02-12 12:56:34 ----A---- C:\WINDOWS\system32\autoconv.exe
2021-02-12 12:56:33 ----A---- C:\WINDOWS\system32\resutils.dll
2021-02-12 12:56:33 ----A---- C:\WINDOWS\system32\ClipUp.exe
2021-02-12 12:56:33 ----A---- C:\WINDOWS\system32\CBDHSvc.dll
2021-02-12 12:56:32 ----A---- C:\WINDOWS\system32\ResourceMapper.dll
2021-02-12 12:56:32 ----A---- C:\WINDOWS\system32\clusapi.dll
2021-02-12 12:56:32 ----A---- C:\WINDOWS\system32\bcastdvruserservice.dll
2021-02-12 12:56:31 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2021-02-12 12:56:31 ----A---- C:\WINDOWS\system32\comdlg32.dll
2021-02-12 12:56:29 ----A---- C:\WINDOWS\system32\ubpm.dll
2021-02-12 12:56:29 ----A---- C:\WINDOWS\system32\sppobjs.dll
2021-02-12 12:56:29 ----A---- C:\WINDOWS\system32\pku2u.dll
2021-02-12 12:56:29 ----A---- C:\WINDOWS\system32\LicensingDiagSpp.dll
2021-02-12 12:56:27 ----A---- C:\WINDOWS\system32\Windows.FileExplorer.Common.dll
2021-02-12 12:56:27 ----A---- C:\WINDOWS\system32\shell32.dll
2021-02-12 12:56:27 ----A---- C:\WINDOWS\system32\ntshrui.dll
2021-02-12 12:56:26 ----A---- C:\WINDOWS\system32\vbscript.dll
2021-02-12 12:56:26 ----A---- C:\WINDOWS\system32\umpoext.dll
2021-02-12 12:56:26 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2021-02-12 12:56:26 ----A---- C:\WINDOWS\system32\PrintWorkflowService.dll
2021-02-12 12:56:26 ----A---- C:\WINDOWS\system32\nlasvc.dll
2021-02-12 12:56:26 ----A---- C:\WINDOWS\system32\nlaapi.dll
2021-02-12 12:56:26 ----A---- C:\WINDOWS\system32\ncsi.dll
2021-02-12 12:56:26 ----A---- C:\WINDOWS\system32\drivers\agilevpn.sys
2021-02-12 12:55:54 ----A---- C:\WINDOWS\system32\kernel32.dll
2021-02-12 12:55:53 ----A---- C:\WINDOWS\system32\urlmon.dll
2021-02-12 12:55:53 ----A---- C:\WINDOWS\system32\profsvcext.dll
2021-02-12 12:55:53 ----A---- C:\WINDOWS\system32\msIso.dll
2021-02-12 12:55:53 ----A---- C:\WINDOWS\system32\iertutil.dll
2021-02-12 12:55:53 ----A---- C:\WINDOWS\system32\edgeIso.dll
2021-02-12 12:55:53 ----A---- C:\WINDOWS\system32\actxprxy.dll
2021-02-12 12:55:52 ----A---- C:\WINDOWS\system32\tdh.dll
2021-02-12 12:55:52 ----A---- C:\WINDOWS\system32\MdmDiagnostics.dll
2021-02-12 12:55:52 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2021-02-12 12:55:52 ----A---- C:\WINDOWS\system32\efsext.dll
2021-02-12 12:55:52 ----A---- C:\WINDOWS\system32\edptask.dll
2021-02-12 12:55:52 ----A---- C:\WINDOWS\system32\BitLockerCsp.dll
2021-02-12 12:55:51 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2021-02-12 12:55:51 ----A---- C:\WINDOWS\system32\omadmclient.exe
2021-02-12 12:55:51 ----A---- C:\WINDOWS\system32\mdmpostprocessevaluator.dll
2021-02-12 12:55:51 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2021-02-12 12:55:51 ----A---- C:\WINDOWS\system32\mdmlocalmanagement.dll
2021-02-12 12:55:51 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2021-02-12 12:55:51 ----A---- C:\WINDOWS\system32\dmenterprisediagnostics.dll
2021-02-12 12:55:51 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2021-02-12 12:55:51 ----A---- C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2021-02-12 12:55:50 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2021-02-12 12:55:50 ----A---- C:\WINDOWS\system32\DMPushRouterCore.dll
2021-02-12 12:55:50 ----A---- C:\WINDOWS\system32\dmpushproxy.dll
2021-02-12 12:55:50 ----A---- C:\WINDOWS\system32\DMAppsRes.dll
2021-02-12 12:55:50 ----A---- C:\WINDOWS\system32\coredpus.dll
2021-02-12 12:55:50 ----A---- C:\WINDOWS\system32\configmanager2.dll
2021-02-12 12:55:49 ----A---- C:\WINDOWS\system32\wuuhext.dll
2021-02-12 12:55:49 ----A---- C:\WINDOWS\system32\usermgr.dll
2021-02-12 12:55:49 ----A---- C:\WINDOWS\system32\msctf.dll
2021-02-12 12:55:49 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2021-02-12 12:55:49 ----A---- C:\WINDOWS\system32\DeviceEnroller.exe
2021-02-12 12:55:48 ----A---- C:\WINDOWS\system32\netlogon.dll
2021-02-12 12:55:48 ----A---- C:\WINDOWS\system32\lpk.dll
2021-02-12 12:55:48 ----A---- C:\WINDOWS\system32\fontsub.dll
2021-02-12 12:55:48 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2021-02-12 12:55:48 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2021-02-12 12:55:48 ----A---- C:\WINDOWS\system32\dciman32.dll
2021-02-12 12:55:47 ----A---- C:\WINDOWS\system32\sechost.dll
2021-02-12 12:55:47 ----A---- C:\WINDOWS\system32\KernelBase.dll
2021-02-12 12:55:47 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2021-02-12 12:55:47 ----A---- C:\WINDOWS\system32\drivers\partmgr.sys
2021-02-12 12:55:47 ----A---- C:\WINDOWS\system32\drivers\NetAdapterCx.sys
2021-02-12 12:55:46 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2021-02-12 12:55:45 ----A---- C:\WINDOWS\system32\WerFaultSecure.exe
2021-02-12 12:55:45 ----A---- C:\WINDOWS\system32\WerEnc.dll
2021-02-12 12:55:45 ----A---- C:\WINDOWS\system32\ntdll.dll
2021-02-12 12:55:45 ----A---- C:\WINDOWS\system32\Faultrep.dll
2021-02-12 12:55:45 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2021-02-12 12:55:45 ----A---- C:\WINDOWS\system32\drivers\Classpnp.sys
2021-02-12 12:55:44 ----A---- C:\WINDOWS\system32\WerFault.exe
2021-02-12 12:55:44 ----A---- C:\WINDOWS\system32\utcutil.dll
2021-02-12 12:55:44 ----A---- C:\WINDOWS\system32\diagtrack.dll
2021-02-12 12:55:44 ----A---- C:\WINDOWS\system32\diagnosticdataquery.dll
2021-02-12 12:55:44 ----A---- C:\WINDOWS\system32\dbghelp.dll
2021-02-12 12:55:43 ----A---- C:\WINDOWS\system32\oleaut32.dll
2021-02-12 12:55:43 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2021-02-12 12:55:43 ----A---- C:\WINDOWS\system32\lsasrv.dll
2021-02-12 12:55:43 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2021-02-12 12:55:43 ----A---- C:\WINDOWS\system32\drivers\http.sys
2021-02-12 12:55:42 ----A---- C:\WINDOWS\system32\tzres.dll
2021-02-12 12:55:42 ----A---- C:\WINDOWS\system32\schannel.dll
2021-02-12 12:55:42 ----A---- C:\WINDOWS\system32\rpcss.dll
2021-02-12 12:55:42 ----A---- C:\WINDOWS\system32\profsvc.dll
2021-02-12 12:55:42 ----A---- C:\WINDOWS\system32\msv1_0.dll
2021-02-12 12:55:42 ----A---- C:\WINDOWS\system32\crypt32.dll
2021-02-12 12:55:41 ----A---- C:\WINDOWS\system32\zipfldr.dll
2021-02-12 12:55:41 ----A---- C:\WINDOWS\system32\ucrtbase.dll
2021-02-12 12:55:41 ----A---- C:\WINDOWS\system32\msvcp_win.dll
2021-02-12 12:55:41 ----A---- C:\WINDOWS\system32\combase.dll
2021-02-12 12:55:40 ----A---- C:\WINDOWS\system32\dwmcore.dll
2021-02-12 12:55:40 ----A---- C:\WINDOWS\system32\drivers\cldflt.sys
2021-02-12 12:55:40 ----A---- C:\WINDOWS\system32\CaptureService.dll
2021-02-12 12:55:40 ----A---- C:\WINDOWS\system32\autochk.exe
2021-02-12 12:55:40 ----A---- C:\WINDOWS\system32\adsldpc.dll
2021-02-12 12:55:39 ----A---- C:\WINDOWS\system32\Windows.SharedPC.AccountManager.dll
2021-02-12 12:55:39 ----A---- C:\WINDOWS\system32\SecurityHealthHost.exe
2021-02-12 12:55:39 ----A---- C:\WINDOWS\system32\Narrator.exe
2021-02-12 12:55:39 ----A---- C:\WINDOWS\system32\DevicesFlowBroker.dll
2021-02-12 12:55:39 ----A---- C:\WINDOWS\system32\AtBroker.exe
2021-02-12 12:55:38 ----A---- C:\WINDOWS\system32\SecurityHealthService.exe
2021-02-12 12:55:38 ----A---- C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2021-02-12 12:55:38 ----A---- C:\WINDOWS\system32\SecurityHealthAgent.dll
2021-02-12 12:55:37 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2021-02-12 12:55:34 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2021-02-12 12:55:34 ----A---- C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2021-02-12 12:55:34 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2021-02-12 12:55:33 ----A---- C:\WINDOWS\system32\wuuhosdeployment.dll
2021-02-12 12:55:33 ----A---- C:\WINDOWS\system32\wups2.dll
2021-02-12 12:55:33 ----A---- C:\WINDOWS\system32\wuaueng.dll
2021-02-12 12:55:33 ----A---- C:\WINDOWS\system32\wuauclt.exe
2021-02-12 12:55:33 ----A---- C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2021-02-12 12:55:32 ----A---- C:\WINDOWS\system32\UpdateDeploymentProvider.dll
2021-02-12 12:55:08 ----A---- C:\WINDOWS\system32\wups.dll
2021-02-12 12:55:08 ----A---- C:\WINDOWS\system32\wuapi.dll
2021-02-12 12:55:07 ----A---- C:\WINDOWS\system32\UpdateAgent.dll
2021-02-12 12:55:07 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2021-02-12 12:55:07 ----A---- C:\WINDOWS\system32\MusNotifyIcon.exe
2021-02-12 12:55:07 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2021-02-12 12:55:07 ----A---- C:\WINDOWS\system32\MusNotification.exe
2021-02-12 12:55:07 ----A---- C:\WINDOWS\system32\musdialoghandlers.dll
2021-02-12 12:55:06 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.UXRes.dll
2021-02-12 12:55:06 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2021-02-12 12:55:06 ----A---- C:\WINDOWS\system32\usosvc.dll
2021-02-12 12:55:06 ----A---- C:\WINDOWS\system32\usocoreworker.exe
2021-02-12 12:55:06 ----A---- C:\WINDOWS\system32\MoUsoCoreWorker.exe
2021-02-12 12:55:05 ----A---- C:\WINDOWS\system32\untfs.dll
2021-02-12 12:55:05 ----A---- C:\WINDOWS\system32\SettingsHandlers_SpeechPrivacy.dll
2021-02-12 12:55:05 ----A---- C:\WINDOWS\system32\SettingsHandlers_InkingTypingPrivacy.dll
2021-02-12 12:55:04 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2021-02-12 12:55:04 ----A---- C:\WINDOWS\system32\ulib.dll
2021-02-12 12:55:04 ----A---- C:\WINDOWS\system32\mdmregistration.dll
2021-02-12 12:55:04 ----A---- C:\WINDOWS\system32\MdmDiagnosticsTool.exe
2021-02-12 12:55:04 ----A---- C:\WINDOWS\system32\ifsutil.dll
2021-02-12 12:55:04 ----A---- C:\WINDOWS\system32\drivers\ufx01000.sys
2021-02-12 12:55:04 ----A---- C:\WINDOWS\system32\drivers\condrv.sys
2021-02-12 12:55:03 ----A---- C:\WINDOWS\system32\win32kfull.sys
2021-02-12 12:55:03 ----A---- C:\WINDOWS\system32\win32k.sys
2021-02-12 12:55:03 ----A---- C:\WINDOWS\system32\daxexec.dll
2021-02-12 12:55:03 ----A---- C:\WINDOWS\system32\container.dll
2021-02-12 12:55:02 ----A---- C:\WINDOWS\system32\wpnprv.dll
2021-02-12 12:55:02 ----A---- C:\WINDOWS\system32\wpncore.dll
2021-02-12 12:55:02 ----A---- C:\WINDOWS\system32\Windows.Devices.Lights.dll
2021-02-12 12:55:02 ----A---- C:\WINDOWS\system32\win32u.dll
2021-02-12 12:55:01 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.th.dll
2021-02-12 12:55:01 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2021-02-12 12:55:01 ----A---- C:\WINDOWS\system32\FWPUCLNT.DLL
2021-02-12 12:55:01 ----A---- C:\WINDOWS\system32\drivers\wfplwfs.sys
2021-02-12 12:55:01 ----A---- C:\WINDOWS\system32\BFE.DLL
2021-02-12 12:55:00 ----A---- C:\WINDOWS\system32\StateRepository.Core.dll
2021-02-12 12:55:00 ----A---- C:\WINDOWS\system32\kerberos.dll
2021-02-12 12:55:00 ----A---- C:\WINDOWS\system32\KerbClientShared.dll
2021-02-12 12:55:00 ----A---- C:\WINDOWS\system32\esent.dll
2021-02-12 12:54:59 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2021-02-12 12:54:59 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryCore.dll
2021-02-12 12:54:59 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2021-02-12 12:54:59 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2021-02-12 12:54:58 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2021-02-12 12:54:57 ----A---- C:\WINDOWS\system32\wintrust.dll
2021-02-12 12:54:57 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2021-02-12 12:54:57 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2021-02-12 12:54:55 ----A---- C:\WINDOWS\system32\windows.storage.dll
2021-02-12 12:54:55 ----A---- C:\WINDOWS\system32\storewuauth.dll
2021-02-12 12:54:55 ----A---- C:\WINDOWS\system32\InstallService.dll
2021-02-12 12:54:54 ----A---- C:\WINDOWS\system32\tsf3gip.dll
2021-02-12 12:54:54 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2021-02-12 12:54:54 ----A---- C:\WINDOWS\system32\ISM.dll
2021-02-12 12:54:54 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2021-02-12 12:54:53 ----A---- C:\WINDOWS\system32\WordBreakers.dll
2021-02-12 12:54:53 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2021-02-12 12:54:53 ----A---- C:\WINDOWS\system32\InputService.dll
2021-02-12 12:54:53 ----A---- C:\WINDOWS\system32\EditBufferTestHook.dll
2021-02-12 12:54:52 ----A---- C:\WINDOWS\system32\tquery.dll
2021-02-12 12:54:51 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2021-02-12 12:54:51 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2021-02-12 12:54:51 ----A---- C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2021-02-12 12:54:51 ----A---- C:\WINDOWS\system32\mssvp.dll
2021-02-12 12:54:51 ----A---- C:\WINDOWS\system32\mssrch.dll
2021-02-12 12:54:51 ----A---- C:\WINDOWS\system32\mssprxy.dll
2021-02-12 12:54:51 ----A---- C:\WINDOWS\system32\mssph.dll
2021-02-12 12:54:50 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2021-02-12 12:54:50 ----A---- C:\WINDOWS\system32\mssitlb.dll
2021-02-12 12:54:50 ----A---- C:\WINDOWS\system32\msscntrs.dll
2021-02-12 12:54:50 ----A---- C:\WINDOWS\system32\FntCache.dll
2021-02-12 12:54:49 ----A---- C:\WINDOWS\system32\EdgeContent.dll
2021-02-12 12:54:49 ----A---- C:\WINDOWS\system32\DWrite.dll
2021-02-12 12:54:48 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2021-02-12 12:54:48 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2021-02-12 12:54:48 ----A---- C:\WINDOWS\system32\cdd.dll
2021-02-12 12:54:48 ----A---- C:\WINDOWS\system32\bisrv.dll
2021-02-12 12:54:47 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2021-02-12 12:54:47 ----A---- C:\WINDOWS\system32\D3D12Core.dll
2021-02-12 12:54:47 ----A---- C:\WINDOWS\system32\D3D12.dll
2021-02-12 12:54:46 ----A---- C:\WINDOWS\system32\oemlicense.dll
2021-02-12 12:54:46 ----A---- C:\WINDOWS\system32\licensingdiag.exe
2021-02-12 12:54:46 ----A---- C:\WINDOWS\system32\clipwinrt.dll
2021-02-12 12:54:46 ----A---- C:\WINDOWS\system32\ClipSVC.dll
2021-02-12 12:54:46 ----A---- C:\WINDOWS\system32\Clipc.dll
2021-02-12 12:54:45 ----A---- C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2021-02-12 12:54:45 ----A---- C:\WINDOWS\system32\DiagnosticInvoker.dll
2021-02-12 12:54:45 ----A---- C:\WINDOWS\system32\appinfo.dll
2021-02-12 12:54:45 ----A---- C:\WINDOWS\system32\ActivationManager.dll
2021-02-12 12:54:44 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2021-02-12 12:54:44 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2021-02-12 12:54:44 ----A---- C:\WINDOWS\system32\cloudAP.dll
2021-02-12 12:54:43 ----A---- C:\WINDOWS\system32\Windows.System.Launcher.dll
2021-02-12 12:54:43 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2021-02-12 12:54:43 ----A---- C:\WINDOWS\system32\GameInput.dll
2021-02-12 12:54:42 ----A---- C:\WINDOWS\system32\msftedit.dll
2021-02-12 12:54:41 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2021-02-12 12:54:41 ----A---- C:\WINDOWS\system32\ShareHost.dll
2021-02-12 12:54:41 ----A---- C:\WINDOWS\system32\CustomInstallExec.exe
2021-02-12 12:54:41 ----A---- C:\WINDOWS\system32\cdpusersvc.dll
2021-02-12 12:54:41 ----A---- C:\WINDOWS\system32\cdpsvc.dll
2021-02-12 12:54:41 ----A---- C:\WINDOWS\system32\cdprt.dll
2021-02-12 12:54:41 ----A---- C:\WINDOWS\system32\ApplyTrustOffline.exe
2021-02-12 12:54:40 ----A---- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2021-02-12 12:54:40 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2021-02-12 12:54:40 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2021-02-12 12:54:40 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2021-02-12 12:54:40 ----A---- C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2021-02-12 12:54:39 ----A---- C:\WINDOWS\system32\WWAHost.exe
2021-02-12 12:54:39 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.Common.dll
2021-02-12 12:54:39 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2021-02-12 12:54:39 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2021-02-12 12:54:39 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.InkControls.dll
2021-02-12 12:54:39 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Controls.dll
2021-02-12 12:54:14 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2021-02-12 12:54:12 ----A---- C:\WINDOWS\system32\StartTileData.dll
2021-02-12 12:54:12 ----A---- C:\WINDOWS\system32\drivers\WdiWiFi.sys
2021-02-12 12:54:12 ----A---- C:\WINDOWS\system32\CredentialEnrollmentManager.exe
2021-02-12 12:54:11 ----A---- C:\WINDOWS\system32\WiredNetworkCSP.dll
2021-02-12 12:54:11 ----A---- C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2021-02-12 12:54:11 ----A---- C:\WINDOWS\system32\PCPKsp.dll
2021-02-12 12:54:11 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2021-02-12 12:54:11 ----A---- C:\WINDOWS\system32\dot3svc.dll
2021-02-12 12:54:11 ----A---- C:\WINDOWS\system32\dot3msm.dll
2021-02-12 12:54:11 ----A---- C:\WINDOWS\system32\dot3api.dll
2021-02-12 12:54:10 ----A---- C:\WINDOWS\system32\SettingsHandlers_InputPersonalization.dll
2021-02-12 12:54:10 ----A---- C:\WINDOWS\system32\localspl.dll
2021-02-12 12:54:10 ----A---- C:\WINDOWS\system32\FaxPrinterInstaller.dll
2021-02-12 12:54:09 ----A---- C:\WINDOWS\system32\WpcMon.exe
2021-02-12 12:54:09 ----A---- C:\WINDOWS\system32\WpcDesktopMonSvc.dll
2021-02-12 12:54:09 ----A---- C:\WINDOWS\system32\MDMAgent.exe
2021-02-12 12:54:09 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2021-02-12 12:54:08 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2021-02-12 12:54:08 ----A---- C:\WINDOWS\system32\AudioSrvPolicyManager.dll
2021-02-12 12:54:08 ----A---- C:\WINDOWS\system32\AudioSes.dll
2021-02-12 12:54:08 ----A---- C:\WINDOWS\system32\audioresourceregistrar.dll
2021-02-12 12:54:08 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2021-02-12 12:54:07 ----A---- C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe
2021-02-12 12:54:07 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2021-02-12 12:54:07 ----A---- C:\WINDOWS\system32\audiosrv.dll
2021-02-12 12:54:07 ----A---- C:\WINDOWS\system32\AudioEng.dll
2021-02-12 12:54:07 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2021-02-12 12:54:07 ----A---- C:\WINDOWS\system32\audiodg.exe
2021-02-12 12:54:06 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2021-02-12 12:54:06 ----A---- C:\WINDOWS\system32\vac.dll
2021-02-12 12:54:06 ----A---- C:\WINDOWS\system32\MMDevAPI.dll
2021-02-12 12:54:06 ----A---- C:\WINDOWS\system32\agentactivationruntimewindows.dll
2021-02-12 12:54:06 ----A---- C:\WINDOWS\system32\agentactivationruntime.dll
2021-02-12 12:54:06 ----A---- C:\WINDOWS\system32\AarSvc.dll
2021-02-12 12:54:04 ----A---- C:\WINDOWS\system32\XblAuthManager.dll
2021-02-12 12:54:03 ----A---- C:\WINDOWS\system32\xboxgipsvc.dll
2021-02-12 12:54:03 ----A---- C:\WINDOWS\system32\XblGameSave.dll
2021-02-12 12:54:03 ----A---- C:\WINDOWS\system32\Windows.Management.Service.dll
2021-02-12 12:54:03 ----A---- C:\WINDOWS\system32\umpo.dll
2021-02-12 12:54:03 ----A---- C:\WINDOWS\system32\TaskFlowDataEngine.dll
2021-02-12 12:53:59 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2021-02-12 12:53:59 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2021-02-12 12:53:58 ----A---- C:\WINDOWS\system32\drivers\BTHUSB.SYS
2021-02-12 12:53:58 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2021-02-12 12:53:58 ----A---- C:\WINDOWS\system32\drivers\BthMini.SYS
2021-02-12 12:53:58 ----A---- C:\WINDOWS\system32\drivers\bthenum.sys
2021-02-12 12:53:57 ----A---- C:\WINDOWS\system32\iscsilog.dll
2021-02-12 12:53:57 ----A---- C:\WINDOWS\system32\drivers\storufs.sys
2021-02-12 12:53:57 ----A---- C:\WINDOWS\system32\drivers\stornvme.sys
2021-02-12 12:53:57 ----A---- C:\WINDOWS\system32\drivers\msiscsi.sys
2021-02-12 12:53:56 ----A---- C:\WINDOWS\system32\drivers\USBAUDIO.sys
2021-02-12 12:53:56 ----A---- C:\WINDOWS\system32\drivers\disk.sys
======List of files/folders modified in the last 1 month======
2021-02-26 17:14:42 ----RD---- C:\Program Files
2021-02-26 17:13:39 ----AD---- C:\Program Files\TeamViewer
2021-02-26 17:13:04 ----D---- C:\WINDOWS\Temp
2021-02-26 17:12:10 ----D---- C:\WINDOWS\Prefetch
2021-02-26 17:11:22 ----D---- C:\WINDOWS\system32\drivers\UMDF
2021-02-26 17:11:22 ----D---- C:\WINDOWS\INF
2021-02-26 17:11:22 ----D---- C:\Windows
2021-02-26 17:04:31 ----D---- C:\WINDOWS\System32
2021-02-26 17:04:31 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2021-02-26 16:43:18 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2021-02-26 16:41:02 ----D---- C:\ProgramData\NVIDIA
2021-02-26 16:40:45 ----ASH---- C:\DumpStack.log.tmp
2021-02-26 13:06:41 ----D---- C:\WINDOWS\system32\sru
2021-02-26 13:01:41 ----RD---- C:\WINDOWS\Microsoft.NET
2021-02-25 12:04:04 ----D---- C:\Users\vlastnik\AppData\Roaming\TeamViewer
2021-02-25 09:32:08 ----HD---- C:\ProgramData
2021-02-25 09:12:04 ----D---- C:\WINDOWS\system32\Tasks
2021-02-25 09:10:56 ----D---- C:\WINDOWS\system32\drivers
2021-02-24 09:02:31 ----SHD---- C:\WINDOWS\Installer
2021-02-24 08:33:13 ----HD---- C:\WINDOWS\ELAMBKUP
2021-02-24 08:27:03 ----D---- C:\WINDOWS\system32\Logs
2021-02-24 08:27:00 ----D---- C:\Program Files\Microsoft Update Health Tools
2021-02-22 07:43:34 ----D---- C:\WINDOWS\AppReadiness
2021-02-22 07:43:33 ----HD---- C:\Program Files\WindowsApps
2021-02-21 17:58:51 ----D---- C:\WINDOWS\system32\catroot2
2021-02-21 17:57:30 ----AD---- C:\Program Files\Microsoft Office
2021-02-21 17:43:45 ----D---- C:\ProgramData\AVAST Software
2021-02-16 11:28:03 ----D---- C:\WINDOWS\system32\config
2021-02-15 14:28:54 ----SHD---- C:\System Volume Information
2021-02-15 14:27:13 ----D---- C:\WINDOWS\WinSxS
2021-02-15 11:04:44 ----D---- C:\WINDOWS\system32\DriverStore
2021-02-15 11:00:09 ----D---- C:\WINDOWS\SystemResources
2021-02-15 11:00:08 ----D---- C:\WINDOWS\system32\zh-TW
2021-02-15 11:00:08 ----D---- C:\WINDOWS\system32\zh-CN
2021-02-15 11:00:08 ----D---- C:\WINDOWS\system32\th-TH
2021-02-15 11:00:08 ----D---- C:\WINDOWS\system32\sv-SE
2021-02-15 11:00:07 ----D---- C:\WINDOWS\system32\ru-RU
2021-02-15 11:00:07 ----D---- C:\WINDOWS\system32\ro-RO
2021-02-15 11:00:07 ----D---- C:\WINDOWS\system32\pt-PT
2021-02-15 11:00:07 ----D---- C:\WINDOWS\system32\pt-BR
2021-02-15 11:00:06 ----D---- C:\WINDOWS\system32\pl-PL
2021-02-15 11:00:06 ----D---- C:\WINDOWS\system32\oobe
2021-02-15 11:00:06 ----D---- C:\WINDOWS\system32\nl-NL
2021-02-15 11:00:05 ----D---- C:\WINDOWS\system32\nb-NO
2021-02-15 11:00:04 ----D---- C:\WINDOWS\system32\migration
2021-02-15 11:00:04 ----D---- C:\WINDOWS\system32\ko-KR
2021-02-15 11:00:03 ----D---- C:\WINDOWS\system32\Keywords
2021-02-15 11:00:02 ----D---- C:\WINDOWS\system32\ja-JP
2021-02-15 11:00:02 ----D---- C:\WINDOWS\system32\it-IT
2021-02-15 11:00:02 ----D---- C:\WINDOWS\system32\fr-FR
2021-02-15 11:00:02 ----D---- C:\WINDOWS\system32\fr-CA
2021-02-15 11:00:01 ----D---- C:\WINDOWS\system32\fi-FI
2021-02-15 11:00:01 ----D---- C:\WINDOWS\system32\es-MX
2021-02-15 11:00:01 ----D---- C:\WINDOWS\system32\es-ES
2021-02-15 11:00:01 ----D---- C:\WINDOWS\system32\en-US
2021-02-15 10:59:59 ----D---- C:\WINDOWS\system32\en-GB
2021-02-15 10:59:58 ----D---- C:\WINDOWS\system32\el-GR
2021-02-15 10:59:58 ----D---- C:\WINDOWS\system32\drivers\en-US
2021-02-15 10:59:58 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2021-02-15 10:59:57 ----D---- C:\WINDOWS\system32\de-DE
2021-02-15 10:59:57 ----D---- C:\WINDOWS\system32\da-DK
2021-02-15 10:59:57 ----D---- C:\WINDOWS\system32\cs-CZ
2021-02-15 10:59:53 ----D---- C:\WINDOWS\system32\ar-SA
2021-02-15 10:59:28 ----D---- C:\WINDOWS\servicing
2021-02-15 10:59:28 ----D---- C:\WINDOWS\PolicyDefinitions
2021-02-15 10:59:27 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2021-02-15 10:59:27 ----D---- C:\WINDOWS\bcastdvr
2021-02-15 10:59:26 ----D---- C:\Program Files\Windows Mail
2021-02-15 10:59:26 ----D---- C:\Program Files\Common Files\System
2021-02-12 13:06:19 ----D---- C:\WINDOWS\CbsTemp
2021-02-11 12:52:36 ----D---- C:\WINDOWS\SoftwareDistribution
2021-02-10 11:56:47 ----D---- C:\WINDOWS\system32\MRT
2021-02-10 11:56:25 ----AC---- C:\WINDOWS\system32\MRT.exe
2021-02-10 10:29:17 ----D---- C:\WINDOWS\system32\SleepStudy
2021-02-05 19:50:36 ----A---- C:\WINDOWS\system32\sedplugins.dll
2021-02-05 19:50:22 ----A---- C:\WINDOWS\system32\QualityUpdateAssistant.dll
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswArDisk;aswArDisk; C:\WINDOWS\system32\drivers\aswArDisk.sys [2021-02-24 33544]
R0 aswbidsh;aswbidsh; C:\WINDOWS\system32\drivers\aswbidsh.sys [2021-02-24 206304]
R0 aswbuniv;aswbuniv; C:\WINDOWS\system32\drivers\aswbuniv.sys [2021-02-24 91616]
R0 aswElam;aswElam; C:\WINDOWS\system32\drivers\aswElam.sys [2020-12-17 16320]
R0 aswRvrt;aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [2021-02-24 71352]
R0 aswVmm;aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [2021-02-24 276960]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2019-12-07 45584]
R1 afunix;afunix; C:\WINDOWS\system32\drivers\afunix.sys [2020-09-09 29696]
R1 aswArPot;aswArPot; C:\WINDOWS\system32\drivers\aswArPot.sys [2021-02-24 175872]
R1 aswbidsdriver;aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdriver.sys [2021-02-24 287192]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2021-02-24 39248]
R1 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2021-02-24 147728]
R1 aswNetHub;aswNetHub; C:\WINDOWS\system32\drivers\aswNetHub.sys [2021-02-24 376840]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2021-02-24 92696]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2021-02-24 690144]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2021-02-24 384136]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2019-12-07 69432]
R1 CimFS;CimFS; C:\WINDOWS\system32\drivers\CimFS.sys [2019-12-07 68096]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2019-12-07 45568]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2019-12-07 8192]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2021-02-24 161312]
R2 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\WINDOWS\system32\drivers\bindflt.sys [2020-12-09 112456]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2021-02-12 380416]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2020-10-14 37376]
R3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2019-12-07 55608]
R3 HpqKbFiltr;@oem18.inf,%HpqKbFiltr.SvcDesc%;HpqKbFilter Driver; C:\WINDOWS\System32\drivers\HpqKbFiltr.sys [2007-06-18 16768]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHDA.sys [2011-10-18 3546664]
R3 MEI;@oem1.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECI.sys [2011-09-22 41216]
R3 MsQuic;@%SystemRoot%\system32\drivers\msquic.sys,-1; C:\WINDOWS\system32\drivers\msquic.sys [2020-09-09 237368]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvtdwu.inf_x86_bf9b35a5b48ce198\nvlddmkm.sys [2017-01-17 12227512]
R3 RTL8169;@oem14.inf,%rtl8169.Service.DispName%;Realtek 8169 NT Driver; C:\WINDOWS\system32\DRIVERS\Rtlh86.sys [2011-09-08 363112]
R3 rtwlane_13;@netrtwlane_13.inf,%rtwlane_13.DeviceDesc.DispName%;Realtek Wireless LAN 802.11n PCI-E Network Adapter; C:\WINDOWS\System32\drivers\rtwlane_13.sys [2019-12-07 3182592]
R3 SmbDrvI;SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [2017-06-02 44224]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\WINDOWS\System32\drivers\iaStorAVC.sys [2019-12-07 692536]
S0 ItSas35i;ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [2019-12-07 139792]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2019-12-07 103440]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2019-12-07 112656]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2019-12-07 72208]
S0 megasas35i;megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [2019-12-07 87568]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2019-12-07 51728]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2019-12-07 59408]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2019-12-07 33808]
S0 Soluto;Soluto; C:\WINDOWS\system32\Drivers\Soluto.sys [2012-05-24 51144]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2019-12-07 15360]
S3 Acx01000;@%SystemRoot%\system32\drivers\Acx01000.sys,-1000; C:\WINDOWS\system32\drivers\Acx01000.sys [2019-12-07 296448]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2020-10-14 13312]
S3 BthA2dp;@microsoft_bluetooth_a2dp.inf,%BthA2dp.ServiceDescription%;Microsoft Bluetooth A2dp driver; C:\WINDOWS\System32\drivers\BthA2dp.sys [2019-12-07 200192]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2021-02-12 91136]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2020-09-09 78848]
S3 BthMini;@bth.inf,%BTHMINI.SvcDesc%;Bluetooth Radio Driver; C:\WINDOWS\System32\drivers\BTHMINI.sys [2021-02-12 30720]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\drivers\BTHport.sys [2021-02-12 1174528]
S3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\drivers\BTHUSB.sys [2021-02-12 76288]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2019-12-07 31232]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\DriverStore\FileRepository\genericusbfn.inf_x86_9fb34a6bf4965cb2\genericusbfn.sys [2019-12-07 18944]
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpio.sys [2019-12-07 22016]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2019-12-07 41272]
S3 hidspi;@hidspi_km.inf,%hidspi.SVCDESC%;Microsoft SPI HID Miniport Driver; C:\WINDOWS\System32\drivers\hidspi.sys [2019-12-07 45056]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2019-12-07 21504]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2019-12-07 28672]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2019-12-07 73728]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2c.sys [2019-12-07 57856]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2020-10-14 32768]
S3 intelpmax;@intelpmax.inf,%SvcDesc%;Intel(R) Dynamic Device Peak Power Manager Driver; C:\WINDOWS\System32\drivers\intelpmax.sys [2019-12-07 22016]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2019-12-07 45368]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2019-12-07 426808]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2019-12-07 47632]
S3 MbbCx;MBB Network Adapter Class Extension; C:\WINDOWS\system32\drivers\MbbCx.sys [2020-08-26 296960]
S3 Microsoft_Bluetooth_AvrcpTransport;@microsoft_bluetooth_avrcptransport.inf,%Microsoft_Bluetooth_AvrcpTransport.ServiceDescription%;Microsoft Bluetooth Avrcp Transport Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [2019-12-07 46080]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2021-02-12 145408]
S3 PktMon;Packet Monitor Driver; C:\WINDOWS\system32\drivers\PktMon.sys [2020-11-10 87872]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2019-12-07 13312]
S3 portcfg;portcfg; C:\WINDOWS\System32\drivers\portcfg.sys [2019-12-07 19968]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2019-12-07 159744]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2019-12-07 79360]
S3 RSUSBSTOR;@oem0.inf,%RSUSBSTOR.SvcDesc%;RtsUStor.Sys Realtek USB Card Reader; C:\WINDOWS\System32\Drivers\RtsUStor.sys [2010-10-29 197224]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2021-01-25 169672]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2021-02-24 563416]
R2 avast! Tools;Avast Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [2021-02-24 330976]
R2 AvastWscReporter;AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [2021-02-24 56904]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-14 47016]
R2 CDPUserSvc_1ba6c4;Uživatelská služba platformy připojených zařízení_1ba6c4; C:\WINDOWS\system32\svchost.exe [2020-10-14 47016]
R2 ClickToRunSvc;Služba Microsoft Office Klikni a spusť; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2021-02-15 7285640]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2020-10-14 47016]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2020-10-14 47016]
R2 DispBrokerDesktopSvc;@%SystemRoot%\system32\dispbroker.desktop.dll,-101; C:\WINDOWS\system32\svchost.exe [2020-10-14 47016]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2020-10-14 47016]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2020-10-14 47016]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2016-12-29 421944]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-02-25 1260320]
R2 OneSyncSvc_1ba6c4;Hostitel synchronizace_1ba6c4; C:\WINDOWS\system32\svchost.exe [2020-10-14 47016]
R3 AarSvc_1ba6c4;Agent Activation Runtime_1ba6c4; C:\WINDOWS\system32\svchost.exe [2020-10-14 47016]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [2021-02-24 7050776]
R3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2020-10-14 47016]
R3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2020-10-14 47016]
R3 cbdhsvc_1ba6c4;Uživatelská služba schránky_1ba6c4; C:\WINDOWS\system32\svchost.exe [2020-10-14 47016]
R3 DisplayEnhancementService;@%SystemRoot%\System32\Microsoft.Graphics.Display.DisplayEnhancementService.dll,-1000; C:\WINDOWS\system32\svchost.exe [2020-10-14 47016]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2020-10-14 47016]
R3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2020-10-14 47016]
R3 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2021-02-12 800040]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2020-10-14 47016]
S2 avast;Služba %1!s! Update (avast); C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2020-10-26 194200]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-14 47016]
S2 edgeupdate;Služba Microsoft Edge Update (edgeupdate); C:\Program Files\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2020-06-08 224160]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2018-03-15 153168]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2020-10-14 47016]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2020-10-14 47016]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2017-07-18 317408]
S2 SolutoService;Soluto PCGenome Core Service; C:\Program Files\Soluto\SolutoService.exe [2012-05-24 586816]
S3 AarSvc;@%SystemRoot%\system32\AarSvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-14 47016]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2020-12-08 335416]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2020-10-14 47016]
S3 autotimesvc;@%SystemRoot%\System32\autotimesvc.dll,-6; C:\WINDOWS\system32\svchost.exe [2020-10-14 47016]
S3 avastm;Služba %1!s! Update (avastm); C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2020-10-26 194200]
S3 AvastSecureBrowserElevationService;Avast Secure Browser Elevation Service; C:\Program Files\AVAST Software\Browser\Application\88.1.8005.150\elevation_service.exe [2021-02-08 1235736]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-14 47016]
S3 BcastDVRUserService_1ba6c4;Uživatelská služba pro GameDVR a vysílání her_1ba6c4; C:\WINDOWS\system32\svchost.exe [2020-10-14 47016]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\WINDOWS\system32\svchost.exe [2020-10-14 47016]
S3 BluetoothUserService_1ba6c4;Služba pro podporu uživatelů Bluetooth_1ba6c4; C:\WINDOWS\system32\svchost.exe [2020-10-14 47016]
S3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\WINDOWS\system32\svchost.exe [2020-10-14 47016]
S3 CaptureService;@%SystemRoot%\system32\CaptureService.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-14 47016]
S3 CaptureService_1ba6c4;CaptureService_1ba6c4; C:\WINDOWS\system32\svchost.exe [2020-10-14 47016]
S3 cbdhsvc;@%SystemRoot%\system32\cbdhsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-14 47016]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2020-10-14 47016]
S3 ConsentUxUserSvc;@%SystemRoot%\system32\ConsentUxClient.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-14 47016]
S3 ConsentUxUserSvc_1ba6c4;ConsentUX_1ba6c4; C:\WINDOWS\system32\svchost.exe [2020-10-14 47016]
S3 CredentialEnrollmentManagerUserSvc;@%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2021-02-12 291776]
S3 CredentialEnrollmentManagerUserSvc_1ba6c4;CredentialEnrollmentManagerUserSvc_1ba6c4; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2021-02-12 291776]
S3 DeviceAssociationBrokerSvc;@%SystemRoot%\system32\deviceaccess.dll,-107; C:\WINDOWS\system32\svchost.exe [2020-10-14 47016]
S3 DeviceAssociationBrokerSvc_1ba6c4;DeviceAssociationBroker_1ba6c4; C:\WINDOWS\system32\svchost.exe [2020-10-14 47016]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\WINDOWS\system32\svchost.exe [2020-10-14 47016]
S3 DevicePickerUserSvc_1ba6c4;DevicePicker_1ba6c4; C:\WINDOWS\system32\svchost.exe [2020-10-14 47016]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2020-10-14 47016]
S3 DevicesFlowUserSvc_1ba6c4;Tok zařízení_1ba6c4; C:\WINDOWS\system32\svchost.exe [2020-10-14 47016]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-14 47016]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2021-01-13 71680]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2020-10-14 47016]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-14 47016]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2020-10-14 47016]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2020-10-14 47016]
S3 edgeupdatem;Služba Microsoft Edge Update (edgeupdatem); C:\Program Files\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2020-06-08 224160]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2020-10-14 47016]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2020-10-14 47016]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2019-12-03 45976]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2020-10-14 47016]
S3 GoogleChromeElevationService;Google Chrome Elevation Service; C:\Program Files\Google\Chrome\Application\88.0.4324.182\elevation_service.exe [2021-02-13 1156720]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2020-10-14 47016]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2018-03-15 153168]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2020-10-14 47016]
S3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2020-10-14 47016]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2020-10-14 47016]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-14 47016]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-14 47016]
S3 MessagingService_1ba6c4;Služba zasílání zpráv_1ba6c4; C:\WINDOWS\system32\svchost.exe [2020-10-14 47016]
S3 MicrosoftEdgeElevationService;Microsoft Edge Elevation Service; C:\Program Files\Microsoft\Edge\Application\88.0.705.74\elevation_service.exe [2021-02-17 1168256]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2020-11-23 146888]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-14 47016]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2020-10-14 47016]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2020-10-14 47016]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-14 47016]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2002-02-01 214832]
S3 perceptionsimulation;@%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101; C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe [2021-01-13 80896]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2020-10-14 47016]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2020-10-14 47016]
S3 PimIndexMaintenanceSvc_1ba6c4;Data kontaktů_1ba6c4; C:\WINDOWS\system32\svchost.exe [2020-10-14 47016]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-14 47016]
S3 PrintWorkflowUserSvc_1ba6c4;PrintWorkflow_1ba6c4; C:\WINDOWS\system32\svchost.exe [2020-10-14 47016]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2020-10-14 47016]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2020-10-14 47016]
S3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; C:\WINDOWS\system32\svchost.exe [2020-10-14 47016]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2021-01-13 870912]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2020-10-14 47016]
S3 SharedRealitySvc;@%SystemRoot%\system32\SharedRealitySvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-14 47016]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2020-10-14 47016]
S3 spectrum;@%systemroot%\system32\spectrum.exe,-101; C:\WINDOWS\system32\spectrum.exe [2021-01-13 627712]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; C:\WINDOWS\System32\svchost.exe [2020-10-14 47016]
S4 ssh-agent;OpenSSH Authentication Agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [2019-04-18 323584]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Pomalý notebook + náhodné vypínání
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Pomalý notebook + náhodné vypínání
Dobry den.
