Pomalý notebook
Napsal: 17 zář 2022 15:21
Dobrý den, prosím o kontrolu logu. Notebook je výrazně pomalý, nejen na internetu, při spouštění stránek, ale i při běžné obsluze ntb (např. otevření složek, aplikací apod.)
Přikládám logy z FRST...
Děkuji
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantage-(DeviceSettingsSystemAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantage-(LenovoBoostAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantage-(LenovoBoostSystemAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantage-(LenovoServiceBridgeAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantage-(SmartInteractAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantage-(VantageCoreAddin).exe
(C:\Program Files\AVAST Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(C:\Program Files\AVAST Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <6>
(C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.SettingsApp.exe
(C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe
(explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2>
(explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe
(Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(services.exe ->) (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\TXE Components\DAL\jhi_service.exe
(services.exe ->) (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantageService.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(services.exe ->) (LENOVO -> Lenovo) C:\Program Files (x86)\Lenovo\GDCAgentSetupRed\GDCAgent.exe
(services.exe ->) (McAfee, LLC -> McAfee, Inc.) C:\Program Files\mcafee\WebAdvisor\servicehost.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(svchost.exe ->) (Avast Software s.r.o. -> Avast Software) C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20970.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22062.543.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16418560 2016-02-05] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1419008 2016-02-05] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1419008 2016-02-05] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [213728 2022-08-27] (Avast Software s.r.o. -> AVAST Software)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-1470865586-2114047733-866801807-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [38274576 2022-08-12] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\105.0.5195.102\Installer\chrmstp.exe [2022-09-09] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> "C:\Program Files (x86)\AVAST Software\Browser\Application\88.0.7842.105\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0DC843AA-9431-4CC1-85B1-DCDFA077C37C} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => %systemroot%\system32\sc.exe start LenovoVantageService
Task: {182BD913-6913-4C32-826F-3A8F433439F0} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\4039f5f7-f4fc-421b-9110-9cfcbb0f2e2c => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {215711FE-6E27-4CC0-902C-A973737F0C3F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2F5F5FA9-69E8-4F19-9E4A-C2C3FDA4C8CA} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoCompanionAppAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\ScheduleEventAction.exe [27480 2022-05-24] (Lenovo -> Lenovo Group Ltd.)
Task: {343221C7-B1BA-4CF4-AB5C-05BE6F83F281} - System32\Tasks\Opera scheduled assistant Autoupdate 1643536069 => C:\Users\František Ježek\AppData\Local\Programs\Opera\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\František Ježek\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {3847673F-0BE3-4905-92B9-F0B4CCC46B27} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\ScheduleEventAction.exe [27480 2022-05-24] (Lenovo -> Lenovo Group Ltd.)
Task: {3F9126D2-7F88-4921-BEF4-F6992515C5F1} - System32\Tasks\Lenovo\Vantage\Schedule\GenericMessagingAddin => C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\ScheduleEventAction.exe [27480 2022-05-24] (Lenovo -> Lenovo Group Ltd.)
Task: {439ED042-CF21-4586-BC8C-9700B4F0AA0E} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\d83a7c7f-f2f4-423d-9002-f0491b01559e => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {46771E22-2989-46F7-A7C2-62A1F80D7E8D} - System32\Tasks\CCleanerSkipUAC - František Ježek => C:\Program Files\CCleaner\CCleaner.exe [31990800 2022-08-12] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {539F66AB-BBEB-405C-9773-9D524BAAB1C0} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {55063B26-659F-44A1-AF7A-DB70EB5A3D33} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {58A49815-DEF6-46D5-AD40-5B36968238DD} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe [147864 2022-05-12] (Lenovo -> Lenovo Group Ltd.)
Task: {60BDF672-EAAC-4807-A74B-08B4AE64D95C} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\ScheduleEventAction.exe [27480 2022-05-24] (Lenovo -> Lenovo Group Ltd.)
Task: {7CCDB3F4-B6CC-4571-A78C-B464EA174D09} - System32\Tasks\CyberLink\Photo Master Gadget startup => C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMasterWorker.exe backgroundagent (No File)
Task: {9CCAC644-324A-450F-B205-DAEC8363AE6A} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\6c6350e7-1ce4-49d5-8517-22b6ab21d7d1 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {A73AFAAB-A347-445C-955E-672B8237213A} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\e5614e23-bee5-4779-8792-1506390aee12 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {AC4ED7DF-DC23-4E18-A57A-B85D8CC0DE09} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2250576 2022-05-24] (Avast Software s.r.o. -> Avast Software)
Task: {B08566B1-40CB-499D-82FC-084436AF46D4} - System32\Tasks\GoogleUpdateTaskMachineCore{ECCB4D76-13F6-46B1-8E61-E49A5E5D8E16} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-06-10] (Google Inc -> Google Inc.)
Task: {BAB923AC-B959-4EBD-841F-26362C2F37CC} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23706576 2022-09-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {BC94735D-25AF-42EA-A25E-6546562DC1D6} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\7312e97a-2daf-414f-9393-b09c03bc3753 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {BE27F32E-FF69-44C3-87F4-C06C56018E13} - System32\Tasks\GoogleUpdateTaskMachineUA{4EC51CC5-DA92-4708-B2FD-4AA402E5210A} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-06-10] (Google Inc -> Google Inc.)
Task: {CCFF3E11-2A87-496C-A290-DBA22EE9BF81} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D745E796-49D5-4366-9F0B-D1B29C468A00} - System32\Tasks\Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\ScheduleEventAction.exe [27480 2022-05-24] (Lenovo -> Lenovo Group Ltd.)
