Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Prosim o kontrolu logu

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zpráva
Autor
RANKO
Návštěvník
Návštěvník
Příspěvky: 88
Registrován: 29 črc 2007 07:46
Bydliště: BA - SK

Prosim o kontrolu logu

#1 Příspěvek od RANKO »

Zdravim, prosim o kontrolu. Bocik bol spomaleny, vrtal som sa v nom a teraz neprehrava video z You Tube ani z HDD.


FireFox:
========
FF DefaultProfile: 5s0rzb81.default
FF ProfilePath: C:\Users\Andrea\AppData\Roaming\Mozilla\Firefox\Profiles\5s0rzb81.default [2020-09-02]
FF NewTab: Mozilla\Firefox\Profiles\5s0rzb81.default -> hxxps://www.yahoo.com/?fr=vmn&type=vmn__webcomp ... 0306__yaff
FF Session Restore: Mozilla\Firefox\Profiles\5s0rzb81.default -> is enabled.
FF Notifications: Mozilla\Firefox\Profiles\5s0rzb81.default -> hxxps://b.robotcaptcha2.info
FF HomepageOverride: Mozilla\Firefox\Profiles\5s0rzb81.default -> Disabled: _d1Membersttab03_@free.mysocialshortcut.com
FF NewTabOverride: Mozilla\Firefox\Profiles\5s0rzb81.default -> Disabled: _d1Membersttab03_@free.mysocialshortcut.com
FF Extension: (Avast Passwords) - C:\Users\Andrea\AppData\Roaming\Mozilla\Firefox\Profiles\5s0rzb81.default\Extensions\jid1-r1tDuNiNb4SEww@jetpack.xpi [2020-02-12] [UpdateUrl:hxxps://pamcdn.avast.com/pamcdn/extensions/firefox/update.json]
FF Extension: (Avast SafePrice | Porovnanie, ponuky, kupóny) - C:\Users\Andrea\AppData\Roaming\Mozilla\Firefox\Profiles\5s0rzb81.default\Extensions\sp@avast.com.xpi [2020-07-05]
FF Extension: (Avast Online Security) - C:\Users\Andrea\AppData\Roaming\Mozilla\Firefox\Profiles\5s0rzb81.default\Extensions\wrc@avast.com.xpi [2020-06-17]
FF Extension: (MyWay Search By MySocialShortcut) - C:\Users\Andrea\AppData\Roaming\Mozilla\Firefox\Profiles\5s0rzb81.default\Extensions\_d1Membersttab03_@free.mysocialshortcut.com.xpi [2020-06-30] [UpdateUrl:hxxps:\/\/updates.tb.ask.com\/updateXpi.json?id=223553785&version=9.100.18.23620&track=TTAB03&trackRevision=1&fromId=_d1Membersttab03_%40free.mysocialshortcut.com&isBridgeExtension=false]
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)

Chrome:
=======
CHR Profile: C:\Users\Andrea\AppData\Local\Google\Chrome\User Data\Default [2020-09-02]
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR Extension: (Prezentácie) - C:\Users\Andrea\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-11-18]
CHR Extension: (Dokumenty) - C:\Users\Andrea\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-12-26]
CHR Extension: (Disk Google) - C:\Users\Andrea\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-12-26]
CHR Extension: (YouTube) - C:\Users\Andrea\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-12-26]
CHR Extension: (Avast SafePrice | Porovnanie, ponuky, kupóny) - C:\Users\Andrea\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2019-04-02]
CHR Extension: (Tabuľky) - C:\Users\Andrea\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-11-18]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\Andrea\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-12-26]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Andrea\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-11-18]
CHR Extension: (Gmail) - C:\Users\Andrea\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-12-26]
CHR Extension: (Chrome Media Router) - C:\Users\Andrea\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-04-02]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [7824280 2020-09-01] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [357848 2020-09-01] (Avast Software s.r.o. -> AVAST Software)
R2 CleanupPSvc; C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupSvc.exe [10282024 2019-06-17] (AVAST Software s.r.o. -> AVAST Software)
S4 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [733696 2013-07-01] (Intel(R) Corporation) [File not signed]
S4 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [200168 2013-12-04] (Intel(R) Smart Connect software -> )
R2 SamsungUPDUtilSvc; C:\WINDOWS\SysWOW64\SecUPDUtilSvc.exe [143664 2019-01-16] (Samsung Electronics CO., LTD. -> )
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37136 2020-09-01] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [206392 2020-09-01] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [235584 2020-09-01] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [195648 2020-09-01] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [60480 2020-09-01] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42768 2020-09-01] (Avast Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [175192 2020-09-01] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [516560 2020-09-01] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [109272 2020-09-01] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [84848 2020-09-01] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [851600 2020-09-01] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [469880 2020-09-01] (Avast Software s.r.o. -> AVAST Software)
S2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [217328 2020-09-01] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [326408 2020-09-01] (Avast Software s.r.o. -> AVAST Software)
U3 BthHFSrv; C:\WINDOWS\System32\svchost.exe [38792 2014-10-29] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
U3 BthHFSrv; C:\WINDOWS\SysWOW64\svchost.exe [33088 2014-10-29] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 GPIO; C:\WINDOWS\System32\drivers\iaiogpioe.sys [31232 2013-11-11] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
S3 iaioi2c; C:\WINDOWS\System32\drivers\iaioi2ce.sys [67584 2013-11-11] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
R3 netr28x; C:\WINDOWS\system32\DRIVERS\netr28x.sys [2432656 2014-08-12] (MEDIATEK INC. -> MediaTek Inc.)