Stiahnite si na plochu nastroj AdwCleaner, link. na stiahnutie tu: https://toolslib.net/downloads/finish/1/
Pred spustenim nastroja povypinajte vsetke beziace okna programov, to su vsetke beziace programy pod desktopom.
Kliknite pravym tlacidlom mysi na program -> spustit ako Administrator.
Pokracujte kliknutim na tlacidlo Prehladaj teraz (Scan now) a pockajte, kym sa system doskenuje.
Po skene nechajte oznacene vsetky chlieviky, pripadne najdene hrozieby a pokracujte v dolnom pravom rohu tlacidlom Vycistit Teraz (Clean and Repair).
Po restartovani PC sa spusti nastroj AdwCleaner, kliknite na Zobrazit soubor protokolu.
Spusti sa log, jeho obsah skopirujte sem.
Stiahnite si na plochu nastroj AdwCleaner, link. na stiahnutie tu: https://toolslib.net/downloads/finish/1/Pred spustenim nastroja povypinajte vsetke beziace okna programov, to su vsetke beziace programy pod desktopom.
Kliknite pravym tlacidlom mysi na program -> spustit ako Administrator.
Pokracujte kliknutim na tlacidlo Prehladaj teraz (Scan now) a pockajte, kym sa system doskenuje.
Po skene nechajte oznacene vsetky chlieviky, pripadne najdene hrozieby a pokracujte v dolnom pravom rohu tlacidlom Vycistit Teraz (Clean and Repair).
Po restartovani PC sa spusti nastroj AdwCleaner, kliknite na Zobrazit soubor protokolu.
Spusti sa log, jeho obsah skopirujte sem.
► Vyšla moja nová kniha BOTNETY! 
Informácie o nej nájdete tu: >> BOTNETY <<
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT <<
----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Informácie o nej nájdete tu: >> BOTNETY << ¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << ----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Re: Pomalý notebook + náhodné vypínání
Děkuji za odpověď, posílám log z adwcleaneru. Restart to nevyžadovalo.
# -------------------------------
# Malwarebytes AdwCleaner 8.1.0.0
# -------------------------------
# Build: 02-15-2021
# Database: 2021-01-11.1 (Local)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 02-26-2021
# Duration: 00:00:05
# OS: Windows 10 Home
# Cleaned: 2
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
Deleted HKCU\Software\drpsu
Deleted HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon|Userinit
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [1521 octets] - [26/02/2021 18:12:32]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
# -------------------------------
# Malwarebytes AdwCleaner 8.1.0.0
# -------------------------------
# Build: 02-15-2021
# Database: 2021-01-11.1 (Local)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 02-26-2021
# Duration: 00:00:05
# OS: Windows 10 Home
# Cleaned: 2
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
Deleted HKCU\Software\drpsu
Deleted HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon|Userinit
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [1521 octets] - [26/02/2021 18:12:32]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
Re: Pomalý notebook + náhodné vypínání
Preskenujte pocitac s FRST - navod tu: https://forum.viry.cz/viewtopic.php?f=24&t=132509, skopirujte FRST.log + Addition log sem.
► Vyšla moja nová kniha BOTNETY! Informácie o nej nájdete tu: >> BOTNETY <<
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT <<
----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Informácie o nej nájdete tu: >> BOTNETY << ¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << ----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Re: Pomalý notebook + náhodné vypínání
FRST.txt
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 24-02-2021
Ran by vlastnik (administrator) on TOSHIBA (TOSHIBA SATELLITE C670-17M) (26-02-2021 19:30:01)
Running from C:\Users\vlastnik\Desktop
Loaded Profiles: vlastnik & UpdatusUser
Platform: Microsoft Windows 10 Home Version 2004 19041.804 (X86) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <4>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler.exe
(Malwarebytes Inc -> Malwarebytes) C:\Users\vlastnik\Desktop\adwcleaner_8.1.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\tv_w32.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [11430504 2011-10-17] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe [1571432 2011-10-14] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [252848 2012-07-03] (Oracle America, Inc. -> Sun Microsystems, Inc.)
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [332288 2010-12-17] () [File not signed]
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [104160 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3536576 2017-06-02] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKLM\...\Windows NT x86\Print Processors\ssm1MPC: C:\Windows\System32\spool\prtprocs\W32X86\ssm1mpc.dll [28672 2014-09-18] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
HKLM\...\Print\Monitors\doPDF 7 Monitor: C:\WINDOWS\system32\dopdfmn7.dll [23432 2012-05-17] (Softland S.R.L. -> Softland)
HKLM\...\Print\Monitors\ssm1M Langmon: C:\WINDOWS\system32\ssm1mlm.dll [24064 2014-09-18] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> C:\Program Files\AVAST Software\Browser\Application\88.1.8005.150\Installer\chrmstp.exe [2021-02-24] (Avast Software s.r.o. -> AVAST Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\88.0.4324.182\Installer\chrmstp.exe [2021-02-16] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
BootExecute: autocheck autochk * aswBoot.exe /M:28b65b547b /dir:"C:\Program Files\AVAST Software\Avast"
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {011594DA-2428-4DDC-BEC0-60EA86DCD11E} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {029F8134-266C-4744-A38E-15817754725A} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [18199456 2021-02-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {02D50DBD-8DB9-41C3-838D-2E4ABF35AD41} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [3993520 2021-02-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {0352DC7C-5C99-43BF-AAB6-1D4D840086C1} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4108000 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
Task: {05950F8D-0CBE-47CF-9073-9B1C19C2458C} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {0BD5C542-115F-485D-ADC6-23F259C03306} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {0CD8DF24-C0C8-4873-A33B-4F0BBCFDFDBB} - \Microsoft\Windows\Setup\GWXTriggers\Time-Weekend -> No File <==== ATTENTION
Task: {0F7D67FB-EEB7-4E9B-8B2B-3CCAFDBBF2F4} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {0FDF4EAF-46F9-4B1B-BEB2-4890E616C08D} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {10B4EDD4-A31B-4CD7-961E-1FDB6BA47979} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {1C15655A-C717-429B-8821-E81F66F19D9B} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [1997120 2021-02-08] (Avast Software s.r.o. -> AVAST Software)
Task: {1CE69A3A-E3B8-4B5C-A9D0-5E6B37B8998E} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {212EF64A-1D5B-46FA-9CD1-3CFFD19AE56E} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\system32\Macromed\Flash\FlashUtil32_32_0_0_465_Plugin.exe [1504312 2020-12-08] (Adobe Inc. -> Adobe)
Task: {21A41BF2-59C7-4C10-8B87-D02D74B1E60C} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {24FA84A0-E087-48EC-BC51-2B9C4C815D78} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {2C1B573A-F671-456E-B7C5-22FA10829147} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {319BC9EE-7690-4AD7-9D57-5E6E869F038C} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {32285FDA-6DE6-424A-B6C2-BE836F0AD847} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [153168 2018-03-15] (Google Inc -> Google Inc.)
Task: {367F930A-A3DB-4112-B1F1-50E92A171C88} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {39D2410C-EE6C-48A0-AAE9-7ECB5780DBC5} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [3993520 2021-02-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {3C15FC02-13A8-4412-8DEF-BF16391FA368} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {3E6C7220-C98D-47AB-B4FC-725FCF0B2A04} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {456EC4AD-4E80-4E37-89C2-CC7E6A6F3869} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {49583914-4A24-45B2-B51E-BADB72AB15E6} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {49E26B17-5D74-4A15-B3EE-33357DF95426} - System32\Tasks\{911EBF7E-1637-4C85-8965-41BF551C47C8} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {4A40FA3F-FA4B-45C5-84E7-511750F22BC3} - System32\Tasks\{994D2EB6-175B-4E84-94EB-67C937464081} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {4AABB39C-9878-47C8-90F6-7BE04DDB873B} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {4D3B9AD5-74AB-4BEE-8007-6FB2ECCA7AA5} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {541F770E-5D64-49A8-B8D1-90A5367FA1E7} - System32\Tasks\{A89C4A3E-1C50-40C7-A010-470D1E82B6A9} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {58764F27-B390-424A-847B-7273CDB7552E} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {5CBD2987-9F82-47C0-AEEE-62F240B28C52} - System32\Tasks\{F7DF3B10-1DA3-4030-B4EF-AA48D4A56EA9} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {5DDA0EE5-8E5E-4E4F-A733-408C0D75870E} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {622CAC8E-4BFA-498F-AA20-60458AC92E78} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [1997120 2021-02-08] (Avast Software s.r.o. -> AVAST Software)
Task: {64BDE056-96C8-40CB-BAD8-6BC98B75FA55} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {65D03D6A-1DD6-4C4D-9D62-4723EA48402C} - System32\Tasks\{3BC84C1A-183C-4281-B9BA-025DBA10CDE1} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {6BB4E74C-739F-45E2-A4C6-496803AE5431} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {6CE2B26E-657D-4A47-AE4B-FF7D5EE5F561} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
Task: {6DBE4473-57C8-4D09-8F23-62EF36E5D799} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {7366A33F-DEF7-4ED1-ACAB-30E6E3B98167} - System32\Tasks\{B400BEAE-AE4D-4425-935F-53A591EE53C3} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {751A27ED-335B-4A01-B6CC-C816E959EDFB} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {75EB3C9B-5E5A-4D10-9A3C-164D50AB1AF1} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {793D91F6-471F-4306-ACA1-362E3009E283} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {7DDB76D5-08F8-43E5-BB0B-7E0167DF4247} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {8C2EF9B1-2119-4A8A-A8D8-A2925EB593F5} - System32\Tasks\{BBF8E973-3955-402C-8A22-09036C5572C1} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {8E1E9326-3CBD-483B-BF7F-86059D20CAB4} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {8EDB2295-6BEA-4365-94F2-ECE4EDA863EC} - System32\Tasks\{ECC29FEF-A3DA-4769-9850-1B3DCEB867EF} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {92C2DAA3-5E9D-4B86-A210-D88A486FE0C1} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {99FF7174-ABD7-42A9-A235-C9CAA9B53D8A} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {A4AF34E7-4A91-4E34-A8AE-BDF0340124BE} - System32\Tasks\{A874C4F0-77DB-4317-94FA-2289FF2C2810} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {AE00BC61-E2C8-4AE1-A42E-501843D2A970} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {AE3B0EE9-32B4-47F1-9F51-D2DF97031B78} - System32\Tasks\{B561122E-EAF1-4FF8-BA44-C554396CE301} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {B0D887C5-AD75-4646-A618-C34CFD3F8C84} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B1FD7ADF-7CAE-4578-AFD9-51F829E15A1D} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {B3D0ED9F-FC6F-41F0-B550-E590E5022575} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {BA58D7C6-FC6C-4EFB-B90D-8128F1C6C93A} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {C0D1B13B-2C8E-4DC6-A297-0D9B207E2772} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {C36BE0E2-5499-471B-A388-B9DAFCA8CDF2} - System32\Tasks\{1D4B50BB-17B0-40D4-BB01-326A1548E9D9} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {C3B4CB97-F080-4308-9069-00E7DF37C2D2} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {C8CF308D-2F57-4493-881A-5CAC1C3002EB} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {C984C363-7007-4C99-966B-54623EAEC6AE} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {CA5F871B-6169-42C2-8A26-73DE86F9681F} - System32\Tasks\{AE9E8D16-5E2D-42DC-8B37-1B616874FB4A} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {CE9E20E9-C0D8-4BA7-895E-3AF585D07672} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {CEA17009-9D37-4082-BF82-ADC2CBD09FE0} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1550048 2021-02-24] (Avast Software s.r.o. -> Avast Software)
Task: {D0761084-113A-408C-BA58-5BA31D207CB1} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {D0D6C9D5-32CE-4066-9417-E728DBEB1052} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {D3A3E797-07EE-465C-92DD-6DC1F0AF5C76} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [153168 2018-03-15] (Google Inc -> Google Inc.)
Task: {E4913796-06F3-4E0D-9AFD-5AFCE2EBC92E} - System32\Tasks\{E7B77A08-8E6B-4BFE-A1AD-B780E672E257} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {E53D00AF-E3A9-4C92-A51E-E89905DC332A} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {E729F8F4-C389-4D13-A648-9A35ABAE0023} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {E79B2998-8F63-451A-A56D-26EDC0A5098A} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB}
Task: {E94827C7-2744-4DC0-8007-5C167030B284} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [18199456 2021-02-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {EA6D8B68-89A6-4CA1-B90F-4C9EAB675F09} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-08] (Adobe Inc. -> Adobe)
Task: {EFD9DEF9-C6D1-46D0-8475-B2DF407AFB11} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [115016 2021-02-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {F37B0BD3-FD1F-4254-9007-9E9439A6482D} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [115016 2021-02-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {F48A37F0-3800-43A2-8273-26A709BD597F} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {F5371F77-8286-4AAB-9388-B9D71BBDAC42} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {F81150DF-E05D-4870-90EE-0D6FE1A23733} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
Task: {FF298C90-7217-4515-B97D-F19968BC4500} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {FF4A0B1E-A705-4484-99E5-8C28E57BAD6D} - System32\Tasks\{96A07ECE-5A22-4B01-BC32-336E07317ABC} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{00732cab-852b-4dc2-8543-5edff1a23b99}: [DhcpNameServer] 172.16.125.1
Tcpip\..\Interfaces\{524fb85f-a964-47cc-b03d-24c91ced4cc5}: [DhcpNameServer] 10.0.0.138
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\vlastnik\AppData\Local\Microsoft\Edge\User Data\Default [2021-02-26]
FireFox:
========
FF ProfilePath: C:\Users\vlastnik\AppData\Roaming\Mozilla\Firefox\Profiles\32gylciq.default [2021-01-07]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_32_0_0_465.dll [2020-12-08] (Adobe Inc. -> )
FF Plugin: @java.com/DTPlugin,version=10.6.2 -> C:\Windows\system32\npDeployJava1.dll [2012-08-16] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.6.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2012-08-16] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-02-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-02-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-10-26] (Avast Software s.r.o. -> AVAST Software)
FF Plugin: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-10-26] (Avast Software s.r.o. -> AVAST Software)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-02-20] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin: csas.cz/Partner24 -> C:\Program Files\Partner24\npPartner24.dll [2015-10-14] (Ceska sporitelna, a.s.) [File not signed]
FF Plugin HKU\S-1-5-21-3848213662-3967300228-756751357-1000: @nsroblox.roblox.com/launcher -> C:\Users\vlastnik\AppData\Local\Roblox\Versions\version-1600d28b04c54698\\NPRobloxProxy.dll [2012-12-31] (Roblox Corporation -> ROBLOX Corporation)
FF Plugin HKU\S-1-5-21-3848213662-3967300228-756751357-1000: @nsroblox.roblox.com/launcher64 -> C:\Users\vlastnik\AppData\Local\Roblox\Versions\version-1600d28b04c54698\\NPRobloxProxy64.dll [2012-12-31] ( ROBLOX Corporation) [File not signed]
Chrome:
=======
CHR Profile: C:\Users\vlastnik\AppData\Local\Google\Chrome\User Data\Default [2021-01-27]
CHR Extension: (Prezentace) - C:\Users\vlastnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-03-15]
CHR Extension: (Dokumenty) - C:\Users\vlastnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-03-15]
CHR Extension: (Disk Google) - C:\Users\vlastnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-01-07]
CHR Extension: (YouTube) - C:\Users\vlastnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-03-15]
CHR Extension: (Tabulky) - C:\Users\vlastnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-03-15]
CHR Extension: (Dokumenty Google offline) - C:\Users\vlastnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-01-07]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\vlastnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-07]
CHR Extension: (Gmail) - C:\Users\vlastnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-01-07]
CHR Extension: (Chrome Media Router) - C:\Users\vlastnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-01-07]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S2 AdobeARMservice; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-08] (Adobe Inc. -> Adobe)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [7050776 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [563416 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [330976 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files\AVAST Software\Browser\Application\88.1.8005.150\elevation_service.exe [1235736 2021-02-08] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56904 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [7285640 2021-02-15] (Microsoft Corporation -> Microsoft Corporation)
S2 SolutoService; C:\Program Files\Soluto\SolutoService.exe [586816 2012-05-24] (Soluto -> Soluto)
S2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [225472 2017-06-02] (Synaptics Incorporated -> Synaptics Incorporated)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [12835096 2021-01-28] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S4 uhssvc; C:\Program Files\Microsoft Update Health Tools\uhssvc.exe [259904 2021-02-05] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [2250992 2019-12-26] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [85240 2019-12-26] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 xmengine service; C:\WINDOWS\system32\xmesrv.exe [34696 2009-09-25] (Monet+, a.s. -> Monet+, a.s.)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem"
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [33544 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [175872 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [287192 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [206304 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [91616 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16320 2020-12-17] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [39248 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [147728 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [376840 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [92696 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [71352 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [690144 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [384136 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [161312 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [276960 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [200192 2019-12-07] (Microsoft Corporation) [File not signed]
R3 HpqKbFiltr; C:\WINDOWS\System32\drivers\HpqKbFiltr.sys [16768 2007-06-18] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Development Company, L.P.)
R3 MEI; C:\WINDOWS\System32\drivers\HECI.sys [41216 2011-09-22] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvtdwu.inf_x86_bf9b35a5b48ce198\nvlddmkm.sys [12227512 2017-01-17] (NVIDIA Corporation -> NVIDIA Corporation)
R3 rtwlane_13; C:\WINDOWS\System32\drivers\rtwlane_13.sys [3182592 2019-12-07] (Microsoft Windows -> Realtek Semiconductor Corporation)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [44224 2017-06-02] (Synaptics Incorporated -> Synaptics Incorporated)
S0 Soluto; C:\WINDOWS\System32\Drivers\Soluto.sys [51144 2012-05-24] (Soluto -> Soluto LTD.)
R3 Thotkey; C:\WINDOWS\System32\drivers\Thotkey.sys [42088 2015-12-31] (TOSHIBA CORPORATION -> Toshiba Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [37472 2019-12-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [278456 2019-12-26] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [39368 2019-12-26] (Microsoft Windows -> Microsoft Corporation)
U4 aspnet_state; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-02-26 19:30 - 2021-02-26 19:32 - 000029985 _____ C:\Users\vlastnik\Desktop\FRST.txt
2021-02-26 19:29 - 2021-02-26 19:31 - 000000000 ____D C:\FRST
2021-02-26 19:28 - 2021-02-26 19:28 - 002013696 _____ (Farbar) C:\Users\vlastnik\Desktop\FRST.exe
2021-02-26 18:11 - 2021-02-26 18:13 - 000000000 ____D C:\AdwCleaner
2021-02-26 18:10 - 2021-02-26 18:09 - 008463216 _____ (Malwarebytes) C:\Users\vlastnik\Desktop\adwcleaner_8.1.exe
2021-02-26 17:14 - 2021-02-26 17:14 - 000000000 ____D C:\rsit
2021-02-26 17:14 - 2021-02-26 17:14 - 000000000 ____D C:\Program Files\trend micro
2021-02-26 17:14 - 2021-02-26 17:12 - 001107968 _____ C:\Users\vlastnik\Desktop\RSIT.exe
2021-02-26 10:55 - 2021-02-26 10:55 - 000000000 ____D C:\Users\vlastnik\Documents\Avast
2021-02-24 08:33 - 2021-02-24 08:31 - 000286944 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2021-02-24 08:33 - 2021-02-24 08:31 - 000161312 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2021-02-21 17:50 - 2021-02-21 17:52 - 006427788 _____ C:\Users\vlastnik\Documents\Saldo k 6.1.2021.pdf
2021-02-19 12:53 - 2021-02-19 12:53 - 000127733 _____ C:\Users\vlastnik\Documents\Orientační přehled cen lab.zkoušek od 1.1.2021.pdf
2021-02-17 08:46 - 2021-02-17 08:46 - 000308297 _____ C:\Users\vlastnik\Documents\886-01-2021 Horni Luby.pdf
2021-02-17 08:46 - 2021-02-17 08:46 - 000303389 _____ C:\Users\vlastnik\Documents\884-01-2021 Vrt Tuhaň.pdf
2021-02-17 08:46 - 2021-02-17 08:46 - 000302909 _____ C:\Users\vlastnik\Documents\881-01-2021 Studenec u Oloví.pdf
2021-02-17 08:46 - 2021-02-17 08:46 - 000298668 _____ C:\Users\vlastnik\Documents\882-01-2021 Rolava u Prebuzi.pdf
2021-02-17 08:45 - 2021-02-17 08:45 - 000286063 _____ C:\Users\vlastnik\Documents\880-01-2021 Světlina.pdf
2021-02-15 12:26 - 2021-02-15 12:26 - 000000757 _____ C:\Users\vlastnik\Documents\Dokumenty – zástupce (2).lnk
2021-02-12 12:56 - 2021-02-12 12:56 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-02-09 17:49 - 2021-02-09 17:49 - 000001082 _____ C:\Users\vlastnik\Downloads\DNEDP4-7104274298-20210209-174508-pracovni.xml
2021-02-09 17:49 - 2021-02-09 17:49 - 000001082 _____ C:\Users\vlastnik\Downloads\DNEDP4-7104274298-20210209-174508-pracovni (1).xml
2021-02-09 16:49 - 2021-02-09 16:49 - 000000224 _____ C:\Users\vlastnik\Downloads\DNEDP4-XXXXXXXXXX-20210209-164738-pracovni.xml
2021-02-08 12:42 - 2021-02-08 12:42 - 000728967 _____ C:\Users\vlastnik\Downloads\mzdy (5).zip
2021-02-08 12:42 - 2021-02-08 12:42 - 000728967 _____ C:\Users\vlastnik\Downloads\mzdy (4).zip
2021-02-08 12:42 - 2021-02-08 12:42 - 000728967 _____ C:\Users\vlastnik\Downloads\mzdy (3).zip
2021-02-08 11:18 - 2021-02-08 11:18 - 000737137 _____ C:\Users\vlastnik\Downloads\mzdy (2).zip
2021-02-08 11:18 - 2021-02-08 11:18 - 000737137 _____ C:\Users\vlastnik\Downloads\mzdy (1).zip
2021-02-07 16:56 - 2021-02-07 17:04 - 000082944 _____ C:\Users\vlastnik\Downloads\JEEP_2020 (1).xls
2021-02-07 16:56 - 2021-02-07 16:56 - 000205818 _____ C:\Users\vlastnik\Downloads\CADDY_2020.xls (3).zip
2021-02-07 16:56 - 2021-02-07 16:56 - 000205818 _____ C:\Users\vlastnik\Downloads\CADDY_2020.xls (2).zip
2021-02-07 16:14 - 2021-02-07 16:54 - 000204288 _____ C:\Users\vlastnik\Desktop\FABIA_2021.xls
2021-02-07 10:26 - 2021-02-07 10:26 - 000240294 _____ C:\Users\vlastnik\Downloads\faktura9210146531.pdf
2021-02-07 10:26 - 2021-02-07 10:26 - 000240287 _____ C:\Users\vlastnik\Downloads\faktura9210146531 (1).pdf
2021-01-29 13:31 - 2021-01-29 13:32 - 004826291 _____ C:\Users\vlastnik\Downloads\0867_20210129113035_001.pdf (1).zip
2021-01-29 13:31 - 2021-01-29 13:31 - 004826291 _____ C:\Users\vlastnik\Downloads\0867_20210129113035_001.pdf.zip
2021-01-29 11:26 - 2021-01-29 11:26 - 000025705 _____ C:\Users\vlastnik\Downloads\fw-vrt-praha-bchovice-poany-laboratorn-zkouky (1).eml
2021-01-29 11:24 - 2021-01-29 11:24 - 000025705 _____ C:\Users\vlastnik\Downloads\fw-vrt-praha-bchovice-poany-laboratorn-zkouky.eml
2021-01-27 08:50 - 2021-01-27 08:50 - 000067072 _____ C:\Users\vlastnik\Downloads\JEEP_2020.xls
2021-01-27 08:42 - 2021-01-27 08:42 - 000205818 _____ C:\Users\vlastnik\Downloads\CADDY_2020.xls.zip
2021-01-27 08:42 - 2021-01-27 08:42 - 000205818 _____ C:\Users\vlastnik\Downloads\CADDY_2020.xls (1).zip
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-02-26 19:33 - 2016-08-31 16:31 - 000000000 ____D C:\Program Files\TeamViewer
2021-02-26 19:24 - 2020-08-26 01:10 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-02-26 19:15 - 2020-08-26 01:51 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2021-02-26 19:05 - 2019-12-07 07:12 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-02-26 18:13 - 2016-09-14 20:39 - 000000000 ____D C:\ProgramData\NVIDIA
2021-02-26 17:34 - 2018-05-29 19:39 - 000000000 ____D C:\Users\vlastnik\AppData\Local\AVAST Software
2021-02-26 17:11 - 2019-12-07 07:10 - 000000000 ____D C:\WINDOWS\INF
2021-02-26 17:04 - 2020-08-26 01:34 - 001693336 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-02-26 17:04 - 2019-12-07 13:21 - 000717844 _____ C:\WINDOWS\system32\perfh005.dat
2021-02-26 17:04 - 2019-12-07 13:21 - 000144986 _____ C:\WINDOWS\system32\perfc005.dat
2021-02-26 16:40 - 2020-08-26 01:51 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-02-26 16:40 - 2020-08-26 01:10 - 000008192 ___SH C:\DumpStack.log.tmp
2021-02-26 13:08 - 2019-12-07 07:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-02-26 11:19 - 2019-02-06 09:59 - 000000000 ____D C:\Users\vlastnik\Documents\akce 947
2021-02-26 11:18 - 2017-04-28 05:54 - 000000000 ____D C:\Users\vlastnik\Documents\pokuta
2021-02-26 10:36 - 2018-01-22 15:44 - 000000000 ____D C:\Users\vlastnik\AppData\Local\Packages
2021-02-25 12:04 - 2016-08-31 16:31 - 000000000 ____D C:\Users\vlastnik\AppData\Roaming\TeamViewer
2021-02-25 11:14 - 2020-08-26 01:51 - 000004200 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{6A61A513-D890-412E-87A1-54191FAFAEB8}
2021-02-24 09:52 - 2018-06-21 06:40 - 000000000 ___RD C:\Users\vlastnik\Documents\Scanned Documents
2021-02-24 09:47 - 2018-05-29 19:40 - 000002450 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2021-02-24 09:29 - 2021-01-23 16:17 - 000000000 ____D C:\Users\vlastnik\Documents\ČEZ -chata
2021-02-24 09:10 - 2020-10-13 15:00 - 000147728 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2021-02-24 09:02 - 2020-08-26 01:51 - 000004550 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-02-24 09:00 - 2015-07-21 16:46 - 000002112 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-02-24 08:53 - 2012-06-12 15:18 - 000384136 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2021-02-24 08:33 - 2019-12-07 07:12 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-02-24 08:32 - 2016-08-16 07:05 - 000276960 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2021-02-24 08:31 - 2020-04-14 18:08 - 000376840 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2021-02-24 08:31 - 2019-10-21 03:47 - 000033544 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2021-02-24 08:31 - 2019-01-04 11:50 - 000206304 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2021-02-24 08:31 - 2019-01-04 11:50 - 000091616 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2021-02-24 08:31 - 2018-10-22 12:21 - 000039248 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2021-02-24 08:31 - 2017-11-19 10:11 - 000175872 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2021-02-24 08:31 - 2016-08-16 07:05 - 000071352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2021-02-24 08:31 - 2012-06-12 15:18 - 000690144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2021-02-24 08:31 - 2012-06-12 15:18 - 000092696 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2021-02-24 08:30 - 2019-01-14 15:52 - 000287192 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2021-02-24 08:27 - 2020-08-22 12:08 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-02-22 07:43 - 2020-06-08 19:04 - 000002371 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-02-22 07:43 - 2019-12-07 07:12 - 000000000 ___HD C:\Program Files\WindowsApps
2021-02-22 07:43 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-02-21 17:57 - 2013-12-21 12:28 - 000000000 ____D C:\Program Files\Microsoft Office
2021-02-21 17:43 - 2012-06-12 15:17 - 000000000 ____D C:\ProgramData\AVAST Software
2021-02-19 11:48 - 2020-02-22 13:48 - 000000000 ____D C:\Users\vlastnik\Documents\Sudop 2021
2021-02-19 11:45 - 2020-08-26 01:51 - 000003368 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3848213662-3967300228-756751357-1000
2021-02-19 11:45 - 2020-08-26 01:13 - 000002376 _____ C:\Users\vlastnik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-02-19 11:45 - 2016-06-03 06:00 - 000000000 ___RD C:\Users\vlastnik\OneDrive
2021-02-16 20:40 - 2018-03-15 19:00 - 000002253 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-02-15 11:04 - 2020-08-26 01:10 - 000484656 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-02-15 11:00 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\SystemResources
2021-02-15 11:00 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-02-15 11:00 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\Keywords
2021-02-15 11:00 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-02-15 10:59 - 2019-12-07 07:12 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-02-15 10:59 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-02-15 10:59 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-02-15 10:59 - 2019-12-07 07:12 - 000000000 ____D C:\Program Files\Common Files\System
2021-02-15 10:59 - 2019-12-07 07:03 - 000000000 ____D C:\WINDOWS\servicing
2021-02-12 13:06 - 2019-12-07 07:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-02-11 11:36 - 2020-08-26 01:51 - 000003572 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-02-11 11:36 - 2020-08-26 01:51 - 000003448 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-02-10 11:56 - 2013-12-15 15:51 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-02-10 11:56 - 2012-06-12 14:44 - 127354856 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-02-09 12:30 - 2021-01-07 08:16 - 000000000 ____D C:\Users\vlastnik\Documents\objednávky2021
2021-02-05 19:50 - 2020-08-22 12:08 - 000569152 _____ (Microsoft Corporation) C:\WINDOWS\system32\sedplugins.dll
2021-02-05 19:50 - 2020-08-22 12:08 - 000364352 _____ (Microsoft Corporation) C:\WINDOWS\system32\QualityUpdateAssistant.dll
2021-02-05 19:32 - 2020-08-26 01:51 - 000003460 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-02-05 19:32 - 2020-08-26 01:51 - 000003336 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-01-31 11:38 - 2020-11-26 08:41 - 000000000 ____D C:\Users\vlastnik\Documents\objednávky a smlouvy 2021 (5)
==================== Files in the root of some directories ========
2017-07-16 11:02 - 2017-07-16 11:02 - 000000055 _____ () C:\ProgramData\pconfig.dat
2020-10-26 16:44 - 2020-10-26 16:44 - 010014720 _____ () C:\Program Files\GUTA0BB.tmp
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 24-02-2021
Ran by vlastnik (administrator) on TOSHIBA (TOSHIBA SATELLITE C670-17M) (26-02-2021 19:30:01)
Running from C:\Users\vlastnik\Desktop
Loaded Profiles: vlastnik & UpdatusUser
Platform: Microsoft Windows 10 Home Version 2004 19041.804 (X86) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <4>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler.exe
(Malwarebytes Inc -> Malwarebytes) C:\Users\vlastnik\Desktop\adwcleaner_8.1.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\tv_w32.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [11430504 2011-10-17] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe [1571432 2011-10-14] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [252848 2012-07-03] (Oracle America, Inc. -> Sun Microsystems, Inc.)
