Totálně zpomalený počítač

Zpráva

ras099 · #1 Příspěvek od **ras099** » 07 říj 2019 14:51

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 06-10-2019
Ran by Martin (administrator) on MARTINRASZKA (LENOVO 20206) (07-10-2019 15:37:54)
Running from C:\Users\Martin\Desktop
Loaded Profiles: Martin (Available Profiles: Martin)
Platform: Windows 10 Home Version 1809 17763.615 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\ProtectedService.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe
(Broadcom Corporation -> Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(Filipe Lourenço) [File not signed] C:\Program Files (x86)\BatteryCare\BatteryCare.exe
(Fuzhou Xianzhi Ruishi Information Technology Co., Ltd. -> Fuzhou Xianzhi Ruishi Information Technology Co.,Ltd) C:\Program Files (x86)\Xianzhi\Service\XianzhiDeviceProxy.exe
(Fuzhou Xianzhi Ruishi Information Technology Co., Ltd. -> Fuzhou Xianzhi Ruishi Information Technology Co.,Ltd) C:\Program Files (x86)\Xianzhi\Service\XianzhiDeviceService.exe
(Huawei Technologies Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel(R) Corporation) [File not signed] C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(LENOVO (UNITED STATES) INC. -> Lenovo) C:\Users\Martin\AppData\Local\Apps\2.0\LMMWYGP1.R6T\JNHGCGXC.ZBK\lsb...tion_2d7b41b05b24775e_0001.0006_3b0a905c8de4f74a\LSB.exe
(LENOVO -> ) C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe
(LENOVO -> ) C:\Program Files (x86)\Lenovo\LocationAware\lpdagent.exe
(Lenovo -> ) C:\Program Files (x86)\Lenovo\System Update\SUService.exe
(LENOVO -> Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe
(LENOVO -> Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\avfaudiosw.exe
(LENOVO -> Lenovo Group Limited) C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe
(Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.CompanionApp.exe
(Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.Device.exe
(Lenovo -> Lenovo Group Ltd.) C:\Program Files\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.Device.exe
(Lenovo -> Lenovo Group Ltd.) C:\Program Files\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.SettingsApp.exe
(Lenovo -> Lenovo Group Ltd.) C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(LENOVO -> Lenovo(beijing) Limited) C:\ProgramData\Lenovo\ImController\Plugins\IdeaOSDPackage\x64\utility.exe
(Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe
(LENOVO -> Lenovo) C:\Program Files\Lenovo\Lenovo Mobile Hotspot\LnvHotSpotSvc.exe
(Lenovo -> Lenovo) C:\Windows\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe
(LENOVO -> Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(Lenovo(Japan)Ltd. -> Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\lvvsst.exe
(Lenovo(Japan)Ltd. -> Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\virtscrl.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19082.1010.0_x64__8wekyb3d8bbwe\YourPhone.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Solute GmbH -> Avira) C:\Program Files (x86)\Avira\Safe Shopping\Avira Safe Shopping.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Zhorn Software) [File not signed] C:\Download\caffeine\caffeine.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16408320 2015-12-04] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [373760 2012-07-20] (Alcor Micro Corp.) [File not signed]
HKLM\...\Run: [LnvMobHotspotClient] => C:\Program Files\Lenovo\Lenovo Mobile Hotspot\MobileHotspotclient.exe [937968 2014-08-12] (LENOVO -> Lenovo)
HKLM\...\Run: [LenovoUtility] => C:\ProgramData\Lenovo\ImController\Plugins\IdeaOSDPackage\x64\utility.exe [911272 2017-07-27] (LENOVO -> Lenovo(beijing) Limited)
HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1407104 2015-12-04] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3952800 2016-01-01] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [] => [X]
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [98024 2019-05-14] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-10-06] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [331BigDog] => C:\Program Files (x86)\USB Camera\VM331STI.EXE [561672 2016-01-01] (Microsoft Windows Hardware Compatibility Publisher -> Vimicro)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Avira System Speedup User Starter] => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Core.Common.Starter.exe [330008 2019-08-15] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
HKU\S-1-5-21-1300877549-1184033115-3997360293-1001\...\Run: [] => [X]
HKU\S-1-5-21-1300877549-1184033115-3997360293-1001\...\RunOnce: [FlashPlayerUpdate] => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_223_pepper.exe [1453112 2019-07-21] (Adobe Inc. -> Adobe)
HKU\S-1-5-21-1300877549-1184033115-3997360293-1001\...\Policies\Explorer: [HideSCAPower] 1
HKU\S-1-5-21-1300877549-1184033115-3997360293-1001\...\MountPoints2: {36deafa0-a3e1-11e9-bfc8-54ee750052dd} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1300877549-1184033115-3997360293-1001\...\MountPoints2: {528bac5c-6f3e-11e9-bfc4-54ee750052dd} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1300877549-1184033115-3997360293-1001\...\MountPoints2: {528bacc0-6f3e-11e9-bfc4-54ee750052dd} - "F:\HiSuiteDownLoader.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\77.0.3865.90\Installer\chrmstp.exe [2019-09-21] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{50968FF7-10C1-4fb3-98B0-CD654D6CB97E}] -> C:\Program Files\Lenovo\Bluetooth Software\\BtwCP.dll [2013-05-28] (Broadcom Corporation -> Broadcom Corporation.)
Startup: C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\caffeine.lnk [2018-10-02]
ShortcutTarget: caffeine.lnk -> C:\Download\caffeine\caffeine.exe (Zhorn Software) [File not signed]