R3 rtbth; C:\WINDOWS\System32\drivers\rtbth.sys [1204936 2014-02-12] (Mediatek Inc. -> Ralink Technology, Corp.)
U5 RTSUER; C:\Windows\System32\Drivers\RTSUER.sys [413912 2015-12-22] (Realtek Semiconductor Corp -> Realsil Semiconductor Corporation)
S3 SensorsServiceDriver; C:\WINDOWS\System32\drivers\WUDFRd.sys [226304 2014-10-29] (Microsoft Windows -> Microsoft Corporation)
S3 SWDUMon; C:\WINDOWS\system32\DRIVERS\SWDUMon.sys [25608 2020-09-01] (AVG Technologies CZ, s.r.o. -> SlimWare Utilities, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [20800 2013-07-22] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)
S3 wmbclass; C:\WINDOWS\System32\drivers\wmbclass.sys [267264 2017-12-10] (Microsoft Windows -> Microsoft Corporation)
U1 aswbdisk; no ImagePath
U3 McAPExe; no ImagePath
U3 McMPFSvc; no ImagePath
U3 McNaiAnn; no ImagePath
U3 mfecore; no ImagePath
U3 MSK80Service; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-09-02 17:58 - 2020-09-02 17:59 - 000009334 _____ C:\Users\Andrea\Desktop\FRST.txt
2020-09-02 17:57 - 2020-09-02 17:58 - 000000000 ____D C:\FRST
2020-09-02 17:55 - 2020-09-02 17:55 - 002298880 _____ (Farbar) C:\Users\Andrea\Desktop\FRST64.exe
2020-09-02 17:37 - 2020-09-02 17:37 - 000000000 ____D C:\Users\Andrea\AppData\Local\SlimWare Utilities Inc
2020-09-02 15:48 - 2020-09-02 15:49 - 027072192 _____ (Piriform Software Ltd) C:\Users\Andrea\Downloads\ccsetup570.exe
2020-09-01 23:17 - 2020-09-01 23:17 - 000002025 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Beats Audio.lnk
2020-09-01 23:17 - 2020-09-01 23:17 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2020-09-01 23:17 - 2020-09-01 23:17 - 000000000 ____D C:\WINDOWS\LastGood
2020-09-01 23:17 - 2020-09-01 23:17 - 000000000 ____D C:\Program Files\Realtek
2020-09-01 23:16 - 2017-11-02 02:36 - 000532376 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2020-09-01 23:16 - 2017-11-02 02:36 - 000166192 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2020-09-01 23:16 - 2017-11-02 02:35 - 003410320 _____ (DTS, Inc.) C:\WINDOWS\system32\slcnt64.dll
2020-09-01 23:16 - 2017-11-02 02:35 - 003121112 _____ (DTS, Inc.) C:\WINDOWS\system32\sltech64.dll
2020-09-01 23:16 - 2017-11-02 02:35 - 001435136 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRRPTR64.dll
2020-09-01 23:16 - 2017-11-02 02:35 - 000986984 _____ (DTS, Inc.) C:\WINDOWS\system32\sl3apo64.dll
2020-09-01 23:16 - 2017-11-02 02:35 - 000467152 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRAPO64.dll
2020-09-01 23:16 - 2017-11-02 02:35 - 000381400 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM64.dll
2020-09-01 23:16 - 2017-11-02 02:35 - 000341144 _____ (Synopsys, Inc.) C:\WINDOWS\SysWOW64\SRCOM.dll
2020-09-01 23:16 - 2017-11-02 02:35 - 000341144 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM.dll
2020-09-01 23:16 - 2017-11-02 02:34 - 003509192 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2020-09-01 23:16 - 2017-11-02 02:34 - 001016920 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDHF64.dll
2020-09-01 23:16 - 2017-11-02 02:34 - 000877416 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SEHDHF32.dll
2020-09-01 23:16 - 2017-11-02 02:34 - 000868168 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SECOMN64.dll
2020-09-01 23:16 - 2017-11-02 02:34 - 000866632 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDRA64.dll
2020-09-01 23:16 - 2017-11-02 02:34 - 000737952 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SECOMN32.dll
2020-09-01 23:16 - 2017-11-02 02:34 - 000691672 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2020-09-01 23:16 - 2017-11-02 02:34 - 000526272 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEAPO64.dll