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [332288 2010-12-17] () [File not signed]
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [104160 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3536576 2017-06-02] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKLM\...\Windows NT x86\Print Processors\ssm1MPC: C:\Windows\System32\spool\prtprocs\W32X86\ssm1mpc.dll [28672 2014-09-18] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
HKLM\...\Print\Monitors\doPDF 7 Monitor: C:\WINDOWS\system32\dopdfmn7.dll [23432 2012-05-17] (Softland S.R.L. -> Softland)
HKLM\...\Print\Monitors\ssm1M Langmon: C:\WINDOWS\system32\ssm1mlm.dll [24064 2014-09-18] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> C:\Program Files\AVAST Software\Browser\Application\88.1.8005.150\Installer\chrmstp.exe [2021-02-24] (Avast Software s.r.o. -> AVAST Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\88.0.4324.182\Installer\chrmstp.exe [2021-02-16] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
BootExecute: autocheck autochk * aswBoot.exe /M:28b65b547b /dir:"C:\Program Files\AVAST Software\Avast"
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {011594DA-2428-4DDC-BEC0-60EA86DCD11E} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {029F8134-266C-4744-A38E-15817754725A} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [18199456 2021-02-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {02D50DBD-8DB9-41C3-838D-2E4ABF35AD41} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [3993520 2021-02-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {0352DC7C-5C99-43BF-AAB6-1D4D840086C1} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4108000 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
Task: {05950F8D-0CBE-47CF-9073-9B1C19C2458C} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {0BD5C542-115F-485D-ADC6-23F259C03306} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {0CD8DF24-C0C8-4873-A33B-4F0BBCFDFDBB} - \Microsoft\Windows\Setup\GWXTriggers\Time-Weekend -> No File <==== ATTENTION
Task: {0F7D67FB-EEB7-4E9B-8B2B-3CCAFDBBF2F4} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {0FDF4EAF-46F9-4B1B-BEB2-4890E616C08D} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {10B4EDD4-A31B-4CD7-961E-1FDB6BA47979} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {1C15655A-C717-429B-8821-E81F66F19D9B} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [1997120 2021-02-08] (Avast Software s.r.o. -> AVAST Software)
Task: {1CE69A3A-E3B8-4B5C-A9D0-5E6B37B8998E} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {212EF64A-1D5B-46FA-9CD1-3CFFD19AE56E} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\system32\Macromed\Flash\FlashUtil32_32_0_0_465_Plugin.exe [1504312 2020-12-08] (Adobe Inc. -> Adobe)
Task: {21A41BF2-59C7-4C10-8B87-D02D74B1E60C} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {24FA84A0-E087-48EC-BC51-2B9C4C815D78} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {2C1B573A-F671-456E-B7C5-22FA10829147} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {319BC9EE-7690-4AD7-9D57-5E6E869F038C} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {32285FDA-6DE6-424A-B6C2-BE836F0AD847} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [153168 2018-03-15] (Google Inc -> Google Inc.)
Task: {367F930A-A3DB-4112-B1F1-50E92A171C88} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {39D2410C-EE6C-48A0-AAE9-7ECB5780DBC5} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [3993520 2021-02-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {3C15FC02-13A8-4412-8DEF-BF16391FA368} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {3E6C7220-C98D-47AB-B4FC-725FCF0B2A04} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {456EC4AD-4E80-4E37-89C2-CC7E6A6F3869} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {49583914-4A24-45B2-B51E-BADB72AB15E6} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {49E26B17-5D74-4A15-B3EE-33357DF95426} - System32\Tasks\{911EBF7E-1637-4C85-8965-41BF551C47C8} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {4A40FA3F-FA4B-45C5-84E7-511750F22BC3} - System32\Tasks\{994D2EB6-175B-4E84-94EB-67C937464081} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {4AABB39C-9878-47C8-90F6-7BE04DDB873B} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {4D3B9AD5-74AB-4BEE-8007-6FB2ECCA7AA5} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {541F770E-5D64-49A8-B8D1-90A5367FA1E7} - System32\Tasks\{A89C4A3E-1C50-40C7-A010-470D1E82B6A9} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {58764F27-B390-424A-847B-7273CDB7552E} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {5CBD2987-9F82-47C0-AEEE-62F240B28C52} - System32\Tasks\{F7DF3B10-1DA3-4030-B4EF-AA48D4A56EA9} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {5DDA0EE5-8E5E-4E4F-A733-408C0D75870E} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {622CAC8E-4BFA-498F-AA20-60458AC92E78} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [1997120 2021-02-08] (Avast Software s.r.o. -> AVAST Software)
Task: {64BDE056-96C8-40CB-BAD8-6BC98B75FA55} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {65D03D6A-1DD6-4C4D-9D62-4723EA48402C} - System32\Tasks\{3BC84C1A-183C-4281-B9BA-025DBA10CDE1} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {6BB4E74C-739F-45E2-A4C6-496803AE5431} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {6CE2B26E-657D-4A47-AE4B-FF7D5EE5F561} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
Task: {6DBE4473-57C8-4D09-8F23-62EF36E5D799} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {7366A33F-DEF7-4ED1-ACAB-30E6E3B98167} - System32\Tasks\{B400BEAE-AE4D-4425-935F-53A591EE53C3} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {751A27ED-335B-4A01-B6CC-C816E959EDFB} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {75EB3C9B-5E5A-4D10-9A3C-164D50AB1AF1} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {793D91F6-471F-4306-ACA1-362E3009E283} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {7DDB76D5-08F8-43E5-BB0B-7E0167DF4247} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {8C2EF9B1-2119-4A8A-A8D8-A2925EB593F5} - System32\Tasks\{BBF8E973-3955-402C-8A22-09036C5572C1} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {8E1E9326-3CBD-483B-BF7F-86059D20CAB4} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {8EDB2295-6BEA-4365-94F2-ECE4EDA863EC} - System32\Tasks\{ECC29FEF-A3DA-4769-9850-1B3DCEB867EF} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {92C2DAA3-5E9D-4B86-A210-D88A486FE0C1} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {99FF7174-ABD7-42A9-A235-C9CAA9B53D8A} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {A4AF34E7-4A91-4E34-A8AE-BDF0340124BE} - System32\Tasks\{A874C4F0-77DB-4317-94FA-2289FF2C2810} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {AE00BC61-E2C8-4AE1-A42E-501843D2A970} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {AE3B0EE9-32B4-47F1-9F51-D2DF97031B78} - System32\Tasks\{B561122E-EAF1-4FF8-BA44-C554396CE301} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {B0D887C5-AD75-4646-A618-C34CFD3F8C84} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B1FD7ADF-7CAE-4578-AFD9-51F829E15A1D} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {B3D0ED9F-FC6F-41F0-B550-E590E5022575} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {BA58D7C6-FC6C-4EFB-B90D-8128F1C6C93A} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {C0D1B13B-2C8E-4DC6-A297-0D9B207E2772} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {C36BE0E2-5499-471B-A388-B9DAFCA8CDF2} - System32\Tasks\{1D4B50BB-17B0-40D4-BB01-326A1548E9D9} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {C3B4CB97-F080-4308-9069-00E7DF37C2D2} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {C8CF308D-2F57-4493-881A-5CAC1C3002EB} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {C984C363-7007-4C99-966B-54623EAEC6AE} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {CA5F871B-6169-42C2-8A26-73DE86F9681F} - System32\Tasks\{AE9E8D16-5E2D-42DC-8B37-1B616874FB4A} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {CE9E20E9-C0D8-4BA7-895E-3AF585D07672} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {CEA17009-9D37-4082-BF82-ADC2CBD09FE0} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1550048 2021-02-24] (Avast Software s.r.o. -> Avast Software)
Task: {D0761084-113A-408C-BA58-5BA31D207CB1} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {D0D6C9D5-32CE-4066-9417-E728DBEB1052} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {D3A3E797-07EE-465C-92DD-6DC1F0AF5C76} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [153168 2018-03-15] (Google Inc -> Google Inc.)
Task: {E4913796-06F3-4E0D-9AFD-5AFCE2EBC92E} - System32\Tasks\{E7B77A08-8E6B-4BFE-A1AD-B780E672E257} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {E53D00AF-E3A9-4C92-A51E-E89905DC332A} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {E729F8F4-C389-4D13-A648-9A35ABAE0023} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {E79B2998-8F63-451A-A56D-26EDC0A5098A} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB}
Task: {E94827C7-2744-4DC0-8007-5C167030B284} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [18199456 2021-02-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {EA6D8B68-89A6-4CA1-B90F-4C9EAB675F09} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-08] (Adobe Inc. -> Adobe)
Task: {EFD9DEF9-C6D1-46D0-8475-B2DF407AFB11} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [115016 2021-02-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {F37B0BD3-FD1F-4254-9007-9E9439A6482D} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [115016 2021-02-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {F48A37F0-3800-43A2-8273-26A709BD597F} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {F5371F77-8286-4AAB-9388-B9D71BBDAC42} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {F81150DF-E05D-4870-90EE-0D6FE1A23733} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
Task: {FF298C90-7217-4515-B97D-F19968BC4500} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {FF4A0B1E-A705-4484-99E5-8C28E57BAD6D} - System32\Tasks\{96A07ECE-5A22-4B01-BC32-336E07317ABC} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{00732cab-852b-4dc2-8543-5edff1a23b99}: [DhcpNameServer] 172.16.125.1
Tcpip\..\Interfaces\{524fb85f-a964-47cc-b03d-24c91ced4cc5}: [DhcpNameServer] 10.0.0.138
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\vlastnik\AppData\Local\Microsoft\Edge\User Data\Default [2021-02-26]
FireFox:
========
FF ProfilePath: C:\Users\vlastnik\AppData\Roaming\Mozilla\Firefox\Profiles\32gylciq.default [2021-01-07]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_32_0_0_465.dll [2020-12-08] (Adobe Inc. -> )
FF Plugin: @java.com/DTPlugin,version=10.6.2 -> C:\Windows\system32\npDeployJava1.dll [2012-08-16] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.6.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2012-08-16] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-02-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-02-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-10-26] (Avast Software s.r.o. -> AVAST Software)
FF Plugin: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-10-26] (Avast Software s.r.o. -> AVAST Software)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-02-20] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin: csas.cz/Partner24 -> C:\Program Files\Partner24\npPartner24.dll [2015-10-14] (Ceska sporitelna, a.s.) [File not signed]
FF Plugin HKU\S-1-5-21-3848213662-3967300228-756751357-1000: @nsroblox.roblox.com/launcher -> C:\Users\vlastnik\AppData\Local\Roblox\Versions\version-1600d28b04c54698\\NPRobloxProxy.dll [2012-12-31] (Roblox Corporation -> ROBLOX Corporation)
FF Plugin HKU\S-1-5-21-3848213662-3967300228-756751357-1000: @nsroblox.roblox.com/launcher64 -> C:\Users\vlastnik\AppData\Local\Roblox\Versions\version-1600d28b04c54698\\NPRobloxProxy64.dll [2012-12-31] ( ROBLOX Corporation) [File not signed]
Chrome:
=======
CHR Profile: C:\Users\vlastnik\AppData\Local\Google\Chrome\User Data\Default [2021-01-27]
CHR Extension: (Prezentace) - C:\Users\vlastnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-03-15]
CHR Extension: (Dokumenty) - C:\Users\vlastnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-03-15]
CHR Extension: (Disk Google) - C:\Users\vlastnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-01-07]
CHR Extension: (YouTube) - C:\Users\vlastnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-03-15]
CHR Extension: (Tabulky) - C:\Users\vlastnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-03-15]
CHR Extension: (Dokumenty Google offline) - C:\Users\vlastnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-01-07]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\vlastnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-07]
CHR Extension: (Gmail) - C:\Users\vlastnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-01-07]
CHR Extension: (Chrome Media Router) - C:\Users\vlastnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-01-07]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S2 AdobeARMservice; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-08] (Adobe Inc. -> Adobe)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [7050776 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [563416 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [330976 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files\AVAST Software\Browser\Application\88.1.8005.150\elevation_service.exe [1235736 2021-02-08] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56904 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [7285640 2021-02-15] (Microsoft Corporation -> Microsoft Corporation)
S2 SolutoService; C:\Program Files\Soluto\SolutoService.exe [586816 2012-05-24] (Soluto -> Soluto)
S2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [225472 2017-06-02] (Synaptics Incorporated -> Synaptics Incorporated)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [12835096 2021-01-28] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S4 uhssvc; C:\Program Files\Microsoft Update Health Tools\uhssvc.exe [259904 2021-02-05] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [2250992 2019-12-26] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [85240 2019-12-26] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 xmengine service; C:\WINDOWS\system32\xmesrv.exe [34696 2009-09-25] (Monet+, a.s. -> Monet+, a.s.)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem"
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [33544 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [175872 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [287192 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [206304 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [91616 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16320 2020-12-17] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [39248 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [147728 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [376840 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [92696 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [71352 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [690144 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [384136 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [161312 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [276960 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [200192 2019-12-07] (Microsoft Corporation) [File not signed]
R3 HpqKbFiltr; C:\WINDOWS\System32\drivers\HpqKbFiltr.sys [16768 2007-06-18] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Development Company, L.P.)
R3 MEI; C:\WINDOWS\System32\drivers\HECI.sys [41216 2011-09-22] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvtdwu.inf_x86_bf9b35a5b48ce198\nvlddmkm.sys [12227512 2017-01-17] (NVIDIA Corporation -> NVIDIA Corporation)
R3 rtwlane_13; C:\WINDOWS\System32\drivers\rtwlane_13.sys [3182592 2019-12-07] (Microsoft Windows -> Realtek Semiconductor Corporation)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [44224 2017-06-02] (Synaptics Incorporated -> Synaptics Incorporated)
S0 Soluto; C:\WINDOWS\System32\Drivers\Soluto.sys [51144 2012-05-24] (Soluto -> Soluto LTD.)
R3 Thotkey; C:\WINDOWS\System32\drivers\Thotkey.sys [42088 2015-12-31] (TOSHIBA CORPORATION -> Toshiba Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [37472 2019-12-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [278456 2019-12-26] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [39368 2019-12-26] (Microsoft Windows -> Microsoft Corporation)
U4 aspnet_state; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-02-26 19:30 - 2021-02-26 19:32 - 000029985 _____ C:\Users\vlastnik\Desktop\FRST.txt
2021-02-26 19:29 - 2021-02-26 19:31 - 000000000 ____D C:\FRST
2021-02-26 19:28 - 2021-02-26 19:28 - 002013696 _____ (Farbar) C:\Users\vlastnik\Desktop\FRST.exe
2021-02-26 18:11 - 2021-02-26 18:13 - 000000000 ____D C:\AdwCleaner
2021-02-26 18:10 - 2021-02-26 18:09 - 008463216 _____ (Malwarebytes) C:\Users\vlastnik\Desktop\adwcleaner_8.1.exe
2021-02-26 17:14 - 2021-02-26 17:14 - 000000000 ____D C:\rsit
2021-02-26 17:14 - 2021-02-26 17:14 - 000000000 ____D C:\Program Files\trend micro
2021-02-26 17:14 - 2021-02-26 17:12 - 001107968 _____ C:\Users\vlastnik\Desktop\RSIT.exe
2021-02-26 10:55 - 2021-02-26 10:55 - 000000000 ____D C:\Users\vlastnik\Documents\Avast
2021-02-24 08:33 - 2021-02-24 08:31 - 000286944 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2021-02-24 08:33 - 2021-02-24 08:31 - 000161312 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2021-02-21 17:50 - 2021-02-21 17:52 - 006427788 _____ C:\Users\vlastnik\Documents\Saldo k 6.1.2021.pdf
2021-02-19 12:53 - 2021-02-19 12:53 - 000127733 _____ C:\Users\vlastnik\Documents\Orientační přehled cen lab.zkoušek od 1.1.2021.pdf
2021-02-17 08:46 - 2021-02-17 08:46 - 000308297 _____ C:\Users\vlastnik\Documents\886-01-2021 Horni Luby.pdf
2021-02-17 08:46 - 2021-02-17 08:46 - 000303389 _____ C:\Users\vlastnik\Documents\884-01-2021 Vrt Tuhaň.pdf
2021-02-17 08:46 - 2021-02-17 08:46 - 000302909 _____ C:\Users\vlastnik\Documents\881-01-2021 Studenec u Oloví.pdf
2021-02-17 08:46 - 2021-02-17 08:46 - 000298668 _____ C:\Users\vlastnik\Documents\882-01-2021 Rolava u Prebuzi.pdf
2021-02-17 08:45 - 2021-02-17 08:45 - 000286063 _____ C:\Users\vlastnik\Documents\880-01-2021 Světlina.pdf
2021-02-15 12:26 - 2021-02-15 12:26 - 000000757 _____ C:\Users\vlastnik\Documents\Dokumenty – zástupce (2).lnk
2021-02-12 12:56 - 2021-02-12 12:56 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-02-09 17:49 - 2021-02-09 17:49 - 000001082 _____ C:\Users\vlastnik\Downloads\DNEDP4-7104274298-20210209-174508-pracovni.xml
2021-02-09 17:49 - 2021-02-09 17:49 - 000001082 _____ C:\Users\vlastnik\Downloads\DNEDP4-7104274298-20210209-174508-pracovni (1).xml
2021-02-09 16:49 - 2021-02-09 16:49 - 000000224 _____ C:\Users\vlastnik\Downloads\DNEDP4-XXXXXXXXXX-20210209-164738-pracovni.xml
2021-02-08 12:42 - 2021-02-08 12:42 - 000728967 _____ C:\Users\vlastnik\Downloads\mzdy (5).zip
2021-02-08 12:42 - 2021-02-08 12:42 - 000728967 _____ C:\Users\vlastnik\Downloads\mzdy (4).zip
2021-02-08 12:42 - 2021-02-08 12:42 - 000728967 _____ C:\Users\vlastnik\Downloads\mzdy (3).zip
2021-02-08 11:18 - 2021-02-08 11:18 - 000737137 _____ C:\Users\vlastnik\Downloads\mzdy (2).zip
2021-02-08 11:18 - 2021-02-08 11:18 - 000737137 _____ C:\Users\vlastnik\Downloads\mzdy (1).zip
2021-02-07 16:56 - 2021-02-07 17:04 - 000082944 _____ C:\Users\vlastnik\Downloads\JEEP_2020 (1).xls
2021-02-07 16:56 - 2021-02-07 16:56 - 000205818 _____ C:\Users\vlastnik\Downloads\CADDY_2020.xls (3).zip
2021-02-07 16:56 - 2021-02-07 16:56 - 000205818 _____ C:\Users\vlastnik\Downloads\CADDY_2020.xls (2).zip
2021-02-07 16:14 - 2021-02-07 16:54 - 000204288 _____ C:\Users\vlastnik\Desktop\FABIA_2021.xls
2021-02-07 10:26 - 2021-02-07 10:26 - 000240294 _____ C:\Users\vlastnik\Downloads\faktura9210146531.pdf
2021-02-07 10:26 - 2021-02-07 10:26 - 000240287 _____ C:\Users\vlastnik\Downloads\faktura9210146531 (1).pdf
2021-01-29 13:31 - 2021-01-29 13:32 - 004826291 _____ C:\Users\vlastnik\Downloads\0867_20210129113035_001.pdf (1).zip
2021-01-29 13:31 - 2021-01-29 13:31 - 004826291 _____ C:\Users\vlastnik\Downloads\0867_20210129113035_001.pdf.zip
2021-01-29 11:26 - 2021-01-29 11:26 - 000025705 _____ C:\Users\vlastnik\Downloads\fw-vrt-praha-bchovice-poany-laboratorn-zkouky (1).eml
2021-01-29 11:24 - 2021-01-29 11:24 - 000025705 _____ C:\Users\vlastnik\Downloads\fw-vrt-praha-bchovice-poany-laboratorn-zkouky.eml
2021-01-27 08:50 - 2021-01-27 08:50 - 000067072 _____ C:\Users\vlastnik\Downloads\JEEP_2020.xls
2021-01-27 08:42 - 2021-01-27 08:42 - 000205818 _____ C:\Users\vlastnik\Downloads\CADDY_2020.xls.zip
2021-01-27 08:42 - 2021-01-27 08:42 - 000205818 _____ C:\Users\vlastnik\Downloads\CADDY_2020.xls (1).zip
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-02-26 19:33 - 2016-08-31 16:31 - 000000000 ____D C:\Program Files\TeamViewer
2021-02-26 19:24 - 2020-08-26 01:10 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-02-26 19:15 - 2020-08-26 01:51 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2021-02-26 19:05 - 2019-12-07 07:12 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-02-26 18:13 - 2016-09-14 20:39 - 000000000 ____D C:\ProgramData\NVIDIA
2021-02-26 17:34 - 2018-05-29 19:39 - 000000000 ____D C:\Users\vlastnik\AppData\Local\AVAST Software
2021-02-26 17:11 - 2019-12-07 07:10 - 000000000 ____D C:\WINDOWS\INF
2021-02-26 17:04 - 2020-08-26 01:34 - 001693336 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-02-26 17:04 - 2019-12-07 13:21 - 000717844 _____ C:\WINDOWS\system32\perfh005.dat
2021-02-26 17:04 - 2019-12-07 13:21 - 000144986 _____ C:\WINDOWS\system32\perfc005.dat
2021-02-26 16:40 - 2020-08-26 01:51 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-02-26 16:40 - 2020-08-26 01:10 - 000008192 ___SH C:\DumpStack.log.tmp
2021-02-26 13:08 - 2019-12-07 07:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-02-26 11:19 - 2019-02-06 09:59 - 000000000 ____D C:\Users\vlastnik\Documents\akce 947
2021-02-26 11:18 - 2017-04-28 05:54 - 000000000 ____D C:\Users\vlastnik\Documents\pokuta
2021-02-26 10:36 - 2018-01-22 15:44 - 000000000 ____D C:\Users\vlastnik\AppData\Local\Packages
2021-02-25 12:04 - 2016-08-31 16:31 - 000000000 ____D C:\Users\vlastnik\AppData\Roaming\TeamViewer
2021-02-25 11:14 - 2020-08-26 01:51 - 000004200 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{6A61A513-D890-412E-87A1-54191FAFAEB8}
2021-02-24 09:52 - 2018-06-21 06:40 - 000000000 ___RD C:\Users\vlastnik\Documents\Scanned Documents
2021-02-24 09:47 - 2018-05-29 19:40 - 000002450 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2021-02-24 09:29 - 2021-01-23 16:17 - 000000000 ____D C:\Users\vlastnik\Documents\ČEZ -chata
2021-02-24 09:10 - 2020-10-13 15:00 - 000147728 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2021-02-24 09:02 - 2020-08-26 01:51 - 000004550 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-02-24 09:00 - 2015-07-21 16:46 - 000002112 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-02-24 08:53 - 2012-06-12 15:18 - 000384136 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2021-02-24 08:33 - 2019-12-07 07:12 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-02-24 08:32 - 2016-08-16 07:05 - 000276960 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2021-02-24 08:31 - 2020-04-14 18:08 - 000376840 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2021-02-24 08:31 - 2019-10-21 03:47 - 000033544 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2021-02-24 08:31 - 2019-01-04 11:50 - 000206304 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2021-02-24 08:31 - 2019-01-04 11:50 - 000091616 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2021-02-24 08:31 - 2018-10-22 12:21 - 000039248 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2021-02-24 08:31 - 2017-11-19 10:11 - 000175872 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2021-02-24 08:31 - 2016-08-16 07:05 - 000071352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2021-02-24 08:31 - 2012-06-12 15:18 - 000690144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2021-02-24 08:31 - 2012-06-12 15:18 - 000092696 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2021-02-24 08:30 - 2019-01-14 15:52 - 000287192 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2021-02-24 08:27 - 2020-08-22 12:08 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-02-22 07:43 - 2020-06-08 19:04 - 000002371 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-02-22 07:43 - 2019-12-07 07:12 - 000000000 ___HD C:\Program Files\WindowsApps
2021-02-22 07:43 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-02-21 17:57 - 2013-12-21 12:28 - 000000000 ____D C:\Program Files\Microsoft Office
2021-02-21 17:43 - 2012-06-12 15:17 - 000000000 ____D C:\ProgramData\AVAST Software
2021-02-19 11:48 - 2020-02-22 13:48 - 000000000 ____D C:\Users\vlastnik\Documents\Sudop 2021
2021-02-19 11:45 - 2020-08-26 01:51 - 000003368 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3848213662-3967300228-756751357-1000
2021-02-19 11:45 - 2020-08-26 01:13 - 000002376 _____ C:\Users\vlastnik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-02-19 11:45 - 2016-06-03 06:00 - 000000000 ___RD C:\Users\vlastnik\OneDrive
2021-02-16 20:40 - 2018-03-15 19:00 - 000002253 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-02-15 11:04 - 2020-08-26 01:10 - 000484656 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-02-15 11:00 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\SystemResources
2021-02-15 11:00 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-02-15 11:00 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\Keywords
2021-02-15 11:00 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-02-15 10:59 - 2019-12-07 07:12 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-02-15 10:59 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-02-15 10:59 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-02-15 10:59 - 2019-12-07 07:12 - 000000000 ____D C:\Program Files\Common Files\System
2021-02-15 10:59 - 2019-12-07 07:03 - 000000000 ____D C:\WINDOWS\servicing
2021-02-12 13:06 - 2019-12-07 07:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-02-11 11:36 - 2020-08-26 01:51 - 000003572 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-02-11 11:36 - 2020-08-26 01:51 - 000003448 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-02-10 11:56 - 2013-12-15 15:51 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-02-10 11:56 - 2012-06-12 14:44 - 127354856 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-02-09 12:30 - 2021-01-07 08:16 - 000000000 ____D C:\Users\vlastnik\Documents\objednávky2021
2021-02-05 19:50 - 2020-08-22 12:08 - 000569152 _____ (Microsoft Corporation) C:\WINDOWS\system32\sedplugins.dll
2021-02-05 19:50 - 2020-08-22 12:08 - 000364352 _____ (Microsoft Corporation) C:\WINDOWS\system32\QualityUpdateAssistant.dll
2021-02-05 19:32 - 2020-08-26 01:51 - 000003460 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-02-05 19:32 - 2020-08-26 01:51 - 000003336 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-01-31 11:38 - 2020-11-26 08:41 - 000000000 ____D C:\Users\vlastnik\Documents\objednávky a smlouvy 2021 (5)
==================== Files in the root of some directories ========
2017-07-16 11:02 - 2017-07-16 11:02 - 000000055 _____ () C:\ProgramData\pconfig.dat
2020-10-26 16:44 - 2020-10-26 16:44 - 010014720 _____ () C:\Program Files\GUTA0BB.tmp
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Re: Pomalý notebook + náhodné vypínání
Addition.txt
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 24-02-2021
Ran by vlastnik (26-02-2021 19:35:32)
Running from C:\Users\vlastnik\Desktop
Microsoft Windows 10 Home Version 2004 19041.804 (X86) (2020-08-26 00:53:19)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-3848213662-3967300228-756751357-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3848213662-3967300228-756751357-503 - Limited - Disabled)
Guest (S-1-5-21-3848213662-3967300228-756751357-501 - Limited - Disabled)
UpdatusUser (S-1-5-21-3848213662-3967300228-756751357-1001 - Limited - Enabled) => C:\Users\UpdatusUser
vlastnik (S-1-5-21-3848213662-3967300228-756751357-1000 - Administrator - Enabled) => C:\Users\vlastnik
WDAGUtilityAccount (S-1-5-21-3848213662-3967300228-756751357-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 9.20 (HKLM\...\7-Zip) (Version: - )
Adobe Acrobat Reader DC - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 21.001.20140 - Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 32.0.0.465 - Adobe)
Aktualizace NVIDIA 1.11.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.11.3 - NVIDIA Corporation)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 21.1.2449 - Avast Software)
Avast Secure Browser (HKLM\...\Avast Secure Browser) (Version: 88.1.8005.150 - AVAST Software)
Avast Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.8.1065.0 - AVAST Software) Hidden
CDBurnerXP (HKLM\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.4.1.3184 - CDBurnerXP)
Common Desktop Agent (HKLM\...\{031A0E14-0413-4C97-9772-2639B782F46F}) (Version: 1.53.0 - OEM) Hidden
CPCSi_1_1_30_PPT (HKLM\...\{CE0A2084-EF33-4D73-9F8B-55FEE239808A}) (Version: 1.1.30.14413 - Monet+, a.s.)
doPDF 7.3 printer (HKLM\...\doPDF 7 printer_is1) (Version: - Softland)
Google Chrome (HKLM\...\Google Chrome) (Version: 88.0.4324.182 - Google LLC)
GPL Ghostscript (HKLM\...\GPL Ghostscript 9.05) (Version: 9.05 - Artifex Software Inc.)