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {00FAE11F-04B2-4789-B9EF-DD1DAFEE4A31} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe [1321296 2016-06-02] (LENOVO -> Lenovo)
Task: {094CD275-5C71-4753-B57E-5566CA859498} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {0F6DBBD1-1FA5-490B-A482-1F43FCC689E6} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {1216B654-82EF-46E3-A16B-69A8E7922ABC} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1236048 2019-07-24] (Adobe Inc. -> Adobe Systems)
Task: {13FF65D2-2719-4541-A172-A318896988B4} - System32\Tasks\Lenovo\LSC\LSCHardwareScanPostpone => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [9944400 2016-06-02] (LENOVO -> Lenovo)
Task: {19DB9544-5AE9-4E72-9D6C-F6BFD9A5EE33} - System32\Tasks\Lenovo\Power Manager\Background monitor => C:\WINDOWS\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe [112312 2019-02-12] (Lenovo -> Lenovo)
Task: {295657C7-C2E8-4170-A32C-56414B6E8856} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [177376 2016-08-12] (Intel(R) Update Manager -> Intel Corporation)
Task: {2F76241E-28D9-4017-A6D7-FBBD476DAA66} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => C:\windows\system32\rundll32.exe C:\windows\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
Task: {334614B0-D76C-4DE4-AE02-6AB59F6BC83A} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {4101FC6F-D565-4CC2-A5D1-2C329C9F5ADE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-09-20] (Google Inc -> Google Inc.)
Task: {42C71774-D90E-494A-83CD-327451D436FC} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_ERROR_HB => C:\WINDOWS\system32\MRT-KB890830.exe [133315992 2018-07-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {4BD9B539-2A35-4F47-BFE4-20325810AA3E} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_223_pepper.exe [1453112 2019-07-21] (Adobe Inc. -> Adobe)
Task: {53F22CCB-E9A5-4791-BB75-D71872E69806} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\cb63c906-6b4c-49f2-9469-f00b37ddcac7 => C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [76968 2019-04-24] (Lenovo -> Lenovo Group Ltd.)
Task: {55CA4BDE-A7A3-4038-A41C-231EC8A63C4F} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [54440 2019-04-24] (Lenovo -> Lenovo Group Ltd.)
Task: {5A3FB241-0B11-4EA5-BC66-0D9F1B406040} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\BthSQM => {C8367320-6F85-11E0-A1F0-0800200C9A66} C:\WINDOWS\System32\BthTelemetry.dll [31232 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
Task: {5B618473-4B25-441D-8B42-FA1AFACD9A88} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1758488 2019-08-01] (Lenovo -> )
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE}
Task: {8B6759EE-1C08-4B8F-955C-774AB5A6544E} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {8CE2DEC8-124D-44AF-AD18-171C75033606} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-1300877549-1184033115-3997360293-1001 => "C:\WINDOWS\system32\rundll32.exe" dfshim.dll,ShOpenVerbShortcut C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo\Lenovo Service Bridge.appref-ms
Task: {8D96C022-4DE5-4EC4-883D-76696D405F4D} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe
Task: {91B72E9C-1226-4787-85D6-9D1849EBD08D} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [548824 2019-01-10] (Piriform Software Ltd -> Piriform Ltd)
Task: {9EB4F3C5-2E72-47BA-9DD2-4D348E5E1B46} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
Task: {A295A643-CE79-4935-8DF8-0B0FFB373E27} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [9944400 2016-06-02] (LENOVO -> Lenovo)
Task: {A3BD1254-4850-4843-8383-60C8CA2D14BA} - System32\Tasks\Avira\Safe Shopping\Update => C:\Program Files (x86)\Avira\Safe Shopping\Updater\Updater.exe [112016 2019-09-10] (Solute GmbH -> Avira)
Task: {A5A83D70-C150-4254-8C37-22FE5631166C} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [177376 2016-08-12] (Intel(R) Update Manager -> Intel Corporation)
Task: {AD7EC7CA-517E-48D8-9C21-602112B539D1} - System32\Tasks\AviraSystemSpeedupUpdate => C:\ProgramData\Avira\SystemSpeedup\Update\avira_speedup_setup_update.exe [26060672 2019-09-03] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG )
Task: {AE2C34FF-AAD7-4D65-ABFA-7A9E5FA60EEA} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe
Task: {B00A9150-C938-436F-B4C5-3E026A29D793} - System32\Tasks\PMTask => C:\PROGRA~2\ThinkPad\UTILIT~1\PwmIdTsv.exe
Task: {B25A4F36-9C99-4212-B07B-D7B635B7F7CE} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [16832 2015-07-01] (LENOVO -> Lenovo)
Task: {B4E9C1BD-B83B-48F0-9357-FF3FE28EC5E7} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\95fffcb7-ad07-4a35-80f5-6caf3d0b75c9 => C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [76968 2019-04-24] (Lenovo -> Lenovo Group Ltd.)
Task: {B50F3AE9-C3C3-4697-AD20-2580CBEF64E4} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => %windir%\system32\sc.exe START ImControllerService
Task: {B6FE1F1A-CA6E-4048-92BC-7DD41986848D} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\3e6c83b2-d4d4-4dcb-858b-07596d5084d1 => C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [76968 2019-04-24] (Lenovo -> Lenovo Group Ltd.)
Task: {C9DCF59E-6B97-4C0C-8641-B8261089C8CA} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {D275D2E6-2725-486C-BD07-E468F8B9B0C2} - System32\Tasks\Avira\Safe Shopping\Check => C:\Program Files (x86)\Avira\Safe Shopping\Updater\Updater.exe [112016 2019-09-10] (Solute GmbH -> Avira)
Task: {DB21EF32-6BA9-4118-BBC1-BC4FF48961E5} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {DC8203BB-FC66-4AB5-83EA-656DC23686EC} - System32\Tasks\eM Client Database Backup => C:\Program Files (x86)\eM Client\DbBackup.exe [139592 2019-05-16] (eM Client, s.r.o. -> )
Task: {DDB380AB-7F94-4115-9B93-6167D2F58285} - System32\Tasks\Lenovo\Power Manager\Uninstall task => C:\WINDOWS\SysWOW64\Lenovo\PowerMgr\PowerMgrInst.exe [58552 2019-02-12] (Lenovo -> )
Task: {E0760045-1473-43E2-8AC2-46C4D44E8777} - System32\Tasks\BatteryCareAuto => C:\Program Files (x86)\BatteryCare\BatteryCare.exe [815104 2019-02-03] (Filipe Lourenço) [File not signed]
Task: {E079E6A1-3DFA-422B-A9F3-0C5D4AF085C8} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [14679256 2019-01-10] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {E148BA81-6AA3-40FE-8521-9431DE59684E} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA}
Task: {E221B8B1-7C89-4DE3-BF25-3B050E869045} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\lenovo\lenovo solution center\App\LSC.Services.UpdateStatusService.exe [263504 2016-06-02] (LENOVO -> )
Task: {E6F5A161-4E8B-477A-AA22-CA4E50CA16A5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-09-20] (Google Inc -> Google Inc.)
Task: {FDA675E8-A121-4D4A-AA12-2D80ABF5881C} - System32\Tasks\Avira\Safe Shopping\Launch => C:\Program Files (x86)\Avira\Safe Shopping\Updater\Updater.exe [112016 2019-09-10] (Solute GmbH -> Avira)
Task: {FE39C3FC-22C1-47DA-8E52-AEC9E66C0CE7} - System32\Tasks\Avira_Antivirus_Systray => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2757680 2019-10-06] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {FF370013-7537-4B8A-A8F6-C8967CEB7797} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1758488 2019-08-01] (Lenovo -> )

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.20.1 213.46.172.37 213.46.172.36
Tcpip\..\Interfaces\{223cc012-1650-4605-8f67-f60c2585aa8a}: [DhcpNameServer] 10.0.20.1 213.46.172.37 213.46.172.36
Tcpip\..\Interfaces\{77a2dced-c301-442e-bef8-8021202dffe3}: [NameServer] 156.154.70.25,156.154.71.25
Tcpip\..\Interfaces\{77a2dced-c301-442e-bef8-8021202dffe3}: [DhcpNameServer] 87.204.204.204 62.233.233.233

Internet Explorer:
==================
HKU\S-1-5-21-1300877549-1184033115-3997360293-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com/welcome/thinkpad
SearchScopes: HKU\S-1-5-21-1300877549-1184033115-3997360293-1001 -> DefaultScope {4726F2FD-48EF-44CA-9501-F2771B5F9B81} URL = hxxps://www.bing.com/search?q={searchTerms}&src ... 02&pc=UE04
SearchScopes: HKU\S-1-5-21-1300877549-1184033115-3997360293-1001 -> {4726F2FD-48EF-44CA-9501-F2771B5F9B81} URL = hxxps://www.bing.com/search?q={searchTerms}&src ... 02&pc=UE04

FireFox:
========
FF ProfilePath: C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\xn9lknim.default-1448133334052 [2019-07-21]
FF NetworkProxy: Mozilla\Firefox\Profiles\xn9lknim.default-1448133334052 -> http", "93.185.101.50"
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-03-12] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-03-12] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-16] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-16] (Google Inc -> Google LLC)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [No File]
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [No File]
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [No File]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-08-21] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Profile 3
CHR HomePage: Profile 3 -> hxxp://www.google.com/
CHR NewTab: Profile 3 -> Not-active:"chrome-extension://ipmkfpcnmccejididiaagpgchgjfajgp/html/newtab.html"
CHR DefaultSearchURL: Profile 3 -> hxxps://search.avira.com/#web/result?source=omnibar&q={searchTerms}
CHR DefaultSearchKeyword: Profile 3 -> Avira
CHR DefaultSuggestURL: Profile 3 -> hxxps://search.avira.com/suggestions?q={searchTerms}&li=ff&hl=en
CHR Profile: C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Guest Profile [2019-07-20]
CHR Profile: C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 3 [2019-10-07]
CHR Extension: (Dokumenty) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aohghmighlieiainnegkcijnfilokake [2018-10-31]
CHR Extension: (Disk Google) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-31]
CHR Extension: (YouTube) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-10-31]
CHR Extension: (Avira Safe Shopping) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ccbpbkebodcjkknkfkpmfeciinhidaeh [2019-10-06]
CHR Extension: (Avira Browser Safety) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2019-10-06]
CHR Extension: (Dokumenty Google offline) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-10-31]
CHR Extension: (AdBlock) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-10-07]
CHR Extension: (Avira SafeSearch Plus) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ipmkfpcnmccejididiaagpgchgjfajgp [2019-07-08]
CHR Extension: (Morpheon Dark) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\mafbdhjdkjnoafhfelkjpchpaepjknad [2018-11-04]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-07]
CHR Extension: (Gmail) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-24]
CHR Extension: (Chrome Media Router) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-09-23]
CHR Profile: C:\Users\Martin\AppData\Local\Google\Chrome\User Data\System Profile [2019-07-20]
CHR HKLM\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [ipmkfpcnmccejididiaagpgchgjfajgp] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ipmkfpcnmccejididiaagpgchgjfajgp] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