Task: {DA507484-541C-4C32-A1A7-9247828447D5} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [113560 2022-09-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {E1646802-007B-4C26-83B7-488B9F64FCBA} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23706576 2022-09-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {E72232FA-3F23-4C85-A13E-5ED4915AE27E} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4943072 2022-08-27] (Avast Software s.r.o. -> AVAST Software)
Task: {F500E45B-CEAF-4F5F-AFFF-0E050DD3E89F} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [113560 2022-09-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {F8614670-F4E4-4C1F-8F18-6875FAB9F67B} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-08-12] (Piriform Software Ltd -> Piriform)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 62.129.50.20 85.135.32.100
Tcpip\..\Interfaces\{401634fb-bc73-47d9-99e7-1916947606fb}: [DhcpNameServer] 62.129.50.20 85.135.32.100
Tcpip\..\Interfaces\{543d7b72-1c3d-4c04-b422-78799e1cc2c9}: [DhcpNameServer] 150.209.1.2
Edge:
=======
Edge Notifications: HKU\S-1-5-21-1470865586-2114047733-866801807-1001 -> hxxps://www.facebook.com
Edge DefaultProfile: Default
Edge Profile: C:\Users\František Ježek\AppData\Local\Microsoft\Edge\User Data\Default [2022-09-10]
Edge Extension: (McAfee® WebAdvisor) - C:\Users\František Ježek\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fdhgeoginicibhagdmblfikbgbkahibd [2022-09-10]
FireFox:
========
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2019-08-22]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56 -> C:\Program Files (x86)\Intel\TXE Components\IPT\npIntelWebAPIIPT.dll [2014-07-02] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\TXE Components\IPT\npIntelWebAPIUpdater.dll [2014-07-02] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-07-09] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR Profile: C:\Users\František Ježek\AppData\Local\Google\Chrome\User Data\Default [2022-09-17]
CHR Notifications: Default -> hxxps://aukro.cz; hxxps://bratislavaden.sk; hxxps://cs.howtodowell.com; hxxps://cs.qwe.wiki; hxxps://cz.pinterest.com; hxxps://fastshare.cz; hxxps://hellopushworld.com; hxxps://hukxc.kentoonlylo.work; hxxps://jimezdrave.cz; hxxps://kraj.news; hxxps://kytary.cz; hxxps://leletarreter.info; hxxps://mp3pro.xyz; hxxps://najky.sk; hxxps://najky.webnoviny.sk; hxxps://notification.best; hxxps://novaplus.nova.cz; hxxps://pixers.cz; hxxps://sk.postazdarma.cz; hxxps://skrz.cz; hxxps://svetomat.cz; hxxps://vanoce.metalshop.cz; hxxps://vevio.cz; hxxps://www.4camping.cz; hxxps://www.agatinsvet.cz; hxxps://www.astratex.cz; hxxps://www.banggood.com; hxxps://www.bezvasport.cz; hxxps://www.bibloo.cz; hxxps://www.darekvakci.cz; hxxps://www.dedoles.cz; hxxps://www.dobrytextil.cz; hxxps://www.dovolena.cz; hxxps://www.eobuv.cz; hxxps://www.esky.cz; hxxps://www.eva.cz; hxxps://www.facebook.com; hxxps://www.grizly.cz; hxxps://www.invia.cz; hxxps://www.knihcentrum.cz; hxxps://www.ku-z-el.cz; hxxps://www.letgo.cz; hxxps://www.lightinthebox.com; hxxps://www.mall.cz; hxxps://www.megaknihy.cz; hxxps://www.obrazkyanimace.cz; hxxps://www.penize.cz; hxxps://www.postazdarma.cz; hxxps://www.profi-dj.cz; hxxps://www.prvni-lekarna.cz; hxxps://www.sportkadnes.cz; hxxps://www.superzoo.cz; hxxps://www.talkchelsea.net; hxxps://www.tipli.cz; hxxps://www.tipsport.cz; hxxps://www.trenyrkarna.cz; hxxps://www.urbanstore.cz; hxxps://www.vivantis.cz; hxxps://www.youtube.com; hxxps://x2convert.com
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR DefaultSearchURL: Default -> hxxps://search.yahoo.com/search?fr=mcafee_uninternational&type=E210CZ714G10&p={searchTerms}
CHR DefaultSearchKeyword: Default -> mcafee
CHR Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\František Ježek\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2022-08-24]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\František Ježek\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2022-09-03]
CHR Extension: (Dokumenty Google offline) - C:\Users\František Ježek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-08-31]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\František Ježek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30]
CHR Profile: C:\Users\František Ježek\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-08-23]
CHR Profile: C:\Users\František Ježek\AppData\Local\Google\Chrome\User Data\System Profile [2022-08-23]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
Opera:
=======
OPR Profile: C:\Users\František Ježek\AppData\Roaming\Opera Software\Opera Stable [2022-08-23]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8523800 2022-08-27] (Avast Software s.r.o. -> AVAST Software)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [338312 2016-06-29] (Qualcomm Atheros -> Windows (R) Win 7 DDK provider)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [589536 2022-08-27] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [589536 2022-08-27] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2022-01-29] (Avast Software s.r.o. -> AVAST Software)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1082896 2022-08-12] (Piriform Software Ltd -> Piriform Software Ltd)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12126112 2022-09-08] (Microsoft Corporation -> Microsoft Corporation)
R2 GDCAgent; C:\Program Files (x86)\Lenovo\GDCAgentSetupRed\GDCAgent.exe [1210352 2016-03-23] (LENOVO -> Lenovo)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [File not signed]
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [File not signed]