2020-09-01 23:16 - 2017-11-02 02:34 - 000387304 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2020-09-01 23:16 - 2017-11-02 02:34 - 000343696 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2020-09-01 23:16 - 2017-11-02 02:34 - 000214824 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2020-09-01 23:16 - 2017-11-02 02:34 - 000192976 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2020-09-01 23:16 - 2017-11-02 02:34 - 000110976 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2020-09-01 23:16 - 2017-11-02 02:34 - 000088336 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2020-09-01 23:16 - 2017-11-02 02:33 - 003677152 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2020-09-01 23:16 - 2017-11-02 02:33 - 003561920 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2020-09-01 23:16 - 2017-11-02 02:33 - 003205600 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2020-09-01 23:16 - 2017-11-02 02:33 - 001351232 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2020-09-01 23:16 - 2017-11-02 02:33 - 000321712 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2020-09-01 23:16 - 2017-11-02 02:33 - 000321704 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2020-09-01 23:16 - 2017-11-02 02:33 - 000258856 _____ (TODO: <Company name>) C:\WINDOWS\system32\slprp64.dll
2020-09-01 23:16 - 2017-11-02 02:32 - 072520704 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2020-09-01 23:16 - 2017-11-02 02:32 - 006025640 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2020-09-01 23:16 - 2017-11-02 02:32 - 002922976 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2020-09-01 23:16 - 2017-11-02 02:32 - 000023688 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2020-09-01 23:16 - 2017-11-02 02:31 - 001617728 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CX64APO.dll
2020-09-01 23:16 - 2017-11-02 02:31 - 001529136 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CX64Proxy.dll
2020-09-01 23:16 - 2017-11-02 02:31 - 000609384 _____ (Conexant Systems, Inc.) C:\WINDOWS\system32\CAF64APO2.dll
2020-09-01 23:16 - 2017-11-02 02:31 - 000122312 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2020-09-01 23:16 - 2017-11-02 02:31 - 000115112 _____ (Conexant System, Inc.) C:\WINDOWS\system32\Caf64api.dll
2020-09-01 23:16 - 2017-11-02 02:09 - 014566602 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2020-09-01 23:16 - 2017-11-02 02:09 - 000005604 _____ C:\WINDOWS\system32\cxapo.lncs
2020-09-01 23:16 - 2017-11-02 02:09 - 000003780 _____ C:\WINDOWS\system32\cxapo.prop
2020-09-01 23:00 - 2018-04-20 01:56 - 000999296 _____ (Realtek ) C:\WINDOWS\system32\Drivers\Rt630x64.sys
2020-09-01 23:00 - 2018-04-20 01:56 - 000122816 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp64.dll
2020-09-01 22:56 - 2020-09-01 22:57 - 048347713 _____ C:\Users\Andrea\Documents\Firefox 80.0.1 (x86 sk) - 2020-09-01.pcv
2020-09-01 22:54 - 2020-09-01 23:02 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2020-09-01 22:47 - 2015-12-22 09:39 - 000413912 _____ (Realsil Semiconductor Corporation) C:\WINDOWS\system32\Drivers\RtsUer.sys
2020-09-01 22:47 - 2015-12-18 10:06 - 004330200 _____ (TODO: <Company name>) C:\WINDOWS\RtCRU64.exe
2020-09-01 22:47 - 2015-12-18 10:06 - 000769752 _____ (Realsil Semiconductor Corporation) C:\WINDOWS\system32\Drivers\RtsPer.sys
2020-09-01 22:47 - 2015-12-15 16:39 - 000328920 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RtsP2Stor.sys
2020-09-01 22:47 - 2015-10-16 11:26 - 000367320 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RtsPStor.sys
2020-09-01 22:47 - 2015-06-03 09:47 - 000313048 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RtsBaStor.sys
2020-09-01 22:47 - 2014-10-20 17:50 - 000083160 _____ (Realtek Semiconductor.) C:\WINDOWS\system32\RtCRX64.dll
2020-09-01 22:47 - 2014-01-27 13:39 - 009890008 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RsCRIcon.dll
2020-09-01 22:40 - 2020-09-01 22:40 - 000000000 ____D C:\Program Files (x86)\Ralink Corporation
2020-09-01 22:16 - 2020-09-01 22:16 - 000372712 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-09-01 21:16 - 2020-09-01 21:13 - 000338528 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2020-09-01 21:16 - 2020-09-01 21:13 - 000217328 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2020-09-01 21:16 - 2020-09-01 21:13 - 000175192 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2020-09-01 21:15 - 2020-09-01 22:21 - 000025608 _____ (SlimWare Utilities, Inc.) C:\WINDOWS\system32\Drivers\SWDUMon.sys
2020-09-01 21:11 - 2020-09-02 17:40 - 000000000 ____D C:\Program Files (x86)\Avast Driver Updater
2020-08-25 20:51 - 2020-09-01 22:21 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2020-08-21 18:47 - 2020-08-15 06:51 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmxs.dll