===================== Drivers (Whitelisted) ======================

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-10-07 15:37 - 2019-10-07 15:40 - 000026391 _____ C:\Users\Martin\Desktop\FRST.txt
2019-10-07 15:36 - 2019-10-07 15:39 - 000000000 ____D C:\FRST
2019-10-07 15:32 - 2019-10-07 15:34 - 001615872 _____ (Farbar) C:\Users\Martin\Desktop\FRST64 (1).exe
2019-10-07 15:25 - 2019-10-07 15:25 - 000004704 _____ C:\Users\Martin\Documents\movements.csv

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-10-07 15:43 - 2018-09-15 09:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-10-07 15:43 - 2018-09-15 09:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-10-07 15:36 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-10-07 15:11 - 2019-03-14 20:54 - 000000000 ____D C:\Users\Public\Speedup Sessions
2019-10-07 15:11 - 2014-07-12 12:00 - 000000000 __SHD C:\Users\Martin\IntelGraphicsProfiles
2019-10-06 19:50 - 2017-09-11 19:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2019-10-06 19:37 - 2018-09-15 09:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-10-06 19:37 - 2017-09-11 19:48 - 000206584 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2019-10-06 19:37 - 2017-09-11 19:48 - 000197176 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2019-10-06 19:34 - 2018-10-21 09:41 - 000000000 ____D C:\Users\Martin\AppData\Roaming\vlc
2019-10-06 19:29 - 2014-08-02 07:58 - 000000000 ____D C:\Users\Martin\AppData\Roaming\eM Client
2019-10-06 19:26 - 2019-01-13 17:38 - 000000000 ____D C:\WINDOWS\system32\Tasks\TVT
2019-10-06 19:25 - 2017-10-09 03:43 - 000000000 ____D C:\Program Files (x86)\Lenovo
2019-10-06 19:25 - 2014-05-27 16:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
2019-10-06 19:24 - 2017-09-15 23:40 - 000001921 _____ C:\WINDOWS\SysWOW64\InstallUtil.InstallLog
2019-10-06 19:19 - 2017-10-09 03:43 - 000000000 ____D C:\ProgramData\Lenovo
2019-10-01 04:49 - 2019-01-13 17:38 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2019-09-26 17:56 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\NDF
2019-09-21 11:38 - 2014-08-01 19:59 - 000002308 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-09-16 18:06 - 2014-11-26 23:29 - 000000000 ____D C:\Program Files (x86)\Avira
2019-09-10 21:57 - 2017-02-05 17:57 - 000000000 ____D C:\Users\Martin\Documents\HiSuite

==================== Files in the root of some directories ================

2014-05-27 16:29 - 2014-05-30 15:45 - 000004411 _____ () C:\Users\Martin\AppData\Roaming\AbsoluteReminder.xml
2019-02-03 22:04 - 2019-02-03 22:04 - 000221566 _____ () C:\Users\Martin\AppData\Roaming\fvl_1N1I1F1S1T1I0M1F1Q2Y1I1P1B0C1F1Q1P.txt
2014-05-27 16:30 - 2014-06-03 12:53 - 000000466 _____ () C:\Users\Martin\AppData\Local\RegisteredPackageInformation.xml
2014-06-03 17:47 - 2014-06-03 17:47 - 000000017 _____ () C:\Users\Martin\AppData\Local\resmon.resmoncfg
2019-07-15 20:26 - 2019-07-15 20:26 - 000000000 _____ () C:\Users\Martin\AppData\Local\{2E0404D5-F10F-4613-8C4D-183A046CEFA5}
2019-07-15 20:26 - 2019-07-15 20:26 - 000000000 _____ () C:\Users\Martin\AppData\Local\{591F259B-FBC9-4444-B6E8-993AF64C625E}

==================== SigCheck ===============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ============================

#2 Příspěvek od **Rudy** » 07 říj 2019 16:41

Zdravím!
Spusťte tuto utilitu:

Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

ras099 · #3 Příspěvek od **ras099** » 07 říj 2019 17:33

# -------------------------------
# Malwarebytes AdwCleaner 7.4.1.0
# -------------------------------
# Build: 09-04-2019
# Database: 2019-08-27.1 (Local)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 10-07-2019
# Duration: 00:02:40
# OS: Windows 10 Home
# Cleaned: 39
# Failed: 0

***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKCU\Software\PRODUCTSETUP
Deleted HKCU\Software\csastats
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\Your Software Deals_is1

***** [ Chromium (and derivatives) ] *****

Deleted Avira SafeSearch Plus

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Preinstalled Software ] *****

Deleted Preinstalled.DellDataProtection Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{89585C33-E934-463E-91E1-B0CF090FEC53}
Deleted Preinstalled.LenovoEasyCamera Folder C:\Program Files (x86)\USB CAMERA
Deleted Preinstalled.LenovoEasyCamera Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32|331BigDog
Deleted Preinstalled.LenovoEasyCamera Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Run|331BigDog
Deleted Preinstalled.LenovoEasyCamera Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{ADE16A9D-FBDC-4ecc-B6BD-9C31E51D0332}
Deleted Preinstalled.LenovoHotkeyManager Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|LenovoOptMouseUpdate
Deleted Preinstalled.LenovoIMController Folder C:\Program Files (x86)\LENOVO\IMCONTROLLER
Deleted Preinstalled.LenovoIMController Folder C:\Program Files\LENOVO\IMCONTROLLER
Deleted Preinstalled.LenovoIMController Folder C:\ProgramData\LENOVO\IMCONTROLLER
Deleted Preinstalled.LenovoIMController Folder C:\Users\Martin\AppData\Local\LENOVO\IMCONTROLLER
Deleted Preinstalled.LenovoIMController Folder C:\Windows\System32\Tasks\LENOVO\IMCONTROLLER
Deleted Preinstalled.LenovoIMController Folder C:\Windows\System32\drivers\LENOVO\IMCONTROLLER
Deleted Preinstalled.LenovoIMController Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\Lenovo Dependency Package_is1
Deleted Preinstalled.LenovoIMController Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{3117B53D-A409-4D99-A0DE-11A1A40696FA}
Deleted Preinstalled.LenovoPowerManager Folder C:\Windows\SysWOW64\LENOVO\POWERMGR
Deleted Preinstalled.LenovoPowerManager Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B00A9150-C938-436F-B4C5-3E026A29D793}
Deleted Preinstalled.LenovoPowerManager Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B00A9150-C938-436F-B4C5-3E026A29D793}
Deleted Preinstalled.LenovoPowerManager Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\PMTask
Deleted Preinstalled.LenovoPowerManager Task C:\Windows\System32\Tasks\PMTASK
Deleted Preinstalled.LenovoSettings Folder C:\ProgramData\LENOVO\LENOVO SETTINGS
Deleted Preinstalled.LenovoSolutionCenter Folder C:\Program Files\LENOVO\LENOVO SOLUTION CENTER
Deleted Preinstalled.LenovoSolutionCenter Folder C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LENOVO\LENOVO SOLUTION CENTER
Deleted Preinstalled.LenovoSolutionCenter Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{4386A5EF-BD23-49F4-9DAD-CD76B4F6A8BF}
Deleted Preinstalled.LenovoSolutionCenter Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{49277B39-D2E8-4342-9CE8-FC080C3FA344}
Deleted Preinstalled.LenovoSolutionCenter Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{C1FC707B-AE6B-4DC4-89A5-6628A01F8103}
Deleted Preinstalled.LenovoThinkVantageCommunicationsUtility Folder C:\Program Files\LENOVO\COMMUNICATIONS UTILITY
Deleted Preinstalled.LenovoThinkVantageCommunicationsUtility Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32|LMCSSTART1
Deleted Preinstalled.LenovoThinkVantageCommunicationsUtility Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|LENOVO.TPKNRRES
Deleted Preinstalled.LenovoThinkVantageCommunicationsUtility Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|LMCSSTART1
Deleted Preinstalled.LenovoThinkVantageCommunicationsUtility Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{88C6A6D9-324C-46E8-BA87-563D14021442}_is1
Deleted Preinstalled.LenovoUpdate Folder C:\Program Files (x86)\LENOVO\SYSTEM UPDATE
Deleted Preinstalled.LenovoUpdate Registry HKLM\Software\Wow6432Node\\Classes\CLSID\{03C6CC92-68F2-4961-9A73-CAECA350BD08}
Deleted Preinstalled.LenovoUpdate Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\TVSU_is1
Deleted Preinstalled.LenovoUtility Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|LenovoUtility
Deleted Preinstalled.LenovoUtility Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Run|LenovoUtility

*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner_Debug.log - [26993 octets] - [07/10/2019 18:17:59]
AdwCleaner[S00].txt - [5843 octets] - [07/10/2019 18:18:50]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