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantageService.exe [31072 2022-05-24] (Lenovo -> Lenovo Group Ltd.)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [905472 2019-08-22] (McAfee, LLC -> McAfee, Inc.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\NisSrv.exe [2876152 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe [128360 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [41760 2022-08-27] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [237632 2022-08-27] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [389064 2022-08-27] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [257992 2022-08-27] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [104904 2022-08-27] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [24528 2022-08-01] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [47936 2022-08-27] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [274976 2022-08-27] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [553880 2022-08-27] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [113920 2022-08-27] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [88984 2022-08-27] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [861936 2022-08-27] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [671216 2022-08-27] (Avast Software s.r.o. -> AVAST Software)
S2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [221464 2022-08-27] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [327408 2022-08-27] (Avast Software s.r.o. -> AVAST Software)
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64912 2017-05-18] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48536 2021-12-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [435432 2021-12-16] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86248 2021-12-16] (Microsoft Windows -> Microsoft Corporation)
S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-14] (CyberLink -> "CyberLink)
S1 netfilter2; system32\drivers\netfilter2.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2022-09-17 16:05 - 2022-09-17 16:08 - 000025504 _____ C:\Users\František Ježek\Desktop\FRST.txt
2022-09-17 15:28 - 2022-09-17 15:28 - 002371072 _____ (Farbar) C:\Users\František Ježek\Desktop\FRST64.exe
2022-09-17 10:22 - 2022-09-17 14:16 - 2583409359 _____ C:\Users\František Ježek\Downloads\Třináct životů (Dráma, V. Británie, 2022) CZ dabing.mkv
2022-09-17 07:49 - 2022-09-17 10:06 - 2497206846 _____ C:\Users\František Ježek\Downloads\Night Teeth 2021 AB 1080p.Cz dab novinka novinky.mkv
2022-09-14 09:38 - 2022-09-14 11:46 - 2346264561 _____ C:\Users\František Ježek\Downloads\Super Blb 2021 1080p CZ Dabing.mp4
2022-09-11 08:09 - 2022-09-11 10:01 - 2002800304 _____ C:\Users\František Ježek\Downloads\Jeptíška CZ DABING NOVINKA The Nun Mníška MYSTERY MYSTERIÓZNÍ MYSTERIÓZNY THRILLER TRILER HORROR HOROR.avi
2022-09-10 07:44 - 2022-09-10 08:24 - 734633984 _____ C:\Users\František Ježek\Downloads\Hooligans (2005) cz dabing.avi
2022-09-09 18:47 - 2022-09-09 20:25 - 1804599816 _____ C:\Users\František Ježek\Downloads\Sirotcinec-2007-cz-sindel101.mkv
2022-09-06 16:09 - 2022-09-06 20:24 - 2351186713 _____ C:\Users\František Ježek\Downloads\Betlémské světlo (Komédie, Česko, 2022) NOVINKA!.mp4
2022-09-05 17:19 - 2022-09-05 18:03 - 801312768 _____ C:\Users\František Ježek\Downloads\Prometheus CZ-dabing (2012) NOVINKA.avi
2022-09-02 17:16 - 2022-09-02 18:51 - 1038539499 _____ C:\Users\František Ježek\Downloads\Pánský klub (Komédie, Česko, 2022) NOVINKA!.mkv
2022-08-28 11:25 - 2022-08-28 12:51 - 1583910924 _____ C:\Users\František Ježek\Downloads\90 minut do smrti - Castle.Falls.2021.480p.BluRay.CZ.dabing.MIKI.mkv
2022-08-28 08:30 - 2022-08-28 09:36 - 1201249540 _____ C:\Users\František Ježek\Downloads\V Nemilosti(2021)cz.dabing(HD)NOVINKA!.mp4
2022-08-27 15:35 - 2022-08-27 17:58 - 1572858956 _____ C:\Users\František Ježek\Downloads\Plán útěku 3 - Escape Plan The Extractors (2019) 1080p CZ Dabing - abyssX.avi
2022-08-27 07:49 - 2022-08-27 07:49 - 000270560 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2022-08-27 07:49 - 2022-08-27 07:49 - 000221464 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2022-08-23 20:32 - 2022-08-23 20:33 - 000000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2022-08-23 20:32 - 2022-08-23 20:32 - 000000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition
2022-08-20 08:30 - 2022-08-20 10:18 - 1980572304 _____ C:\Users\František Ježek\Downloads\Pašerák cz dabing 2018.avi
2022-08-19 20:29 - 2022-08-19 21:28 - 1084434211 _____ C:\Users\František Ježek\Downloads\Svetova valka Z-World War Z-2013-AAC.2.0-1008p.H.264- 1920x800-cz dabing.m4v
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2022-09-17 16:07 - 2022-04-09 20:50 - 000000000 ____D C:\FRST
2022-09-17 16:07 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-09-17 16:04 - 2018-06-11 16:22 - 000000000 ____D C:\Users\František Ježek\AppData\Local\D3DSCache
2022-09-17 15:50 - 2018-06-10 13:37 - 000000000 ____D C:\Program Files (x86)\Google
2022-09-17 14:59 - 2020-09-28 19:50 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-09-17 07:32 - 2022-04-18 13:05 - 000000000 ____D C:\Program Files\CCleaner
2022-09-17 07:30 - 2018-06-10 14:03 - 000000000 ____D C:\Users\František Ježek\AppData\Local\AVAST Software
2022-09-17 07:26 - 2020-09-28 20:33 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2022-09-17 07:26 - 2018-06-09 12:12 - 000000000 __SHD C:\Users\František Ježek\IntelGraphicsProfiles
2022-09-17 07:25 - 2018-06-09 20:30 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2022-09-15 19:04 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-09-15 19:04 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-09-13 17:34 - 2021-12-11 16:57 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1470865586-2114047733-866801807-1001