2020-08-21 18:47 - 2020-08-15 06:51 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasser.dll
2020-08-21 18:47 - 2020-08-15 06:36 - 000428544 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasplap.dll
2020-08-21 18:47 - 2020-08-15 06:16 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasmxs.dll
2020-08-21 18:47 - 2020-08-15 06:16 - 000023040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasser.dll
2020-08-21 18:47 - 2020-08-15 06:05 - 000880640 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdlg.dll
2020-08-21 18:47 - 2020-08-15 06:05 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasplap.dll
2020-08-21 18:47 - 2020-08-15 05:55 - 000963072 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll
2020-08-21 18:47 - 2020-08-15 05:48 - 001080320 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2020-08-21 18:47 - 2020-08-15 05:42 - 000796160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdlg.dll
2020-08-21 18:47 - 2020-08-15 05:39 - 000424448 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprapi.dll
2020-08-21 18:47 - 2020-08-15 05:35 - 000856064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasgcw.dll
2020-08-21 18:47 - 2020-08-15 05:28 - 000542720 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2020-08-21 18:47 - 2020-08-15 05:26 - 000700928 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2020-08-21 18:47 - 2020-08-15 05:24 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprapi.dll
2020-08-21 18:47 - 2020-08-15 05:16 - 000629248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2020-08-17 18:09 - 2020-08-06 01:47 - 000477696 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2020-08-17 18:09 - 2020-08-06 01:19 - 000367616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2020-08-17 18:09 - 2020-08-06 01:00 - 001098240 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2020-08-17 18:09 - 2020-08-04 05:58 - 001483264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll
2020-08-17 18:09 - 2020-08-04 05:39 - 001441792 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2020-08-17 18:09 - 2020-08-04 05:35 - 000842240 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2020-08-17 18:09 - 2020-08-04 05:32 - 001338368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll
2020-08-17 18:09 - 2020-08-04 05:15 - 000698880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2020-08-17 18:09 - 2020-07-23 09:33 - 000559616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2020-08-17 18:09 - 2020-07-19 12:45 - 000431352 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2020-08-17 18:09 - 2020-07-19 12:39 - 000376056 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2020-08-17 18:09 - 2020-07-19 12:36 - 000955432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2020-08-17 18:09 - 2020-07-19 10:41 - 000950784 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2020-08-17 18:09 - 2020-07-19 10:37 - 001756160 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-08-17 18:09 - 2020-07-19 10:15 - 000453120 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
2020-08-17 18:09 - 2020-07-19 10:10 - 001730048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-08-17 18:09 - 2020-07-18 08:36 - 000317176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2020-08-17 18:09 - 2020-07-18 08:31 - 000317192 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2020-08-17 18:09 - 2020-07-18 08:24 - 000788104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2020-08-17 18:09 - 2020-07-18 05:40 - 000772096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2020-08-17 18:09 - 2020-07-18 05:38 - 001494016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-08-17 18:09 - 2020-07-18 05:23 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2020-08-17 18:09 - 2020-07-18 05:17 - 001548288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2020-08-17 18:09 - 2020-07-17 21:19 - 001542672 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-08-17 18:09 - 2020-07-16 08:20 - 002745080 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL
2020-08-17 18:09 - 2020-07-16 08:18 - 002528696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVDECOD.DLL