Java 7 Update 6 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217006FF}) (Version: 7.0.60 - Oracle)
K-Lite Codec Pack 8.8.0 (Full) (HKLM\...\KLiteCodecPack_is1) (Version: 8.8.0 - )
LibreOffice 3.6 (HKLM\...\{AFD5A54E-E9A1-413D-8AA2-C9EDB6782400}) (Version: 3.6.0.4 - The Document Foundation)
Microsoft Edge (HKLM\...\Microsoft Edge) (Version: 88.0.705.74 - Microsoft Corporation)
Microsoft Edge Update (HKLM\...\Microsoft Edge Update) (Version: 1.3.141.59 - )
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 - cs-cz (HKLM\...\ProPlusRetail - cs-cz) (Version: 16.0.13628.20448 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3848213662-3967300228-756751357-1000\...\OneDriveSetup.exe) (Version: 21.016.0124.0003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{9733902C-4FFF-4543-8612-C376A55574A5}) (Version: 2.75.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM\...\{3C3D696B-0DB7-3C6D-A356-3DB8CE541918}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Mozilla Firefox 47.0.2 (x86 cs) (HKLM\...\Mozilla Firefox 47.0.2 (x86 cs)) (Version: 47.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 47.0.2.6148 - Mozilla)
Mozilla Thunderbird 12.0.1 (x86 cs) (HKLM\...\Mozilla Thunderbird 12.0.1 (x86 cs)) (Version: 12.0.1 - Mozilla)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.13628.20274 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-0000-0000000FF1CE}) (Version: 16.0.13628.20330 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.13628.20274 - Microsoft Corporation) Hidden
Ovládací panel NVIDIA 376.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 376.54 - NVIDIA Corporation) Hidden
Partner24 (HKLM\...\Partner24) (Version: 1.7.0 - Česká Spořitelna a.s.)
PDF Signer (HKLM\...\{5D605ACB-B350-488A-B1F6-76B517135AC0}) (Version: 1.0.0 - Dignita)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6482 - Realtek Semiconductor Corp.)
ROBLOX Player for vlastnik (HKU\S-1-5-21-3848213662-3967300228-756751357-1000\...\{373B1718-8CC5-4567-8EE2-9033AD08A680}) (Version: - ROBLOX Corporation)
Samsung Easy Printer Manager (HKLM\...\Samsung Easy Printer Manager) (Version: 1.02.06.10 - Samsung Electronics Co., Ltd.)
Samsung Printer Live Update (HKLM\...\Samsung Printer Live Update) (Version: 1.01.00:04(2013-04-22) - Samsung Electronics Co., Ltd.)
Samsung Scan Assistant (HKLM\...\Samsung Scan Assistant) (Version: 1.04.45.00 - Samsung Electronics Co., Ltd.)
Samsung SCX-3400 Series (HKLM\...\Samsung SCX-3400 Series) (Version: 1.08 (7.5.2012) - Samsung Electronics Co., Ltd.)
Skype™ 7.40 (HKLM\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.151 - Skype Technologies S.A.)
Soluto (HKLM\...\{3FBA4117-494E-474A-B9B7-FE56074F1C8B}) (Version: 1.3.761.0 - Soluto)
SumatraPDF (HKLM\...\SumatraPDF) (Version: 2.1.1 - Krzysztof Kowalczyk)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.10.0 - Synaptics Incorporated)
TeamViewer (HKLM\...\TeamViewer) (Version: 15.14.5 - TeamViewer)
Total Commander (Remove or Repair) (HKLM\...\Totalcmd) (Version: 8.0 - Ghisler Software GmbH)
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
Windows 10 Update and Privacy Settings (HKLM\...\{542CC2C2-ABAF-4604-8723-DA296AF74540}) (Version: 1.0.14.0 - Microsoft Corporation)
XMedia Recode version 3.1.0.0 (HKLM\...\{DDA3C325-47B2-4730-9672-BF3771C08799}_is1) (Version: 3.1.0.0 - XMedia Recode)
XnView 1.99 (HKLM\...\XnView_is1) (Version: 1.99 - Gougelet Pierre-e)
Packages:
=========
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.179.300.0_x86__kgqvnymyfvs32 [2020-10-16] (king.com)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x86__8wekyb3d8bbwe [2020-06-29] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-18] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.10142.0_x86__8wekyb3d8bbwe [2020-10-21] (Microsoft Studios) [MS Ad]
MSN Sports -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.36.20714.0_x86__8wekyb3d8bbwe [2020-03-26] (Microsoft Corporation) [MS Ad]
Samsung Printer Experience -> C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCO.LTD.SamsungPrinterExperience_1.3.15.0_x86__3c1yjt4zspk6g [2017-07-16] (Samsung Electronics Co. Ltd.)
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2018-09-10] (Twitter Inc.)
Váš telefon -> C:\Program Files\WindowsApps\Microsoft.YourPhone_1.20092.123.0_x86__8wekyb3d8bbwe [2020-10-17] (Microsoft Corporation)
WindowsDVDPlayer -> C:\Program Files\WindowsApps\Microsoft.WindowsDVDPlayer_3.6.13291.0_x86__8wekyb3d8bbwe [2016-06-04] (Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-3848213662-3967300228-756751357-1000_Classes\CLSID\{76D50904-6780-4c8b-8986-1A7EE0B1716D}\InprocServer32 -> C:\Users\vlastnik\AppData\Local\Roblox\Versions\version-1600d28b04c54698\RobloxProxy.dll (Roblox Corporation -> ROBLOX Corporation)
CustomCLSID: HKU\S-1-5-21-3848213662-3967300228-756751357-1000_Classes\CLSID\{DEE03C2B-0C0C-41A9-9877-FD4B4D7B6EA3}\InprocServer32 -> C:\Users\vlastnik\AppData\Local\Roblox\Versions\version-1600d28b04c54698\RobloxProxy64.dll (ROBLOX Corporation) [File not signed]
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-02-24] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2010-11-18] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-02-24] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-02-24] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2010-11-18] (Igor Pavlov) [File not signed]
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> No File
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2016-12-29] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-02-24] (Avast Software s.r.o. -> AVAST Software)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2010-11-18 17:08 - 2010-11-18 17:08 - 000055808 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
HKU\S-1-5-21-3848213662-3967300228-756751357-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2021-02-04] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2012-08-16] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2012-08-16] (Oracle America, Inc. -> Oracle Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-02-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-02-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-02-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-02-04] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 03:04 - 2019-01-04 11:44 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
2019-07-22 03:30 - 2019-07-22 06:57 - 000000436 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-3848213662-3967300228-756751357-1000\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
HKU\S-1-5-21-3848213662-3967300228-756751357-1001\Control Panel\Desktop\\Wallpaper ->
DNS Servers: Media is not connected to internet.
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{D137E8B2-59F3-41F3-9DBA-ADAE0BB71C3F}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{16D085CE-3AD4-4024-BD96-C4E371BDD7F1}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{EE9FAE85-0B68-43F1-97C7-B3FD07E8377E}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5D9E3214-4231-4F6C-A146-ED3E53517FA5}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F9B28520-8A6B-4853-A4EA-27DDE7721EF1}] => (Allow) C:\Program Files\Scan Assistant\USDAgent.exe () [File not signed]
FirewallRules: [{70354C60-E55B-476E-B7BD-EC7D373DB0BD}] => (Allow) C:\Program Files\Scan Assistant\USDAgent.exe () [File not signed]
FirewallRules: [{7CC22A70-71F9-4084-8298-335A9BCBC286}] => (Allow) C:\Program Files\Samsung\Easy Printer Manager\CDAS2PC\CDAS2PC.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{3D8DFBCF-EF4D-4CF3-893B-47A834ED69AC}] => (Allow) C:\Program Files\Samsung\Easy Printer Manager\CDAS2PC\CDAS2PC.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{0F7081EC-7DAE-4038-BF37-593D63722845}] => (Allow) C:\Program Files\Samsung\Easy Printer Manager\IDSAlert.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{8950FA84-8754-45F5-A29D-CD89C143A49E}] => (Allow) C:\Program Files\Samsung\Easy Printer Manager\IDSAlert.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{A625F1BF-E7A8-44D4-9AEB-6265A19F4CCF}] => (Allow) C:\Program Files\Samsung\Easy Printer Manager\OrderSupplies.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{7FF200C2-086D-47E0-8C3C-5DFE8E164672}] => (Allow) C:\Program Files\Samsung\Easy Printer Manager\OrderSupplies.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{9CAF5801-03DD-4978-AB23-B337492A45BC}] => (Allow) C:\Program Files\Samsung\Easy Printer Manager\IDS.Application.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{9BCAB25B-DB6D-417F-BBF2-CB1125537B25}] => (Allow) C:\Program Files\Samsung\Easy Printer Manager\IDS.Application.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{B88B55C7-76B0-4C6A-AF35-B085E4C99693}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe () [File not signed]
FirewallRules: [{038E3903-D5A5-418E-8214-6FA1249EE3D7}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe () [File not signed]
FirewallRules: [{0D46E465-6116-4CEB-8EFB-809D742F2007}] => (Allow) C:\Windows\twain_32\Samsung\SCX3400\SCNSearch\USDAgent.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{9E861F26-8C75-4E27-8F12-1E50225B72BC}] => (Allow) C:\Windows\twain_32\Samsung\SCX3400\SCNSearch\USDAgent.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{18818A6E-E005-496B-8562-0D46EFCDF5EF}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{CC75AF26-5B8F-4698-BD9B-966F95D49629}] => (Allow) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{34F1DF77-3947-4CDE-923C-EFC6D93E2C0A}] => (Allow) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{03744813-9E95-423D-B06A-8D8DFE9B97FF}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{CA6FB760-8DAD-4123-AE84-A326430150AF}] => (Allow) C:\Program Files\Soluto\SolutoUpdateService.exe (Soluto -> Soluto)
FirewallRules: [{5D79F0A9-B609-4617-AC8C-CE7C60349C83}] => (Allow) C:\Program Files\Soluto\SolutoUpdateService.exe (Soluto -> Soluto)
FirewallRules: [{6C14BDBC-6346-4834-858E-594A0E13570F}] => (Allow) C:\Program Files\Soluto\SolutoConsole.exe (Soluto -> Soluto)
FirewallRules: [{A852D69E-235C-4515-94AF-E31FA270D28E}] => (Allow) C:\Program Files\Soluto\SolutoConsole.exe (Soluto -> Soluto)
FirewallRules: [{D6CE72BD-0167-4900-BA6A-9AB66803EC98}] => (Allow) C:\Program Files\Soluto\SolutoService.exe (Soluto -> Soluto)
FirewallRules: [{2DDB5409-D2CF-4682-9332-AF8172B9BB7C}] => (Allow) C:\Program Files\Soluto\SolutoService.exe (Soluto -> Soluto)
FirewallRules: [{7DBE15AC-C3BB-442D-ACEC-AB02AC0E0CEA}] => (Allow) C:\Program Files\Soluto\Soluto.exe (Soluto -> Soluto)
FirewallRules: [{FCF254A7-D92B-45D6-8E2F-8F9BDEBD76B5}] => (Allow) C:\Program Files\Soluto\Soluto.exe (Soluto -> Soluto)
FirewallRules: [{80F83D90-860C-440A-8ABB-9069CDAA1DC8}] => (Allow) F:\Soluto - sledovani startu systemu\solutoinstaller.exe => No File
FirewallRules: [{673381F0-7C24-43E1-87E9-CEBF7DA4228A}] => (Allow) F:\Soluto - sledovani startu systemu\solutoinstaller.exe => No File
FirewallRules: [{EC54A14E-06C8-4153-B40D-C4C459D543BF}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{C05D1393-BB72-4162-A877-0A41510B2266}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{71AFA3EA-74E4-49B8-9824-6F2879F8B3FD}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{C149C46F-F519-4B79-A701-4A96CD2B0199}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{31657F1A-F5F0-4EDC-86DA-D959FAE92D17}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{AE090EFA-7BD7-48A9-98E1-C5284E6FCDA2}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{82EA99C1-EA67-4A30-8B40-D37E213FA6A5}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{B6FCFE3D-E656-4EE8-9A2A-45839A1415B8}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{BC70D63C-B4C8-4D90-B1B4-AB10DE40A5D3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{75AB76C0-B029-4C1E-A6C7-AA04169B5C0B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E72D24BF-0F38-4520-ADC5-E59598858602}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{EFD473CD-9655-4C00-AABC-8FCFAE11DC65}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{AF8E724B-2BF5-474E-ACD7-51504F597D2A}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{3725A750-33F4-41FE-B2AE-BC8B62065980}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{A7606728-E9D0-4D0C-8CCA-5D8914DCFC10}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{648FF8D7-6F39-47D0-B7ED-C59E80E69386}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{3835CA04-E968-491F-8B2F-8C4D773F1188}] => (Allow) C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe (Avast Software s.r.o. -> AVAST Software)
==================== Restore Points =========================
12-02-2021 11:42:45 Instalační služba modulů systému Windows
26-02-2021 17:25:20 Naplánovaný kontrolní bod
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (02/26/2021 05:25:44 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).
System Error:
Přístup byl odepřen.
.
Error: (02/26/2021 01:01:50 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na DATA (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (02/26/2021 01:01:45 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Rezervováno systémem, protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (02/25/2021 11:01:31 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program iexplore.exe verze 11.0.19041.1 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 24e0
Čas spuštění: 01d70b5d187bf14b
Čas ukončení: 66
Cesta k aplikaci: C:\Program Files\Internet Explorer\iexplore.exe
ID hlášení: c2b8e2d2-b3fa-4ad3-836f-eda568812701
Úplný název balíčku s chybou:
ID aplikace relativní podle balíčku s chybou:
Typ zablokování: Unknown
Error: (02/24/2021 08:25:19 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: GameBar.exe, verze: 5.420.8043.0, časové razítko: 0x5f29c4c2
Název chybujícího modulu: ucrtbase.dll, verze: 10.0.19041.789, časové razítko: 0x82dc99a2
Kód výjimky: 0xc0000409
Posun chyby: 0x0009eddb
ID chybujícího procesu: 0x25f0
Čas spuštění chybující aplikace: 0x01d70a7e21336aac
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.420.8043.0_x86__8wekyb3d8bbwe\GameBar.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\ucrtbase.dll
ID zprávy: b29e02ae-e69f-477a-940c-46d87da2052f
Úplný název chybujícího balíčku: Microsoft.XboxGamingOverlay_5.420.8043.0_x86__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: App
Error: (02/21/2021 06:00:46 PM) (Source: MsiInstaller) (EventID: 11704) (User: NT AUTHORITY)
Description: Produkt: Office 16 Click-to-Run Extensibility Component - Chyba 1704 Instalace produktu Adobe Acrobat Reader DC - Czech je pozastavena. Chcete-li pokračovat, je nutné vrátit zpět změny provedené při instalaci. Chcete tyto změny vrátit zpět?
Error: (02/19/2021 01:04:05 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na DATA (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (02/19/2021 01:03:46 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Rezervováno systémem, protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
System errors:
=============
Error: (02/26/2021 06:13:36 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba Microsoft Office Klikni a spusť byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 0 milisekund: Restartovat službu.
Error: (02/26/2021 06:13:36 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba NVIDIA Update Service Daemon byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (02/26/2021 06:13:35 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba CryptoPlus XME Engine Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (02/26/2021 06:13:35 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba SynTPEnh Caller Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (02/26/2021 06:13:35 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Adobe Acrobat Update Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (02/26/2021 06:13:35 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba NVIDIA Display Container LS byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 1000 milisekund: Restartovat službu.
Error: (02/26/2021 04:48:07 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Aktualizovat službu Orchestrator přestala během spouštění reagovat.
Error: (02/26/2021 04:46:18 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba cpuz135 neuspěla při spuštění v důsledku následující chyby:
Načtení tohoto ovladače je blokováno.
CodeIntegrity:
===============
Date: 2021-02-26 17:41:54
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\AVAST Software\Avast\AvastSvc.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2021-02-26 16:43:17
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
Date: 2021-02-26 16:42:54
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. 1.60 07/26/2011
Motherboard: Intel Corporation Oneonta Falls
Processor: Intel(R) Pentium(R) CPU B950 @ 2.10GHz
Percentage of memory in use: 56%
Total physical RAM: 3317.98 MB
Available physical RAM: 1437.71 MB
Total Virtual: 6645.98 MB
Available Virtual: 3953.74 MB
==================== Drives ================================
Drive c: (SYSTEM) (Fixed) (Total:269.58 GB) (Free:203.03 GB) NTFS
Drive d: (DATA) (Fixed) (Total:195.31 GB) (Free:194.3 GB) NTFS
Drive f: (ESD-ISO) (Removable) (Total:29.87 GB) (Free:17.24 GB) exFAT
\\?\Volume{e93631d4-b483-11e1-84a3-806e6f6e6963}\ (Rezervováno systémem) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS
\\?\Volume{ea075893-0000-0000-0000-406b43000000}\ () (Fixed) (Total:0.77 GB) (Free:0.32 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: EA075893)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=269.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=791 MB) - (Type=27)
Partition 4: (Not Active) - (Size=195.3 GB) - (Type=07 NTFS)
==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 29.9 GB) (Disk ID: 2F211F72)
Partition 1: (Active) - (Size=29.9 GB) - (Type=07 NTFS)
==================== End of Addition.txt =======================
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 24-02-2021
Ran by vlastnik (26-02-2021 19:35:32)
Running from C:\Users\vlastnik\Desktop
Microsoft Windows 10 Home Version 2004 19041.804 (X86) (2020-08-26 00:53:19)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-3848213662-3967300228-756751357-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3848213662-3967300228-756751357-503 - Limited - Disabled)
Guest (S-1-5-21-3848213662-3967300228-756751357-501 - Limited - Disabled)
UpdatusUser (S-1-5-21-3848213662-3967300228-756751357-1001 - Limited - Enabled) => C:\Users\UpdatusUser
vlastnik (S-1-5-21-3848213662-3967300228-756751357-1000 - Administrator - Enabled) => C:\Users\vlastnik
WDAGUtilityAccount (S-1-5-21-3848213662-3967300228-756751357-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 9.20 (HKLM\...\7-Zip) (Version: - )
Adobe Acrobat Reader DC - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 21.001.20140 - Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 32.0.0.465 - Adobe)
Aktualizace NVIDIA 1.11.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.11.3 - NVIDIA Corporation)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 21.1.2449 - Avast Software)
Avast Secure Browser (HKLM\...\Avast Secure Browser) (Version: 88.1.8005.150 - AVAST Software)
Avast Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.8.1065.0 - AVAST Software) Hidden
CDBurnerXP (HKLM\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.4.1.3184 - CDBurnerXP)
Common Desktop Agent (HKLM\...\{031A0E14-0413-4C97-9772-2639B782F46F}) (Version: 1.53.0 - OEM) Hidden
CPCSi_1_1_30_PPT (HKLM\...\{CE0A2084-EF33-4D73-9F8B-55FEE239808A}) (Version: 1.1.30.14413 - Monet+, a.s.)
doPDF 7.3 printer (HKLM\...\doPDF 7 printer_is1) (Version: - Softland)
Google Chrome (HKLM\...\Google Chrome) (Version: 88.0.4324.182 - Google LLC)
GPL Ghostscript (HKLM\...\GPL Ghostscript 9.05) (Version: 9.05 - Artifex Software Inc.)
Java 7 Update 6 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217006FF}) (Version: 7.0.60 - Oracle)
K-Lite Codec Pack 8.8.0 (Full) (HKLM\...\KLiteCodecPack_is1) (Version: 8.8.0 - )
LibreOffice 3.6 (HKLM\...\{AFD5A54E-E9A1-413D-8AA2-C9EDB6782400}) (Version: 3.6.0.4 - The Document Foundation)
Microsoft Edge (HKLM\...\Microsoft Edge) (Version: 88.0.705.74 - Microsoft Corporation)
Microsoft Edge Update (HKLM\...\Microsoft Edge Update) (Version: 1.3.141.59 - )
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 - cs-cz (HKLM\...\ProPlusRetail - cs-cz) (Version: 16.0.13628.20448 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3848213662-3967300228-756751357-1000\...\OneDriveSetup.exe) (Version: 21.016.0124.0003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{9733902C-4FFF-4543-8612-C376A55574A5}) (Version: 2.75.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM\...\{3C3D696B-0DB7-3C6D-A356-3DB8CE541918}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Mozilla Firefox 47.0.2 (x86 cs) (HKLM\...\Mozilla Firefox 47.0.2 (x86 cs)) (Version: 47.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 47.0.2.6148 - Mozilla)
Mozilla Thunderbird 12.0.1 (x86 cs) (HKLM\...\Mozilla Thunderbird 12.0.1 (x86 cs)) (Version: 12.0.1 - Mozilla)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.13628.20274 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-0000-0000000FF1CE}) (Version: 16.0.13628.20330 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.13628.20274 - Microsoft Corporation) Hidden
Ovládací panel NVIDIA 376.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 376.54 - NVIDIA Corporation) Hidden
Partner24 (HKLM\...\Partner24) (Version: 1.7.0 - Česká Spořitelna a.s.)
PDF Signer (HKLM\...\{5D605ACB-B350-488A-B1F6-76B517135AC0}) (Version: 1.0.0 - Dignita)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6482 - Realtek Semiconductor Corp.)
ROBLOX Player for vlastnik (HKU\S-1-5-21-3848213662-3967300228-756751357-1000\...\{373B1718-8CC5-4567-8EE2-9033AD08A680}) (Version: - ROBLOX Corporation)
Samsung Easy Printer Manager (HKLM\...\Samsung Easy Printer Manager) (Version: 1.02.06.10 - Samsung Electronics Co., Ltd.)
Samsung Printer Live Update (HKLM\...\Samsung Printer Live Update) (Version: 1.01.00:04(2013-04-22) - Samsung Electronics Co., Ltd.)
Samsung Scan Assistant (HKLM\...\Samsung Scan Assistant) (Version: 1.04.45.00 - Samsung Electronics Co., Ltd.)
Samsung SCX-3400 Series (HKLM\...\Samsung SCX-3400 Series) (Version: 1.08 (7.5.2012) - Samsung Electronics Co., Ltd.)
Skype™ 7.40 (HKLM\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.151 - Skype Technologies S.A.)
Soluto (HKLM\...\{3FBA4117-494E-474A-B9B7-FE56074F1C8B}) (Version: 1.3.761.0 - Soluto)
SumatraPDF (HKLM\...\SumatraPDF) (Version: 2.1.1 - Krzysztof Kowalczyk)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.10.0 - Synaptics Incorporated)
TeamViewer (HKLM\...\TeamViewer) (Version: 15.14.5 - TeamViewer)
Total Commander (Remove or Repair) (HKLM\...\Totalcmd) (Version: 8.0 - Ghisler Software GmbH)
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
Windows 10 Update and Privacy Settings (HKLM\...\{542CC2C2-ABAF-4604-8723-DA296AF74540}) (Version: 1.0.14.0 - Microsoft Corporation)
XMedia Recode version 3.1.0.0 (HKLM\...\{DDA3C325-47B2-4730-9672-BF3771C08799}_is1) (Version: 3.1.0.0 - XMedia Recode)
XnView 1.99 (HKLM\...\XnView_is1) (Version: 1.99 - Gougelet Pierre-e)
Packages:
=========
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.179.300.0_x86__kgqvnymyfvs32 [2020-10-16] (king.com)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x86__8wekyb3d8bbwe [2020-06-29] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-18] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.10142.0_x86__8wekyb3d8bbwe [2020-10-21] (Microsoft Studios) [MS Ad]
MSN Sports -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.36.20714.0_x86__8wekyb3d8bbwe [2020-03-26] (Microsoft Corporation) [MS Ad]
Samsung Printer Experience -> C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCO.LTD.SamsungPrinterExperience_1.3.15.0_x86__3c1yjt4zspk6g [2017-07-16] (Samsung Electronics Co. Ltd.)
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2018-09-10] (Twitter Inc.)
Váš telefon -> C:\Program Files\WindowsApps\Microsoft.YourPhone_1.20092.123.0_x86__8wekyb3d8bbwe [2020-10-17] (Microsoft Corporation)
WindowsDVDPlayer -> C:\Program Files\WindowsApps\Microsoft.WindowsDVDPlayer_3.6.13291.0_x86__8wekyb3d8bbwe [2016-06-04] (Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-3848213662-3967300228-756751357-1000_Classes\CLSID\{76D50904-6780-4c8b-8986-1A7EE0B1716D}\InprocServer32 -> C:\Users\vlastnik\AppData\Local\Roblox\Versions\version-1600d28b04c54698\RobloxProxy.dll (Roblox Corporation -> ROBLOX Corporation)
CustomCLSID: HKU\S-1-5-21-3848213662-3967300228-756751357-1000_Classes\CLSID\{DEE03C2B-0C0C-41A9-9877-FD4B4D7B6EA3}\InprocServer32 -> C:\Users\vlastnik\AppData\Local\Roblox\Versions\version-1600d28b04c54698\RobloxProxy64.dll (ROBLOX Corporation) [File not signed]
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-02-24] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2010-11-18] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-02-24] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-02-24] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2010-11-18] (Igor Pavlov) [File not signed]
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> No File
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2016-12-29] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-02-24] (Avast Software s.r.o. -> AVAST Software)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2010-11-18 17:08 - 2010-11-18 17:08 - 000055808 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
HKU\S-1-5-21-3848213662-3967300228-756751357-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2021-02-04] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2012-08-16] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2012-08-16] (Oracle America, Inc. -> Oracle Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-02-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-02-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-02-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-02-04] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 03:04 - 2019-01-04 11:44 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
2019-07-22 03:30 - 2019-07-22 06:57 - 000000436 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-3848213662-3967300228-756751357-1000\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
HKU\S-1-5-21-3848213662-3967300228-756751357-1001\Control Panel\Desktop\\Wallpaper ->
DNS Servers: Media is not connected to internet.
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{D137E8B2-59F3-41F3-9DBA-ADAE0BB71C3F}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{16D085CE-3AD4-4024-BD96-C4E371BDD7F1}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{EE9FAE85-0B68-43F1-97C7-B3FD07E8377E}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5D9E3214-4231-4F6C-A146-ED3E53517FA5}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F9B28520-8A6B-4853-A4EA-27DDE7721EF1}] => (Allow) C:\Program Files\Scan Assistant\USDAgent.exe () [File not signed]
FirewallRules: [{70354C60-E55B-476E-B7BD-EC7D373DB0BD}] => (Allow) C:\Program Files\Scan Assistant\USDAgent.exe () [File not signed]
FirewallRules: [{7CC22A70-71F9-4084-8298-335A9BCBC286}] => (Allow) C:\Program Files\Samsung\Easy Printer Manager\CDAS2PC\CDAS2PC.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{3D8DFBCF-EF4D-4CF3-893B-47A834ED69AC}] => (Allow) C:\Program Files\Samsung\Easy Printer Manager\CDAS2PC\CDAS2PC.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{0F7081EC-7DAE-4038-BF37-593D63722845}] => (Allow) C:\Program Files\Samsung\Easy Printer Manager\IDSAlert.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{8950FA84-8754-45F5-A29D-CD89C143A49E}] => (Allow) C:\Program Files\Samsung\Easy Printer Manager\IDSAlert.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{A625F1BF-E7A8-44D4-9AEB-6265A19F4CCF}] => (Allow) C:\Program Files\Samsung\Easy Printer Manager\OrderSupplies.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{7FF200C2-086D-47E0-8C3C-5DFE8E164672}] => (Allow) C:\Program Files\Samsung\Easy Printer Manager\OrderSupplies.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{9CAF5801-03DD-4978-AB23-B337492A45BC}] => (Allow) C:\Program Files\Samsung\Easy Printer Manager\IDS.Application.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{9BCAB25B-DB6D-417F-BBF2-CB1125537B25}] => (Allow) C:\Program Files\Samsung\Easy Printer Manager\IDS.Application.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{B88B55C7-76B0-4C6A-AF35-B085E4C99693}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe () [File not signed]
FirewallRules: [{038E3903-D5A5-418E-8214-6FA1249EE3D7}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe () [File not signed]
FirewallRules: [{0D46E465-6116-4CEB-8EFB-809D742F2007}] => (Allow) C:\Windows\twain_32\Samsung\SCX3400\SCNSearch\USDAgent.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{9E861F26-8C75-4E27-8F12-1E50225B72BC}] => (Allow) C:\Windows\twain_32\Samsung\SCX3400\SCNSearch\USDAgent.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{18818A6E-E005-496B-8562-0D46EFCDF5EF}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{CC75AF26-5B8F-4698-BD9B-966F95D49629}] => (Allow) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{34F1DF77-3947-4CDE-923C-EFC6D93E2C0A}] => (Allow) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{03744813-9E95-423D-B06A-8D8DFE9B97FF}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{CA6FB760-8DAD-4123-AE84-A326430150AF}] => (Allow) C:\Program Files\Soluto\SolutoUpdateService.exe (Soluto -> Soluto)
FirewallRules: [{5D79F0A9-B609-4617-AC8C-CE7C60349C83}] => (Allow) C:\Program Files\Soluto\SolutoUpdateService.exe (Soluto -> Soluto)
FirewallRules: [{6C14BDBC-6346-4834-858E-594A0E13570F}] => (Allow) C:\Program Files\Soluto\SolutoConsole.exe (Soluto -> Soluto)
FirewallRules: [{A852D69E-235C-4515-94AF-E31FA270D28E}] => (Allow) C:\Program Files\Soluto\SolutoConsole.exe (Soluto -> Soluto)
FirewallRules: [{D6CE72BD-0167-4900-BA6A-9AB66803EC98}] => (Allow) C:\Program Files\Soluto\SolutoService.exe (Soluto -> Soluto)
FirewallRules: [{2DDB5409-D2CF-4682-9332-AF8172B9BB7C}] => (Allow) C:\Program Files\Soluto\SolutoService.exe (Soluto -> Soluto)
FirewallRules: [{7DBE15AC-C3BB-442D-ACEC-AB02AC0E0CEA}] => (Allow) C:\Program Files\Soluto\Soluto.exe (Soluto -> Soluto)
FirewallRules: [{FCF254A7-D92B-45D6-8E2F-8F9BDEBD76B5}] => (Allow) C:\Program Files\Soluto\Soluto.exe (Soluto -> Soluto)
FirewallRules: [{80F83D90-860C-440A-8ABB-9069CDAA1DC8}] => (Allow) F:\Soluto - sledovani startu systemu\solutoinstaller.exe => No File
FirewallRules: [{673381F0-7C24-43E1-87E9-CEBF7DA4228A}] => (Allow) F:\Soluto - sledovani startu systemu\solutoinstaller.exe => No File
FirewallRules: [{EC54A14E-06C8-4153-B40D-C4C459D543BF}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{C05D1393-BB72-4162-A877-0A41510B2266}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{71AFA3EA-74E4-49B8-9824-6F2879F8B3FD}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{C149C46F-F519-4B79-A701-4A96CD2B0199}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{31657F1A-F5F0-4EDC-86DA-D959FAE92D17}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{AE090EFA-7BD7-48A9-98E1-C5284E6FCDA2}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{82EA99C1-EA67-4A30-8B40-D37E213FA6A5}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{B6FCFE3D-E656-4EE8-9A2A-45839A1415B8}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{BC70D63C-B4C8-4D90-B1B4-AB10DE40A5D3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{75AB76C0-B029-4C1E-A6C7-AA04169B5C0B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E72D24BF-0F38-4520-ADC5-E59598858602}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{EFD473CD-9655-4C00-AABC-8FCFAE11DC65}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{AF8E724B-2BF5-474E-ACD7-51504F597D2A}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{3725A750-33F4-41FE-B2AE-BC8B62065980}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{A7606728-E9D0-4D0C-8CCA-5D8914DCFC10}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{648FF8D7-6F39-47D0-B7ED-C59E80E69386}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{3835CA04-E968-491F-8B2F-8C4D773F1188}] => (Allow) C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe (Avast Software s.r.o. -> AVAST Software)
==================== Restore Points =========================
12-02-2021 11:42:45 Instalační služba modulů systému Windows
26-02-2021 17:25:20 Naplánovaný kontrolní bod
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (02/26/2021 05:25:44 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).
System Error:
Přístup byl odepřen.
.
Error: (02/26/2021 01:01:50 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na DATA (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (02/26/2021 01:01:45 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Rezervováno systémem, protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (02/25/2021 11:01:31 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program iexplore.exe verze 11.0.19041.1 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 24e0
Čas spuštění: 01d70b5d187bf14b
Čas ukončení: 66
Cesta k aplikaci: C:\Program Files\Internet Explorer\iexplore.exe
ID hlášení: c2b8e2d2-b3fa-4ad3-836f-eda568812701
Úplný název balíčku s chybou:
ID aplikace relativní podle balíčku s chybou:
Typ zablokování: Unknown
Error: (02/24/2021 08:25:19 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: GameBar.exe, verze: 5.420.8043.0, časové razítko: 0x5f29c4c2
Název chybujícího modulu: ucrtbase.dll, verze: 10.0.19041.789, časové razítko: 0x82dc99a2
Kód výjimky: 0xc0000409
Posun chyby: 0x0009eddb
ID chybujícího procesu: 0x25f0
Čas spuštění chybující aplikace: 0x01d70a7e21336aac
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.420.8043.0_x86__8wekyb3d8bbwe\GameBar.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\ucrtbase.dll
ID zprávy: b29e02ae-e69f-477a-940c-46d87da2052f
Úplný název chybujícího balíčku: Microsoft.XboxGamingOverlay_5.420.8043.0_x86__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: App
Error: (02/21/2021 06:00:46 PM) (Source: MsiInstaller) (EventID: 11704) (User: NT AUTHORITY)
Description: Produkt: Office 16 Click-to-Run Extensibility Component - Chyba 1704 Instalace produktu Adobe Acrobat Reader DC - Czech je pozastavena. Chcete-li pokračovat, je nutné vrátit zpět změny provedené při instalaci. Chcete tyto změny vrátit zpět?
Error: (02/19/2021 01:04:05 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na DATA (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (02/19/2021 01:03:46 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Rezervováno systémem, protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
System errors:
=============
Error: (02/26/2021 06:13:36 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba Microsoft Office Klikni a spusť byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 0 milisekund: Restartovat službu.
Error: (02/26/2021 06:13:36 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba NVIDIA Update Service Daemon byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (02/26/2021 06:13:35 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba CryptoPlus XME Engine Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (02/26/2021 06:13:35 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba SynTPEnh Caller Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (02/26/2021 06:13:35 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Adobe Acrobat Update Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (02/26/2021 06:13:35 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba NVIDIA Display Container LS byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 1000 milisekund: Restartovat službu.
Error: (02/26/2021 04:48:07 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Aktualizovat službu Orchestrator přestala během spouštění reagovat.
Error: (02/26/2021 04:46:18 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba cpuz135 neuspěla při spuštění v důsledku následující chyby:
Načtení tohoto ovladače je blokováno.