2022-09-13 17:34 - 2021-09-05 08:25 - 000002414 _____ C:\Users\František Ježek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-09-13 17:34 - 2020-09-28 20:33 - 000003398 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1470865586-2114047733-866801807-1001
2022-09-12 20:22 - 2020-09-28 19:58 - 000000000 ____D C:\Users\František Ježek
2022-09-11 20:07 - 2022-05-24 18:27 - 000000000 ____D C:\Users\František Ježek\Downloads\Filmy
2022-09-09 17:51 - 2018-06-10 13:38 - 000002308 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-09-09 17:51 - 2018-06-10 13:38 - 000002267 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2022-09-09 17:37 - 2020-06-04 15:53 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-09-09 17:37 - 2020-06-04 15:53 - 000002281 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2022-09-08 16:47 - 2017-06-16 06:43 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2022-09-08 16:11 - 2018-06-10 13:56 - 000000000 ____D C:\ProgramData\AVAST Software
2022-09-08 16:10 - 2020-09-28 20:33 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-09-08 16:10 - 2020-09-28 19:50 - 000008192 ___SH C:\DumpStack.log.tmp
2022-09-08 16:10 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2022-09-08 16:10 - 2018-06-10 13:58 - 000000000 ____D C:\Program Files\Common Files\AVAST Software
2022-09-08 16:08 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2022-09-06 15:32 - 2018-06-09 12:12 - 000000000 ____D C:\Users\František Ježek\AppData\Local\Packages
2022-09-05 17:15 - 2018-06-11 10:54 - 000000334 _____ C:\Users\František Ježek\Desktop\Stáhnout filmy !!!.txt
2022-08-30 17:21 - 2022-04-20 16:32 - 000003550 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{4EC51CC5-DA92-4708-B2FD-4AA402E5210A}
2022-08-30 17:21 - 2022-04-20 16:32 - 000003426 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{ECCB4D76-13F6-46B1-8E61-E49A5E5D8E16}
2022-08-28 18:25 - 2022-04-18 13:05 - 000002988 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2022-08-28 18:25 - 2022-04-18 13:05 - 000002272 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - František Ježek
2022-08-28 18:25 - 2022-01-30 11:47 - 000003936 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1643536069
2022-08-28 18:25 - 2020-09-28 20:33 - 000003568 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-08-28 18:25 - 2020-09-28 20:33 - 000003344 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-08-28 18:25 - 2020-09-28 20:33 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2022-08-27 07:49 - 2020-10-15 16:22 - 000274976 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2022-08-27 07:49 - 2020-04-11 20:30 - 000553880 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2022-08-27 07:49 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-08-27 07:49 - 2019-01-04 19:16 - 000257992 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2022-08-27 07:49 - 2019-01-04 19:16 - 000104904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2022-08-27 07:49 - 2018-10-10 16:31 - 000047936 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2022-08-27 07:49 - 2018-06-10 13:58 - 000671216 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2022-08-27 07:49 - 2018-06-10 13:58 - 000327408 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2022-08-27 07:49 - 2018-06-10 13:58 - 000113920 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2022-08-27 07:49 - 2018-06-10 13:58 - 000088984 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2022-08-27 07:48 - 2019-01-14 16:47 - 000389064 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2022-08-27 07:48 - 2019-01-04 19:16 - 000041760 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2022-08-27 07:48 - 2018-06-10 13:58 - 000861936 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2022-08-27 07:48 - 2018-06-10 13:58 - 000237632 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2022-08-24 18:02 - 2018-06-10 13:57 - 000000000 ____D C:\Program Files\AVAST Software
2022-08-23 20:32 - 2017-06-16 06:59 - 000000000 ____D C:\ProgramData\Package Cache
2022-08-23 20:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2022-08-23 20:28 - 2018-07-22 09:13 - 000000000 ____D C:\Users\František Ježek\AppData\Local\CrashDumps
2022-08-23 20:25 - 2022-05-12 19:11 - 000000000 ____D C:\ProgramData\Piriform
==================== Files in the root of some directories ========
2020-06-07 14:09 - 2020-06-07 14:09 - 024166400 _____ () C:\Program Files (x86)\GUT2CE1.tmp
2020-06-04 15:56 - 2020-06-04 15:56 - 024166400 _____ () C:\Program Files (x86)\GUT314E.tmp
2020-06-05 13:02 - 2020-06-05 13:02 - 024166400 _____ () C:\Program Files (x86)\GUT4379.tmp
2020-06-06 12:57 - 2020-06-06 12:57 - 024166400 _____ () C:\Program Files (x86)\GUT64E9.tmp
2020-06-08 07:22 - 2020-06-08 07:22 - 024166400 _____ () C:\Program Files (x86)\GUT7743.tmp
2020-06-06 07:45 - 2020-06-06 07:45 - 024166400 _____ () C:\Program Files (x86)\GUT7F90.tmp
2020-06-07 19:09 - 2020-06-07 19:09 - 024166400 _____ () C:\Program Files (x86)\GUTB621.tmp
2020-06-07 08:45 - 2020-06-07 08:45 - 024166400 _____ () C:\Program Files (x86)\GUTDB17.tmp
2020-06-02 14:16 - 2020-06-02 14:16 - 024166400 _____ () C:\Program Files (x86)\GUTE5C2.tmp
2020-06-04 21:08 - 2020-06-04 21:08 - 024166400 _____ () C:\Program Files (x86)\GUTEB5D.tmp
2020-06-08 17:02 - 2020-06-08 17:02 - 024166400 _____ () C:\Program Files (x86)\GUTEE9F.tmp
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Přikládám logy z FRST...