2020-08-17 18:09 - 2020-07-14 10:11 - 001370688 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2020-08-17 18:09 - 2020-07-14 06:55 - 025756672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-08-17 18:09 - 2020-07-14 06:43 - 004169216 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-08-17 18:09 - 2020-07-14 06:19 - 005499392 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2020-08-17 18:09 - 2020-07-14 06:19 - 000785408 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2020-08-17 18:09 - 2020-07-14 06:15 - 020291584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-08-17 18:09 - 2020-07-14 05:51 - 001993728 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2020-08-17 18:09 - 2020-07-14 05:50 - 000653824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2020-08-17 18:09 - 2020-07-14 05:42 - 015479296 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2020-08-17 18:09 - 2020-07-14 05:42 - 001384448 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2020-08-17 18:09 - 2020-07-14 05:27 - 004111872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2020-08-17 18:09 - 2020-07-14 05:27 - 001088512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2020-08-17 18:09 - 2020-07-14 05:25 - 001559552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2020-08-17 18:09 - 2020-07-14 05:21 - 013861888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2020-08-17 18:09 - 2020-07-14 03:17 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2020-08-17 18:09 - 2020-07-14 03:17 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll
2020-08-17 18:09 - 2020-07-14 03:17 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2020-08-17 18:09 - 2020-07-11 21:33 - 007363320 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-08-17 18:09 - 2020-07-11 18:40 - 000313856 _____ (Microsoft Corporation) C:\WINDOWS\system32\tapisrv.dll
2020-08-17 18:09 - 2020-07-11 18:29 - 000671744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaservc.dll
2020-08-17 18:09 - 2020-07-11 18:17 - 000254976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tapisrv.dll
2020-08-17 18:09 - 2020-07-11 18:08 - 000656384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2020-08-17 18:09 - 2020-07-11 18:07 - 000252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2020-08-17 18:09 - 2020-07-11 17:54 - 000499712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2020-08-17 18:09 - 2020-07-10 01:33 - 000629504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP4SDECD.DLL
2020-08-17 18:09 - 2020-07-10 01:30 - 000464184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP4SDECD.DLL
2020-08-17 18:09 - 2020-07-04 18:46 - 003331584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2020-08-17 18:09 - 2020-07-04 18:23 - 003640832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2020-08-17 18:09 - 2020-06-30 19:27 - 000955904 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2020-08-17 18:09 - 2020-06-28 11:16 - 001210112 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOD.DLL
2020-08-17 18:09 - 2020-06-28 10:30 - 001037584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOD.DLL
2020-08-17 18:08 - 2020-08-04 06:08 - 000445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2020-08-17 18:08 - 2020-08-04 05:39 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2020-08-17 18:08 - 2020-07-19 11:45 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2020-08-17 18:08 - 2020-07-18 06:27 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2020-08-17 18:08 - 2020-07-14 06:31 - 000581120 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2020-08-17 18:08 - 2020-07-14 06:00 - 000498176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2020-08-17 18:08 - 2020-07-14 05:51 - 001033216 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2020-08-17 18:08 - 2020-07-14 05:43 - 000809472 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2020-08-17 18:08 - 2020-07-14 05:30 - 000880640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2020-08-17 18:08 - 2020-07-14 05:29 - 004859392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2020-08-17 18:08 - 2020-07-14 05:25 - 000696320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2020-08-17 18:08 - 2020-07-14 05:18 - 001566720 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2020-08-17 18:08 - 2020-07-14 05:07 - 004387328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2020-08-17 18:08 - 2020-07-14 05:07 - 000801280 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2020-08-17 18:08 - 2020-07-14 05:03 - 001341952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2020-08-17 18:08 - 2020-07-14 05:01 - 000710656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2020-08-17 18:08 - 2020-07-11 17:57 - 000109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdSSDP.dll