#4 Příspěvek od **Rudy** » 07 říj 2019 17:48

Dejte nové logy FRST+Addition.

ras099 · #5 Příspěvek od **ras099** » 07 říj 2019 18:04

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.20.1 213.46.172.37 213.46.172.36
Tcpip\..\Interfaces\{223cc012-1650-4605-8f67-f60c2585aa8a}: [DhcpNameServer] 10.0.20.1 213.46.172.37 213.46.172.36
Tcpip\..\Interfaces\{77a2dced-c301-442e-bef8-8021202dffe3}: [NameServer] 156.154.70.25,156.154.71.25
Tcpip\..\Interfaces\{77a2dced-c301-442e-bef8-8021202dffe3}: [DhcpNameServer] 87.204.204.204 62.233.233.233

Internet Explorer:
==================
HKU\S-1-5-21-1300877549-1184033115-3997360293-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com/welcome/thinkpad
SearchScopes: HKU\S-1-5-21-1300877549-1184033115-3997360293-1001 -> DefaultScope {4726F2FD-48EF-44CA-9501-F2771B5F9B81} URL = hxxps://www.bing.com/search?q={searchTerms}&src ... 02&pc=UE04
SearchScopes: HKU\S-1-5-21-1300877549-1184033115-3997360293-1001 -> {4726F2FD-48EF-44CA-9501-F2771B5F9B81} URL = hxxps://www.bing.com/search?q={searchTerms}&src ... 02&pc=UE04

FireFox:
========
FF ProfilePath: C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\xn9lknim.default-1448133334052 [2019-07-21]
FF NetworkProxy: Mozilla\Firefox\Profiles\xn9lknim.default-1448133334052 -> http", "93.185.101.50"
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-03-12] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-03-12] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-16] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-16] (Google Inc -> Google LLC)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [No File]
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [No File]
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [No File]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-08-21] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Profile 3
CHR HomePage: Profile 3 -> hxxp://www.google.com/
CHR DefaultSearchURL: Profile 3 -> hxxps://search.avira.com/#web/result?source=omnibar&q={searchTerms}
CHR DefaultSearchKeyword: Profile 3 -> Avira
CHR DefaultSuggestURL: Profile 3 -> hxxps://search.avira.com/suggestions?q={searchTerms}&li=ff&hl=en
CHR Profile: C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Guest Profile [2019-07-20]
CHR Profile: C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 3 [2019-10-07]
CHR Extension: (Dokumenty) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aohghmighlieiainnegkcijnfilokake [2018-10-31]
CHR Extension: (Disk Google) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-31]
CHR Extension: (YouTube) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-10-31]
CHR Extension: (Avira Safe Shopping) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ccbpbkebodcjkknkfkpmfeciinhidaeh [2019-10-06]
CHR Extension: (Avira Browser Safety) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2019-10-06]
CHR Extension: (Dokumenty Google offline) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-10-31]
CHR Extension: (AdBlock) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-10-07]
CHR Extension: (Avira SafeSearch Plus) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ipmkfpcnmccejididiaagpgchgjfajgp [2019-10-07]
CHR Extension: (No Name) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\mafbdhjdkjnoafhfelkjpchpaepjknad [2018-11-04]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-07]
CHR Extension: (Gmail) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-24]
CHR Extension: (Chrome Media Router) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-09-23]
CHR Profile: C:\Users\Martin\AppData\Local\Google\Chrome\User Data\System Profile [2019-07-20]
CHR HKLM\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [ipmkfpcnmccejididiaagpgchgjfajgp] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ipmkfpcnmccejididiaagpgchgjfajgp] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

===================== Drivers (Whitelisted) ======================

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-10-07 18:58 - 2019-10-07 19:00 - 000006794 _____ C:\Users\Martin\Desktop\FRST.txt
2019-10-07 18:57 - 2019-10-07 18:57 - 000001321 _____ C:\Users\Martin\Documents\movements.csv
2019-10-07 18:10 - 2019-10-07 18:14 - 007622344 _____ (Malwarebytes) C:\Users\Martin\Desktop\AdwCleaner.exe
2019-10-07 15:53 - 2019-10-07 15:53 - 000014532 _____ C:\Users\Martin\Desktop\Addition.zip
2019-10-07 15:36 - 2019-10-07 18:59 - 000000000 ____D C:\FRST
2019-10-07 15:32 - 2019-10-07 15:34 - 001615872 _____ (Farbar) C:\Users\Martin\Desktop\FRST64 (1).exe

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-10-07 18:55 - 2018-09-15 09:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-10-07 18:32 - 2017-10-09 03:43 - 000000000 ____D C:\ProgramData\Lenovo
2019-10-07 18:29 - 2014-07-12 12:00 - 000000000 __SHD C:\Users\Martin\IntelGraphicsProfiles
2019-10-07 18:26 - 2019-01-13 17:38 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-10-07 18:23 - 2018-09-15 08:09 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-10-07 18:22 - 2019-01-13 17:38 - 000000000 ____D C:\WINDOWS\system32\Tasks\Lenovo
2019-10-07 18:22 - 2018-03-19 17:43 - 000000000 ____D C:\WINDOWS\system32\Drivers\Lenovo
2019-10-07 18:22 - 2017-10-09 03:43 - 000000000 ____D C:\Program Files\Lenovo
2019-10-07 18:22 - 2017-10-09 03:43 - 000000000 ____D C:\Program Files (x86)\Lenovo
2019-10-07 18:21 - 2014-12-27 10:11 - 000000000 ____D C:\WINDOWS\SysWOW64\Lenovo
2019-10-07 18:21 - 2014-05-27 19:39 - 000000000 ____D C:\Users\Martin\AppData\Local\Lenovo
2019-10-07 18:21 - 2014-05-27 16:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
2019-10-07 18:18 - 2016-03-01 07:42 - 000000000 ___HD C:\AdwCleaner
2019-10-07 18:10 - 2018-09-15 09:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-10-07 18:10 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-10-07 18:05 - 2014-08-02 07:58 - 000000000 ____D C:\Users\Martin\AppData\Roaming\eM Client
2019-10-07 17:58 - 2019-01-13 17:12 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-10-07 16:16 - 2018-10-21 09:41 - 000000000 ____D C:\Users\Martin\AppData\Roaming\vlc
2019-10-07 16:07 - 2018-09-15 09:31 - 000000000 ____D C:\WINDOWS\INF
2019-10-07 15:59 - 2018-06-12 17:28 - 000000000 ____D C:\Users\Martin\AppData\Local\Packages
2019-10-07 15:11 - 2019-03-14 20:54 - 000000000 ____D C:\Users\Public\Speedup Sessions
2019-10-06 19:50 - 2017-09-11 19:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2019-10-06 19:37 - 2018-09-15 09:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-10-06 19:37 - 2017-09-11 19:48 - 000206584 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2019-10-06 19:37 - 2017-09-11 19:48 - 000197176 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2019-10-06 19:26 - 2019-01-13 17:38 - 000000000 ____D C:\WINDOWS\system32\Tasks\TVT
2019-10-06 19:24 - 2017-09-15 23:40 - 000001921 _____ C:\WINDOWS\SysWOW64\InstallUtil.InstallLog
2019-10-01 04:49 - 2019-01-13 17:38 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2019-09-26 17:56 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\NDF
2019-09-21 11:38 - 2014-08-01 19:59 - 000002308 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-09-16 18:06 - 2014-11-26 23:29 - 000000000 ____D C:\Program Files (x86)\Avira
2019-09-10 21:57 - 2017-02-05 17:57 - 000000000 ____D C:\Users\Martin\Documents\HiSuite

==================== Files in the root of some directories ================

2014-05-27 16:29 - 2014-05-30 15:45 - 000004411 _____ () C:\Users\Martin\AppData\Roaming\AbsoluteReminder.xml
2019-02-03 22:04 - 2019-02-03 22:04 - 000221566 _____ () C:\Users\Martin\AppData\Roaming\fvl_1N1I1F1S1T1I0M1F1Q2Y1I1P1B0C1F1Q1P.txt
2014-05-27 16:30 - 2014-06-03 12:53 - 000000466 _____ () C:\Users\Martin\AppData\Local\RegisteredPackageInformation.xml
2014-06-03 17:47 - 2014-06-03 17:47 - 000000017 _____ () C:\Users\Martin\AppData\Local\resmon.resmoncfg
2019-07-15 20:26 - 2019-07-15 20:26 - 000000000 _____ () C:\Users\Martin\AppData\Local\{2E0404D5-F10F-4613-8C4D-183A046CEFA5}
2019-07-15 20:26 - 2019-07-15 20:26 - 000000000 _____ () C:\Users\Martin\AppData\Local\{591F259B-FBC9-4444-B6E8-993AF64C625E}