Děkuji
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantage-(DeviceSettingsSystemAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantage-(LenovoBoostAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantage-(LenovoBoostSystemAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantage-(LenovoServiceBridgeAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantage-(SmartInteractAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantage-(VantageCoreAddin).exe
(C:\Program Files\AVAST Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(C:\Program Files\AVAST Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <6>
(C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.SettingsApp.exe
(C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe
(explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2>
(explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe
(Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(services.exe ->) (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\TXE Components\DAL\jhi_service.exe
(services.exe ->) (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantageService.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(services.exe ->) (LENOVO -> Lenovo) C:\Program Files (x86)\Lenovo\GDCAgentSetupRed\GDCAgent.exe
(services.exe ->) (McAfee, LLC -> McAfee, Inc.) C:\Program Files\mcafee\WebAdvisor\servicehost.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(svchost.exe ->) (Avast Software s.r.o. -> Avast Software) C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20970.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22062.543.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16418560 2016-02-05] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1419008 2016-02-05] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1419008 2016-02-05] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [213728 2022-08-27] (Avast Software s.r.o. -> AVAST Software)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-1470865586-2114047733-866801807-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [38274576 2022-08-12] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\105.0.5195.102\Installer\chrmstp.exe [2022-09-09] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> "C:\Program Files (x86)\AVAST Software\Browser\Application\88.0.7842.105\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0DC843AA-9431-4CC1-85B1-DCDFA077C37C} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => %systemroot%\system32\sc.exe start LenovoVantageService
Task: {182BD913-6913-4C32-826F-3A8F433439F0} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\4039f5f7-f4fc-421b-9110-9cfcbb0f2e2c => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {215711FE-6E27-4CC0-902C-A973737F0C3F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2F5F5FA9-69E8-4F19-9E4A-C2C3FDA4C8CA} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoCompanionAppAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\ScheduleEventAction.exe [27480 2022-05-24] (Lenovo -> Lenovo Group Ltd.)
Task: {343221C7-B1BA-4CF4-AB5C-05BE6F83F281} - System32\Tasks\Opera scheduled assistant Autoupdate 1643536069 => C:\Users\František Ježek\AppData\Local\Programs\Opera\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\František Ježek\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {3847673F-0BE3-4905-92B9-F0B4CCC46B27} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\ScheduleEventAction.exe [27480 2022-05-24] (Lenovo -> Lenovo Group Ltd.)
Task: {3F9126D2-7F88-4921-BEF4-F6992515C5F1} - System32\Tasks\Lenovo\Vantage\Schedule\GenericMessagingAddin => C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\ScheduleEventAction.exe [27480 2022-05-24] (Lenovo -> Lenovo Group Ltd.)
Task: {439ED042-CF21-4586-BC8C-9700B4F0AA0E} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\d83a7c7f-f2f4-423d-9002-f0491b01559e => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {46771E22-2989-46F7-A7C2-62A1F80D7E8D} - System32\Tasks\CCleanerSkipUAC - František Ježek => C:\Program Files\CCleaner\CCleaner.exe [31990800 2022-08-12] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {539F66AB-BBEB-405C-9773-9D524BAAB1C0} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {55063B26-659F-44A1-AF7A-DB70EB5A3D33} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {58A49815-DEF6-46D5-AD40-5B36968238DD} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe [147864 2022-05-12] (Lenovo -> Lenovo Group Ltd.)
Task: {60BDF672-EAAC-4807-A74B-08B4AE64D95C} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\ScheduleEventAction.exe [27480 2022-05-24] (Lenovo -> Lenovo Group Ltd.)
Task: {7CCDB3F4-B6CC-4571-A78C-B464EA174D09} - System32\Tasks\CyberLink\Photo Master Gadget startup => C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMasterWorker.exe backgroundagent (No File)
Task: {9CCAC644-324A-450F-B205-DAEC8363AE6A} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\6c6350e7-1ce4-49d5-8517-22b6ab21d7d1 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {A73AFAAB-A347-445C-955E-672B8237213A} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\e5614e23-bee5-4779-8792-1506390aee12 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {AC4ED7DF-DC23-4E18-A57A-B85D8CC0DE09} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2250576 2022-05-24] (Avast Software s.r.o. -> Avast Software)
Task: {B08566B1-40CB-499D-82FC-084436AF46D4} - System32\Tasks\GoogleUpdateTaskMachineCore{ECCB4D76-13F6-46B1-8E61-E49A5E5D8E16} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-06-10] (Google Inc -> Google Inc.)
Task: {BAB923AC-B959-4EBD-841F-26362C2F37CC} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23706576 2022-09-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {BC94735D-25AF-42EA-A25E-6546562DC1D6} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\7312e97a-2daf-414f-9393-b09c03bc3753 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {BE27F32E-FF69-44C3-87F4-C06C56018E13} - System32\Tasks\GoogleUpdateTaskMachineUA{4EC51CC5-DA92-4708-B2FD-4AA402E5210A} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-06-10] (Google Inc -> Google Inc.)
Task: {CCFF3E11-2A87-496C-A290-DBA22EE9BF81} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D745E796-49D5-4366-9F0B-D1B29C468A00} - System32\Tasks\Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\ScheduleEventAction.exe [27480 2022-05-24] (Lenovo -> Lenovo Group Ltd.)