CodeIntegrity:
===============
Date: 2021-02-26 17:41:54
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\AVAST Software\Avast\AvastSvc.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2021-02-26 16:43:17
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
Date: 2021-02-26 16:42:54
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. 1.60 07/26/2011
Motherboard: Intel Corporation Oneonta Falls
Processor: Intel(R) Pentium(R) CPU B950 @ 2.10GHz
Percentage of memory in use: 56%
Total physical RAM: 3317.98 MB
Available physical RAM: 1437.71 MB
Total Virtual: 6645.98 MB
Available Virtual: 3953.74 MB
==================== Drives ================================
Drive c: (SYSTEM) (Fixed) (Total:269.58 GB) (Free:203.03 GB) NTFS
Drive d: (DATA) (Fixed) (Total:195.31 GB) (Free:194.3 GB) NTFS
Drive f: (ESD-ISO) (Removable) (Total:29.87 GB) (Free:17.24 GB) exFAT
\\?\Volume{e93631d4-b483-11e1-84a3-806e6f6e6963}\ (Rezervováno systémem) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS
\\?\Volume{ea075893-0000-0000-0000-406b43000000}\ () (Fixed) (Total:0.77 GB) (Free:0.32 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: EA075893)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=269.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=791 MB) - (Type=27)
Partition 4: (Not Active) - (Size=195.3 GB) - (Type=07 NTFS)
==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 29.9 GB) (Disk ID: 2F211F72)
Partition 1: (Active) - (Size=29.9 GB) - (Type=07 NTFS)
==================== End of Addition.txt =======================
Re: Pomalý notebook + náhodné vypínání
Do poznamkoveho bloku skopirujte obsah dole:
Poznamkovy blok ulozte pod nazvom fixlist.txt do umiestnenia kde je FRST.
Spustite FRST a odkliknite tlacidlo: Fix
Vykona sa funkcionalita po ktorej sa pocitac rebootuje. Po reboote sem vlozte obsah logu: fixlog.txt ulozeneho v umiestneni FRST.
Kód: Vybrat vše
CloseProcesses:
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [252848 2012-07-03] (Oracle America, Inc. -> Sun Microsystems, Inc.)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {011594DA-2428-4DDC-BEC0-60EA86DCD11E} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {05950F8D-0CBE-47CF-9073-9B1C19C2458C} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {0CD8DF24-C0C8-4873-A33B-4F0BBCFDFDBB} - \Microsoft\Windows\Setup\GWXTriggers\Time-Weekend -> No File <==== ATTENTION
Task: {0F7D67FB-EEB7-4E9B-8B2B-3CCAFDBBF2F4} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {0FDF4EAF-46F9-4B1B-BEB2-4890E616C08D} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {319BC9EE-7690-4AD7-9D57-5E6E869F038C} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {32285FDA-6DE6-424A-B6C2-BE836F0AD847} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [153168 2018-03-15] (Google Inc -> Google Inc.)
Task: {367F930A-A3DB-4112-B1F1-50E92A171C88} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {3C15FC02-13A8-4412-8DEF-BF16391FA368} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {3E6C7220-C98D-47AB-B4FC-725FCF0B2A04} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {58764F27-B390-424A-847B-7273CDB7552E} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {751A27ED-335B-4A01-B6CC-C816E959EDFB} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {92C2DAA3-5E9D-4B86-A210-D88A486FE0C1} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {AE00BC61-E2C8-4AE1-A42E-501843D2A970} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {B1FD7ADF-7CAE-4578-AFD9-51F829E15A1D} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {BA58D7C6-FC6C-4EFB-B90D-8128F1C6C93A} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {C8CF308D-2F57-4493-881A-5CAC1C3002EB} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {D0D6C9D5-32CE-4066-9417-E728DBEB1052} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {E53D00AF-E3A9-4C92-A51E-E89905DC332A} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {E729F8F4-C389-4D13-A648-9A35ABAE0023} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {CE9E20E9-C0D8-4BA7-895E-3AF585D07672} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {E79B2998-8F63-451A-A56D-26EDC0A5098A} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB}
Task: {EA6D8B68-89A6-4CA1-B90F-4C9EAB675F09} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-08] (Adobe Inc. -> Adobe)
Task: {F48A37F0-3800-43A2-8273-26A709BD597F} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {FF4A0B1E-A705-4484-99E5-8C28E57BAD6D} - System32\Tasks\{96A07ECE-5A22-4B01-BC32-336E07317ABC} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {E4913796-06F3-4E0D-9AFD-5AFCE2EBC92E} - System32\Tasks\{E7B77A08-8E6B-4BFE-A1AD-B780E672E257} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {CA5F871B-6169-42C2-8A26-73DE86F9681F} - System32\Tasks\{AE9E8D16-5E2D-42DC-8B37-1B616874FB4A} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {AE3B0EE9-32B4-47F1-9F51-D2DF97031B78} - System32\Tasks\{B561122E-EAF1-4FF8-BA44-C554396CE301} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {541F770E-5D64-49A8-B8D1-90A5367FA1E7} - System32\Tasks\{A89C4A3E-1C50-40C7-A010-470D1E82B6A9} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {49E26B17-5D74-4A15-B3EE-33357DF95426} - System32\Tasks\{911EBF7E-1637-4C85-8965-41BF551C47C8} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {4A40FA3F-FA4B-45C5-84E7-511750F22BC3} - System32\Tasks\{994D2EB6-175B-4E84-94EB-67C937464081} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {5CBD2987-9F82-47C0-AEEE-62F240B28C52} - System32\Tasks\{F7DF3B10-1DA3-4030-B4EF-AA48D4A56EA9} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {65D03D6A-1DD6-4C4D-9D62-4723EA48402C} - System32\Tasks\{3BC84C1A-183C-4281-B9BA-025DBA10CDE1} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {7366A33F-DEF7-4ED1-ACAB-30E6E3B98167} - System32\Tasks\{B400BEAE-AE4D-4425-935F-53A591EE53C3} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {8C2EF9B1-2119-4A8A-A8D8-A2925EB593F5} - System32\Tasks\{BBF8E973-3955-402C-8A22-09036C5572C1} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {8EDB2295-6BEA-4365-94F2-ECE4EDA863EC} - System32\Tasks\{ECC29FEF-A3DA-4769-9850-1B3DCEB867EF} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {C36BE0E2-5499-471B-A388-B9DAFCA8CDF2} - System32\Tasks\{1D4B50BB-17B0-40D4-BB01-326A1548E9D9} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {A4AF34E7-4A91-4E34-A8AE-BDF0340124BE} - System32\Tasks\{A874C4F0-77DB-4317-94FA-2289FF2C2810} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
U4 aspnet_state; no ImagePath
2021-02-05 19:32 - 2020-08-26 01:51 - 000003460 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-02-05 19:32 - 2020-08-26 01:51 - 000003336 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> No File
FirewallRules: [{80F83D90-860C-440A-8ABB-9069CDAA1DC8}] => (Allow) F:\Soluto - sledovani startu systemu\solutoinstaller.exe => No File
FirewallRules: [{673381F0-7C24-43E1-87E9-CEBF7DA4228A}] => (Allow) F:\Soluto - sledovani startu systemu\solutoinstaller.exe => No File
EmptyTemp:
Spustite FRST a odkliknite tlacidlo: Fix
Vykona sa funkcionalita po ktorej sa pocitac rebootuje. Po reboote sem vlozte obsah logu: fixlog.txt ulozeneho v umiestneni FRST.
► Vyšla moja nová kniha BOTNETY! Informácie o nej nájdete tu: >> BOTNETY <<
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT <<
----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Informácie o nej nájdete tu: >> BOTNETY << ¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << ----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Re: Pomalý notebook + náhodné vypínání
Fix result of Farbar Recovery Scan Tool (x86) Version: 24-02-2021
Ran by vlastnik (27-02-2021 13:00:15) Run:1
Running from C:\Users\vlastnik\Desktop
Loaded Profiles: vlastnik & UpdatusUser
Boot Mode: Normal
==============================================
fixlist content:
*****************
CloseProcesses:
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [252848 2012-07-03] (Oracle America, Inc. -> Sun Microsystems, Inc.)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {011594DA-2428-4DDC-BEC0-60EA86DCD11E} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {05950F8D-0CBE-47CF-9073-9B1C19C2458C} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {0CD8DF24-C0C8-4873-A33B-4F0BBCFDFDBB} - \Microsoft\Windows\Setup\GWXTriggers\Time-Weekend -> No File <==== ATTENTION
Task: {0F7D67FB-EEB7-4E9B-8B2B-3CCAFDBBF2F4} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {0FDF4EAF-46F9-4B1B-BEB2-4890E616C08D} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {319BC9EE-7690-4AD7-9D57-5E6E869F038C} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {32285FDA-6DE6-424A-B6C2-BE836F0AD847} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [153168 2018-03-15] (Google Inc -> Google Inc.)
Task: {367F930A-A3DB-4112-B1F1-50E92A171C88} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {3C15FC02-13A8-4412-8DEF-BF16391FA368} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {3E6C7220-C98D-47AB-B4FC-725FCF0B2A04} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {58764F27-B390-424A-847B-7273CDB7552E} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {751A27ED-335B-4A01-B6CC-C816E959EDFB} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {92C2DAA3-5E9D-4B86-A210-D88A486FE0C1} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {AE00BC61-E2C8-4AE1-A42E-501843D2A970} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {B1FD7ADF-7CAE-4578-AFD9-51F829E15A1D} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {BA58D7C6-FC6C-4EFB-B90D-8128F1C6C93A} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {C8CF308D-2F57-4493-881A-5CAC1C3002EB} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {D0D6C9D5-32CE-4066-9417-E728DBEB1052} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {E53D00AF-E3A9-4C92-A51E-E89905DC332A} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {E729F8F4-C389-4D13-A648-9A35ABAE0023} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {CE9E20E9-C0D8-4BA7-895E-3AF585D07672} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {E79B2998-8F63-451A-A56D-26EDC0A5098A} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB}
Task: {EA6D8B68-89A6-4CA1-B90F-4C9EAB675F09} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-08] (Adobe Inc. -> Adobe)
Task: {F48A37F0-3800-43A2-8273-26A709BD597F} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {FF4A0B1E-A705-4484-99E5-8C28E57BAD6D} - System32\Tasks\{96A07ECE-5A22-4B01-BC32-336E07317ABC} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {E4913796-06F3-4E0D-9AFD-5AFCE2EBC92E} - System32\Tasks\{E7B77A08-8E6B-4BFE-A1AD-B780E672E257} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {CA5F871B-6169-42C2-8A26-73DE86F9681F} - System32\Tasks\{AE9E8D16-5E2D-42DC-8B37-1B616874FB4A} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {AE3B0EE9-32B4-47F1-9F51-D2DF97031B78} - System32\Tasks\{B561122E-EAF1-4FF8-BA44-C554396CE301} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {541F770E-5D64-49A8-B8D1-90A5367FA1E7} - System32\Tasks\{A89C4A3E-1C50-40C7-A010-470D1E82B6A9} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {49E26B17-5D74-4A15-B3EE-33357DF95426} - System32\Tasks\{911EBF7E-1637-4C85-8965-41BF551C47C8} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {4A40FA3F-FA4B-45C5-84E7-511750F22BC3} - System32\Tasks\{994D2EB6-175B-4E84-94EB-67C937464081} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {5CBD2987-9F82-47C0-AEEE-62F240B28C52} - System32\Tasks\{F7DF3B10-1DA3-4030-B4EF-AA48D4A56EA9} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {65D03D6A-1DD6-4C4D-9D62-4723EA48402C} - System32\Tasks\{3BC84C1A-183C-4281-B9BA-025DBA10CDE1} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {7366A33F-DEF7-4ED1-ACAB-30E6E3B98167} - System32\Tasks\{B400BEAE-AE4D-4425-935F-53A591EE53C3} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {8C2EF9B1-2119-4A8A-A8D8-A2925EB593F5} - System32\Tasks\{BBF8E973-3955-402C-8A22-09036C5572C1} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {8EDB2295-6BEA-4365-94F2-ECE4EDA863EC} - System32\Tasks\{ECC29FEF-A3DA-4769-9850-1B3DCEB867EF} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {C36BE0E2-5499-471B-A388-B9DAFCA8CDF2} - System32\Tasks\{1D4B50BB-17B0-40D4-BB01-326A1548E9D9} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {A4AF34E7-4A91-4E34-A8AE-BDF0340124BE} - System32\Tasks\{A874C4F0-77DB-4317-94FA-2289FF2C2810} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
U4 aspnet_state; no ImagePath
2021-02-05 19:32 - 2020-08-26 01:51 - 000003460 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-02-05 19:32 - 2020-08-26 01:51 - 000003336 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> No File
FirewallRules: [{80F83D90-860C-440A-8ABB-9069CDAA1DC8}] => (Allow) F:\Soluto - sledovani startu systemu\solutoinstaller.exe => No File
FirewallRules: [{673381F0-7C24-43E1-87E9-CEBF7DA4228A}] => (Allow) F:\Soluto - sledovani startu systemu\solutoinstaller.exe => No File
EmptyTemp:
*****************
Processes closed successfully.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => removed successfully.
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION => restored successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully.
HKLM\SOFTWARE\Policies\Google => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{011594DA-2428-4DDC-BEC0-60EA86DCD11E}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{011594DA-2428-4DDC-BEC0-60EA86DCD11E}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\rundetector" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{05950F8D-0CBE-47CF-9073-9B1C19C2458C}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{05950F8D-0CBE-47CF-9073-9B1C19C2458C}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0CD8DF24-C0C8-4873-A33B-4F0BBCFDFDBB}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0CD8DF24-C0C8-4873-A33B-4F0BBCFDFDBB}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-Weekend" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0F7D67FB-EEB7-4E9B-8B2B-3CCAFDBBF2F4}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0F7D67FB-EEB7-4E9B-8B2B-3CCAFDBBF2F4}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{0FDF4EAF-46F9-4B1B-BEB2-4890E616C08D}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0FDF4EAF-46F9-4B1B-BEB2-4890E616C08D}" => removed successfully.
C:\Windows\System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\SideShow\SystemDataProviders" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{319BC9EE-7690-4AD7-9D57-5E6E869F038C}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{319BC9EE-7690-4AD7-9D57-5E6E869F038C}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{32285FDA-6DE6-424A-B6C2-BE836F0AD847}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{32285FDA-6DE6-424A-B6C2-BE836F0AD847}" => removed successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{367F930A-A3DB-4112-B1F1-50E92A171C88}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{367F930A-A3DB-4112-B1F1-50E92A171C88}" => removed successfully.
C:\Windows\System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Shell\WindowsParentalControls" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3C15FC02-13A8-4412-8DEF-BF16391FA368}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3C15FC02-13A8-4412-8DEF-BF16391FA368}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3E6C7220-C98D-47AB-B4FC-725FCF0B2A04}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3E6C7220-C98D-47AB-B4FC-725FCF0B2A04}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{58764F27-B390-424A-847B-7273CDB7552E}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{58764F27-B390-424A-847B-7273CDB7552E}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{751A27ED-335B-4A01-B6CC-C816E959EDFB}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{751A27ED-335B-4A01-B6CC-C816E959EDFB}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{92C2DAA3-5E9D-4B86-A210-D88A486FE0C1}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{92C2DAA3-5E9D-4B86-A210-D88A486FE0C1}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{AE00BC61-E2C8-4AE1-A42E-501843D2A970}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AE00BC61-E2C8-4AE1-A42E-501843D2A970}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B1FD7ADF-7CAE-4578-AFD9-51F829E15A1D}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B1FD7ADF-7CAE-4578-AFD9-51F829E15A1D}" => removed successfully.
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UNP\RunCampaignManager => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{BA58D7C6-FC6C-4EFB-B90D-8128F1C6C93A}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BA58D7C6-FC6C-4EFB-B90D-8128F1C6C93A}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C8CF308D-2F57-4493-881A-5CAC1C3002EB}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C8CF308D-2F57-4493-881A-5CAC1C3002EB}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D0D6C9D5-32CE-4066-9417-E728DBEB1052}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D0D6C9D5-32CE-4066-9417-E728DBEB1052}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E53D00AF-E3A9-4C92-A51E-E89905DC332A}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E53D00AF-E3A9-4C92-A51E-E89905DC332A}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{E729F8F4-C389-4D13-A648-9A35ABAE0023}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E729F8F4-C389-4D13-A648-9A35ABAE0023}" => removed successfully.
C:\Windows\System32\Tasks\Microsoft\Windows\SideShow\AutoWake => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\SideShow\AutoWake" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{CE9E20E9-C0D8-4BA7-895E-3AF585D07672}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CE9E20E9-C0D8-4BA7-895E-3AF585D07672}" => removed successfully.
C:\Windows\System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\SideShow\SessionAgent" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{E79B2998-8F63-451A-A56D-26EDC0A5098A}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E79B2998-8F63-451A-A56D-26EDC0A5098A}" => removed successfully.
C:\Windows\System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Shell\WindowsParentalControlsMigration" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{EA6D8B68-89A6-4CA1-B90F-4C9EAB675F09}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EA6D8B68-89A6-4CA1-B90F-4C9EAB675F09}" => removed successfully.
C:\Windows\System32\Tasks\Adobe Flash Player Updater => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Adobe Flash Player Updater" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{F48A37F0-3800-43A2-8273-26A709BD597F}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F48A37F0-3800-43A2-8273-26A709BD597F}" => removed successfully.
C:\Windows\System32\Tasks\Microsoft\Windows\MobilePC\HotStart => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\MobilePC\HotStart" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FF4A0B1E-A705-4484-99E5-8C28E57BAD6D}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FF4A0B1E-A705-4484-99E5-8C28E57BAD6D}" => removed successfully.
C:\Windows\System32\Tasks\{96A07ECE-5A22-4B01-BC32-336E07317ABC} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{96A07ECE-5A22-4B01-BC32-336E07317ABC}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E4913796-06F3-4E0D-9AFD-5AFCE2EBC92E}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E4913796-06F3-4E0D-9AFD-5AFCE2EBC92E}" => removed successfully.
C:\Windows\System32\Tasks\{E7B77A08-8E6B-4BFE-A1AD-B780E672E257} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{E7B77A08-8E6B-4BFE-A1AD-B780E672E257}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CA5F871B-6169-42C2-8A26-73DE86F9681F}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CA5F871B-6169-42C2-8A26-73DE86F9681F}" => removed successfully.
C:\Windows\System32\Tasks\{AE9E8D16-5E2D-42DC-8B37-1B616874FB4A} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{AE9E8D16-5E2D-42DC-8B37-1B616874FB4A}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{AE3B0EE9-32B4-47F1-9F51-D2DF97031B78}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AE3B0EE9-32B4-47F1-9F51-D2DF97031B78}" => removed successfully.
C:\Windows\System32\Tasks\{B561122E-EAF1-4FF8-BA44-C554396CE301} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{B561122E-EAF1-4FF8-BA44-C554396CE301}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{541F770E-5D64-49A8-B8D1-90A5367FA1E7}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{541F770E-5D64-49A8-B8D1-90A5367FA1E7}" => removed successfully.
C:\Windows\System32\Tasks\{A89C4A3E-1C50-40C7-A010-470D1E82B6A9} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{A89C4A3E-1C50-40C7-A010-470D1E82B6A9}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{49E26B17-5D74-4A15-B3EE-33357DF95426}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{49E26B17-5D74-4A15-B3EE-33357DF95426}" => removed successfully.
C:\Windows\System32\Tasks\{911EBF7E-1637-4C85-8965-41BF551C47C8} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{911EBF7E-1637-4C85-8965-41BF551C47C8}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4A40FA3F-FA4B-45C5-84E7-511750F22BC3}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4A40FA3F-FA4B-45C5-84E7-511750F22BC3}" => removed successfully.
C:\Windows\System32\Tasks\{994D2EB6-175B-4E84-94EB-67C937464081} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{994D2EB6-175B-4E84-94EB-67C937464081}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5CBD2987-9F82-47C0-AEEE-62F240B28C52}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5CBD2987-9F82-47C0-AEEE-62F240B28C52}" => removed successfully.
C:\Windows\System32\Tasks\{F7DF3B10-1DA3-4030-B4EF-AA48D4A56EA9} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{F7DF3B10-1DA3-4030-B4EF-AA48D4A56EA9}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{65D03D6A-1DD6-4C4D-9D62-4723EA48402C}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{65D03D6A-1DD6-4C4D-9D62-4723EA48402C}" => removed successfully.
C:\Windows\System32\Tasks\{3BC84C1A-183C-4281-B9BA-025DBA10CDE1} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{3BC84C1A-183C-4281-B9BA-025DBA10CDE1}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7366A33F-DEF7-4ED1-ACAB-30E6E3B98167}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7366A33F-DEF7-4ED1-ACAB-30E6E3B98167}" => removed successfully.
C:\Windows\System32\Tasks\{B400BEAE-AE4D-4425-935F-53A591EE53C3} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{B400BEAE-AE4D-4425-935F-53A591EE53C3}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8C2EF9B1-2119-4A8A-A8D8-A2925EB593F5}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8C2EF9B1-2119-4A8A-A8D8-A2925EB593F5}" => removed successfully.
C:\Windows\System32\Tasks\{BBF8E973-3955-402C-8A22-09036C5572C1} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{BBF8E973-3955-402C-8A22-09036C5572C1}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8EDB2295-6BEA-4365-94F2-ECE4EDA863EC}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8EDB2295-6BEA-4365-94F2-ECE4EDA863EC}" => removed successfully.
C:\Windows\System32\Tasks\{ECC29FEF-A3DA-4769-9850-1B3DCEB867EF} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{ECC29FEF-A3DA-4769-9850-1B3DCEB867EF}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C36BE0E2-5499-471B-A388-B9DAFCA8CDF2}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C36BE0E2-5499-471B-A388-B9DAFCA8CDF2}" => removed successfully.
C:\Windows\System32\Tasks\{1D4B50BB-17B0-40D4-BB01-326A1548E9D9} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{1D4B50BB-17B0-40D4-BB01-326A1548E9D9}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A4AF34E7-4A91-4E34-A8AE-BDF0340124BE}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A4AF34E7-4A91-4E34-A8AE-BDF0340124BE}" => removed successfully.
C:\Windows\System32\Tasks\{A874C4F0-77DB-4317-94FA-2289FF2C2810} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{A874C4F0-77DB-4317-94FA-2289FF2C2810}" => removed successfully.
HKLM\System\CurrentControlSet\Services\aspnet_state => removed successfully.
aspnet_state => service removed successfully.
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore" => not found
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\Gadgets => removed successfully.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{80F83D90-860C-440A-8ABB-9069CDAA1DC8}" => removed successfully.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{673381F0-7C24-43E1-87E9-CEBF7DA4228A}" => removed successfully.
=========== EmptyTemp: ==========
BITS transfer queue => 10510336 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 93778722 B
Java, Flash, Steam htmlcache => 6262 B
Windows/system/drivers => 6891422 B
Edge => 19183371 B
Chrome => 19497845 B
Firefox => 142912258 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
LocalService => 670580 B
NetworkService => 670580 B
vlastnik => 1729377624 B
UpdatusUser => 1729377624 B
RecycleBin => 0 B
EmptyTemp: => 3.5 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 14:40:50 ====
Ran by vlastnik (27-02-2021 13:00:15) Run:1
Running from C:\Users\vlastnik\Desktop
Loaded Profiles: vlastnik & UpdatusUser
Boot Mode: Normal
==============================================
fixlist content:
*****************
CloseProcesses:
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [252848 2012-07-03] (Oracle America, Inc. -> Sun Microsystems, Inc.)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {011594DA-2428-4DDC-BEC0-60EA86DCD11E} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {05950F8D-0CBE-47CF-9073-9B1C19C2458C} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {0CD8DF24-C0C8-4873-A33B-4F0BBCFDFDBB} - \Microsoft\Windows\Setup\GWXTriggers\Time-Weekend -> No File <==== ATTENTION
Task: {0F7D67FB-EEB7-4E9B-8B2B-3CCAFDBBF2F4} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {0FDF4EAF-46F9-4B1B-BEB2-4890E616C08D} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {319BC9EE-7690-4AD7-9D57-5E6E869F038C} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {32285FDA-6DE6-424A-B6C2-BE836F0AD847} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [153168 2018-03-15] (Google Inc -> Google Inc.)
Task: {367F930A-A3DB-4112-B1F1-50E92A171C88} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {3C15FC02-13A8-4412-8DEF-BF16391FA368} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {3E6C7220-C98D-47AB-B4FC-725FCF0B2A04} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {58764F27-B390-424A-847B-7273CDB7552E} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {751A27ED-335B-4A01-B6CC-C816E959EDFB} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {92C2DAA3-5E9D-4B86-A210-D88A486FE0C1} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {AE00BC61-E2C8-4AE1-A42E-501843D2A970} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {B1FD7ADF-7CAE-4578-AFD9-51F829E15A1D} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {BA58D7C6-FC6C-4EFB-B90D-8128F1C6C93A} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {C8CF308D-2F57-4493-881A-5CAC1C3002EB} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {D0D6C9D5-32CE-4066-9417-E728DBEB1052} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {E53D00AF-E3A9-4C92-A51E-E89905DC332A} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {E729F8F4-C389-4D13-A648-9A35ABAE0023} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {CE9E20E9-C0D8-4BA7-895E-3AF585D07672} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {E79B2998-8F63-451A-A56D-26EDC0A5098A} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB}
Task: {EA6D8B68-89A6-4CA1-B90F-4C9EAB675F09} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-08] (Adobe Inc. -> Adobe)
Task: {F48A37F0-3800-43A2-8273-26A709BD597F} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {FF4A0B1E-A705-4484-99E5-8C28E57BAD6D} - System32\Tasks\{96A07ECE-5A22-4B01-BC32-336E07317ABC} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {E4913796-06F3-4E0D-9AFD-5AFCE2EBC92E} - System32\Tasks\{E7B77A08-8E6B-4BFE-A1AD-B780E672E257} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {CA5F871B-6169-42C2-8A26-73DE86F9681F} - System32\Tasks\{AE9E8D16-5E2D-42DC-8B37-1B616874FB4A} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {AE3B0EE9-32B4-47F1-9F51-D2DF97031B78} - System32\Tasks\{B561122E-EAF1-4FF8-BA44-C554396CE301} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {541F770E-5D64-49A8-B8D1-90A5367FA1E7} - System32\Tasks\{A89C4A3E-1C50-40C7-A010-470D1E82B6A9} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {49E26B17-5D74-4A15-B3EE-33357DF95426} - System32\Tasks\{911EBF7E-1637-4C85-8965-41BF551C47C8} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {4A40FA3F-FA4B-45C5-84E7-511750F22BC3} - System32\Tasks\{994D2EB6-175B-4E84-94EB-67C937464081} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {5CBD2987-9F82-47C0-AEEE-62F240B28C52} - System32\Tasks\{F7DF3B10-1DA3-4030-B4EF-AA48D4A56EA9} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {65D03D6A-1DD6-4C4D-9D62-4723EA48402C} - System32\Tasks\{3BC84C1A-183C-4281-B9BA-025DBA10CDE1} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {7366A33F-DEF7-4ED1-ACAB-30E6E3B98167} - System32\Tasks\{B400BEAE-AE4D-4425-935F-53A591EE53C3} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {8C2EF9B1-2119-4A8A-A8D8-A2925EB593F5} - System32\Tasks\{BBF8E973-3955-402C-8A22-09036C5572C1} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {8EDB2295-6BEA-4365-94F2-ECE4EDA863EC} - System32\Tasks\{ECC29FEF-A3DA-4769-9850-1B3DCEB867EF} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {C36BE0E2-5499-471B-A388-B9DAFCA8CDF2} - System32\Tasks\{1D4B50BB-17B0-40D4-BB01-326A1548E9D9} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
Task: {A4AF34E7-4A91-4E34-A8AE-BDF0340124BE} - System32\Tasks\{A874C4F0-77DB-4317-94FA-2289FF2C2810} => "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.10.0.116/cs/ ... Error=1603
U4 aspnet_state; no ImagePath
2021-02-05 19:32 - 2020-08-26 01:51 - 000003460 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-02-05 19:32 - 2020-08-26 01:51 - 000003336 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> No File
FirewallRules: [{80F83D90-860C-440A-8ABB-9069CDAA1DC8}] => (Allow) F:\Soluto - sledovani startu systemu\solutoinstaller.exe => No File
FirewallRules: [{673381F0-7C24-43E1-87E9-CEBF7DA4228A}] => (Allow) F:\Soluto - sledovani startu systemu\solutoinstaller.exe => No File
EmptyTemp:
*****************
Processes closed successfully.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => removed successfully.
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION => restored successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully.
HKLM\SOFTWARE\Policies\Google => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{011594DA-2428-4DDC-BEC0-60EA86DCD11E}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{011594DA-2428-4DDC-BEC0-60EA86DCD11E}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\rundetector" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{05950F8D-0CBE-47CF-9073-9B1C19C2458C}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{05950F8D-0CBE-47CF-9073-9B1C19C2458C}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0CD8DF24-C0C8-4873-A33B-4F0BBCFDFDBB}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0CD8DF24-C0C8-4873-A33B-4F0BBCFDFDBB}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-Weekend" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0F7D67FB-EEB7-4E9B-8B2B-3CCAFDBBF2F4}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0F7D67FB-EEB7-4E9B-8B2B-3CCAFDBBF2F4}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{0FDF4EAF-46F9-4B1B-BEB2-4890E616C08D}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0FDF4EAF-46F9-4B1B-BEB2-4890E616C08D}" => removed successfully.
C:\Windows\System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\SideShow\SystemDataProviders" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{319BC9EE-7690-4AD7-9D57-5E6E869F038C}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{319BC9EE-7690-4AD7-9D57-5E6E869F038C}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{32285FDA-6DE6-424A-B6C2-BE836F0AD847}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{32285FDA-6DE6-424A-B6C2-BE836F0AD847}" => removed successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{367F930A-A3DB-4112-B1F1-50E92A171C88}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{367F930A-A3DB-4112-B1F1-50E92A171C88}" => removed successfully.
C:\Windows\System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Shell\WindowsParentalControls" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3C15FC02-13A8-4412-8DEF-BF16391FA368}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3C15FC02-13A8-4412-8DEF-BF16391FA368}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3E6C7220-C98D-47AB-B4FC-725FCF0B2A04}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3E6C7220-C98D-47AB-B4FC-725FCF0B2A04}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{58764F27-B390-424A-847B-7273CDB7552E}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{58764F27-B390-424A-847B-7273CDB7552E}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{751A27ED-335B-4A01-B6CC-C816E959EDFB}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{751A27ED-335B-4A01-B6CC-C816E959EDFB}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{92C2DAA3-5E9D-4B86-A210-D88A486FE0C1}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{92C2DAA3-5E9D-4B86-A210-D88A486FE0C1}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{AE00BC61-E2C8-4AE1-A42E-501843D2A970}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AE00BC61-E2C8-4AE1-A42E-501843D2A970}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B1FD7ADF-7CAE-4578-AFD9-51F829E15A1D}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B1FD7ADF-7CAE-4578-AFD9-51F829E15A1D}" => removed successfully.
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UNP\RunCampaignManager => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{BA58D7C6-FC6C-4EFB-B90D-8128F1C6C93A}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BA58D7C6-FC6C-4EFB-B90D-8128F1C6C93A}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C8CF308D-2F57-4493-881A-5CAC1C3002EB}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C8CF308D-2F57-4493-881A-5CAC1C3002EB}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D0D6C9D5-32CE-4066-9417-E728DBEB1052}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D0D6C9D5-32CE-4066-9417-E728DBEB1052}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E53D00AF-E3A9-4C92-A51E-E89905DC332A}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E53D00AF-E3A9-4C92-A51E-E89905DC332A}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{E729F8F4-C389-4D13-A648-9A35ABAE0023}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E729F8F4-C389-4D13-A648-9A35ABAE0023}" => removed successfully.
C:\Windows\System32\Tasks\Microsoft\Windows\SideShow\AutoWake => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\SideShow\AutoWake" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{CE9E20E9-C0D8-4BA7-895E-3AF585D07672}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CE9E20E9-C0D8-4BA7-895E-3AF585D07672}" => removed successfully.
C:\Windows\System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\SideShow\SessionAgent" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{E79B2998-8F63-451A-A56D-26EDC0A5098A}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E79B2998-8F63-451A-A56D-26EDC0A5098A}" => removed successfully.
C:\Windows\System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Shell\WindowsParentalControlsMigration" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{EA6D8B68-89A6-4CA1-B90F-4C9EAB675F09}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EA6D8B68-89A6-4CA1-B90F-4C9EAB675F09}" => removed successfully.
C:\Windows\System32\Tasks\Adobe Flash Player Updater => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Adobe Flash Player Updater" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{F48A37F0-3800-43A2-8273-26A709BD597F}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F48A37F0-3800-43A2-8273-26A709BD597F}" => removed successfully.
C:\Windows\System32\Tasks\Microsoft\Windows\MobilePC\HotStart => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\MobilePC\HotStart" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FF4A0B1E-A705-4484-99E5-8C28E57BAD6D}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FF4A0B1E-A705-4484-99E5-8C28E57BAD6D}" => removed successfully.
C:\Windows\System32\Tasks\{96A07ECE-5A22-4B01-BC32-336E07317ABC} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{96A07ECE-5A22-4B01-BC32-336E07317ABC}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E4913796-06F3-4E0D-9AFD-5AFCE2EBC92E}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E4913796-06F3-4E0D-9AFD-5AFCE2EBC92E}" => removed successfully.
C:\Windows\System32\Tasks\{E7B77A08-8E6B-4BFE-A1AD-B780E672E257} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{E7B77A08-8E6B-4BFE-A1AD-B780E672E257}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CA5F871B-6169-42C2-8A26-73DE86F9681F}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CA5F871B-6169-42C2-8A26-73DE86F9681F}" => removed successfully.
C:\Windows\System32\Tasks\{AE9E8D16-5E2D-42DC-8B37-1B616874FB4A} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{AE9E8D16-5E2D-42DC-8B37-1B616874FB4A}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{AE3B0EE9-32B4-47F1-9F51-D2DF97031B78}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AE3B0EE9-32B4-47F1-9F51-D2DF97031B78}" => removed successfully.
C:\Windows\System32\Tasks\{B561122E-EAF1-4FF8-BA44-C554396CE301} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{B561122E-EAF1-4FF8-BA44-C554396CE301}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{541F770E-5D64-49A8-B8D1-90A5367FA1E7}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{541F770E-5D64-49A8-B8D1-90A5367FA1E7}" => removed successfully.
C:\Windows\System32\Tasks\{A89C4A3E-1C50-40C7-A010-470D1E82B6A9} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{A89C4A3E-1C50-40C7-A010-470D1E82B6A9}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{49E26B17-5D74-4A15-B3EE-33357DF95426}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{49E26B17-5D74-4A15-B3EE-33357DF95426}" => removed successfully.
C:\Windows\System32\Tasks\{911EBF7E-1637-4C85-8965-41BF551C47C8} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{911EBF7E-1637-4C85-8965-41BF551C47C8}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4A40FA3F-FA4B-45C5-84E7-511750F22BC3}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4A40FA3F-FA4B-45C5-84E7-511750F22BC3}" => removed successfully.