2020-08-17 18:08 - 2020-07-11 17:53 - 001377792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-08-17 18:08 - 2020-07-11 17:47 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdSSDP.dll
2020-08-17 18:08 - 2020-07-04 19:06 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\msisip.dll
2020-08-17 18:08 - 2020-07-04 18:35 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msisip.dll

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-09-02 17:50 - 2018-11-18 19:45 - 000000000 ____D C:\Users\Andrea\AppData\Local\AVAST Software
2020-09-02 17:50 - 2018-11-18 19:23 - 000003598 _____ C:\WINDOWS\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2283098450-1521063285-1732289341-1001
2020-09-02 17:49 - 2018-11-18 20:10 - 000000000 ____D C:\Users\Andrea\AppData\Roaming\vlc
2020-09-02 17:45 - 2016-11-23 15:13 - 000000000 ____D C:\Users\Andrea\AppData\LocalLow\Mozilla
2020-09-02 17:45 - 2013-08-22 16:45 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-09-02 17:44 - 2018-12-23 14:28 - 000000000 ____D C:\Users\Andrea\AppData\Local\CrashDumps
2020-09-02 17:44 - 2018-11-18 19:39 - 000000000 ____D C:\Users\Andrea\AppData\Local\ClassicShell
2020-09-02 17:33 - 2018-11-18 19:41 - 000004168 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2020-09-02 17:26 - 2018-11-18 19:34 - 000000000 ____D C:\ProgramData\AVAST Software
2020-09-02 17:22 - 2018-11-18 21:05 - 000000000 ____D C:\Program Files (x86)\AVAST Software
2020-09-02 17:20 - 2020-07-19 20:18 - 000003734 _____ C:\WINDOWS\system32\Tasks\Avast Secure Browser Heartbeat Task (Hourly)
2020-09-02 17:20 - 2020-07-19 20:18 - 000003152 _____ C:\WINDOWS\system32\Tasks\Avast Secure Browser Heartbeat Task (Logon)
2020-09-02 17:20 - 2020-07-19 20:15 - 000003410 _____ C:\WINDOWS\system32\Tasks\AvastUpdateTaskMachineUA
2020-09-02 16:49 - 2013-08-22 15:36 - 000000000 ____D C:\WINDOWS\Inf
2020-09-02 15:49 - 2018-11-18 19:54 - 000003870 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-09-02 15:49 - 2018-11-18 19:54 - 000000841 _____ C:\Users\Public\Desktop\CCleaner.lnk
2020-09-02 15:46 - 2018-11-18 19:54 - 000002802 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2020-09-02 15:41 - 2018-11-18 18:59 - 000000000 ____D C:\Users\Andrea
2020-09-02 15:37 - 2018-11-18 21:05 - 000004194 _____ C:\WINDOWS\system32\Tasks\Avast Cleanup Update
2020-09-01 23:18 - 2015-05-18 10:02 - 000000000 ___HD C:\Program Files (x86)\Temp
2020-09-01 23:16 - 2014-03-20 02:17 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2020-09-01 23:06 - 2015-05-18 10:04 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Music, Photos and Videos
2020-09-01 23:06 - 2015-05-18 10:00 - 000000000 ____D C:\Program Files (x86)\Realtek
2020-09-01 23:04 - 2013-09-01 05:49 - 000000000 ____D C:\SWSetup
2020-09-01 22:48 - 2015-05-18 10:04 - 000000000 ____D C:\WINDOWS\SysWOW64\sda
2020-09-01 22:44 - 2018-12-22 22:18 - 000017082 _____ C:\WINDOWS\system32\perfh01B.dat
2020-09-01 22:44 - 2018-12-22 22:18 - 000006132 _____ C:\WINDOWS\system32\perfc01B.dat
2020-09-01 22:44 - 2013-08-26 08:09 - 000963708 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-09-01 22:42 - 2015-05-18 10:00 - 000000000 ____D C:\ProgramData\Package Cache
2020-09-01 22:42 - 2015-05-18 09:57 - 000000000 ____D C:\Program Files\Intel
2020-09-01 22:41 - 2015-05-18 09:58 - 000000032 _____ C:\WINDOWS\0
2020-09-01 22:12 - 2020-07-19 20:15 - 000003282 _____ C:\WINDOWS\system32\Tasks\AvastUpdateTaskMachineCore
2020-09-01 22:04 - 2018-11-18 19:28 - 000001182 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-09-01 22:03 - 2020-07-19 20:10 - 000003478 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-09-01 22:03 - 2020-07-19 20:10 - 000003350 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-09-01 22:03 - 2015-05-18 10:05 - 000002992 _____ C:\WINDOWS\system32\Tasks\Synaptics TouchPad Enhancements