Task: {DA507484-541C-4C32-A1A7-9247828447D5} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [113560 2022-09-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {E1646802-007B-4C26-83B7-488B9F64FCBA} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23706576 2022-09-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {E72232FA-3F23-4C85-A13E-5ED4915AE27E} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4943072 2022-08-27] (Avast Software s.r.o. -> AVAST Software)
Task: {F500E45B-CEAF-4F5F-AFFF-0E050DD3E89F} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [113560 2022-09-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {F8614670-F4E4-4C1F-8F18-6875FAB9F67B} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-08-12] (Piriform Software Ltd -> Piriform)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 62.129.50.20 85.135.32.100
Tcpip\..\Interfaces\{401634fb-bc73-47d9-99e7-1916947606fb}: [DhcpNameServer] 62.129.50.20 85.135.32.100
Tcpip\..\Interfaces\{543d7b72-1c3d-4c04-b422-78799e1cc2c9}: [DhcpNameServer] 150.209.1.2
Edge:
=======
Edge Notifications: HKU\S-1-5-21-1470865586-2114047733-866801807-1001 -> hxxps://www.facebook.com
Edge DefaultProfile: Default
Edge Profile: C:\Users\František Ježek\AppData\Local\Microsoft\Edge\User Data\Default [2022-09-10]
Edge Extension: (McAfee® WebAdvisor) - C:\Users\František Ježek\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fdhgeoginicibhagdmblfikbgbkahibd [2022-09-10]
FireFox:
========
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2019-08-22]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56 -> C:\Program Files (x86)\Intel\TXE Components\IPT\npIntelWebAPIIPT.dll [2014-07-02] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\TXE Components\IPT\npIntelWebAPIUpdater.dll [2014-07-02] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-07-09] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR Profile: C:\Users\František Ježek\AppData\Local\Google\Chrome\User Data\Default [2022-09-17]
CHR Notifications: Default -> hxxps://aukro.cz; hxxps://bratislavaden.sk; hxxps://cs.howtodowell.com; hxxps://cs.qwe.wiki; hxxps://cz.pinterest.com; hxxps://fastshare.cz; hxxps://hellopushworld.com; hxxps://hukxc.kentoonlylo.work; hxxps://jimezdrave.cz; hxxps://kraj.news; hxxps://kytary.cz; hxxps://leletarreter.info; hxxps://mp3pro.xyz; hxxps://najky.sk; hxxps://najky.webnoviny.sk; hxxps://notification.best; hxxps://novaplus.nova.cz; hxxps://pixers.cz; hxxps://sk.postazdarma.cz; hxxps://skrz.cz; hxxps://svetomat.cz; hxxps://vanoce.metalshop.cz; hxxps://vevio.cz; hxxps://www.4camping.cz; hxxps://www.agatinsvet.cz; hxxps://www.astratex.cz; hxxps://www.banggood.com; hxxps://www.bezvasport.cz; hxxps://www.bibloo.cz; hxxps://www.darekvakci.cz; hxxps://www.dedoles.cz; hxxps://www.dobrytextil.cz; hxxps://www.dovolena.cz; hxxps://www.eobuv.cz; hxxps://www.esky.cz; hxxps://www.eva.cz; hxxps://www.facebook.com; hxxps://www.grizly.cz; hxxps://www.invia.cz; hxxps://www.knihcentrum.cz; hxxps://www.ku-z-el.cz; hxxps://www.letgo.cz; hxxps://www.lightinthebox.com; hxxps://www.mall.cz; hxxps://www.megaknihy.cz; hxxps://www.obrazkyanimace.cz; hxxps://www.penize.cz; hxxps://www.postazdarma.cz; hxxps://www.profi-dj.cz; hxxps://www.prvni-lekarna.cz; hxxps://www.sportkadnes.cz; hxxps://www.superzoo.cz; hxxps://www.talkchelsea.net; hxxps://www.tipli.cz; hxxps://www.tipsport.cz; hxxps://www.trenyrkarna.cz; hxxps://www.urbanstore.cz; hxxps://www.vivantis.cz; hxxps://www.youtube.com; hxxps://x2convert.com
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR DefaultSearchURL: Default -> hxxps://search.yahoo.com/search?fr=mcafee_uninternational&type=E210CZ714G10&p={searchTerms}
CHR DefaultSearchKeyword: Default -> mcafee
CHR Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\František Ježek\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2022-08-24]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\František Ježek\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2022-09-03]
CHR Extension: (Dokumenty Google offline) - C:\Users\František Ježek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-08-31]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\František Ježek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30]
CHR Profile: C:\Users\František Ježek\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-08-23]
CHR Profile: C:\Users\František Ježek\AppData\Local\Google\Chrome\User Data\System Profile [2022-08-23]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
Opera:
=======
OPR Profile: C:\Users\František Ježek\AppData\Roaming\Opera Software\Opera Stable [2022-08-23]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8523800 2022-08-27] (Avast Software s.r.o. -> AVAST Software)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [338312 2016-06-29] (Qualcomm Atheros -> Windows (R) Win 7 DDK provider)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [589536 2022-08-27] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [589536 2022-08-27] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2022-01-29] (Avast Software s.r.o. -> AVAST Software)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1082896 2022-08-12] (Piriform Software Ltd -> Piriform Software Ltd)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12126112 2022-09-08] (Microsoft Corporation -> Microsoft Corporation)
R2 GDCAgent; C:\Program Files (x86)\Lenovo\GDCAgentSetupRed\GDCAgent.exe [1210352 2016-03-23] (LENOVO -> Lenovo)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [File not signed]
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [File not signed]