==================== SigCheck ===============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ============================

#6 Příspěvek od **Rudy** » 07 říj 2019 18:59

Log FRST není kompletní. Chybí Proceses, Registry (Whitelisted) a Scheduled Tasks (Whitelisted).

ras099 · #7 Příspěvek od **ras099** » 07 říj 2019 19:09

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 06-10-2019
Ran by Martin (administrator) on MARTINRASZKA (LENOVO 20206) (07-10-2019 20:04:46)
Running from C:\Users\Martin\Desktop
Loaded Profiles: Martin (Available Profiles: Martin)
Platform: Windows 10 Home Version 1809 17763.615 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\ProtectedService.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.RealTime.Client.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.RealTimeOptimizer.exe
(Broadcom Corporation -> Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(Filipe Lourenço) [File not signed] C:\Program Files (x86)\BatteryCare\BatteryCare.exe
(Fuzhou Xianzhi Ruishi Information Technology Co., Ltd. -> Fuzhou Xianzhi Ruishi Information Technology Co.,Ltd) C:\Program Files (x86)\Xianzhi\Service\XianzhiDeviceProxy.exe
(Fuzhou Xianzhi Ruishi Information Technology Co., Ltd. -> Fuzhou Xianzhi Ruishi Information Technology Co.,Ltd) C:\Program Files (x86)\Xianzhi\Service\XianzhiDeviceService.exe
(Huawei Technologies Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel(R) Corporation) [File not signed] C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(LENOVO (UNITED STATES) INC. -> Lenovo) C:\Users\Martin\AppData\Local\Apps\2.0\LMMWYGP1.R6T\JNHGCGXC.ZBK\lsb...tion_2d7b41b05b24775e_0001.0006_3b0a905c8de4f74a\LSB.exe
(LENOVO -> ) C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe
(LENOVO -> ) C:\Program Files (x86)\Lenovo\LocationAware\lpdagent.exe
(LENOVO -> Lenovo Group Limited) C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe
(Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe
(LENOVO -> Lenovo) C:\Program Files\Lenovo\Lenovo Mobile Hotspot\LnvHotSpotSvc.exe
(LENOVO -> Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(Lenovo(Japan)Ltd. -> Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\lvvsst.exe
(Lenovo(Japan)Ltd. -> Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\virtscrl.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19091.313.0_x64__8wekyb3d8bbwe\YourPhone.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Solute GmbH -> Avira) C:\Program Files (x86)\Avira\Safe Shopping\Avira Safe Shopping.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Zhorn Software) [File not signed] C:\Download\caffeine\caffeine.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16408320 2015-12-04] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [373760 2012-07-20] (Alcor Micro Corp.) [File not signed]
HKLM\...\Run: [LnvMobHotspotClient] => C:\Program Files\Lenovo\Lenovo Mobile Hotspot\MobileHotspotclient.exe [937968 2014-08-12] (LENOVO -> Lenovo)
HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1407104 2015-12-04] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3952800 2016-01-01] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [] => [X]
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [98024 2019-05-14] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-10-06] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Avira System Speedup User Starter] => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Core.Common.Starter.exe [330008 2019-08-15] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
HKU\S-1-5-21-1300877549-1184033115-3997360293-1001\...\Run: [] => [X]
HKU\S-1-5-21-1300877549-1184033115-3997360293-1001\...\Policies\Explorer: [HideSCAPower] 1
HKU\S-1-5-21-1300877549-1184033115-3997360293-1001\...\MountPoints2: {36deafa0-a3e1-11e9-bfc8-54ee750052dd} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1300877549-1184033115-3997360293-1001\...\MountPoints2: {528bac5c-6f3e-11e9-bfc4-54ee750052dd} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1300877549-1184033115-3997360293-1001\...\MountPoints2: {528bacc0-6f3e-11e9-bfc4-54ee750052dd} - "F:\HiSuiteDownLoader.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\77.0.3865.90\Installer\chrmstp.exe [2019-09-21] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{50968FF7-10C1-4fb3-98B0-CD654D6CB97E}] -> C:\Program Files\Lenovo\Bluetooth Software\\BtwCP.dll [2013-05-28] (Broadcom Corporation -> Broadcom Corporation.)
Startup: C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\caffeine.lnk [2018-10-02]
ShortcutTarget: caffeine.lnk -> C:\Download\caffeine\caffeine.exe (Zhorn Software) [File not signed]