C:\Windows\System32\Tasks\{994D2EB6-175B-4E84-94EB-67C937464081} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{994D2EB6-175B-4E84-94EB-67C937464081}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5CBD2987-9F82-47C0-AEEE-62F240B28C52}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5CBD2987-9F82-47C0-AEEE-62F240B28C52}" => removed successfully.
C:\Windows\System32\Tasks\{F7DF3B10-1DA3-4030-B4EF-AA48D4A56EA9} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{F7DF3B10-1DA3-4030-B4EF-AA48D4A56EA9}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{65D03D6A-1DD6-4C4D-9D62-4723EA48402C}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{65D03D6A-1DD6-4C4D-9D62-4723EA48402C}" => removed successfully.
C:\Windows\System32\Tasks\{3BC84C1A-183C-4281-B9BA-025DBA10CDE1} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{3BC84C1A-183C-4281-B9BA-025DBA10CDE1}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7366A33F-DEF7-4ED1-ACAB-30E6E3B98167}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7366A33F-DEF7-4ED1-ACAB-30E6E3B98167}" => removed successfully.
C:\Windows\System32\Tasks\{B400BEAE-AE4D-4425-935F-53A591EE53C3} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{B400BEAE-AE4D-4425-935F-53A591EE53C3}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8C2EF9B1-2119-4A8A-A8D8-A2925EB593F5}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8C2EF9B1-2119-4A8A-A8D8-A2925EB593F5}" => removed successfully.
C:\Windows\System32\Tasks\{BBF8E973-3955-402C-8A22-09036C5572C1} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{BBF8E973-3955-402C-8A22-09036C5572C1}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8EDB2295-6BEA-4365-94F2-ECE4EDA863EC}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8EDB2295-6BEA-4365-94F2-ECE4EDA863EC}" => removed successfully.
C:\Windows\System32\Tasks\{ECC29FEF-A3DA-4769-9850-1B3DCEB867EF} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{ECC29FEF-A3DA-4769-9850-1B3DCEB867EF}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C36BE0E2-5499-471B-A388-B9DAFCA8CDF2}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C36BE0E2-5499-471B-A388-B9DAFCA8CDF2}" => removed successfully.
C:\Windows\System32\Tasks\{1D4B50BB-17B0-40D4-BB01-326A1548E9D9} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{1D4B50BB-17B0-40D4-BB01-326A1548E9D9}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A4AF34E7-4A91-4E34-A8AE-BDF0340124BE}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A4AF34E7-4A91-4E34-A8AE-BDF0340124BE}" => removed successfully.
C:\Windows\System32\Tasks\{A874C4F0-77DB-4317-94FA-2289FF2C2810} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{A874C4F0-77DB-4317-94FA-2289FF2C2810}" => removed successfully.
HKLM\System\CurrentControlSet\Services\aspnet_state => removed successfully.
aspnet_state => service removed successfully.
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore" => not found
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\Gadgets => removed successfully.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{80F83D90-860C-440A-8ABB-9069CDAA1DC8}" => removed successfully.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{673381F0-7C24-43E1-87E9-CEBF7DA4228A}" => removed successfully.
=========== EmptyTemp: ==========
BITS transfer queue => 10510336 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 93778722 B
Java, Flash, Steam htmlcache => 6262 B
Windows/system/drivers => 6891422 B
Edge => 19183371 B
Chrome => 19497845 B
Firefox => 142912258 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
LocalService => 670580 B
NetworkService => 670580 B
vlastnik => 1729377624 B
UpdatusUser => 1729377624 B
RecycleBin => 0 B
EmptyTemp: => 3.5 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 14:40:50 ====
Re: Pomalý notebook + náhodné vypínání
Poprosim o nove logy FRST + ADDITION
► Vyšla moja nová kniha BOTNETY! Informácie o nej nájdete tu: >> BOTNETY <<
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT <<
----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Informácie o nej nájdete tu: >> BOTNETY << ¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << ----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Re: Pomalý notebook + náhodné vypínání
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 24-02-2021
Ran by vlastnik (administrator) on TOSHIBA (TOSHIBA SATELLITE C670-17M) (28-02-2021 11:07:05)
Running from C:\Users\vlastnik\Desktop
Loaded Profiles: vlastnik & UpdatusUser
Platform: Microsoft Windows 10 Home Version 2004 19041.804 (X86) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
() [File not signed] C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
(Avast Software s.r.o. -> Avast Software) C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Update\1.3.36.72\GoogleCrashHandler.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\vlastnik\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_2.2010.7621.0_x86__8wekyb3d8bbwe\Cortana.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\System32\upfc.exe
(Monet+, a.s. -> Monet+, a.s.) C:\Windows\System32\xmesrv.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Soluto -> Soluto) C:\Program Files\Soluto\SolutoService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\tv_w32.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [11430504 2011-10-17] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe [1571432 2011-10-14] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [332288 2010-12-17] () [File not signed]
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [104160 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3536576 2017-06-02] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Windows NT x86\Print Processors\ssm1MPC: C:\Windows\System32\spool\prtprocs\W32X86\ssm1mpc.dll [28672 2014-09-18] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
HKLM\...\Print\Monitors\doPDF 7 Monitor: C:\WINDOWS\system32\dopdfmn7.dll [23432 2012-05-17] (Softland S.R.L. -> Softland)
HKLM\...\Print\Monitors\ssm1M Langmon: C:\WINDOWS\system32\ssm1mlm.dll [24064 2014-09-18] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> C:\Program Files\AVAST Software\Browser\Application\88.1.8005.150\Installer\chrmstp.exe [2021-02-24] (Avast Software s.r.o. -> AVAST Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\88.0.4324.182\Installer\chrmstp.exe [2021-02-16] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {029F8134-266C-4744-A38E-15817754725A} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [18199456 2021-02-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {02D50DBD-8DB9-41C3-838D-2E4ABF35AD41} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [3993520 2021-02-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {0352DC7C-5C99-43BF-AAB6-1D4D840086C1} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4108000 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
Task: {0BD5C542-115F-485D-ADC6-23F259C03306} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {10B4EDD4-A31B-4CD7-961E-1FDB6BA47979} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {1C15655A-C717-429B-8821-E81F66F19D9B} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [1997120 2021-02-08] (Avast Software s.r.o. -> AVAST Software)
Task: {1CE69A3A-E3B8-4B5C-A9D0-5E6B37B8998E} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {212EF64A-1D5B-46FA-9CD1-3CFFD19AE56E} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\system32\Macromed\Flash\FlashUtil32_32_0_0_465_Plugin.exe [1504312 2020-12-08] (Adobe Inc. -> Adobe)
Task: {21A41BF2-59C7-4C10-8B87-D02D74B1E60C} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {24FA84A0-E087-48EC-BC51-2B9C4C815D78} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {2C1B573A-F671-456E-B7C5-22FA10829147} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {39D2410C-EE6C-48A0-AAE9-7ECB5780DBC5} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [3993520 2021-02-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {456EC4AD-4E80-4E37-89C2-CC7E6A6F3869} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {49583914-4A24-45B2-B51E-BADB72AB15E6} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {4AABB39C-9878-47C8-90F6-7BE04DDB873B} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {4D3B9AD5-74AB-4BEE-8007-6FB2ECCA7AA5} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {5DDA0EE5-8E5E-4E4F-A733-408C0D75870E} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {622CAC8E-4BFA-498F-AA20-60458AC92E78} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [1997120 2021-02-08] (Avast Software s.r.o. -> AVAST Software)
Task: {64BDE056-96C8-40CB-BAD8-6BC98B75FA55} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {6BB4E74C-739F-45E2-A4C6-496803AE5431} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {6CE2B26E-657D-4A47-AE4B-FF7D5EE5F561} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
Task: {6DBE4473-57C8-4D09-8F23-62EF36E5D799} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {75EB3C9B-5E5A-4D10-9A3C-164D50AB1AF1} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {793D91F6-471F-4306-ACA1-362E3009E283} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {7DDB76D5-08F8-43E5-BB0B-7E0167DF4247} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {8E1E9326-3CBD-483B-BF7F-86059D20CAB4} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {99FF7174-ABD7-42A9-A235-C9CAA9B53D8A} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {B0D887C5-AD75-4646-A618-C34CFD3F8C84} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B3D0ED9F-FC6F-41F0-B550-E590E5022575} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {C0D1B13B-2C8E-4DC6-A297-0D9B207E2772} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {C3B4CB97-F080-4308-9069-00E7DF37C2D2} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {C984C363-7007-4C99-966B-54623EAEC6AE} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {CEA17009-9D37-4082-BF82-ADC2CBD09FE0} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1550048 2021-02-24] (Avast Software s.r.o. -> Avast Software)
Task: {D0761084-113A-408C-BA58-5BA31D207CB1} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {D3A3E797-07EE-465C-92DD-6DC1F0AF5C76} - \GoogleUpdateTaskMachineUA -> No File <==== ATTENTION
Task: {E94827C7-2744-4DC0-8007-5C167030B284} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [18199456 2021-02-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {EFD9DEF9-C6D1-46D0-8475-B2DF407AFB11} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [115016 2021-02-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {F37B0BD3-FD1F-4254-9007-9E9439A6482D} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [115016 2021-02-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {F5371F77-8286-4AAB-9388-B9D71BBDAC42} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {F81150DF-E05D-4870-90EE-0D6FE1A23733} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
Task: {FF298C90-7217-4515-B97D-F19968BC4500} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{00732cab-852b-4dc2-8543-5edff1a23b99}: [DhcpNameServer] 172.16.125.1
Tcpip\..\Interfaces\{524fb85f-a964-47cc-b03d-24c91ced4cc5}: [DhcpNameServer] 10.0.0.138
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\vlastnik\AppData\Local\Microsoft\Edge\User Data\Default [2021-02-26]
FireFox:
========
FF ProfilePath: C:\Users\vlastnik\AppData\Roaming\Mozilla\Firefox\Profiles\32gylciq.default [2021-02-27]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_32_0_0_465.dll [2020-12-08] (Adobe Inc. -> )
FF Plugin: @java.com/DTPlugin,version=10.6.2 -> C:\Windows\system32\npDeployJava1.dll [2012-08-16] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.6.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2012-08-16] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-02-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-02-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-10-26] (Avast Software s.r.o. -> AVAST Software)
FF Plugin: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-10-26] (Avast Software s.r.o. -> AVAST Software)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-02-20] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin: csas.cz/Partner24 -> C:\Program Files\Partner24\npPartner24.dll [2015-10-14] (Ceska sporitelna, a.s.) [File not signed]
FF Plugin HKU\S-1-5-21-3848213662-3967300228-756751357-1000: @nsroblox.roblox.com/launcher -> C:\Users\vlastnik\AppData\Local\Roblox\Versions\version-1600d28b04c54698\\NPRobloxProxy.dll [2012-12-31] (Roblox Corporation -> ROBLOX Corporation)
FF Plugin HKU\S-1-5-21-3848213662-3967300228-756751357-1000: @nsroblox.roblox.com/launcher64 -> C:\Users\vlastnik\AppData\Local\Roblox\Versions\version-1600d28b04c54698\\NPRobloxProxy64.dll [2012-12-31] ( ROBLOX Corporation) [File not signed]
Chrome:
=======
CHR Profile: C:\Users\vlastnik\AppData\Local\Google\Chrome\User Data\Default [2021-02-27]
CHR Extension: (Prezentace) - C:\Users\vlastnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-03-15]
CHR Extension: (Dokumenty) - C:\Users\vlastnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-03-15]
CHR Extension: (Disk Google) - C:\Users\vlastnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-01-07]
CHR Extension: (YouTube) - C:\Users\vlastnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-03-15]
CHR Extension: (Tabulky) - C:\Users\vlastnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-03-15]
CHR Extension: (Dokumenty Google offline) - C:\Users\vlastnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-01-07]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\vlastnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-07]
CHR Extension: (Gmail) - C:\Users\vlastnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-01-07]
CHR Extension: (Chrome Media Router) - C:\Users\vlastnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-01-07]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-08] (Adobe Inc. -> Adobe)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [7050776 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [563416 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [330976 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files\AVAST Software\Browser\Application\88.1.8005.150\elevation_service.exe [1235736 2021-02-08] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56904 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [7285640 2021-02-15] (Microsoft Corporation -> Microsoft Corporation)
R2 SolutoService; C:\Program Files\Soluto\SolutoService.exe [586816 2012-05-24] (Soluto -> Soluto)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [225472 2017-06-02] (Synaptics Incorporated -> Synaptics Incorporated)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [12835096 2021-01-28] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S4 uhssvc; C:\Program Files\Microsoft Update Health Tools\uhssvc.exe [259904 2021-02-05] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [2250992 2019-12-26] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [85240 2019-12-26] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 xmengine service; C:\WINDOWS\system32\xmesrv.exe [34696 2009-09-25] (Monet+, a.s. -> Monet+, a.s.)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem"
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [33544 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [175872 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [287192 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [206304 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [91616 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16320 2020-12-17] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [39248 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [147728 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [376840 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [92696 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [71352 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [690144 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [384136 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [161312 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [276960 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [200192 2019-12-07] (Microsoft Corporation) [File not signed]
R3 HpqKbFiltr; C:\WINDOWS\System32\drivers\HpqKbFiltr.sys [16768 2007-06-18] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Development Company, L.P.)
R3 MEI; C:\WINDOWS\System32\drivers\HECI.sys [41216 2011-09-22] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvtdwu.inf_x86_bf9b35a5b48ce198\nvlddmkm.sys [12227512 2017-01-17] (NVIDIA Corporation -> NVIDIA Corporation)
R3 rtwlane_13; C:\WINDOWS\System32\drivers\rtwlane_13.sys [3182592 2019-12-07] (Microsoft Windows -> Realtek Semiconductor Corporation)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [44224 2017-06-02] (Synaptics Incorporated -> Synaptics Incorporated)
R0 Soluto; C:\WINDOWS\System32\Drivers\Soluto.sys [51144 2012-05-24] (Soluto -> Soluto LTD.)
R3 Thotkey; C:\WINDOWS\System32\drivers\Thotkey.sys [42088 2015-12-31] (TOSHIBA CORPORATION -> Toshiba Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [37472 2019-12-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [278456 2019-12-26] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [39368 2019-12-26] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-02-28 11:07 - 2021-02-28 11:10 - 000024589 _____ C:\Users\vlastnik\Desktop\FRST.txt
2021-02-27 13:00 - 2021-02-27 14:40 - 000027584 _____ C:\Users\vlastnik\Desktop\Fixlog.txt
2021-02-27 12:59 - 2021-02-26 19:15 - 002013696 _____ (Farbar) C:\Users\vlastnik\Desktop\FRST.exe
2021-02-26 19:29 - 2021-02-28 11:09 - 000000000 ____D C:\FRST
2021-02-26 18:11 - 2021-02-26 18:13 - 000000000 ____D C:\AdwCleaner
2021-02-26 18:10 - 2021-02-26 18:09 - 008463216 _____ (Malwarebytes) C:\Users\vlastnik\Desktop\adwcleaner_8.1.exe
2021-02-26 17:14 - 2021-02-26 17:14 - 000000000 ____D C:\rsit
2021-02-26 17:14 - 2021-02-26 17:14 - 000000000 ____D C:\Program Files\trend micro
2021-02-26 17:14 - 2021-02-26 17:12 - 001107968 _____ C:\Users\vlastnik\Desktop\RSIT.exe
2021-02-26 10:55 - 2021-02-26 10:55 - 000000000 ____D C:\Users\vlastnik\Documents\Avast
2021-02-24 08:33 - 2021-02-24 08:31 - 000286944 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2021-02-24 08:33 - 2021-02-24 08:31 - 000161312 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2021-02-21 17:50 - 2021-02-21 17:52 - 006427788 _____ C:\Users\vlastnik\Documents\Saldo k 6.1.2021.pdf
2021-02-19 12:53 - 2021-02-19 12:53 - 000127733 _____ C:\Users\vlastnik\Documents\Orientační přehled cen lab.zkoušek od 1.1.2021.pdf
2021-02-17 08:46 - 2021-02-17 08:46 - 000308297 _____ C:\Users\vlastnik\Documents\886-01-2021 Horni Luby.pdf
2021-02-17 08:46 - 2021-02-17 08:46 - 000303389 _____ C:\Users\vlastnik\Documents\884-01-2021 Vrt Tuhaň.pdf
2021-02-17 08:46 - 2021-02-17 08:46 - 000302909 _____ C:\Users\vlastnik\Documents\881-01-2021 Studenec u Oloví.pdf
2021-02-17 08:46 - 2021-02-17 08:46 - 000298668 _____ C:\Users\vlastnik\Documents\882-01-2021 Rolava u Prebuzi.pdf
2021-02-17 08:45 - 2021-02-17 08:45 - 000286063 _____ C:\Users\vlastnik\Documents\880-01-2021 Světlina.pdf
2021-02-15 12:26 - 2021-02-15 12:26 - 000000757 _____ C:\Users\vlastnik\Documents\Dokumenty – zástupce (2).lnk
2021-02-12 12:56 - 2021-02-12 12:56 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-02-09 17:49 - 2021-02-09 17:49 - 000001082 _____ C:\Users\vlastnik\Downloads\DNEDP4-7104274298-20210209-174508-pracovni.xml
2021-02-09 17:49 - 2021-02-09 17:49 - 000001082 _____ C:\Users\vlastnik\Downloads\DNEDP4-7104274298-20210209-174508-pracovni (1).xml
2021-02-09 16:49 - 2021-02-09 16:49 - 000000224 _____ C:\Users\vlastnik\Downloads\DNEDP4-XXXXXXXXXX-20210209-164738-pracovni.xml
2021-02-08 12:42 - 2021-02-08 12:42 - 000728967 _____ C:\Users\vlastnik\Downloads\mzdy (5).zip
2021-02-08 12:42 - 2021-02-08 12:42 - 000728967 _____ C:\Users\vlastnik\Downloads\mzdy (4).zip
2021-02-08 12:42 - 2021-02-08 12:42 - 000728967 _____ C:\Users\vlastnik\Downloads\mzdy (3).zip
2021-02-08 11:18 - 2021-02-08 11:18 - 000737137 _____ C:\Users\vlastnik\Downloads\mzdy (2).zip
2021-02-08 11:18 - 2021-02-08 11:18 - 000737137 _____ C:\Users\vlastnik\Downloads\mzdy (1).zip
2021-02-07 16:56 - 2021-02-07 17:04 - 000082944 _____ C:\Users\vlastnik\Downloads\JEEP_2020 (1).xls
2021-02-07 16:56 - 2021-02-07 16:56 - 000205818 _____ C:\Users\vlastnik\Downloads\CADDY_2020.xls (3).zip
2021-02-07 16:56 - 2021-02-07 16:56 - 000205818 _____ C:\Users\vlastnik\Downloads\CADDY_2020.xls (2).zip
2021-02-07 16:14 - 2021-02-07 16:54 - 000204288 _____ C:\Users\vlastnik\Desktop\FABIA_2021.xls
2021-02-07 10:26 - 2021-02-07 10:26 - 000240294 _____ C:\Users\vlastnik\Downloads\faktura9210146531.pdf
2021-02-07 10:26 - 2021-02-07 10:26 - 000240287 _____ C:\Users\vlastnik\Downloads\faktura9210146531 (1).pdf
2021-01-29 13:31 - 2021-01-29 13:32 - 004826291 _____ C:\Users\vlastnik\Downloads\0867_20210129113035_001.pdf (1).zip
2021-01-29 13:31 - 2021-01-29 13:31 - 004826291 _____ C:\Users\vlastnik\Downloads\0867_20210129113035_001.pdf.zip
2021-01-29 11:26 - 2021-01-29 11:26 - 000025705 _____ C:\Users\vlastnik\Downloads\fw-vrt-praha-bchovice-poany-laboratorn-zkouky (1).eml
2021-01-29 11:24 - 2021-01-29 11:24 - 000025705 _____ C:\Users\vlastnik\Downloads\fw-vrt-praha-bchovice-poany-laboratorn-zkouky.eml
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-02-28 11:11 - 2016-08-31 16:31 - 000000000 ____D C:\Program Files\TeamViewer
2021-02-28 11:07 - 2020-08-26 01:51 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2021-02-28 11:06 - 2020-08-26 01:34 - 001693336 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-02-28 11:06 - 2019-12-07 13:21 - 000717844 _____ C:\WINDOWS\system32\perfh005.dat
2021-02-28 11:06 - 2019-12-07 13:21 - 000144986 _____ C:\WINDOWS\system32\perfc005.dat
2021-02-28 11:06 - 2019-12-07 07:10 - 000000000 ____D C:\WINDOWS\INF
2021-02-27 14:44 - 2019-12-07 07:12 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-02-27 14:42 - 2020-08-26 01:51 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-02-27 14:42 - 2020-08-26 01:10 - 000008192 ___SH C:\DumpStack.log.tmp
2021-02-27 14:42 - 2016-09-14 20:39 - 000000000 ____D C:\ProgramData\NVIDIA
2021-02-27 14:41 - 2019-12-07 07:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-02-27 14:22 - 2020-08-26 01:10 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-02-27 13:05 - 2016-08-12 10:27 - 000000000 ____D C:\Users\vlastnik\AppData\LocalLow\Temp
2021-02-27 01:18 - 2012-06-12 15:17 - 000000000 ____D C:\ProgramData\AVAST Software
2021-02-26 17:34 - 2018-05-29 19:39 - 000000000 ____D C:\Users\vlastnik\AppData\Local\AVAST Software
2021-02-26 11:19 - 2019-02-06 09:59 - 000000000 ____D C:\Users\vlastnik\Documents\akce 947
2021-02-26 11:18 - 2017-04-28 05:54 - 000000000 ____D C:\Users\vlastnik\Documents\pokuta
2021-02-26 10:36 - 2018-01-22 15:44 - 000000000 ____D C:\Users\vlastnik\AppData\Local\Packages
2021-02-25 12:04 - 2016-08-31 16:31 - 000000000 ____D C:\Users\vlastnik\AppData\Roaming\TeamViewer
2021-02-25 11:14 - 2020-08-26 01:51 - 000004200 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{6A61A513-D890-412E-87A1-54191FAFAEB8}
2021-02-24 09:52 - 2018-06-21 06:40 - 000000000 ___RD C:\Users\vlastnik\Documents\Scanned Documents
2021-02-24 09:47 - 2018-05-29 19:40 - 000002450 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2021-02-24 09:29 - 2021-01-23 16:17 - 000000000 ____D C:\Users\vlastnik\Documents\ČEZ -chata
2021-02-24 09:10 - 2020-10-13 15:00 - 000147728 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2021-02-24 09:02 - 2020-08-26 01:51 - 000004550 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-02-24 09:00 - 2015-07-21 16:46 - 000002112 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-02-24 08:53 - 2012-06-12 15:18 - 000384136 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2021-02-24 08:33 - 2019-12-07 07:12 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-02-24 08:32 - 2016-08-16 07:05 - 000276960 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2021-02-24 08:31 - 2020-04-14 18:08 - 000376840 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2021-02-24 08:31 - 2019-10-21 03:47 - 000033544 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2021-02-24 08:31 - 2019-01-04 11:50 - 000206304 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2021-02-24 08:31 - 2019-01-04 11:50 - 000091616 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2021-02-24 08:31 - 2018-10-22 12:21 - 000039248 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2021-02-24 08:31 - 2017-11-19 10:11 - 000175872 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2021-02-24 08:31 - 2016-08-16 07:05 - 000071352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2021-02-24 08:31 - 2012-06-12 15:18 - 000690144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2021-02-24 08:31 - 2012-06-12 15:18 - 000092696 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2021-02-24 08:30 - 2019-01-14 15:52 - 000287192 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2021-02-24 08:27 - 2020-08-22 12:08 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-02-22 07:43 - 2020-06-08 19:04 - 000002371 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-02-22 07:43 - 2019-12-07 07:12 - 000000000 ___HD C:\Program Files\WindowsApps
2021-02-22 07:43 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-02-21 17:57 - 2013-12-21 12:28 - 000000000 ____D C:\Program Files\Microsoft Office
2021-02-19 11:48 - 2020-02-22 13:48 - 000000000 ____D C:\Users\vlastnik\Documents\Sudop 2021
2021-02-19 11:45 - 2020-08-26 01:51 - 000003368 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3848213662-3967300228-756751357-1000
2021-02-19 11:45 - 2020-08-26 01:13 - 000002376 _____ C:\Users\vlastnik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-02-19 11:45 - 2016-06-03 06:00 - 000000000 ___RD C:\Users\vlastnik\OneDrive
2021-02-16 20:40 - 2018-03-15 19:00 - 000002253 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-02-15 11:04 - 2020-08-26 01:10 - 000484656 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-02-15 11:00 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\SystemResources
2021-02-15 11:00 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-02-15 11:00 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\Keywords
2021-02-15 11:00 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-02-15 10:59 - 2019-12-07 07:12 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-02-15 10:59 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-02-15 10:59 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-02-15 10:59 - 2019-12-07 07:12 - 000000000 ____D C:\Program Files\Common Files\System
2021-02-15 10:59 - 2019-12-07 07:03 - 000000000 ____D C:\WINDOWS\servicing
2021-02-12 13:06 - 2019-12-07 07:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-02-11 11:36 - 2020-08-26 01:51 - 000003572 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-02-11 11:36 - 2020-08-26 01:51 - 000003448 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-02-10 11:56 - 2013-12-15 15:51 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-02-10 11:56 - 2012-06-12 14:44 - 127354856 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-02-09 12:30 - 2021-01-07 08:16 - 000000000 ____D C:\Users\vlastnik\Documents\objednávky2021
2021-02-05 19:50 - 2020-08-22 12:08 - 000569152 _____ (Microsoft Corporation) C:\WINDOWS\system32\sedplugins.dll
2021-02-05 19:50 - 2020-08-22 12:08 - 000364352 _____ (Microsoft Corporation) C:\WINDOWS\system32\QualityUpdateAssistant.dll
2021-01-31 11:38 - 2020-11-26 08:41 - 000000000 ____D C:\Users\vlastnik\Documents\objednávky a smlouvy 2021 (5)
==================== Files in the root of some directories ========
2017-07-16 11:02 - 2017-07-16 11:02 - 000000055 _____ () C:\ProgramData\pconfig.dat
2020-10-26 16:44 - 2020-10-26 16:44 - 010014720 _____ () C:\Program Files\GUTA0BB.tmp
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Ran by vlastnik (administrator) on TOSHIBA (TOSHIBA SATELLITE C670-17M) (28-02-2021 11:07:05)
Running from C:\Users\vlastnik\Desktop
Loaded Profiles: vlastnik & UpdatusUser
Platform: Microsoft Windows 10 Home Version 2004 19041.804 (X86) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
() [File not signed] C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
(Avast Software s.r.o. -> Avast Software) C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Update\1.3.36.72\GoogleCrashHandler.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\vlastnik\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_2.2010.7621.0_x86__8wekyb3d8bbwe\Cortana.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\System32\upfc.exe
(Monet+, a.s. -> Monet+, a.s.) C:\Windows\System32\xmesrv.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Soluto -> Soluto) C:\Program Files\Soluto\SolutoService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\tv_w32.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [11430504 2011-10-17] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe [1571432 2011-10-14] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [332288 2010-12-17] () [File not signed]
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [104160 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3536576 2017-06-02] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Windows NT x86\Print Processors\ssm1MPC: C:\Windows\System32\spool\prtprocs\W32X86\ssm1mpc.dll [28672 2014-09-18] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
HKLM\...\Print\Monitors\doPDF 7 Monitor: C:\WINDOWS\system32\dopdfmn7.dll [23432 2012-05-17] (Softland S.R.L. -> Softland)
HKLM\...\Print\Monitors\ssm1M Langmon: C:\WINDOWS\system32\ssm1mlm.dll [24064 2014-09-18] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> C:\Program Files\AVAST Software\Browser\Application\88.1.8005.150\Installer\chrmstp.exe [2021-02-24] (Avast Software s.r.o. -> AVAST Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\88.0.4324.182\Installer\chrmstp.exe [2021-02-16] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {029F8134-266C-4744-A38E-15817754725A} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [18199456 2021-02-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {02D50DBD-8DB9-41C3-838D-2E4ABF35AD41} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [3993520 2021-02-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {0352DC7C-5C99-43BF-AAB6-1D4D840086C1} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4108000 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
Task: {0BD5C542-115F-485D-ADC6-23F259C03306} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {10B4EDD4-A31B-4CD7-961E-1FDB6BA47979} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {1C15655A-C717-429B-8821-E81F66F19D9B} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [1997120 2021-02-08] (Avast Software s.r.o. -> AVAST Software)
Task: {1CE69A3A-E3B8-4B5C-A9D0-5E6B37B8998E} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {212EF64A-1D5B-46FA-9CD1-3CFFD19AE56E} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\system32\Macromed\Flash\FlashUtil32_32_0_0_465_Plugin.exe [1504312 2020-12-08] (Adobe Inc. -> Adobe)
Task: {21A41BF2-59C7-4C10-8B87-D02D74B1E60C} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {24FA84A0-E087-48EC-BC51-2B9C4C815D78} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {2C1B573A-F671-456E-B7C5-22FA10829147} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {39D2410C-EE6C-48A0-AAE9-7ECB5780DBC5} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [3993520 2021-02-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {456EC4AD-4E80-4E37-89C2-CC7E6A6F3869} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {49583914-4A24-45B2-B51E-BADB72AB15E6} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {4AABB39C-9878-47C8-90F6-7BE04DDB873B} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {4D3B9AD5-74AB-4BEE-8007-6FB2ECCA7AA5} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {5DDA0EE5-8E5E-4E4F-A733-408C0D75870E} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {622CAC8E-4BFA-498F-AA20-60458AC92E78} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [1997120 2021-02-08] (Avast Software s.r.o. -> AVAST Software)
Task: {64BDE056-96C8-40CB-BAD8-6BC98B75FA55} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {6BB4E74C-739F-45E2-A4C6-496803AE5431} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {6CE2B26E-657D-4A47-AE4B-FF7D5EE5F561} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
Task: {6DBE4473-57C8-4D09-8F23-62EF36E5D799} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {75EB3C9B-5E5A-4D10-9A3C-164D50AB1AF1} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {793D91F6-471F-4306-ACA1-362E3009E283} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {7DDB76D5-08F8-43E5-BB0B-7E0167DF4247} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {8E1E9326-3CBD-483B-BF7F-86059D20CAB4} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {99FF7174-ABD7-42A9-A235-C9CAA9B53D8A} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {B0D887C5-AD75-4646-A618-C34CFD3F8C84} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B3D0ED9F-FC6F-41F0-B550-E590E5022575} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {C0D1B13B-2C8E-4DC6-A297-0D9B207E2772} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {C3B4CB97-F080-4308-9069-00E7DF37C2D2} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {C984C363-7007-4C99-966B-54623EAEC6AE} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {CEA17009-9D37-4082-BF82-ADC2CBD09FE0} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1550048 2021-02-24] (Avast Software s.r.o. -> Avast Software)
Task: {D0761084-113A-408C-BA58-5BA31D207CB1} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {D3A3E797-07EE-465C-92DD-6DC1F0AF5C76} - \GoogleUpdateTaskMachineUA -> No File <==== ATTENTION
Task: {E94827C7-2744-4DC0-8007-5C167030B284} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [18199456 2021-02-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {EFD9DEF9-C6D1-46D0-8475-B2DF407AFB11} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [115016 2021-02-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {F37B0BD3-FD1F-4254-9007-9E9439A6482D} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [115016 2021-02-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {F5371F77-8286-4AAB-9388-B9D71BBDAC42} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {F81150DF-E05D-4870-90EE-0D6FE1A23733} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
Task: {FF298C90-7217-4515-B97D-F19968BC4500} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{00732cab-852b-4dc2-8543-5edff1a23b99}: [DhcpNameServer] 172.16.125.1
Tcpip\..\Interfaces\{524fb85f-a964-47cc-b03d-24c91ced4cc5}: [DhcpNameServer] 10.0.0.138
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\vlastnik\AppData\Local\Microsoft\Edge\User Data\Default [2021-02-26]
FireFox:
========
FF ProfilePath: C:\Users\vlastnik\AppData\Roaming\Mozilla\Firefox\Profiles\32gylciq.default [2021-02-27]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_32_0_0_465.dll [2020-12-08] (Adobe Inc. -> )
FF Plugin: @java.com/DTPlugin,version=10.6.2 -> C:\Windows\system32\npDeployJava1.dll [2012-08-16] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.6.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2012-08-16] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-02-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-02-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-10-26] (Avast Software s.r.o. -> AVAST Software)
FF Plugin: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-10-26] (Avast Software s.r.o. -> AVAST Software)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-02-20] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin: csas.cz/Partner24 -> C:\Program Files\Partner24\npPartner24.dll [2015-10-14] (Ceska sporitelna, a.s.) [File not signed]
FF Plugin HKU\S-1-5-21-3848213662-3967300228-756751357-1000: @nsroblox.roblox.com/launcher -> C:\Users\vlastnik\AppData\Local\Roblox\Versions\version-1600d28b04c54698\\NPRobloxProxy.dll [2012-12-31] (Roblox Corporation -> ROBLOX Corporation)
FF Plugin HKU\S-1-5-21-3848213662-3967300228-756751357-1000: @nsroblox.roblox.com/launcher64 -> C:\Users\vlastnik\AppData\Local\Roblox\Versions\version-1600d28b04c54698\\NPRobloxProxy64.dll [2012-12-31] ( ROBLOX Corporation) [File not signed]
Chrome:
=======
CHR Profile: C:\Users\vlastnik\AppData\Local\Google\Chrome\User Data\Default [2021-02-27]
CHR Extension: (Prezentace) - C:\Users\vlastnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-03-15]
CHR Extension: (Dokumenty) - C:\Users\vlastnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-03-15]
CHR Extension: (Disk Google) - C:\Users\vlastnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-01-07]
CHR Extension: (YouTube) - C:\Users\vlastnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-03-15]
CHR Extension: (Tabulky) - C:\Users\vlastnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-03-15]
CHR Extension: (Dokumenty Google offline) - C:\Users\vlastnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-01-07]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\vlastnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-07]
CHR Extension: (Gmail) - C:\Users\vlastnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-01-07]
CHR Extension: (Chrome Media Router) - C:\Users\vlastnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-01-07]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-08] (Adobe Inc. -> Adobe)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [7050776 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [563416 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [330976 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files\AVAST Software\Browser\Application\88.1.8005.150\elevation_service.exe [1235736 2021-02-08] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56904 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [7285640 2021-02-15] (Microsoft Corporation -> Microsoft Corporation)
R2 SolutoService; C:\Program Files\Soluto\SolutoService.exe [586816 2012-05-24] (Soluto -> Soluto)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [225472 2017-06-02] (Synaptics Incorporated -> Synaptics Incorporated)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [12835096 2021-01-28] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S4 uhssvc; C:\Program Files\Microsoft Update Health Tools\uhssvc.exe [259904 2021-02-05] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [2250992 2019-12-26] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [85240 2019-12-26] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 xmengine service; C:\WINDOWS\system32\xmesrv.exe [34696 2009-09-25] (Monet+, a.s. -> Monet+, a.s.)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem"
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [33544 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [175872 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [287192 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [206304 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [91616 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16320 2020-12-17] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [39248 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [147728 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [376840 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [92696 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [71352 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [690144 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [384136 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [161312 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [276960 2021-02-24] (Avast Software s.r.o. -> AVAST Software)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [200192 2019-12-07] (Microsoft Corporation) [File not signed]
R3 HpqKbFiltr; C:\WINDOWS\System32\drivers\HpqKbFiltr.sys [16768 2007-06-18] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Development Company, L.P.)