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantageService.exe [31072 2022-05-24] (Lenovo -> Lenovo Group Ltd.)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [905472 2019-08-22] (McAfee, LLC -> McAfee, Inc.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\NisSrv.exe [2876152 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe [128360 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [41760 2022-08-27] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [237632 2022-08-27] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [389064 2022-08-27] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [257992 2022-08-27] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [104904 2022-08-27] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [24528 2022-08-01] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [47936 2022-08-27] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [274976 2022-08-27] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [553880 2022-08-27] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [113920 2022-08-27] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [88984 2022-08-27] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [861936 2022-08-27] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [671216 2022-08-27] (Avast Software s.r.o. -> AVAST Software)
S2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [221464 2022-08-27] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [327408 2022-08-27] (Avast Software s.r.o. -> AVAST Software)
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64912 2017-05-18] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48536 2021-12-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [435432 2021-12-16] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86248 2021-12-16] (Microsoft Windows -> Microsoft Corporation)
S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-14] (CyberLink -> "CyberLink)
S1 netfilter2; system32\drivers\netfilter2.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2022-09-17 16:05 - 2022-09-17 16:08 - 000025504 _____ C:\Users\František Ježek\Desktop\FRST.txt
2022-09-17 15:28 - 2022-09-17 15:28 - 002371072 _____ (Farbar) C:\Users\František Ježek\Desktop\FRST64.exe
2022-09-17 10:22 - 2022-09-17 14:16 - 2583409359 _____ C:\Users\František Ježek\Downloads\Třináct životů (Dráma, V. Británie, 2022) CZ dabing.mkv
2022-09-17 07:49 - 2022-09-17 10:06 - 2497206846 _____ C:\Users\František Ježek\Downloads\Night Teeth 2021 AB 1080p.Cz dab novinka novinky.mkv
2022-09-14 09:38 - 2022-09-14 11:46 - 2346264561 _____ C:\Users\František Ježek\Downloads\Super Blb 2021 1080p CZ Dabing.mp4
2022-09-11 08:09 - 2022-09-11 10:01 - 2002800304 _____ C:\Users\František Ježek\Downloads\Jeptíška CZ DABING NOVINKA The Nun Mníška MYSTERY MYSTERIÓZNÍ MYSTERIÓZNY THRILLER TRILER HORROR HOROR.avi
2022-09-10 07:44 - 2022-09-10 08:24 - 734633984 _____ C:\Users\František Ježek\Downloads\Hooligans (2005) cz dabing.avi
2022-09-09 18:47 - 2022-09-09 20:25 - 1804599816 _____ C:\Users\František Ježek\Downloads\Sirotcinec-2007-cz-sindel101.mkv
2022-09-06 16:09 - 2022-09-06 20:24 - 2351186713 _____ C:\Users\František Ježek\Downloads\Betlémské světlo (Komédie, Česko, 2022) NOVINKA!.mp4
2022-09-05 17:19 - 2022-09-05 18:03 - 801312768 _____ C:\Users\František Ježek\Downloads\Prometheus CZ-dabing (2012) NOVINKA.avi
2022-09-02 17:16 - 2022-09-02 18:51 - 1038539499 _____ C:\Users\František Ježek\Downloads\Pánský klub (Komédie, Česko, 2022) NOVINKA!.mkv
2022-08-28 11:25 - 2022-08-28 12:51 - 1583910924 _____ C:\Users\František Ježek\Downloads\90 minut do smrti - Castle.Falls.2021.480p.BluRay.CZ.dabing.MIKI.mkv
2022-08-28 08:30 - 2022-08-28 09:36 - 1201249540 _____ C:\Users\František Ježek\Downloads\V Nemilosti(2021)cz.dabing(HD)NOVINKA!.mp4
2022-08-27 15:35 - 2022-08-27 17:58 - 1572858956 _____ C:\Users\František Ježek\Downloads\Plán útěku 3 - Escape Plan The Extractors (2019) 1080p CZ Dabing - abyssX.avi
2022-08-27 07:49 - 2022-08-27 07:49 - 000270560 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2022-08-27 07:49 - 2022-08-27 07:49 - 000221464 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2022-08-23 20:32 - 2022-08-23 20:33 - 000000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2022-08-23 20:32 - 2022-08-23 20:32 - 000000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition
2022-08-20 08:30 - 2022-08-20 10:18 - 1980572304 _____ C:\Users\František Ježek\Downloads\Pašerák cz dabing 2018.avi
2022-08-19 20:29 - 2022-08-19 21:28 - 1084434211 _____ C:\Users\František Ježek\Downloads\Svetova valka Z-World War Z-2013-AAC.2.0-1008p.H.264- 1920x800-cz dabing.m4v
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2022-09-17 16:07 - 2022-04-09 20:50 - 000000000 ____D C:\FRST
2022-09-17 16:07 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-09-17 16:04 - 2018-06-11 16:22 - 000000000 ____D C:\Users\František Ježek\AppData\Local\D3DSCache
2022-09-17 15:50 - 2018-06-10 13:37 - 000000000 ____D C:\Program Files (x86)\Google
2022-09-17 14:59 - 2020-09-28 19:50 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-09-17 07:32 - 2022-04-18 13:05 - 000000000 ____D C:\Program Files\CCleaner
2022-09-17 07:30 - 2018-06-10 14:03 - 000000000 ____D C:\Users\František Ježek\AppData\Local\AVAST Software
2022-09-17 07:26 - 2020-09-28 20:33 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2022-09-17 07:26 - 2018-06-09 12:12 - 000000000 __SHD C:\Users\František Ježek\IntelGraphicsProfiles