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {00FAE11F-04B2-4789-B9EF-DD1DAFEE4A31} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
Task: {094CD275-5C71-4753-B57E-5566CA859498} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {0F6DBBD1-1FA5-490B-A482-1F43FCC689E6} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {1216B654-82EF-46E3-A16B-69A8E7922ABC} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1236048 2019-07-24] (Adobe Inc. -> Adobe Systems)
Task: {13FF65D2-2719-4541-A172-A318896988B4} - System32\Tasks\Lenovo\LSC\LSCHardwareScanPostpone => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe
Task: {19DB9544-5AE9-4E72-9D6C-F6BFD9A5EE33} - System32\Tasks\Lenovo\Power Manager\Background monitor => C:\WINDOWS\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe
Task: {295657C7-C2E8-4170-A32C-56414B6E8856} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [177376 2016-08-12] (Intel(R) Update Manager -> Intel Corporation)
Task: {2F76241E-28D9-4017-A6D7-FBBD476DAA66} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => C:\windows\system32\rundll32.exe C:\windows\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
Task: {334614B0-D76C-4DE4-AE02-6AB59F6BC83A} - \Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask -> No File <==== ATTENTION
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {4101FC6F-D565-4CC2-A5D1-2C329C9F5ADE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-09-20] (Google Inc -> Google Inc.)
Task: {42C71774-D90E-494A-83CD-327451D436FC} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_ERROR_HB => C:\WINDOWS\system32\MRT-KB890830.exe [133315992 2018-07-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {4BD9B539-2A35-4F47-BFE4-20325810AA3E} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_223_pepper.exe [1453112 2019-07-21] (Adobe Inc. -> Adobe)
Task: {53F22CCB-E9A5-4791-BB75-D71872E69806} - \Lenovo\ImController\TimeBasedEvents\cb63c906-6b4c-49f2-9469-f00b37ddcac7 -> No File <==== ATTENTION
Task: {55CA4BDE-A7A3-4038-A41C-231EC8A63C4F} - \Lenovo\ImController\Lenovo iM Controller Monitor -> No File <==== ATTENTION
Task: {5A3FB241-0B11-4EA5-BC66-0D9F1B406040} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\BthSQM => {C8367320-6F85-11E0-A1F0-0800200C9A66} C:\WINDOWS\System32\BthTelemetry.dll [31232 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
Task: {5B618473-4B25-441D-8B42-FA1AFACD9A88} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE}
Task: {8B6759EE-1C08-4B8F-955C-774AB5A6544E} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {8CE2DEC8-124D-44AF-AD18-171C75033606} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-1300877549-1184033115-3997360293-1001 => "C:\WINDOWS\system32\rundll32.exe" dfshim.dll,ShOpenVerbShortcut C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo\Lenovo Service Bridge.appref-ms
Task: {8D96C022-4DE5-4EC4-883D-76696D405F4D} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe
Task: {91B72E9C-1226-4787-85D6-9D1849EBD08D} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [548824 2019-01-10] (Piriform Software Ltd -> Piriform Ltd)
Task: {9EB4F3C5-2E72-47BA-9DD2-4D348E5E1B46} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
Task: {A295A643-CE79-4935-8DF8-0B0FFB373E27} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe
Task: {A3BD1254-4850-4843-8383-60C8CA2D14BA} - System32\Tasks\Avira\Safe Shopping\Update => C:\Program Files (x86)\Avira\Safe Shopping\Updater\Updater.exe [112016 2019-09-10] (Solute GmbH -> Avira)
Task: {A5A83D70-C150-4254-8C37-22FE5631166C} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [177376 2016-08-12] (Intel(R) Update Manager -> Intel Corporation)
Task: {AD7EC7CA-517E-48D8-9C21-602112B539D1} - System32\Tasks\AviraSystemSpeedupUpdate => C:\ProgramData\Avira\SystemSpeedup\Update\avira_speedup_setup_update.exe [26060672 2019-09-03] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG )
Task: {AE2C34FF-AAD7-4D65-ABFA-7A9E5FA60EEA} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe
Task: {B25A4F36-9C99-4212-B07B-D7B635B7F7CE} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [16832 2015-07-01] (LENOVO -> Lenovo)
Task: {B4E9C1BD-B83B-48F0-9357-FF3FE28EC5E7} - \Lenovo\ImController\TimeBasedEvents\95fffcb7-ad07-4a35-80f5-6caf3d0b75c9 -> No File <==== ATTENTION
Task: {B50F3AE9-C3C3-4697-AD20-2580CBEF64E4} - \Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance -> No File <==== ATTENTION
Task: {B6FE1F1A-CA6E-4048-92BC-7DD41986848D} - \Lenovo\ImController\TimeBasedEvents\3e6c83b2-d4d4-4dcb-858b-07596d5084d1 -> No File <==== ATTENTION
Task: {C9DCF59E-6B97-4C0C-8641-B8261089C8CA} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {D275D2E6-2725-486C-BD07-E468F8B9B0C2} - System32\Tasks\Avira\Safe Shopping\Check => C:\Program Files (x86)\Avira\Safe Shopping\Updater\Updater.exe [112016 2019-09-10] (Solute GmbH -> Avira)
Task: {DB21EF32-6BA9-4118-BBC1-BC4FF48961E5} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {DC8203BB-FC66-4AB5-83EA-656DC23686EC} - System32\Tasks\eM Client Database Backup => C:\Program Files (x86)\eM Client\DbBackup.exe [139592 2019-05-16] (eM Client, s.r.o. -> )
Task: {DDB380AB-7F94-4115-9B93-6167D2F58285} - System32\Tasks\Lenovo\Power Manager\Uninstall task => C:\WINDOWS\SysWOW64\Lenovo\PowerMgr\PowerMgrInst.exe
Task: {E0760045-1473-43E2-8AC2-46C4D44E8777} - System32\Tasks\BatteryCareAuto => C:\Program Files (x86)\BatteryCare\BatteryCare.exe [815104 2019-02-03] (Filipe Lourenço) [File not signed]
Task: {E079E6A1-3DFA-422B-A9F3-0C5D4AF085C8} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [14679256 2019-01-10] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {E148BA81-6AA3-40FE-8521-9431DE59684E} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA}
Task: {E221B8B1-7C89-4DE3-BF25-3B050E869045} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\lenovo\lenovo solution center\App\LSC.Services.UpdateStatusService.exe
Task: {E6F5A161-4E8B-477A-AA22-CA4E50CA16A5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-09-20] (Google Inc -> Google Inc.)
Task: {FDA675E8-A121-4D4A-AA12-2D80ABF5881C} - System32\Tasks\Avira\Safe Shopping\Launch => C:\Program Files (x86)\Avira\Safe Shopping\Updater\Updater.exe [112016 2019-09-10] (Solute GmbH -> Avira)
Task: {FE39C3FC-22C1-47DA-8E52-AEC9E66C0CE7} - System32\Tasks\Avira_Antivirus_Systray => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2757680 2019-10-06] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {FF370013-7537-4B8A-A8F6-C8967CEB7797} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.20.1 213.46.172.37 213.46.172.36
Tcpip\..\Interfaces\{223cc012-1650-4605-8f67-f60c2585aa8a}: [DhcpNameServer] 10.0.20.1 213.46.172.37 213.46.172.36
Tcpip\..\Interfaces\{77a2dced-c301-442e-bef8-8021202dffe3}: [NameServer] 156.154.70.25,156.154.71.25
Tcpip\..\Interfaces\{77a2dced-c301-442e-bef8-8021202dffe3}: [DhcpNameServer] 87.204.204.204 62.233.233.233

Internet Explorer:
==================
HKU\S-1-5-21-1300877549-1184033115-3997360293-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com/welcome/thinkpad
SearchScopes: HKU\S-1-5-21-1300877549-1184033115-3997360293-1001 -> DefaultScope {4726F2FD-48EF-44CA-9501-F2771B5F9B81} URL = hxxps://www.bing.com/search?q={searchTerms}&src ... 02&pc=UE04
SearchScopes: HKU\S-1-5-21-1300877549-1184033115-3997360293-1001 -> {4726F2FD-48EF-44CA-9501-F2771B5F9B81} URL = hxxps://www.bing.com/search?q={searchTerms}&src ... 02&pc=UE04

FireFox:
========
FF ProfilePath: C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\xn9lknim.default-1448133334052 [2019-07-21]
FF NetworkProxy: Mozilla\Firefox\Profiles\xn9lknim.default-1448133334052 -> http", "93.185.101.50"
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-03-12] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-03-12] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-16] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-16] (Google Inc -> Google LLC)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [No File]
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [No File]
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [No File]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-08-21] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Profile 3
CHR HomePage: Profile 3 -> hxxp://www.google.com/
CHR DefaultSearchURL: Profile 3 -> hxxps://search.avira.com/#web/result?source=omnibar&q={searchTerms}
CHR DefaultSearchKeyword: Profile 3 -> Avira
CHR DefaultSuggestURL: Profile 3 -> hxxps://search.avira.com/suggestions?q={searchTerms}&li=ff&hl=en
CHR Profile: C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Guest Profile [2019-07-20]
CHR Profile: C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 3 [2019-10-07]
CHR Extension: (Dokumenty) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aohghmighlieiainnegkcijnfilokake [2018-10-31]
CHR Extension: (Disk Google) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-31]
CHR Extension: (YouTube) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-10-31]
CHR Extension: (Avira Safe Shopping) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ccbpbkebodcjkknkfkpmfeciinhidaeh [2019-10-06]
CHR Extension: (Avira Browser Safety) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2019-10-06]
CHR Extension: (Dokumenty Google offline) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-10-31]
CHR Extension: (AdBlock) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-10-07]
CHR Extension: (Avira SafeSearch Plus) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ipmkfpcnmccejididiaagpgchgjfajgp [2019-10-07]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-07]
CHR Extension: (Gmail) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-24]
CHR Extension: (Chrome Media Router) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-09-23]
CHR Profile: C:\Users\Martin\AppData\Local\Google\Chrome\User Data\System Profile [2019-07-20]
CHR HKLM\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [ipmkfpcnmccejididiaagpgchgjfajgp] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ipmkfpcnmccejididiaagpgchgjfajgp] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

===================== Drivers (Whitelisted) ======================

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-10-07 19:02 - 2019-10-07 19:04 - 000054601 _____ C:\Users\Martin\Desktop\Addition.txt
2019-10-07 18:58 - 2019-10-07 20:06 - 000023851 _____ C:\Users\Martin\Desktop\FRST.txt
2019-10-07 18:57 - 2019-10-07 18:57 - 000001321 _____ C:\Users\Martin\Documents\movements.csv
2019-10-07 18:10 - 2019-10-07 18:14 - 007622344 _____ (Malwarebytes) C:\Users\Martin\Desktop\AdwCleaner.exe
2019-10-07 15:53 - 2019-10-07 19:06 - 000014247 _____ C:\Users\Martin\Desktop\Addition.zip
2019-10-07 15:36 - 2019-10-07 20:05 - 000000000 ____D C:\FRST
2019-10-07 15:32 - 2019-10-07 15:34 - 001615872 _____ (Farbar) C:\Users\Martin\Desktop\FRST64 (1).exe