2020-09-01 22:03 - 2013-08-26 08:04 - 000000000 ____D C:\Users\Administrator
2020-09-01 21:13 - 2020-04-15 15:31 - 000516560 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2020-09-01 21:13 - 2019-01-05 12:43 - 000195648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2020-09-01 21:13 - 2019-01-05 12:43 - 000060480 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2020-09-01 21:13 - 2018-11-18 19:40 - 000469880 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2020-09-01 21:13 - 2018-11-18 19:40 - 000326408 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2020-09-01 21:13 - 2018-11-18 19:40 - 000109272 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2020-09-01 21:13 - 2018-11-18 19:40 - 000084848 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2020-09-01 21:13 - 2018-11-18 19:40 - 000042768 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2020-09-01 21:11 - 2019-01-15 12:15 - 000235584 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2020-09-01 21:11 - 2019-01-05 12:43 - 000037136 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2020-09-01 21:11 - 2018-11-18 19:40 - 000851600 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2020-09-01 21:11 - 2018-11-18 19:40 - 000206392 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2020-08-28 23:27 - 2018-11-18 19:42 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2020-08-28 23:27 - 2018-11-18 18:56 - 000002360 _____ C:\WINDOWS\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2283098450-1521063285-1732289341-500
2020-08-28 23:27 - 2015-05-18 10:15 - 000003160 _____ C:\WINDOWS\system32\Tasks\CLMLSvc_P2G8
2020-08-28 23:27 - 2015-05-18 10:12 - 000003156 _____ C:\WINDOWS\system32\Tasks\YCMServiceAgent
2020-08-28 19:02 - 2013-08-22 15:25 - 000262144 ___SH C:\WINDOWS\system32\config\BBI
2020-08-28 18:53 - 2013-08-22 17:36 - 000000000 ___RD C:\WINDOWS\ToastData
2020-08-28 18:53 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\SysWOW64\setupAdditional scan result of Farbar Recovery Scan Tool (x64) Version: 29-08-2020
Ran by Andrea (02-09-2020 18:01:07)
Running from C:\Users\Andrea\Desktop
Windows 8.1 (Update) (X64) (2018-11-18 17:09:51)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2283098450-1521063285-1732289341-500 - Administrator - Disabled) => C:\Users\Administrator
Andrea (S-1-5-21-2283098450-1521063285-1732289341-1001 - Administrator - Enabled) => C:\Users\Andrea
Guest (S-1-5-21-2283098450-1521063285-1732289341-501 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Disabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Disabled - Up to date) {5078598A-1FA2-C888-AA5F-A9C66537DB12}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 19.00 (x64 edition) (HKLM\...\{23170F69-40C1-2702-1900-000001000000}) (Version: 19.00.00.0 - Igor Pavlov)
Adobe Shockwave Player 12.0 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.0.4.144 - Adobe Systems, Inc.)
Avast Cleanup Premium (HKLM-x32\...\{075CC190-59EE-499F-828B-0B5C098C8C15}_is1) (Version: 19.1.7475 - AVAST Software)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 20.7.2425 - Avast Software)
Avast Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.7.915.0 - AVAST Software) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.70 - Piriform)
Classic Shell (HKLM\...\{CABCE573-0A86-42FA-A52A-C7EA61D5BE08}) (Version: 4.3.1 - IvoSoft)
Common Desktop Agent (HKLM\...\{031A0E14-0413-4C97-9772-2639B782F46F}) (Version: 1.62.0 - OEM) Hidden
CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.5.3606 - CyberLink Corp.)
Cyberlink PhotoDirector (HKLM-x32\...\InstallShield_{39337565-330E-4ab6-A9AE-AC81E0720B10}) (Version: 3.0.3.4503 - CyberLink Corp.)
CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.5.3304 - CyberLink Corp.)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
DisableMSDefender (HKLM\...\{74FE39A0-FB76-47CD-84BA-91E2BBB17EF2}) (Version: 1.0.0 - Hewlett-Packard Company) Hidden
Eco Driver Pack (HKLM-x32\...\Samsung Eco Driver Pack) (Version: 2.01.10.00 (28.5.2015) - Samsung Electronics Co., Ltd.)