2022-09-17 07:25 - 2018-06-09 20:30 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2022-09-15 19:04 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-09-15 19:04 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-09-13 17:34 - 2021-12-11 16:57 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1470865586-2114047733-866801807-1001
2022-09-13 17:34 - 2021-09-05 08:25 - 000002414 _____ C:\Users\František Ježek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-09-13 17:34 - 2020-09-28 20:33 - 000003398 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1470865586-2114047733-866801807-1001
2022-09-12 20:22 - 2020-09-28 19:58 - 000000000 ____D C:\Users\František Ježek
2022-09-11 20:07 - 2022-05-24 18:27 - 000000000 ____D C:\Users\František Ježek\Downloads\Filmy
2022-09-09 17:51 - 2018-06-10 13:38 - 000002308 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-09-09 17:51 - 2018-06-10 13:38 - 000002267 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2022-09-09 17:37 - 2020-06-04 15:53 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-09-09 17:37 - 2020-06-04 15:53 - 000002281 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2022-09-08 16:47 - 2017-06-16 06:43 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2022-09-08 16:11 - 2018-06-10 13:56 - 000000000 ____D C:\ProgramData\AVAST Software
2022-09-08 16:10 - 2020-09-28 20:33 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-09-08 16:10 - 2020-09-28 19:50 - 000008192 ___SH C:\DumpStack.log.tmp
2022-09-08 16:10 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2022-09-08 16:10 - 2018-06-10 13:58 - 000000000 ____D C:\Program Files\Common Files\AVAST Software
2022-09-08 16:08 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2022-09-06 15:32 - 2018-06-09 12:12 - 000000000 ____D C:\Users\František Ježek\AppData\Local\Packages
2022-09-05 17:15 - 2018-06-11 10:54 - 000000334 _____ C:\Users\František Ježek\Desktop\Stáhnout filmy !!!.txt
2022-08-30 17:21 - 2022-04-20 16:32 - 000003550 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{4EC51CC5-DA92-4708-B2FD-4AA402E5210A}
2022-08-30 17:21 - 2022-04-20 16:32 - 000003426 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{ECCB4D76-13F6-46B1-8E61-E49A5E5D8E16}
2022-08-28 18:25 - 2022-04-18 13:05 - 000002988 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2022-08-28 18:25 - 2022-04-18 13:05 - 000002272 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - František Ježek
2022-08-28 18:25 - 2022-01-30 11:47 - 000003936 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1643536069
2022-08-28 18:25 - 2020-09-28 20:33 - 000003568 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-08-28 18:25 - 2020-09-28 20:33 - 000003344 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-08-28 18:25 - 2020-09-28 20:33 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2022-08-27 07:49 - 2020-10-15 16:22 - 000274976 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2022-08-27 07:49 - 2020-04-11 20:30 - 000553880 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2022-08-27 07:49 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-08-27 07:49 - 2019-01-04 19:16 - 000257992 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2022-08-27 07:49 - 2019-01-04 19:16 - 000104904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2022-08-27 07:49 - 2018-10-10 16:31 - 000047936 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2022-08-27 07:49 - 2018-06-10 13:58 - 000671216 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2022-08-27 07:49 - 2018-06-10 13:58 - 000327408 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2022-08-27 07:49 - 2018-06-10 13:58 - 000113920 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2022-08-27 07:49 - 2018-06-10 13:58 - 000088984 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2022-08-27 07:48 - 2019-01-14 16:47 - 000389064 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2022-08-27 07:48 - 2019-01-04 19:16 - 000041760 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2022-08-27 07:48 - 2018-06-10 13:58 - 000861936 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2022-08-27 07:48 - 2018-06-10 13:58 - 000237632 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2022-08-24 18:02 - 2018-06-10 13:57 - 000000000 ____D C:\Program Files\AVAST Software
2022-08-23 20:32 - 2017-06-16 06:59 - 000000000 ____D C:\ProgramData\Package Cache
2022-08-23 20:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2022-08-23 20:28 - 2018-07-22 09:13 - 000000000 ____D C:\Users\František Ježek\AppData\Local\CrashDumps
2022-08-23 20:25 - 2022-05-12 19:11 - 000000000 ____D C:\ProgramData\Piriform
==================== Files in the root of some directories ========
2020-06-07 14:09 - 2020-06-07 14:09 - 024166400 _____ () C:\Program Files (x86)\GUT2CE1.tmp
2020-06-04 15:56 - 2020-06-04 15:56 - 024166400 _____ () C:\Program Files (x86)\GUT314E.tmp
2020-06-05 13:02 - 2020-06-05 13:02 - 024166400 _____ () C:\Program Files (x86)\GUT4379.tmp
2020-06-06 12:57 - 2020-06-06 12:57 - 024166400 _____ () C:\Program Files (x86)\GUT64E9.tmp
2020-06-08 07:22 - 2020-06-08 07:22 - 024166400 _____ () C:\Program Files (x86)\GUT7743.tmp
2020-06-06 07:45 - 2020-06-06 07:45 - 024166400 _____ () C:\Program Files (x86)\GUT7F90.tmp
2020-06-07 19:09 - 2020-06-07 19:09 - 024166400 _____ () C:\Program Files (x86)\GUTB621.tmp
2020-06-07 08:45 - 2020-06-07 08:45 - 024166400 _____ () C:\Program Files (x86)\GUTDB17.tmp
2020-06-02 14:16 - 2020-06-02 14:16 - 024166400 _____ () C:\Program Files (x86)\GUTE5C2.tmp
2020-06-04 21:08 - 2020-06-04 21:08 - 024166400 _____ () C:\Program Files (x86)\GUTEB5D.tmp
2020-06-08 17:02 - 2020-06-08 17:02 - 024166400 _____ () C:\Program Files (x86)\GUTEE9F.tmp
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================