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-10-07 19:55 - 2018-09-15 09:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-10-07 19:53 - 2014-08-02 07:58 - 000000000 ____D C:\Users\Martin\AppData\Roaming\eM Client
2019-10-07 19:38 - 2017-09-11 19:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2019-10-07 18:32 - 2017-10-09 03:43 - 000000000 ____D C:\ProgramData\Lenovo
2019-10-07 18:29 - 2014-07-12 12:00 - 000000000 __SHD C:\Users\Martin\IntelGraphicsProfiles
2019-10-07 18:26 - 2019-01-13 17:38 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-10-07 18:23 - 2018-09-15 08:09 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-10-07 18:22 - 2019-01-13 17:38 - 000000000 ____D C:\WINDOWS\system32\Tasks\Lenovo
2019-10-07 18:22 - 2018-03-19 17:43 - 000000000 ____D C:\WINDOWS\system32\Drivers\Lenovo
2019-10-07 18:22 - 2017-10-09 03:43 - 000000000 ____D C:\Program Files\Lenovo
2019-10-07 18:22 - 2017-10-09 03:43 - 000000000 ____D C:\Program Files (x86)\Lenovo
2019-10-07 18:21 - 2014-12-27 10:11 - 000000000 ____D C:\WINDOWS\SysWOW64\Lenovo
2019-10-07 18:21 - 2014-05-27 19:39 - 000000000 ____D C:\Users\Martin\AppData\Local\Lenovo
2019-10-07 18:21 - 2014-05-27 16:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
2019-10-07 18:18 - 2016-03-01 07:42 - 000000000 ___HD C:\AdwCleaner
2019-10-07 18:10 - 2018-09-15 09:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-10-07 18:10 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-10-07 17:58 - 2019-01-13 17:12 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-10-07 16:16 - 2018-10-21 09:41 - 000000000 ____D C:\Users\Martin\AppData\Roaming\vlc
2019-10-07 16:07 - 2018-09-15 09:31 - 000000000 ____D C:\WINDOWS\INF
2019-10-07 15:59 - 2018-06-12 17:28 - 000000000 ____D C:\Users\Martin\AppData\Local\Packages
2019-10-07 15:11 - 2019-03-14 20:54 - 000000000 ____D C:\Users\Public\Speedup Sessions
2019-10-06 19:37 - 2018-09-15 09:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-10-06 19:37 - 2017-09-11 19:48 - 000206584 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2019-10-06 19:37 - 2017-09-11 19:48 - 000197176 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2019-10-06 19:26 - 2019-01-13 17:38 - 000000000 ____D C:\WINDOWS\system32\Tasks\TVT
2019-10-06 19:24 - 2017-09-15 23:40 - 000001921 _____ C:\WINDOWS\SysWOW64\InstallUtil.InstallLog
2019-10-01 04:49 - 2019-01-13 17:38 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2019-09-26 17:56 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\NDF
2019-09-21 11:38 - 2014-08-01 19:59 - 000002308 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-09-16 18:06 - 2014-11-26 23:29 - 000000000 ____D C:\Program Files (x86)\Avira
2019-09-10 21:57 - 2017-02-05 17:57 - 000000000 ____D C:\Users\Martin\Documents\HiSuite

==================== Files in the root of some directories ================

2014-05-27 16:29 - 2014-05-30 15:45 - 000004411 _____ () C:\Users\Martin\AppData\Roaming\AbsoluteReminder.xml
2019-02-03 22:04 - 2019-02-03 22:04 - 000221566 _____ () C:\Users\Martin\AppData\Roaming\fvl_1N1I1F1S1T1I0M1F1Q2Y1I1P1B0C1F1Q1P.txt
2014-05-27 16:30 - 2014-06-03 12:53 - 000000466 _____ () C:\Users\Martin\AppData\Local\RegisteredPackageInformation.xml
2014-06-03 17:47 - 2014-06-03 17:47 - 000000017 _____ () C:\Users\Martin\AppData\Local\resmon.resmoncfg
2019-07-15 20:26 - 2019-07-15 20:26 - 000000000 _____ () C:\Users\Martin\AppData\Local\{2E0404D5-F10F-4613-8C4D-183A046CEFA5}
2019-07-15 20:26 - 2019-07-15 20:26 - 000000000 _____ () C:\Users\Martin\AppData\Local\{591F259B-FBC9-4444-B6E8-993AF64C625E}

==================== SigCheck ===============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ============================

#8 Příspěvek od **Rudy** » 07 říj 2019 19:30

Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
HKLM\...\Run: [] => [X]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-10-06] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-1300877549-1184033115-3997360293-1001\...\Run: [] => [X]
HKU\S-1-5-21-1300877549-1184033115-3997360293-1001\...\MountPoints2: {36deafa0-a3e1-11e9-bfc8-54ee750052dd} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1300877549-1184033115-3997360293-1001\...\MountPoints2: {528bac5c-6f3e-11e9-bfc4-54ee750052dd} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1300877549-1184033115-3997360293-1001\...\MountPoints2: {528bacc0-6f3e-11e9-bfc4-54ee750052dd} - "F:\HiSuiteDownLoader.exe"
Task: {334614B0-D76C-4DE4-AE02-6AB59F6BC83A} - \Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask -> No File <==== ATTENTION
Task: {4101FC6F-D565-4CC2-A5D1-2C329C9F5ADE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-09-20] (Google Inc -> Google Inc.)
Task: {53F22CCB-E9A5-4791-BB75-D71872E69806} - \Lenovo\ImController\TimeBasedEvents\cb63c906-6b4c-49f2-9469-f00b37ddcac7 -> No File <==== ATTENTION
Task: {55CA4BDE-A7A3-4038-A41C-231EC8A63C4F} - \Lenovo\ImController\Lenovo iM Controller Monitor -> No File <==== ATTENTION
Task: {B4E9C1BD-B83B-48F0-9357-FF3FE28EC5E7} - \Lenovo\ImController\TimeBasedEvents\95fffcb7-ad07-4a35-80f5-6caf3d0b75c9 -> No File <==== ATTENTION
Task: {B50F3AE9-C3C3-4697-AD20-2580CBEF64E4} - \Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance -> No File <==== ATTENTION
Task: {B6FE1F1A-CA6E-4048-92BC-7DD41986848D} - \Lenovo\ImController\TimeBasedEvents\3e6c83b2-d4d4-4dcb-858b-07596d5084d1 -> No File <==== ATTENTION
Task: {E6F5A161-4E8B-477A-AA22-CA4E50CA16A5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-09-20] (Google Inc -> Google Inc.)
SearchScopes: HKU\S-1-5-21-1300877549-1184033115-3997360293-1001 -> DefaultScope {4726F2FD-48EF-44CA-9501-F2771B5F9B81} URL = hxxps://www.bing.com/search?q={searchTerms}&src ... 02&pc=UE04
SearchScopes: HKU\S-1-5-21-1300877549-1184033115-3997360293-1001 -> {4726F2FD-48EF-44CA-9501-F2771B5F9B81} URL = hxxps://www.bing.com/search?q={searchTerms}&src ... 02&pc=UE04
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [No File]
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [No File]
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [No File]
C:\Users\Martin\AppData\Local\{2E0404D5-F10F-4613-8C4D-183A046CEFA5}
C:\Users\Martin\AppData\Local\{591F259B-FBC9-4444-B6E8-993AF64C625E}
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
FirewallRules: [{2E1F4D50-E231-4E99-9DA8-0960A1A9F145}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe No File
FirewallRules: [{53203DBC-79DB-494F-BC03-5FFD0D5F0C12}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe No File
FirewallRules: [{2D36B565-F3D1-48E2-AB81-018F6DA61394}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe No File
FirewallRules: [{B04076F4-72F5-4D51-BCEF-4C9FDF999A43}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe No File