R3 MEI; C:\WINDOWS\System32\drivers\HECI.sys [41216 2011-09-22] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvtdwu.inf_x86_bf9b35a5b48ce198\nvlddmkm.sys [12227512 2017-01-17] (NVIDIA Corporation -> NVIDIA Corporation)
R3 rtwlane_13; C:\WINDOWS\System32\drivers\rtwlane_13.sys [3182592 2019-12-07] (Microsoft Windows -> Realtek Semiconductor Corporation)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [44224 2017-06-02] (Synaptics Incorporated -> Synaptics Incorporated)
R0 Soluto; C:\WINDOWS\System32\Drivers\Soluto.sys [51144 2012-05-24] (Soluto -> Soluto LTD.)
R3 Thotkey; C:\WINDOWS\System32\drivers\Thotkey.sys [42088 2015-12-31] (TOSHIBA CORPORATION -> Toshiba Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [37472 2019-12-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [278456 2019-12-26] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [39368 2019-12-26] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-02-28 11:07 - 2021-02-28 11:10 - 000024589 _____ C:\Users\vlastnik\Desktop\FRST.txt
2021-02-27 13:00 - 2021-02-27 14:40 - 000027584 _____ C:\Users\vlastnik\Desktop\Fixlog.txt
2021-02-27 12:59 - 2021-02-26 19:15 - 002013696 _____ (Farbar) C:\Users\vlastnik\Desktop\FRST.exe
2021-02-26 19:29 - 2021-02-28 11:09 - 000000000 ____D C:\FRST
2021-02-26 18:11 - 2021-02-26 18:13 - 000000000 ____D C:\AdwCleaner
2021-02-26 18:10 - 2021-02-26 18:09 - 008463216 _____ (Malwarebytes) C:\Users\vlastnik\Desktop\adwcleaner_8.1.exe
2021-02-26 17:14 - 2021-02-26 17:14 - 000000000 ____D C:\rsit
2021-02-26 17:14 - 2021-02-26 17:14 - 000000000 ____D C:\Program Files\trend micro
2021-02-26 17:14 - 2021-02-26 17:12 - 001107968 _____ C:\Users\vlastnik\Desktop\RSIT.exe
2021-02-26 10:55 - 2021-02-26 10:55 - 000000000 ____D C:\Users\vlastnik\Documents\Avast
2021-02-24 08:33 - 2021-02-24 08:31 - 000286944 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2021-02-24 08:33 - 2021-02-24 08:31 - 000161312 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2021-02-21 17:50 - 2021-02-21 17:52 - 006427788 _____ C:\Users\vlastnik\Documents\Saldo k 6.1.2021.pdf
2021-02-19 12:53 - 2021-02-19 12:53 - 000127733 _____ C:\Users\vlastnik\Documents\Orientační přehled cen lab.zkoušek od 1.1.2021.pdf
2021-02-17 08:46 - 2021-02-17 08:46 - 000308297 _____ C:\Users\vlastnik\Documents\886-01-2021 Horni Luby.pdf
2021-02-17 08:46 - 2021-02-17 08:46 - 000303389 _____ C:\Users\vlastnik\Documents\884-01-2021 Vrt Tuhaň.pdf
2021-02-17 08:46 - 2021-02-17 08:46 - 000302909 _____ C:\Users\vlastnik\Documents\881-01-2021 Studenec u Oloví.pdf
2021-02-17 08:46 - 2021-02-17 08:46 - 000298668 _____ C:\Users\vlastnik\Documents\882-01-2021 Rolava u Prebuzi.pdf
2021-02-17 08:45 - 2021-02-17 08:45 - 000286063 _____ C:\Users\vlastnik\Documents\880-01-2021 Světlina.pdf
2021-02-15 12:26 - 2021-02-15 12:26 - 000000757 _____ C:\Users\vlastnik\Documents\Dokumenty – zástupce (2).lnk
2021-02-12 12:56 - 2021-02-12 12:56 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-02-09 17:49 - 2021-02-09 17:49 - 000001082 _____ C:\Users\vlastnik\Downloads\DNEDP4-7104274298-20210209-174508-pracovni.xml
2021-02-09 17:49 - 2021-02-09 17:49 - 000001082 _____ C:\Users\vlastnik\Downloads\DNEDP4-7104274298-20210209-174508-pracovni (1).xml
2021-02-09 16:49 - 2021-02-09 16:49 - 000000224 _____ C:\Users\vlastnik\Downloads\DNEDP4-XXXXXXXXXX-20210209-164738-pracovni.xml
2021-02-08 12:42 - 2021-02-08 12:42 - 000728967 _____ C:\Users\vlastnik\Downloads\mzdy (5).zip
2021-02-08 12:42 - 2021-02-08 12:42 - 000728967 _____ C:\Users\vlastnik\Downloads\mzdy (4).zip
2021-02-08 12:42 - 2021-02-08 12:42 - 000728967 _____ C:\Users\vlastnik\Downloads\mzdy (3).zip
2021-02-08 11:18 - 2021-02-08 11:18 - 000737137 _____ C:\Users\vlastnik\Downloads\mzdy (2).zip
2021-02-08 11:18 - 2021-02-08 11:18 - 000737137 _____ C:\Users\vlastnik\Downloads\mzdy (1).zip
2021-02-07 16:56 - 2021-02-07 17:04 - 000082944 _____ C:\Users\vlastnik\Downloads\JEEP_2020 (1).xls
2021-02-07 16:56 - 2021-02-07 16:56 - 000205818 _____ C:\Users\vlastnik\Downloads\CADDY_2020.xls (3).zip
2021-02-07 16:56 - 2021-02-07 16:56 - 000205818 _____ C:\Users\vlastnik\Downloads\CADDY_2020.xls (2).zip
2021-02-07 16:14 - 2021-02-07 16:54 - 000204288 _____ C:\Users\vlastnik\Desktop\FABIA_2021.xls
2021-02-07 10:26 - 2021-02-07 10:26 - 000240294 _____ C:\Users\vlastnik\Downloads\faktura9210146531.pdf
2021-02-07 10:26 - 2021-02-07 10:26 - 000240287 _____ C:\Users\vlastnik\Downloads\faktura9210146531 (1).pdf
2021-01-29 13:31 - 2021-01-29 13:32 - 004826291 _____ C:\Users\vlastnik\Downloads\0867_20210129113035_001.pdf (1).zip
2021-01-29 13:31 - 2021-01-29 13:31 - 004826291 _____ C:\Users\vlastnik\Downloads\0867_20210129113035_001.pdf.zip
2021-01-29 11:26 - 2021-01-29 11:26 - 000025705 _____ C:\Users\vlastnik\Downloads\fw-vrt-praha-bchovice-poany-laboratorn-zkouky (1).eml
2021-01-29 11:24 - 2021-01-29 11:24 - 000025705 _____ C:\Users\vlastnik\Downloads\fw-vrt-praha-bchovice-poany-laboratorn-zkouky.eml
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-02-28 11:11 - 2016-08-31 16:31 - 000000000 ____D C:\Program Files\TeamViewer
2021-02-28 11:07 - 2020-08-26 01:51 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2021-02-28 11:06 - 2020-08-26 01:34 - 001693336 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-02-28 11:06 - 2019-12-07 13:21 - 000717844 _____ C:\WINDOWS\system32\perfh005.dat
2021-02-28 11:06 - 2019-12-07 13:21 - 000144986 _____ C:\WINDOWS\system32\perfc005.dat
2021-02-28 11:06 - 2019-12-07 07:10 - 000000000 ____D C:\WINDOWS\INF
2021-02-27 14:44 - 2019-12-07 07:12 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-02-27 14:42 - 2020-08-26 01:51 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-02-27 14:42 - 2020-08-26 01:10 - 000008192 ___SH C:\DumpStack.log.tmp
2021-02-27 14:42 - 2016-09-14 20:39 - 000000000 ____D C:\ProgramData\NVIDIA
2021-02-27 14:41 - 2019-12-07 07:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-02-27 14:22 - 2020-08-26 01:10 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-02-27 13:05 - 2016-08-12 10:27 - 000000000 ____D C:\Users\vlastnik\AppData\LocalLow\Temp
2021-02-27 01:18 - 2012-06-12 15:17 - 000000000 ____D C:\ProgramData\AVAST Software
2021-02-26 17:34 - 2018-05-29 19:39 - 000000000 ____D C:\Users\vlastnik\AppData\Local\AVAST Software
2021-02-26 11:19 - 2019-02-06 09:59 - 000000000 ____D C:\Users\vlastnik\Documents\akce 947
2021-02-26 11:18 - 2017-04-28 05:54 - 000000000 ____D C:\Users\vlastnik\Documents\pokuta
2021-02-26 10:36 - 2018-01-22 15:44 - 000000000 ____D C:\Users\vlastnik\AppData\Local\Packages
2021-02-25 12:04 - 2016-08-31 16:31 - 000000000 ____D C:\Users\vlastnik\AppData\Roaming\TeamViewer
2021-02-25 11:14 - 2020-08-26 01:51 - 000004200 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{6A61A513-D890-412E-87A1-54191FAFAEB8}
2021-02-24 09:52 - 2018-06-21 06:40 - 000000000 ___RD C:\Users\vlastnik\Documents\Scanned Documents
2021-02-24 09:47 - 2018-05-29 19:40 - 000002450 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2021-02-24 09:29 - 2021-01-23 16:17 - 000000000 ____D C:\Users\vlastnik\Documents\ČEZ -chata
2021-02-24 09:10 - 2020-10-13 15:00 - 000147728 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2021-02-24 09:02 - 2020-08-26 01:51 - 000004550 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-02-24 09:00 - 2015-07-21 16:46 - 000002112 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-02-24 08:53 - 2012-06-12 15:18 - 000384136 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2021-02-24 08:33 - 2019-12-07 07:12 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-02-24 08:32 - 2016-08-16 07:05 - 000276960 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2021-02-24 08:31 - 2020-04-14 18:08 - 000376840 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2021-02-24 08:31 - 2019-10-21 03:47 - 000033544 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2021-02-24 08:31 - 2019-01-04 11:50 - 000206304 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2021-02-24 08:31 - 2019-01-04 11:50 - 000091616 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2021-02-24 08:31 - 2018-10-22 12:21 - 000039248 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2021-02-24 08:31 - 2017-11-19 10:11 - 000175872 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2021-02-24 08:31 - 2016-08-16 07:05 - 000071352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2021-02-24 08:31 - 2012-06-12 15:18 - 000690144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2021-02-24 08:31 - 2012-06-12 15:18 - 000092696 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2021-02-24 08:30 - 2019-01-14 15:52 - 000287192 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2021-02-24 08:27 - 2020-08-22 12:08 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-02-22 07:43 - 2020-06-08 19:04 - 000002371 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-02-22 07:43 - 2019-12-07 07:12 - 000000000 ___HD C:\Program Files\WindowsApps
2021-02-22 07:43 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-02-21 17:57 - 2013-12-21 12:28 - 000000000 ____D C:\Program Files\Microsoft Office
2021-02-19 11:48 - 2020-02-22 13:48 - 000000000 ____D C:\Users\vlastnik\Documents\Sudop 2021
2021-02-19 11:45 - 2020-08-26 01:51 - 000003368 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3848213662-3967300228-756751357-1000
2021-02-19 11:45 - 2020-08-26 01:13 - 000002376 _____ C:\Users\vlastnik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-02-19 11:45 - 2016-06-03 06:00 - 000000000 ___RD C:\Users\vlastnik\OneDrive
2021-02-16 20:40 - 2018-03-15 19:00 - 000002253 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-02-15 11:04 - 2020-08-26 01:10 - 000484656 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-02-15 11:00 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\SystemResources
2021-02-15 11:00 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-02-15 11:00 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\Keywords
2021-02-15 11:00 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-02-15 10:59 - 2019-12-07 07:12 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-02-15 10:59 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-02-15 10:59 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-02-15 10:59 - 2019-12-07 07:12 - 000000000 ____D C:\Program Files\Common Files\System
2021-02-15 10:59 - 2019-12-07 07:03 - 000000000 ____D C:\WINDOWS\servicing
2021-02-12 13:06 - 2019-12-07 07:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-02-11 11:36 - 2020-08-26 01:51 - 000003572 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-02-11 11:36 - 2020-08-26 01:51 - 000003448 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-02-10 11:56 - 2013-12-15 15:51 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-02-10 11:56 - 2012-06-12 14:44 - 127354856 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-02-09 12:30 - 2021-01-07 08:16 - 000000000 ____D C:\Users\vlastnik\Documents\objednávky2021
2021-02-05 19:50 - 2020-08-22 12:08 - 000569152 _____ (Microsoft Corporation) C:\WINDOWS\system32\sedplugins.dll
2021-02-05 19:50 - 2020-08-22 12:08 - 000364352 _____ (Microsoft Corporation) C:\WINDOWS\system32\QualityUpdateAssistant.dll
2021-01-31 11:38 - 2020-11-26 08:41 - 000000000 ____D C:\Users\vlastnik\Documents\objednávky a smlouvy 2021 (5)
==================== Files in the root of some directories ========
2017-07-16 11:02 - 2017-07-16 11:02 - 000000055 _____ () C:\ProgramData\pconfig.dat
2020-10-26 16:44 - 2020-10-26 16:44 - 010014720 _____ () C:\Program Files\GUTA0BB.tmp
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Re: Pomalý notebook + náhodné vypínání
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 24-02-2021
Ran by vlastnik (28-02-2021 11:13:58)
Running from C:\Users\vlastnik\Desktop
Microsoft Windows 10 Home Version 2004 19041.804 (X86) (2020-08-26 00:53:19)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-3848213662-3967300228-756751357-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3848213662-3967300228-756751357-503 - Limited - Disabled)
Guest (S-1-5-21-3848213662-3967300228-756751357-501 - Limited - Disabled)
UpdatusUser (S-1-5-21-3848213662-3967300228-756751357-1001 - Limited - Enabled) => C:\Users\UpdatusUser
vlastnik (S-1-5-21-3848213662-3967300228-756751357-1000 - Administrator - Enabled) => C:\Users\vlastnik
WDAGUtilityAccount (S-1-5-21-3848213662-3967300228-756751357-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 9.20 (HKLM\...\7-Zip) (Version: - )
Adobe Acrobat Reader DC - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 21.001.20140 - Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 32.0.0.465 - Adobe)
Aktualizace NVIDIA 1.11.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.11.3 - NVIDIA Corporation)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 21.1.2449 - Avast Software)
Avast Secure Browser (HKLM\...\Avast Secure Browser) (Version: 88.1.8005.150 - AVAST Software)
Avast Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.8.1065.0 - AVAST Software) Hidden
CDBurnerXP (HKLM\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.4.1.3184 - CDBurnerXP)
Common Desktop Agent (HKLM\...\{031A0E14-0413-4C97-9772-2639B782F46F}) (Version: 1.53.0 - OEM) Hidden
CPCSi_1_1_30_PPT (HKLM\...\{CE0A2084-EF33-4D73-9F8B-55FEE239808A}) (Version: 1.1.30.14413 - Monet+, a.s.)
doPDF 7.3 printer (HKLM\...\doPDF 7 printer_is1) (Version: - Softland)
Google Chrome (HKLM\...\Google Chrome) (Version: 88.0.4324.182 - Google LLC)
GPL Ghostscript (HKLM\...\GPL Ghostscript 9.05) (Version: 9.05 - Artifex Software Inc.)
Java 7 Update 6 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217006FF}) (Version: 7.0.60 - Oracle)
K-Lite Codec Pack 8.8.0 (Full) (HKLM\...\KLiteCodecPack_is1) (Version: 8.8.0 - )
LibreOffice 3.6 (HKLM\...\{AFD5A54E-E9A1-413D-8AA2-C9EDB6782400}) (Version: 3.6.0.4 - The Document Foundation)
Microsoft Edge (HKLM\...\Microsoft Edge) (Version: 88.0.705.74 - Microsoft Corporation)
Microsoft Edge Update (HKLM\...\Microsoft Edge Update) (Version: 1.3.141.59 - )
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 - cs-cz (HKLM\...\ProPlusRetail - cs-cz) (Version: 16.0.13628.20448 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3848213662-3967300228-756751357-1000\...\OneDriveSetup.exe) (Version: 21.016.0124.0003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{9733902C-4FFF-4543-8612-C376A55574A5}) (Version: 2.75.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM\...\{3C3D696B-0DB7-3C6D-A356-3DB8CE541918}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Mozilla Firefox 47.0.2 (x86 cs) (HKLM\...\Mozilla Firefox 47.0.2 (x86 cs)) (Version: 47.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 47.0.2.6148 - Mozilla)
Mozilla Thunderbird 12.0.1 (x86 cs) (HKLM\...\Mozilla Thunderbird 12.0.1 (x86 cs)) (Version: 12.0.1 - Mozilla)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.13628.20274 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-0000-0000000FF1CE}) (Version: 16.0.13628.20330 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.13628.20274 - Microsoft Corporation) Hidden
Ovládací panel NVIDIA 376.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 376.54 - NVIDIA Corporation) Hidden
Partner24 (HKLM\...\Partner24) (Version: 1.7.0 - Česká Spořitelna a.s.)
PDF Signer (HKLM\...\{5D605ACB-B350-488A-B1F6-76B517135AC0}) (Version: 1.0.0 - Dignita)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6482 - Realtek Semiconductor Corp.)
ROBLOX Player for vlastnik (HKU\S-1-5-21-3848213662-3967300228-756751357-1000\...\{373B1718-8CC5-4567-8EE2-9033AD08A680}) (Version: - ROBLOX Corporation)
Samsung Easy Printer Manager (HKLM\...\Samsung Easy Printer Manager) (Version: 1.02.06.10 - Samsung Electronics Co., Ltd.)
Samsung Printer Live Update (HKLM\...\Samsung Printer Live Update) (Version: 1.01.00:04(2013-04-22) - Samsung Electronics Co., Ltd.)
Samsung Scan Assistant (HKLM\...\Samsung Scan Assistant) (Version: 1.04.45.00 - Samsung Electronics Co., Ltd.)
Samsung SCX-3400 Series (HKLM\...\Samsung SCX-3400 Series) (Version: 1.08 (7.5.2012) - Samsung Electronics Co., Ltd.)
Skype™ 7.40 (HKLM\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.151 - Skype Technologies S.A.)
Soluto (HKLM\...\{3FBA4117-494E-474A-B9B7-FE56074F1C8B}) (Version: 1.3.761.0 - Soluto)
SumatraPDF (HKLM\...\SumatraPDF) (Version: 2.1.1 - Krzysztof Kowalczyk)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.10.0 - Synaptics Incorporated)
TeamViewer (HKLM\...\TeamViewer) (Version: 15.14.5 - TeamViewer)
Total Commander (Remove or Repair) (HKLM\...\Totalcmd) (Version: 8.0 - Ghisler Software GmbH)
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
Windows 10 Update and Privacy Settings (HKLM\...\{542CC2C2-ABAF-4604-8723-DA296AF74540}) (Version: 1.0.14.0 - Microsoft Corporation)
XMedia Recode version 3.1.0.0 (HKLM\...\{DDA3C325-47B2-4730-9672-BF3771C08799}_is1) (Version: 3.1.0.0 - XMedia Recode)
XnView 1.99 (HKLM\...\XnView_is1) (Version: 1.99 - Gougelet Pierre-e)
Packages:
=========
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.179.300.0_x86__kgqvnymyfvs32 [2020-10-16] (king.com)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x86__8wekyb3d8bbwe [2020-06-29] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-18] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.10142.0_x86__8wekyb3d8bbwe [2020-10-21] (Microsoft Studios) [MS Ad]
MSN Sports -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.36.20714.0_x86__8wekyb3d8bbwe [2020-03-26] (Microsoft Corporation) [MS Ad]
Samsung Printer Experience -> C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCO.LTD.SamsungPrinterExperience_1.3.15.0_x86__3c1yjt4zspk6g [2017-07-16] (Samsung Electronics Co. Ltd.)
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2018-09-10] (Twitter Inc.)
Váš telefon -> C:\Program Files\WindowsApps\Microsoft.YourPhone_1.20092.123.0_x86__8wekyb3d8bbwe [2020-10-17] (Microsoft Corporation)
WindowsDVDPlayer -> C:\Program Files\WindowsApps\Microsoft.WindowsDVDPlayer_3.6.13291.0_x86__8wekyb3d8bbwe [2016-06-04] (Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-3848213662-3967300228-756751357-1000_Classes\CLSID\{76D50904-6780-4c8b-8986-1A7EE0B1716D}\InprocServer32 -> C:\Users\vlastnik\AppData\Local\Roblox\Versions\version-1600d28b04c54698\RobloxProxy.dll (Roblox Corporation -> ROBLOX Corporation)
CustomCLSID: HKU\S-1-5-21-3848213662-3967300228-756751357-1000_Classes\CLSID\{DEE03C2B-0C0C-41A9-9877-FD4B4D7B6EA3}\InprocServer32 -> C:\Users\vlastnik\AppData\Local\Roblox\Versions\version-1600d28b04c54698\RobloxProxy64.dll (ROBLOX Corporation) [File not signed]
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-02-24] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2010-11-18] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-02-24] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-02-24] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2010-11-18] (Igor Pavlov) [File not signed]
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2016-12-29] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-02-24] (Avast Software s.r.o. -> AVAST Software)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2010-12-17 18:13 - 2010-12-17 18:13 - 000049664 _____ () [File not signed] C:\Program Files\Common Files\Common Desktop Agent\CDASrvPS.dll
2020-08-27 03:03 - 2020-08-27 03:03 - 000100864 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Interop.IWshRuntime#\fc0c4074b695e402c697f4fa0b95e190\Interop.IWshRuntimeLibrary.ni.dll
2020-08-27 03:04 - 2020-08-27 03:04 - 000050688 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Interop.NetFwTypeLib\182a94f0d8f4353070f7b025d6dc6a6e\Interop.NetFwTypeLib.ni.dll
2020-10-15 03:03 - 2020-10-15 03:03 - 000176640 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGAppControlPlugin#\36eacf2c54f5aa4e843cf02fe0302cac\PCGAppControlPluginLoader.ni.dll
2020-08-27 03:02 - 2020-08-27 03:02 - 002845696 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGPreCompiled\307af53dc2c1faa36beeccd6978f1d77\PCGPreCompiled.ni.dll
2020-08-27 03:03 - 2020-08-27 03:03 - 000202240 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGWuInfo\47a40759712b9187324603f1055efe08\PCGWuInfo.ni.dll
2020-08-27 03:02 - 2020-08-27 03:02 - 000596992 _____ (Dino Chiesa) [File not signed] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Ionic.Zip.Reduced\57f0c84151cd4edd4e99590d732595ab\Ionic.Zip.Reduced.ni.dll
2010-11-18 17:08 - 2010-11-18 17:08 - 000055808 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2020-08-27 03:03 - 2020-08-27 03:03 - 002327552 _____ (Pioneer Software Consulting) [File not signed] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Community.CsharpSql#\933d7f1adea516943a841acde30a2bb8\Community.CsharpSqlite.ni.dll
2011-03-14 07:35 - 2011-03-14 07:35 - 000099328 _____ (Samsung Electronics Co., Ltd.) [File not signed] C:\Program Files\Samsung\Easy Printer Manager\SmartScreenPrint\CDAKEYMonitor.dll
2020-08-27 03:02 - 2020-08-27 03:02 - 000048640 _____ (Soluto) [File not signed] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGAzureEntityFrame#\964bcc42a73a015fff4774c98cd1cb4c\PCGAzureEntityFramework.ni.dll
2020-10-15 03:02 - 2020-10-15 03:02 - 001399296 _____ (Soluto) [File not signed] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGAzureShared\187039d6664340fc40350e9e72ec5bb9\PCGAzureShared.ni.dll
2020-10-15 03:04 - 2020-10-15 03:04 - 000327168 _____ (Soluto) [File not signed] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGBootVisualizingC#\a82fd600bcea73945ee6f62fb7f5471f\PCGBootVisualizingCore.ni.dll
2020-10-15 03:03 - 2020-10-15 03:03 - 000886272 _____ (Soluto) [File not signed] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGBrowsersProbe\18eb889674722e6ed5a023738c04fae0\PCGBrowsersProbe.ni.dll
2020-10-15 03:03 - 2020-10-15 03:03 - 000111616 _____ (Soluto) [File not signed] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGCatalogItemCache\8b9ada799c8f4cf5e4829dc96c582592\PCGCatalogItemCache.ni.dll
2020-10-15 03:04 - 2020-10-15 03:04 - 000358400 _____ (Soluto) [File not signed] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGCatalogItemFootp#\fe602ca4c06dec50ac92e1ddc852a1b0\PCGCatalogItemFootprint.ni.dll
2020-10-15 03:03 - 2020-10-15 03:03 - 004223488 _____ (Soluto) [File not signed] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGClientCommon\f75ff03edd9f2acf51c0b5033cc424db\PCGClientCommon.ni.dll
2020-10-15 03:03 - 2020-10-15 03:03 - 000890368 _____ (Soluto) [File not signed] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGClientCommunicat#\ddbb61c66ebd2cd34965502a2eab5ffa\PCGClientCommunication.ni.dll
2020-10-15 03:01 - 2020-10-15 03:01 - 001293312 _____ (Soluto) [File not signed] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGCommunication\6783dc7354492c8de5c34bb12fe48939\PCGCommunication.ni.dll
2020-10-15 03:02 - 2020-10-15 03:02 - 000065024 _____ (Soluto) [File not signed] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGConfiguration\79eec372545bf550d29873911f9b1450\PCGConfiguration.ni.dll
2020-10-15 03:04 - 2020-10-15 03:04 - 000791552 _____ (Soluto) [File not signed] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGDataAggregation\5f0207e6849c6fb8f08a53d545597a22\PCGDataAggregation.ni.dll
2020-10-15 03:02 - 2020-10-15 03:02 - 003936768 _____ (Soluto) [File not signed] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGDatabase\a6e5f5fb8c3a9cb341ed25a76536701d\PCGDatabase.ni.dll
2020-10-15 03:02 - 2020-10-15 03:02 - 000195072 _____ (Soluto) [File not signed] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGDriverProbe\d552fd1a7d5eacaf4dfe3661ec45efc4\PCGDriverProbe.ni.dll
2020-10-15 03:03 - 2020-10-15 03:03 - 000049664 _____ (Soluto) [File not signed] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGEntities\9f1c88cdff3f207bacc7083d51a3b0f4\PCGEntities.ni.dll
2020-11-11 02:34 - 2020-11-11 02:34 - 002670592 _____ (Soluto) [File not signed] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGFramework\523243b188792bd857b2951d298f28e8\PCGFramework.ni.dll
2020-10-15 03:01 - 2020-10-15 03:01 - 000206848 _____ (Soluto) [File not signed] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGPrestoSerializer\76e7ebafc7ee5bd9097624dff4010046\PCGPrestoSerializer.ni.dll
2020-10-15 03:03 - 2020-10-15 03:03 - 000345088 _____ (Soluto) [File not signed] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGSAProbe\4bc9f7be08e0fad7d015309832073545\PCGSAProbe.ni.dll
2020-10-15 03:03 - 2020-10-15 03:03 - 000151040 _____ (Soluto) [File not signed] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGUpgrader\9800adea46ae745012ad73b8ffba5003\PCGUpgrader.ni.dll
2020-10-15 03:03 - 2020-10-15 03:03 - 000067584 _____ (Soluto) [File not signed] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGUsersCenter\246d1dc77dd0dfff016f016fb2ce67e0\PCGUsersCenter.ni.dll
2020-10-15 03:04 - 2020-10-15 03:04 - 000750080 _____ (Soluto) [File not signed] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\SolutoCleanup\3bfaafcabadbea950d01781d6ef1cab1\SolutoCleanup.ni.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
HKU\S-1-5-21-3848213662-3967300228-756751357-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2021-02-04] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2012-08-16] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2012-08-16] (Oracle America, Inc. -> Oracle Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-02-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-02-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-02-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-02-04] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 03:04 - 2019-01-04 11:44 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
2019-07-22 03:30 - 2019-07-22 06:57 - 000000436 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-3848213662-3967300228-756751357-1000\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
HKU\S-1-5-21-3848213662-3967300228-756751357-1001\Control Panel\Desktop\\Wallpaper ->
DNS Servers: Media is not connected to internet.
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{D137E8B2-59F3-41F3-9DBA-ADAE0BB71C3F}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{16D085CE-3AD4-4024-BD96-C4E371BDD7F1}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{EE9FAE85-0B68-43F1-97C7-B3FD07E8377E}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5D9E3214-4231-4F6C-A146-ED3E53517FA5}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F9B28520-8A6B-4853-A4EA-27DDE7721EF1}] => (Allow) C:\Program Files\Scan Assistant\USDAgent.exe () [File not signed]
FirewallRules: [{70354C60-E55B-476E-B7BD-EC7D373DB0BD}] => (Allow) C:\Program Files\Scan Assistant\USDAgent.exe () [File not signed]
FirewallRules: [{7CC22A70-71F9-4084-8298-335A9BCBC286}] => (Allow) C:\Program Files\Samsung\Easy Printer Manager\CDAS2PC\CDAS2PC.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{3D8DFBCF-EF4D-4CF3-893B-47A834ED69AC}] => (Allow) C:\Program Files\Samsung\Easy Printer Manager\CDAS2PC\CDAS2PC.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{0F7081EC-7DAE-4038-BF37-593D63722845}] => (Allow) C:\Program Files\Samsung\Easy Printer Manager\IDSAlert.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{8950FA84-8754-45F5-A29D-CD89C143A49E}] => (Allow) C:\Program Files\Samsung\Easy Printer Manager\IDSAlert.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{A625F1BF-E7A8-44D4-9AEB-6265A19F4CCF}] => (Allow) C:\Program Files\Samsung\Easy Printer Manager\OrderSupplies.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{7FF200C2-086D-47E0-8C3C-5DFE8E164672}] => (Allow) C:\Program Files\Samsung\Easy Printer Manager\OrderSupplies.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{9CAF5801-03DD-4978-AB23-B337492A45BC}] => (Allow) C:\Program Files\Samsung\Easy Printer Manager\IDS.Application.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{9BCAB25B-DB6D-417F-BBF2-CB1125537B25}] => (Allow) C:\Program Files\Samsung\Easy Printer Manager\IDS.Application.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{B88B55C7-76B0-4C6A-AF35-B085E4C99693}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe () [File not signed]
FirewallRules: [{038E3903-D5A5-418E-8214-6FA1249EE3D7}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe () [File not signed]
FirewallRules: [{0D46E465-6116-4CEB-8EFB-809D742F2007}] => (Allow) C:\Windows\twain_32\Samsung\SCX3400\SCNSearch\USDAgent.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{9E861F26-8C75-4E27-8F12-1E50225B72BC}] => (Allow) C:\Windows\twain_32\Samsung\SCX3400\SCNSearch\USDAgent.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{18818A6E-E005-496B-8562-0D46EFCDF5EF}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{CC75AF26-5B8F-4698-BD9B-966F95D49629}] => (Allow) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{34F1DF77-3947-4CDE-923C-EFC6D93E2C0A}] => (Allow) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{03744813-9E95-423D-B06A-8D8DFE9B97FF}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{CA6FB760-8DAD-4123-AE84-A326430150AF}] => (Allow) C:\Program Files\Soluto\SolutoUpdateService.exe (Soluto -> Soluto)
FirewallRules: [{5D79F0A9-B609-4617-AC8C-CE7C60349C83}] => (Allow) C:\Program Files\Soluto\SolutoUpdateService.exe (Soluto -> Soluto)
FirewallRules: [{6C14BDBC-6346-4834-858E-594A0E13570F}] => (Allow) C:\Program Files\Soluto\SolutoConsole.exe (Soluto -> Soluto)
FirewallRules: [{A852D69E-235C-4515-94AF-E31FA270D28E}] => (Allow) C:\Program Files\Soluto\SolutoConsole.exe (Soluto -> Soluto)
FirewallRules: [{D6CE72BD-0167-4900-BA6A-9AB66803EC98}] => (Allow) C:\Program Files\Soluto\SolutoService.exe (Soluto -> Soluto)
FirewallRules: [{2DDB5409-D2CF-4682-9332-AF8172B9BB7C}] => (Allow) C:\Program Files\Soluto\SolutoService.exe (Soluto -> Soluto)
FirewallRules: [{7DBE15AC-C3BB-442D-ACEC-AB02AC0E0CEA}] => (Allow) C:\Program Files\Soluto\Soluto.exe (Soluto -> Soluto)
FirewallRules: [{FCF254A7-D92B-45D6-8E2F-8F9BDEBD76B5}] => (Allow) C:\Program Files\Soluto\Soluto.exe (Soluto -> Soluto)
FirewallRules: [{EC54A14E-06C8-4153-B40D-C4C459D543BF}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{C05D1393-BB72-4162-A877-0A41510B2266}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{71AFA3EA-74E4-49B8-9824-6F2879F8B3FD}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{C149C46F-F519-4B79-A701-4A96CD2B0199}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{31657F1A-F5F0-4EDC-86DA-D959FAE92D17}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{AE090EFA-7BD7-48A9-98E1-C5284E6FCDA2}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{82EA99C1-EA67-4A30-8B40-D37E213FA6A5}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{B6FCFE3D-E656-4EE8-9A2A-45839A1415B8}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{BC70D63C-B4C8-4D90-B1B4-AB10DE40A5D3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{75AB76C0-B029-4C1E-A6C7-AA04169B5C0B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E72D24BF-0F38-4520-ADC5-E59598858602}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{EFD473CD-9655-4C00-AABC-8FCFAE11DC65}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{AF8E724B-2BF5-474E-ACD7-51504F597D2A}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{3725A750-33F4-41FE-B2AE-BC8B62065980}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{A7606728-E9D0-4D0C-8CCA-5D8914DCFC10}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{648FF8D7-6F39-47D0-B7ED-C59E80E69386}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{3835CA04-E968-491F-8B2F-8C4D773F1188}] => (Allow) C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe (Avast Software s.r.o. -> AVAST Software)
==================== Restore Points =========================
12-02-2021 11:42:45 Instalační služba modulů systému Windows
26-02-2021 17:25:20 Naplánovaný kontrolní bod
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (02/26/2021 05:25:44 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).