EmptyTemp:
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

ras099 · #9 Příspěvek od **ras099** » 08 říj 2019 14:43

Fix result of Farbar Recovery Scan Tool (x64) Version: 06-10-2019
Ran by Martin (08-10-2019 15:27:05) Run:1
Running from C:\Users\Martin\Desktop
Loaded Profiles: Martin (Available Profiles: Martin)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKLM\...\Run: [] => [X]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-10-06] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-1300877549-1184033115-3997360293-1001\...\Run: [] => [X]
HKU\S-1-5-21-1300877549-1184033115-3997360293-1001\...\MountPoints2: {36deafa0-a3e1-11e9-bfc8-54ee750052dd} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1300877549-1184033115-3997360293-1001\...\MountPoints2: {528bac5c-6f3e-11e9-bfc4-54ee750052dd} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1300877549-1184033115-3997360293-1001\...\MountPoints2: {528bacc0-6f3e-11e9-bfc4-54ee750052dd} - "F:\HiSuiteDownLoader.exe"
Task: {334614B0-D76C-4DE4-AE02-6AB59F6BC83A} - \Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask -> No File <==== ATTENTION
Task: {4101FC6F-D565-4CC2-A5D1-2C329C9F5ADE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-09-20] (Google Inc -> Google Inc.)
Task: {53F22CCB-E9A5-4791-BB75-D71872E69806} - \Lenovo\ImController\TimeBasedEvents\cb63c906-6b4c-49f2-9469-f00b37ddcac7 -> No File <==== ATTENTION
Task: {55CA4BDE-A7A3-4038-A41C-231EC8A63C4F} - \Lenovo\ImController\Lenovo iM Controller Monitor -> No File <==== ATTENTION
Task: {B4E9C1BD-B83B-48F0-9357-FF3FE28EC5E7} - \Lenovo\ImController\TimeBasedEvents\95fffcb7-ad07-4a35-80f5-6caf3d0b75c9 -> No File <==== ATTENTION
Task: {B50F3AE9-C3C3-4697-AD20-2580CBEF64E4} - \Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance -> No File <==== ATTENTION
Task: {B6FE1F1A-CA6E-4048-92BC-7DD41986848D} - \Lenovo\ImController\TimeBasedEvents\3e6c83b2-d4d4-4dcb-858b-07596d5084d1 -> No File <==== ATTENTION
Task: {E6F5A161-4E8B-477A-AA22-CA4E50CA16A5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-09-20] (Google Inc -> Google Inc.)
SearchScopes: HKU\S-1-5-21-1300877549-1184033115-3997360293-1001 -> DefaultScope {4726F2FD-48EF-44CA-9501-F2771B5F9B81} URL = hxxps://www.bing.com/search?q={searchTerms}&src ... 02&pc=UE04
SearchScopes: HKU\S-1-5-21-1300877549-1184033115-3997360293-1001 -> {4726F2FD-48EF-44CA-9501-F2771B5F9B81} URL = hxxps://www.bing.com/search?q={searchTerms}&src ... 02&pc=UE04
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [No File]
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [No File]
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [No File]
C:\Users\Martin\AppData\Local\{2E0404D5-F10F-4613-8C4D-183A046CEFA5}
C:\Users\Martin\AppData\Local\{591F259B-FBC9-4444-B6E8-993AF64C625E}
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
FirewallRules: [{2E1F4D50-E231-4E99-9DA8-0960A1A9F145}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe No File
FirewallRules: [{53203DBC-79DB-494F-BC03-5FFD0D5F0C12}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe No File
FirewallRules: [{2D36B565-F3D1-48E2-AB81-018F6DA61394}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe No File
FirewallRules: [{B04076F4-72F5-4D51-BCEF-4C9FDF999A43}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe No File

EmptyTemp:
End
*****************

Processes closed successfully.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\" => removed successfully
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => removed successfully
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\" => removed successfully
"HKU\S-1-5-21-1300877549-1184033115-3997360293-1001\Software\Microsoft\Windows\CurrentVersion\Run\\" => removed successfully
HKU\S-1-5-21-1300877549-1184033115-3997360293-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{36deafa0-a3e1-11e9-bfc8-54ee750052dd} => removed successfully
HKLM\Software\Classes\CLSID\{36deafa0-a3e1-11e9-bfc8-54ee750052dd} => not found
HKU\S-1-5-21-1300877549-1184033115-3997360293-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{528bac5c-6f3e-11e9-bfc4-54ee750052dd} => removed successfully
HKLM\Software\Classes\CLSID\{528bac5c-6f3e-11e9-bfc4-54ee750052dd} => not found
HKU\S-1-5-21-1300877549-1184033115-3997360293-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{528bacc0-6f3e-11e9-bfc4-54ee750052dd} => removed successfully
HKLM\Software\Classes\CLSID\{528bacc0-6f3e-11e9-bfc4-54ee750052dd} => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{334614B0-D76C-4DE4-AE02-6AB59F6BC83A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{334614B0-D76C-4DE4-AE02-6AB59F6BC83A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{4101FC6F-D565-4CC2-A5D1-2C329C9F5ADE}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4101FC6F-D565-4CC2-A5D1-2C329C9F5ADE}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{53F22CCB-E9A5-4791-BB75-D71872E69806}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{53F22CCB-E9A5-4791-BB75-D71872E69806}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\TimeBasedEvents\cb63c906-6b4c-49f2-9469-f00b37ddcac7" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{55CA4BDE-A7A3-4038-A41C-231EC8A63C4F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{55CA4BDE-A7A3-4038-A41C-231EC8A63C4F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\Lenovo iM Controller Monitor" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B4E9C1BD-B83B-48F0-9357-FF3FE28EC5E7}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B4E9C1BD-B83B-48F0-9357-FF3FE28EC5E7}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\TimeBasedEvents\95fffcb7-ad07-4a35-80f5-6caf3d0b75c9" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{B50F3AE9-C3C3-4697-AD20-2580CBEF64E4}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B50F3AE9-C3C3-4697-AD20-2580CBEF64E4}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B6FE1F1A-CA6E-4048-92BC-7DD41986848D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B6FE1F1A-CA6E-4048-92BC-7DD41986848D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\TimeBasedEvents\3e6c83b2-d4d4-4dcb-858b-07596d5084d1" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E6F5A161-4E8B-477A-AA22-CA4E50CA16A5}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E6F5A161-4E8B-477A-AA22-CA4E50CA16A5}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKU\S-1-5-21-1300877549-1184033115-3997360293-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
HKU\S-1-5-21-1300877549-1184033115-3997360293-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{4726F2FD-48EF-44CA-9501-F2771B5F9B81} => removed successfully
HKLM\Software\Classes\CLSID\{4726F2FD-48EF-44CA-9501-F2771B5F9B81} => not found
HKLM\Software\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.3 => removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5 => removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1 => removed successfully
C:\Users\Martin\AppData\Local\{2E0404D5-F10F-4613-8C4D-183A046CEFA5} => moved successfully
C:\Users\Martin\AppData\Local\{591F259B-FBC9-4444-B6E8-993AF64C625E} => moved successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1 => removed successfully
HKLM\Software\Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524} => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2 => removed successfully
HKLM\Software\Classes\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282} => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3 => removed successfully
HKLM\Software\Classes\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30} => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4 => removed successfully
HKLM\Software\Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A} => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5 => removed successfully
HKLM\Software\Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive6 => removed successfully
HKLM\Software\Classes\CLSID\{9AA2F32D-362A-42D9-9328-24A483E2CCC3} => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7 => removed successfully
HKLM\Software\Classes\CLSID\{C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1 => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524} => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2 => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282} => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3 => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30} => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4 => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A} => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5 => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive6 => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{9AA2F32D-362A-42D9-9328-24A483E2CCC3} => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7 => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => not found
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
HKLM\Software\Classes\CLSID\{3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => not found
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File) => Error: No automatic fix found for this entry.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2E1F4D50-E231-4E99-9DA8-0960A1A9F145}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{53203DBC-79DB-494F-BC03-5FFD0D5F0C12}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2D36B565-F3D1-48E2-AB81-018F6DA61394}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B04076F4-72F5-4D51-BCEF-4C9FDF999A43}" => removed successfully

=========== EmptyTemp: ==========

BITS transfer queue => 10510336 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 180653577 B
Java, Flash, Steam htmlcache => 1124 B
Windows/system/drivers => 9945407 B
Edge => 1105438 B
Chrome => 407923961 B
Firefox => 18594175 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 8272 B
LocalService => 8272 B
NetworkService => 15212 B
NetworkService => 15212 B
Martin => 28139043 B

RecycleBin => 0 B
EmptyTemp: => 626.5 MB temporary data Removed.

================================

The system needed a reboot.

==== End of Fixlog 15:32:47 ====

#10 Příspěvek od **Rudy** » 08 říj 2019 15:50

Smazáno. Nastala nějaká změna?

ras099 · #11 Příspěvek od **ras099** » 08 říj 2019 16:51

Ano, nastala. Děkuji. Mám smazat všechny ty logy, dělat ještě něco víc...?

#12 Příspěvek od **Rudy** » 08 říj 2019 17:08

ADW znovu spusťte, pak klikněte na nastavení, srolujte až dolů a klkněte na odstranit. Vše ostatní, vč. logů smažte.

VIRY.CZ

Totálně zpomalený počítač

Totálně zpomalený počítač

Re: Totálně zpomalený počítač

Re: Totálně zpomalený počítač

Re: Totálně zpomalený počítač

Re: Totálně zpomalený počítač

Re: Totálně zpomalený počítač

Re: Totálně zpomalený počítač

Re: Totálně zpomalený počítač

Re: Totálně zpomalený počítač

Re: Totálně zpomalený počítač

Re: Totálně zpomalený počítač

Re: Totálně zpomalený počítač