System Error:
Přístup byl odepřen.
.
Error: (02/26/2021 01:01:50 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na DATA (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (02/26/2021 01:01:45 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Rezervováno systémem, protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (02/25/2021 11:01:31 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program iexplore.exe verze 11.0.19041.1 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 24e0
Čas spuštění: 01d70b5d187bf14b
Čas ukončení: 66
Cesta k aplikaci: C:\Program Files\Internet Explorer\iexplore.exe
ID hlášení: c2b8e2d2-b3fa-4ad3-836f-eda568812701
Úplný název balíčku s chybou:
ID aplikace relativní podle balíčku s chybou:
Typ zablokování: Unknown
Error: (02/24/2021 08:25:19 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: GameBar.exe, verze: 5.420.8043.0, časové razítko: 0x5f29c4c2
Název chybujícího modulu: ucrtbase.dll, verze: 10.0.19041.789, časové razítko: 0x82dc99a2
Kód výjimky: 0xc0000409
Posun chyby: 0x0009eddb
ID chybujícího procesu: 0x25f0
Čas spuštění chybující aplikace: 0x01d70a7e21336aac
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.420.8043.0_x86__8wekyb3d8bbwe\GameBar.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\ucrtbase.dll
ID zprávy: b29e02ae-e69f-477a-940c-46d87da2052f
Úplný název chybujícího balíčku: Microsoft.XboxGamingOverlay_5.420.8043.0_x86__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: App
Error: (02/21/2021 06:00:46 PM) (Source: MsiInstaller) (EventID: 11704) (User: NT AUTHORITY)
Description: Produkt: Office 16 Click-to-Run Extensibility Component - Chyba 1704 Instalace produktu Adobe Acrobat Reader DC - Czech je pozastavena. Chcete-li pokračovat, je nutné vrátit zpět změny provedené při instalaci. Chcete tyto změny vrátit zpět?
Error: (02/19/2021 01:04:05 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na DATA (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (02/19/2021 01:03:46 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Rezervováno systémem, protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
System errors:
=============
Error: (02/27/2021 02:41:11 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: Služba DCOM zjistila chybu 1115 při pokusu o spuštění služby wuauserv s argumenty Není k dispozici za účelem spuštění serveru:
{E60687F7-01A1-40AA-86AC-DB1CBF673334}
Error: (02/27/2021 02:41:11 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: Služba DCOM zjistila chybu 1115 při pokusu o spuštění služby wuauserv s argumenty Není k dispozici za účelem spuštění serveru:
{E60687F7-01A1-40AA-86AC-DB1CBF673334}
Error: (02/27/2021 02:41:11 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: Služba DCOM zjistila chybu 1115 při pokusu o spuštění služby wuauserv s argumenty Není k dispozici za účelem spuštění serveru:
{E60687F7-01A1-40AA-86AC-DB1CBF673334}
Error: (02/27/2021 02:41:11 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: Služba DCOM zjistila chybu 1115 při pokusu o spuštění služby wuauserv s argumenty Není k dispozici za účelem spuštění serveru:
{E60687F7-01A1-40AA-86AC-DB1CBF673334}
Error: (02/27/2021 02:41:04 PM) (Source: DCOM) (EventID: 10010) (User: TOSHIBA)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (02/27/2021 02:41:04 PM) (Source: DCOM) (EventID: 10010) (User: TOSHIBA)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (02/27/2021 02:41:04 PM) (Source: DCOM) (EventID: 10010) (User: TOSHIBA)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (02/27/2021 02:41:03 PM) (Source: DCOM) (EventID: 10010) (User: TOSHIBA)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
CodeIntegrity:
===============
Date: 2021-02-28 11:07:23
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
Date: 2021-02-28 11:02:32
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\AVAST Software\Avast\AvastSvc.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2021-02-27 14:46:24
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. 1.60 07/26/2011
Motherboard: Intel Corporation Oneonta Falls
Processor: Intel(R) Pentium(R) CPU B950 @ 2.10GHz
Percentage of memory in use: 65%
Total physical RAM: 3317.98 MB
Available physical RAM: 1128.59 MB
Total Virtual: 6645.98 MB
Available Virtual: 4103.21 MB
==================== Drives ================================
Drive c: (SYSTEM) (Fixed) (Total:269.58 GB) (Free:204.52 GB) NTFS
Drive d: (DATA) (Fixed) (Total:195.31 GB) (Free:194.3 GB) NTFS
\\?\Volume{e93631d4-b483-11e1-84a3-806e6f6e6963}\ (Rezervováno systémem) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS
\\?\Volume{ea075893-0000-0000-0000-406b43000000}\ () (Fixed) (Total:0.77 GB) (Free:0.32 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: EA075893)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=269.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=791 MB) - (Type=27)
Partition 4: (Not Active) - (Size=195.3 GB) - (Type=07 NTFS)
==================== End of Addition.txt =======================
Ran by vlastnik (28-02-2021 11:13:58)
Running from C:\Users\vlastnik\Desktop
Microsoft Windows 10 Home Version 2004 19041.804 (X86) (2020-08-26 00:53:19)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-3848213662-3967300228-756751357-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3848213662-3967300228-756751357-503 - Limited - Disabled)
Guest (S-1-5-21-3848213662-3967300228-756751357-501 - Limited - Disabled)
UpdatusUser (S-1-5-21-3848213662-3967300228-756751357-1001 - Limited - Enabled) => C:\Users\UpdatusUser
vlastnik (S-1-5-21-3848213662-3967300228-756751357-1000 - Administrator - Enabled) => C:\Users\vlastnik
WDAGUtilityAccount (S-1-5-21-3848213662-3967300228-756751357-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 9.20 (HKLM\...\7-Zip) (Version: - )
Adobe Acrobat Reader DC - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 21.001.20140 - Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 32.0.0.465 - Adobe)
Aktualizace NVIDIA 1.11.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.11.3 - NVIDIA Corporation)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 21.1.2449 - Avast Software)
Avast Secure Browser (HKLM\...\Avast Secure Browser) (Version: 88.1.8005.150 - AVAST Software)
Avast Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.8.1065.0 - AVAST Software) Hidden
CDBurnerXP (HKLM\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.4.1.3184 - CDBurnerXP)
Common Desktop Agent (HKLM\...\{031A0E14-0413-4C97-9772-2639B782F46F}) (Version: 1.53.0 - OEM) Hidden
CPCSi_1_1_30_PPT (HKLM\...\{CE0A2084-EF33-4D73-9F8B-55FEE239808A}) (Version: 1.1.30.14413 - Monet+, a.s.)
doPDF 7.3 printer (HKLM\...\doPDF 7 printer_is1) (Version: - Softland)
Google Chrome (HKLM\...\Google Chrome) (Version: 88.0.4324.182 - Google LLC)
GPL Ghostscript (HKLM\...\GPL Ghostscript 9.05) (Version: 9.05 - Artifex Software Inc.)
Java 7 Update 6 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217006FF}) (Version: 7.0.60 - Oracle)
K-Lite Codec Pack 8.8.0 (Full) (HKLM\...\KLiteCodecPack_is1) (Version: 8.8.0 - )
LibreOffice 3.6 (HKLM\...\{AFD5A54E-E9A1-413D-8AA2-C9EDB6782400}) (Version: 3.6.0.4 - The Document Foundation)
Microsoft Edge (HKLM\...\Microsoft Edge) (Version: 88.0.705.74 - Microsoft Corporation)
Microsoft Edge Update (HKLM\...\Microsoft Edge Update) (Version: 1.3.141.59 - )
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 - cs-cz (HKLM\...\ProPlusRetail - cs-cz) (Version: 16.0.13628.20448 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3848213662-3967300228-756751357-1000\...\OneDriveSetup.exe) (Version: 21.016.0124.0003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{9733902C-4FFF-4543-8612-C376A55574A5}) (Version: 2.75.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM\...\{3C3D696B-0DB7-3C6D-A356-3DB8CE541918}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Mozilla Firefox 47.0.2 (x86 cs) (HKLM\...\Mozilla Firefox 47.0.2 (x86 cs)) (Version: 47.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 47.0.2.6148 - Mozilla)
Mozilla Thunderbird 12.0.1 (x86 cs) (HKLM\...\Mozilla Thunderbird 12.0.1 (x86 cs)) (Version: 12.0.1 - Mozilla)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.13628.20274 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-0000-0000000FF1CE}) (Version: 16.0.13628.20330 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.13628.20274 - Microsoft Corporation) Hidden
Ovládací panel NVIDIA 376.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 376.54 - NVIDIA Corporation) Hidden
Partner24 (HKLM\...\Partner24) (Version: 1.7.0 - Česká Spořitelna a.s.)
PDF Signer (HKLM\...\{5D605ACB-B350-488A-B1F6-76B517135AC0}) (Version: 1.0.0 - Dignita)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6482 - Realtek Semiconductor Corp.)
ROBLOX Player for vlastnik (HKU\S-1-5-21-3848213662-3967300228-756751357-1000\...\{373B1718-8CC5-4567-8EE2-9033AD08A680}) (Version: - ROBLOX Corporation)
Samsung Easy Printer Manager (HKLM\...\Samsung Easy Printer Manager) (Version: 1.02.06.10 - Samsung Electronics Co., Ltd.)
Samsung Printer Live Update (HKLM\...\Samsung Printer Live Update) (Version: 1.01.00:04(2013-04-22) - Samsung Electronics Co., Ltd.)
Samsung Scan Assistant (HKLM\...\Samsung Scan Assistant) (Version: 1.04.45.00 - Samsung Electronics Co., Ltd.)
Samsung SCX-3400 Series (HKLM\...\Samsung SCX-3400 Series) (Version: 1.08 (7.5.2012) - Samsung Electronics Co., Ltd.)
Skype™ 7.40 (HKLM\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.151 - Skype Technologies S.A.)
Soluto (HKLM\...\{3FBA4117-494E-474A-B9B7-FE56074F1C8B}) (Version: 1.3.761.0 - Soluto)
SumatraPDF (HKLM\...\SumatraPDF) (Version: 2.1.1 - Krzysztof Kowalczyk)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.10.0 - Synaptics Incorporated)
TeamViewer (HKLM\...\TeamViewer) (Version: 15.14.5 - TeamViewer)
Total Commander (Remove or Repair) (HKLM\...\Totalcmd) (Version: 8.0 - Ghisler Software GmbH)
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
Windows 10 Update and Privacy Settings (HKLM\...\{542CC2C2-ABAF-4604-8723-DA296AF74540}) (Version: 1.0.14.0 - Microsoft Corporation)
XMedia Recode version 3.1.0.0 (HKLM\...\{DDA3C325-47B2-4730-9672-BF3771C08799}_is1) (Version: 3.1.0.0 - XMedia Recode)
XnView 1.99 (HKLM\...\XnView_is1) (Version: 1.99 - Gougelet Pierre-e)
Packages:
=========
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.179.300.0_x86__kgqvnymyfvs32 [2020-10-16] (king.com)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x86__8wekyb3d8bbwe [2020-06-29] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-18] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.10142.0_x86__8wekyb3d8bbwe [2020-10-21] (Microsoft Studios) [MS Ad]
MSN Sports -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.36.20714.0_x86__8wekyb3d8bbwe [2020-03-26] (Microsoft Corporation) [MS Ad]
Samsung Printer Experience -> C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCO.LTD.SamsungPrinterExperience_1.3.15.0_x86__3c1yjt4zspk6g [2017-07-16] (Samsung Electronics Co. Ltd.)
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2018-09-10] (Twitter Inc.)
Váš telefon -> C:\Program Files\WindowsApps\Microsoft.YourPhone_1.20092.123.0_x86__8wekyb3d8bbwe [2020-10-17] (Microsoft Corporation)
WindowsDVDPlayer -> C:\Program Files\WindowsApps\Microsoft.WindowsDVDPlayer_3.6.13291.0_x86__8wekyb3d8bbwe [2016-06-04] (Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-3848213662-3967300228-756751357-1000_Classes\CLSID\{76D50904-6780-4c8b-8986-1A7EE0B1716D}\InprocServer32 -> C:\Users\vlastnik\AppData\Local\Roblox\Versions\version-1600d28b04c54698\RobloxProxy.dll (Roblox Corporation -> ROBLOX Corporation)
CustomCLSID: HKU\S-1-5-21-3848213662-3967300228-756751357-1000_Classes\CLSID\{DEE03C2B-0C0C-41A9-9877-FD4B4D7B6EA3}\InprocServer32 -> C:\Users\vlastnik\AppData\Local\Roblox\Versions\version-1600d28b04c54698\RobloxProxy64.dll (ROBLOX Corporation) [File not signed]
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-02-24] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2010-11-18] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-02-24] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-02-24] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2010-11-18] (Igor Pavlov) [File not signed]
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2016-12-29] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-02-24] (Avast Software s.r.o. -> AVAST Software)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2010-12-17 18:13 - 2010-12-17 18:13 - 000049664 _____ () [File not signed] C:\Program Files\Common Files\Common Desktop Agent\CDASrvPS.dll
2020-08-27 03:03 - 2020-08-27 03:03 - 000100864 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Interop.IWshRuntime#\fc0c4074b695e402c697f4fa0b95e190\Interop.IWshRuntimeLibrary.ni.dll
2020-08-27 03:04 - 2020-08-27 03:04 - 000050688 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Interop.NetFwTypeLib\182a94f0d8f4353070f7b025d6dc6a6e\Interop.NetFwTypeLib.ni.dll
2020-10-15 03:03 - 2020-10-15 03:03 - 000176640 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGAppControlPlugin#\36eacf2c54f5aa4e843cf02fe0302cac\PCGAppControlPluginLoader.ni.dll
2020-08-27 03:02 - 2020-08-27 03:02 - 002845696 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGPreCompiled\307af53dc2c1faa36beeccd6978f1d77\PCGPreCompiled.ni.dll
2020-08-27 03:03 - 2020-08-27 03:03 - 000202240 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGWuInfo\47a40759712b9187324603f1055efe08\PCGWuInfo.ni.dll
2020-08-27 03:02 - 2020-08-27 03:02 - 000596992 _____ (Dino Chiesa) [File not signed] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Ionic.Zip.Reduced\57f0c84151cd4edd4e99590d732595ab\Ionic.Zip.Reduced.ni.dll
2010-11-18 17:08 - 2010-11-18 17:08 - 000055808 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2020-08-27 03:03 - 2020-08-27 03:03 - 002327552 _____ (Pioneer Software Consulting) [File not signed] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Community.CsharpSql#\933d7f1adea516943a841acde30a2bb8\Community.CsharpSqlite.ni.dll
2011-03-14 07:35 - 2011-03-14 07:35 - 000099328 _____ (Samsung Electronics Co., Ltd.) [File not signed] C:\Program Files\Samsung\Easy Printer Manager\SmartScreenPrint\CDAKEYMonitor.dll
2020-08-27 03:02 - 2020-08-27 03:02 - 000048640 _____ (Soluto) [File not signed] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGAzureEntityFrame#\964bcc42a73a015fff4774c98cd1cb4c\PCGAzureEntityFramework.ni.dll
2020-10-15 03:02 - 2020-10-15 03:02 - 001399296 _____ (Soluto) [File not signed] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGAzureShared\187039d6664340fc40350e9e72ec5bb9\PCGAzureShared.ni.dll
2020-10-15 03:04 - 2020-10-15 03:04 - 000327168 _____ (Soluto) [File not signed] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGBootVisualizingC#\a82fd600bcea73945ee6f62fb7f5471f\PCGBootVisualizingCore.ni.dll
2020-10-15 03:03 - 2020-10-15 03:03 - 000886272 _____ (Soluto) [File not signed] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGBrowsersProbe\18eb889674722e6ed5a023738c04fae0\PCGBrowsersProbe.ni.dll
2020-10-15 03:03 - 2020-10-15 03:03 - 000111616 _____ (Soluto) [File not signed] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGCatalogItemCache\8b9ada799c8f4cf5e4829dc96c582592\PCGCatalogItemCache.ni.dll
2020-10-15 03:04 - 2020-10-15 03:04 - 000358400 _____ (Soluto) [File not signed] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGCatalogItemFootp#\fe602ca4c06dec50ac92e1ddc852a1b0\PCGCatalogItemFootprint.ni.dll
2020-10-15 03:03 - 2020-10-15 03:03 - 004223488 _____ (Soluto) [File not signed] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGClientCommon\f75ff03edd9f2acf51c0b5033cc424db\PCGClientCommon.ni.dll
2020-10-15 03:03 - 2020-10-15 03:03 - 000890368 _____ (Soluto) [File not signed] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGClientCommunicat#\ddbb61c66ebd2cd34965502a2eab5ffa\PCGClientCommunication.ni.dll
2020-10-15 03:01 - 2020-10-15 03:01 - 001293312 _____ (Soluto) [File not signed] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGCommunication\6783dc7354492c8de5c34bb12fe48939\PCGCommunication.ni.dll
2020-10-15 03:02 - 2020-10-15 03:02 - 000065024 _____ (Soluto) [File not signed] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGConfiguration\79eec372545bf550d29873911f9b1450\PCGConfiguration.ni.dll
2020-10-15 03:04 - 2020-10-15 03:04 - 000791552 _____ (Soluto) [File not signed] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGDataAggregation\5f0207e6849c6fb8f08a53d545597a22\PCGDataAggregation.ni.dll
2020-10-15 03:02 - 2020-10-15 03:02 - 003936768 _____ (Soluto) [File not signed] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGDatabase\a6e5f5fb8c3a9cb341ed25a76536701d\PCGDatabase.ni.dll
2020-10-15 03:02 - 2020-10-15 03:02 - 000195072 _____ (Soluto) [File not signed] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGDriverProbe\d552fd1a7d5eacaf4dfe3661ec45efc4\PCGDriverProbe.ni.dll
2020-10-15 03:03 - 2020-10-15 03:03 - 000049664 _____ (Soluto) [File not signed] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGEntities\9f1c88cdff3f207bacc7083d51a3b0f4\PCGEntities.ni.dll
2020-11-11 02:34 - 2020-11-11 02:34 - 002670592 _____ (Soluto) [File not signed] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGFramework\523243b188792bd857b2951d298f28e8\PCGFramework.ni.dll
2020-10-15 03:01 - 2020-10-15 03:01 - 000206848 _____ (Soluto) [File not signed] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGPrestoSerializer\76e7ebafc7ee5bd9097624dff4010046\PCGPrestoSerializer.ni.dll
2020-10-15 03:03 - 2020-10-15 03:03 - 000345088 _____ (Soluto) [File not signed] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGSAProbe\4bc9f7be08e0fad7d015309832073545\PCGSAProbe.ni.dll
2020-10-15 03:03 - 2020-10-15 03:03 - 000151040 _____ (Soluto) [File not signed] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGUpgrader\9800adea46ae745012ad73b8ffba5003\PCGUpgrader.ni.dll
2020-10-15 03:03 - 2020-10-15 03:03 - 000067584 _____ (Soluto) [File not signed] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PCGUsersCenter\246d1dc77dd0dfff016f016fb2ce67e0\PCGUsersCenter.ni.dll
2020-10-15 03:04 - 2020-10-15 03:04 - 000750080 _____ (Soluto) [File not signed] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\SolutoCleanup\3bfaafcabadbea950d01781d6ef1cab1\SolutoCleanup.ni.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
HKU\S-1-5-21-3848213662-3967300228-756751357-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2021-02-04] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2012-08-16] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2012-08-16] (Oracle America, Inc. -> Oracle Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-02-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-02-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-02-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-02-04] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 03:04 - 2019-01-04 11:44 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
2019-07-22 03:30 - 2019-07-22 06:57 - 000000436 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-3848213662-3967300228-756751357-1000\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
HKU\S-1-5-21-3848213662-3967300228-756751357-1001\Control Panel\Desktop\\Wallpaper ->
DNS Servers: Media is not connected to internet.
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{D137E8B2-59F3-41F3-9DBA-ADAE0BB71C3F}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{16D085CE-3AD4-4024-BD96-C4E371BDD7F1}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{EE9FAE85-0B68-43F1-97C7-B3FD07E8377E}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5D9E3214-4231-4F6C-A146-ED3E53517FA5}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F9B28520-8A6B-4853-A4EA-27DDE7721EF1}] => (Allow) C:\Program Files\Scan Assistant\USDAgent.exe () [File not signed]
FirewallRules: [{70354C60-E55B-476E-B7BD-EC7D373DB0BD}] => (Allow) C:\Program Files\Scan Assistant\USDAgent.exe () [File not signed]
FirewallRules: [{7CC22A70-71F9-4084-8298-335A9BCBC286}] => (Allow) C:\Program Files\Samsung\Easy Printer Manager\CDAS2PC\CDAS2PC.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{3D8DFBCF-EF4D-4CF3-893B-47A834ED69AC}] => (Allow) C:\Program Files\Samsung\Easy Printer Manager\CDAS2PC\CDAS2PC.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{0F7081EC-7DAE-4038-BF37-593D63722845}] => (Allow) C:\Program Files\Samsung\Easy Printer Manager\IDSAlert.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{8950FA84-8754-45F5-A29D-CD89C143A49E}] => (Allow) C:\Program Files\Samsung\Easy Printer Manager\IDSAlert.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{A625F1BF-E7A8-44D4-9AEB-6265A19F4CCF}] => (Allow) C:\Program Files\Samsung\Easy Printer Manager\OrderSupplies.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{7FF200C2-086D-47E0-8C3C-5DFE8E164672}] => (Allow) C:\Program Files\Samsung\Easy Printer Manager\OrderSupplies.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{9CAF5801-03DD-4978-AB23-B337492A45BC}] => (Allow) C:\Program Files\Samsung\Easy Printer Manager\IDS.Application.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{9BCAB25B-DB6D-417F-BBF2-CB1125537B25}] => (Allow) C:\Program Files\Samsung\Easy Printer Manager\IDS.Application.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{B88B55C7-76B0-4C6A-AF35-B085E4C99693}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe () [File not signed]
FirewallRules: [{038E3903-D5A5-418E-8214-6FA1249EE3D7}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe () [File not signed]
FirewallRules: [{0D46E465-6116-4CEB-8EFB-809D742F2007}] => (Allow) C:\Windows\twain_32\Samsung\SCX3400\SCNSearch\USDAgent.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{9E861F26-8C75-4E27-8F12-1E50225B72BC}] => (Allow) C:\Windows\twain_32\Samsung\SCX3400\SCNSearch\USDAgent.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{18818A6E-E005-496B-8562-0D46EFCDF5EF}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{CC75AF26-5B8F-4698-BD9B-966F95D49629}] => (Allow) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{34F1DF77-3947-4CDE-923C-EFC6D93E2C0A}] => (Allow) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{03744813-9E95-423D-B06A-8D8DFE9B97FF}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{CA6FB760-8DAD-4123-AE84-A326430150AF}] => (Allow) C:\Program Files\Soluto\SolutoUpdateService.exe (Soluto -> Soluto)
FirewallRules: [{5D79F0A9-B609-4617-AC8C-CE7C60349C83}] => (Allow) C:\Program Files\Soluto\SolutoUpdateService.exe (Soluto -> Soluto)
FirewallRules: [{6C14BDBC-6346-4834-858E-594A0E13570F}] => (Allow) C:\Program Files\Soluto\SolutoConsole.exe (Soluto -> Soluto)
FirewallRules: [{A852D69E-235C-4515-94AF-E31FA270D28E}] => (Allow) C:\Program Files\Soluto\SolutoConsole.exe (Soluto -> Soluto)
FirewallRules: [{D6CE72BD-0167-4900-BA6A-9AB66803EC98}] => (Allow) C:\Program Files\Soluto\SolutoService.exe (Soluto -> Soluto)
FirewallRules: [{2DDB5409-D2CF-4682-9332-AF8172B9BB7C}] => (Allow) C:\Program Files\Soluto\SolutoService.exe (Soluto -> Soluto)
FirewallRules: [{7DBE15AC-C3BB-442D-ACEC-AB02AC0E0CEA}] => (Allow) C:\Program Files\Soluto\Soluto.exe (Soluto -> Soluto)
FirewallRules: [{FCF254A7-D92B-45D6-8E2F-8F9BDEBD76B5}] => (Allow) C:\Program Files\Soluto\Soluto.exe (Soluto -> Soluto)
FirewallRules: [{EC54A14E-06C8-4153-B40D-C4C459D543BF}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{C05D1393-BB72-4162-A877-0A41510B2266}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{71AFA3EA-74E4-49B8-9824-6F2879F8B3FD}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{C149C46F-F519-4B79-A701-4A96CD2B0199}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{31657F1A-F5F0-4EDC-86DA-D959FAE92D17}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{AE090EFA-7BD7-48A9-98E1-C5284E6FCDA2}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{82EA99C1-EA67-4A30-8B40-D37E213FA6A5}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{B6FCFE3D-E656-4EE8-9A2A-45839A1415B8}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{BC70D63C-B4C8-4D90-B1B4-AB10DE40A5D3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{75AB76C0-B029-4C1E-A6C7-AA04169B5C0B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E72D24BF-0F38-4520-ADC5-E59598858602}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{EFD473CD-9655-4C00-AABC-8FCFAE11DC65}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{AF8E724B-2BF5-474E-ACD7-51504F597D2A}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{3725A750-33F4-41FE-B2AE-BC8B62065980}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{A7606728-E9D0-4D0C-8CCA-5D8914DCFC10}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{648FF8D7-6F39-47D0-B7ED-C59E80E69386}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{3835CA04-E968-491F-8B2F-8C4D773F1188}] => (Allow) C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe (Avast Software s.r.o. -> AVAST Software)
==================== Restore Points =========================
12-02-2021 11:42:45 Instalační služba modulů systému Windows
26-02-2021 17:25:20 Naplánovaný kontrolní bod
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (02/26/2021 05:25:44 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).
System Error:
Přístup byl odepřen.
.
Error: (02/26/2021 01:01:50 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na DATA (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (02/26/2021 01:01:45 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Rezervováno systémem, protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (02/25/2021 11:01:31 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program iexplore.exe verze 11.0.19041.1 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 24e0
Čas spuštění: 01d70b5d187bf14b
Čas ukončení: 66
Cesta k aplikaci: C:\Program Files\Internet Explorer\iexplore.exe
ID hlášení: c2b8e2d2-b3fa-4ad3-836f-eda568812701
Úplný název balíčku s chybou:
ID aplikace relativní podle balíčku s chybou:
Typ zablokování: Unknown
Error: (02/24/2021 08:25:19 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: GameBar.exe, verze: 5.420.8043.0, časové razítko: 0x5f29c4c2
Název chybujícího modulu: ucrtbase.dll, verze: 10.0.19041.789, časové razítko: 0x82dc99a2
Kód výjimky: 0xc0000409
Posun chyby: 0x0009eddb
ID chybujícího procesu: 0x25f0
Čas spuštění chybující aplikace: 0x01d70a7e21336aac
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.420.8043.0_x86__8wekyb3d8bbwe\GameBar.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\ucrtbase.dll
ID zprávy: b29e02ae-e69f-477a-940c-46d87da2052f
Úplný název chybujícího balíčku: Microsoft.XboxGamingOverlay_5.420.8043.0_x86__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: App
Error: (02/21/2021 06:00:46 PM) (Source: MsiInstaller) (EventID: 11704) (User: NT AUTHORITY)
Description: Produkt: Office 16 Click-to-Run Extensibility Component - Chyba 1704 Instalace produktu Adobe Acrobat Reader DC - Czech je pozastavena. Chcete-li pokračovat, je nutné vrátit zpět změny provedené při instalaci. Chcete tyto změny vrátit zpět?
Error: (02/19/2021 01:04:05 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na DATA (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (02/19/2021 01:03:46 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Rezervováno systémem, protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
System errors:
=============
Error: (02/27/2021 02:41:11 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: Služba DCOM zjistila chybu 1115 při pokusu o spuštění služby wuauserv s argumenty Není k dispozici za účelem spuštění serveru:
{E60687F7-01A1-40AA-86AC-DB1CBF673334}
Error: (02/27/2021 02:41:11 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: Služba DCOM zjistila chybu 1115 při pokusu o spuštění služby wuauserv s argumenty Není k dispozici za účelem spuštění serveru:
{E60687F7-01A1-40AA-86AC-DB1CBF673334}
Error: (02/27/2021 02:41:11 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: Služba DCOM zjistila chybu 1115 při pokusu o spuštění služby wuauserv s argumenty Není k dispozici za účelem spuštění serveru:
{E60687F7-01A1-40AA-86AC-DB1CBF673334}
Error: (02/27/2021 02:41:11 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: Služba DCOM zjistila chybu 1115 při pokusu o spuštění služby wuauserv s argumenty Není k dispozici za účelem spuštění serveru:
{E60687F7-01A1-40AA-86AC-DB1CBF673334}
Error: (02/27/2021 02:41:04 PM) (Source: DCOM) (EventID: 10010) (User: TOSHIBA)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (02/27/2021 02:41:04 PM) (Source: DCOM) (EventID: 10010) (User: TOSHIBA)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (02/27/2021 02:41:04 PM) (Source: DCOM) (EventID: 10010) (User: TOSHIBA)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (02/27/2021 02:41:03 PM) (Source: DCOM) (EventID: 10010) (User: TOSHIBA)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
CodeIntegrity:
===============
Date: 2021-02-28 11:07:23
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
Date: 2021-02-28 11:02:32
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\AVAST Software\Avast\AvastSvc.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2021-02-27 14:46:24
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. 1.60 07/26/2011
Motherboard: Intel Corporation Oneonta Falls
Processor: Intel(R) Pentium(R) CPU B950 @ 2.10GHz
Percentage of memory in use: 65%
Total physical RAM: 3317.98 MB
Available physical RAM: 1128.59 MB
Total Virtual: 6645.98 MB
Available Virtual: 4103.21 MB
==================== Drives ================================
Drive c: (SYSTEM) (Fixed) (Total:269.58 GB) (Free:204.52 GB) NTFS
Drive d: (DATA) (Fixed) (Total:195.31 GB) (Free:194.3 GB) NTFS
\\?\Volume{e93631d4-b483-11e1-84a3-806e6f6e6963}\ (Rezervováno systémem) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS
\\?\Volume{ea075893-0000-0000-0000-406b43000000}\ () (Fixed) (Total:0.77 GB) (Free:0.32 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: EA075893)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=269.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=791 MB) - (Type=27)
Partition 4: (Not Active) - (Size=195.3 GB) - (Type=07 NTFS)
==================== End of Addition.txt =======================
Re: Pomalý notebook + náhodné vypínání
Na docistenie:
Do poznamkoveho bloku skopirujte obsah dole:
Poznamkovy blok ulozte pod nazvom fixlist.txt do umiestnenia kde je FRST.
Spustite FRST a odkliknite tlacidlo: Fix
Vykona sa funkcionalita po ktorej sa pocitac rebootuje. Po reboote sem vlozte obsah logu: fixlog.txt ulozeneho v umiestneni FRST.
Do poznamkoveho bloku skopirujte obsah dole:
Kód: Vybrat vše
CloseProcesses:
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {D3A3E797-07EE-465C-92DD-6DC1F0AF5C76} - \GoogleUpdateTaskMachineUA -> No File <==== ATTENTION
2020-10-26 16:44 - 2020-10-26 16:44 - 010014720 _____ () C:\Program Files\GUTA0BB.tmp
Spustite FRST a odkliknite tlacidlo: Fix
Vykona sa funkcionalita po ktorej sa pocitac rebootuje. Po reboote sem vlozte obsah logu: fixlog.txt ulozeneho v umiestneni FRST.
► Vyšla moja nová kniha BOTNETY! Informácie o nej nájdete tu: >> BOTNETY <<
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT <<
----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Informácie o nej nájdete tu: >> BOTNETY << ¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << ----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Re: Pomalý notebook + náhodné vypínání
Fix result of Farbar Recovery Scan Tool (x86) Version: 24-02-2021
Ran by vlastnik (28-02-2021 11:58:47) Run:2
Running from C:\Users\vlastnik\Desktop
Loaded Profiles: vlastnik & UpdatusUser
Boot Mode: Normal
==============================================
fixlist content:
*****************
CloseProcesses:
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {D3A3E797-07EE-465C-92DD-6DC1F0AF5C76} - \GoogleUpdateTaskMachineUA -> No File <==== ATTENTION
2020-10-26 16:44 - 2020-10-26 16:44 - 010014720 _____ () C:\Program Files\GUTA0BB.tmp
*****************
Processes closed successfully.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers\{503739d0-4c5e-4cfd-b3ba-d881334f0df2}" => removed successfully.
HKLM\SOFTWARE\Policies\Mozilla => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D3A3E797-07EE-465C-92DD-6DC1F0AF5C76}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D3A3E797-07EE-465C-92DD-6DC1F0AF5C76}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully.
C:\Program Files\GUTA0BB.tmp => moved successfully
The system needed a reboot.
==== End of Fixlog 11:58:49 ====
Ran by vlastnik (28-02-2021 11:58:47) Run:2
Running from C:\Users\vlastnik\Desktop
Loaded Profiles: vlastnik & UpdatusUser
Boot Mode: Normal
==============================================
fixlist content:
*****************
CloseProcesses:
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {D3A3E797-07EE-465C-92DD-6DC1F0AF5C76} - \GoogleUpdateTaskMachineUA -> No File <==== ATTENTION
2020-10-26 16:44 - 2020-10-26 16:44 - 010014720 _____ () C:\Program Files\GUTA0BB.tmp
*****************
Processes closed successfully.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers\{503739d0-4c5e-4cfd-b3ba-d881334f0df2}" => removed successfully.
HKLM\SOFTWARE\Policies\Mozilla => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D3A3E797-07EE-465C-92DD-6DC1F0AF5C76}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D3A3E797-07EE-465C-92DD-6DC1F0AF5C76}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully.
C:\Program Files\GUTA0BB.tmp => moved successfully
The system needed a reboot.
==== End of Fixlog 11:58:49 ====
Re: Pomalý notebook + náhodné vypínání
Ako je na tom pocitac?
► Vyšla moja nová kniha BOTNETY! Informácie o nej nájdete tu: >> BOTNETY <<
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT <<
----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Informácie o nej nájdete tu: >> BOTNETY << ¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << ----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Re: Pomalý notebook + náhodné vypínání
Určitě rychlejší, ale po přihlášení vždycky vyskakuje okno viz příloha. Je to k něčemu? Tyhle utility mi vždycky přišly zbytečné.
- soluto.png (37.55 KiB) Zobrazeno 1147 x
Přispějete na provoz fóra?