Energy Star (HKLM\...\{465CA2B6-98AF-4E77-BE22-A908C34BB9EC}) (Version: 1.0.9 - Hewlett-Packard Company)
Fotogaléria (HKLM-x32\...\{08466673-3905-4437-93E8-34A221B7CA4E}) (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Fotogalerie (HKLM-x32\...\{AEA7CE08-09DC-4186-99FD-66A26F3B8B21}) (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
HP 3D DriveGuard (HKLM-x32\...\{07F6DC37-0857-4B68-A675-4E35989E85E3}) (Version: 6.0.15.1 - Hewlett-Packard Company)
HP Connected Music (Meridian - installer) (HKLM-x32\...\StartHPConnectedMusic) (Version: 1.0 - Meridian Audio Ltd)
HP Documentation (HKLM-x32\...\{7A0ABFEA-662B-42EC-AE28-483BA77805B8}) (Version: 1.1.0.0 - Hewlett-Packard)
HP Utility Center (HKLM\...\{891A1782-8B20-4403-8383-458962525926}) (Version: 2.3.4 - Hewlett-Packard Company)
HP Wireless Button Driver (HKLM-x32\...\{30B2D1D8-0A07-4B71-9553-0710C5D31E35}) (Version: 1.1.2.1 - Hewlett-Packard Company)
Inst5675 (HKLM\...\{2DE6247C-7077-451B-8BA7-FFD1A2ABBB47}) (Version: 8.00.57 - Softex Inc.) Hidden
Inst5676 (HKLM\...\{878F6913-7421-4713-97F7-0A736EE2A188}) (Version: 8.00.57 - Softex Inc.) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3366 - Intel Corporation)
Intel(R) Sideband Fabric Device Driver (HKLM-x32\...\C5A8BC6E-723A-4C0F-96E1-C426D1A4BCA9) (Version: 1.70.305.16316 - Intel Corporation)
Intel(R) Smart Connect Technology (HKLM\...\{4FDEF4A5-3088-47FA-82B7-1EF6C082D5B4}) (Version: 4.2.41.2710 - Intel Corporation)
Intel(R) Trusted Execution Engine (HKLM\...\{176E2755-0A17-42C6-88E2-192AB2131278}) (Version: 1.0.0.1050 - Intel Corporation)
Intel(R) Virtual Buttons (HKLM-x32\...\1992736F-C90A-481C-B21B-EE34CAD07387) (Version: 1.0.0.14 - Intel Corporation)
Intel® Chipset Device Software (HKLM-x32\...\{314d4c01-f54b-4125-a71f-1e2722c29050}) (Version: 10.1.1.40 - Intel(R) Corporation) Hidden
IrfanView 4.54 (64-bit) (HKLM\...\IrfanView64) (Version: 4.54 - Irfan Skiljan)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 83.0.478.50 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.129.37 - )
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{379A0618-EF50-423C-9637-EEB2D25A4BB4}) (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{3C5F91EF-5C0B-4D13-BCBE-0FC6FC3ED7F9}) (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{45898170-E68C-4F02-AA35-C2186BF347A3}) (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{CFBFE244-6269-41DC-85B6-86F99C88ED02}) (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
MozBackup 1.5.1 (HKLM-x32\...\MozBackup) (Version: - Pavel Cvrcek)
Mozilla Firefox 80.0.1 (x86 sk) (HKLM-x32\...\Mozilla Firefox 80.0.1 (x86 sk)) (Version: 80.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 63.0.1 - Mozilla)
OpenOffice 4.1.5 (HKLM-x32\...\{E177AC33-EC9C-4537-8996-37ED331D9227}) (Version: 4.15.9789 - Apache Software Foundation)
Ralink Bluetooth Stack (HKLM\...\{49AA3AFC-37F9-94C8-BFC6-43E7DCE88C77}) (Version: 11.0.752.0 - Mediatek)
Ralink RT3290 802.11bgn Wi-Fi Adapter (HKLM-x32\...\{8FC4F1DD-F7FD-4766-804D-3C8FF1D309AF}) (Version: 5.0.50.0 - Mediatek)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.370.119 - Realtek Semiconduct Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.63.328.2018 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8287 - Realtek Semiconductor Corp.)
Samsung Easy Printer Manager (HKLM-x32\...\Samsung Easy Printer Manager) (Version: 2.00.01.24 - HP Printing Korea Co., Ltd.)
Samsung Printer Center (HKLM-x32\...\Samsung Printer Center) (Version: 1.0.0.21 - Samsung Electronics Co., Ltd.)
Samsung Scan Process Machine (HKLM-x32\...\Samsung Scan Process Machine) (Version: 1.03.05.28 - Samsung Electronics Co., Ltd.) Hidden
SumatraPDF (HKLM\...\SumatraPDF) (Version: 3.1.2 - Krzysztof Kowalczyk)
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics ClickPad Driver (HKLM\...\SynTPDeinstKey) (Version: 19.3.31.31 - Synaptics Incorporated)
Uninstall Samsung Printer Software (HKLM-x32\...\TotalUninstaller) (Version: 4.0.0.13 - Samsung Electronics CO., LTD.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.7.1 - VideoLAN)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)

Packages:
=========
Box for Windows 8 -> C:\Program Files\WindowsApps\134D4F5B.Box_2.1.4.4_neutral__2qk4zy5s3qmee [2015-12-03] (Box, Inc.)
Getting Started with Windows 8 -> C:\Program Files\WindowsApps\AD2F1837.GettingStartedwithWindows8_1.6.0.0_neutral__v10z8vjag6ke6 [2015-12-03] (Hewlett-Packard Company)
HP Registration -> C:\Program Files\WindowsApps\AD2F1837.HPRegistration_1.2.1.166_neutral__v10z8vjag6ke6 [2015-12-03] (Hewlett-Packard Company)
Hry -> C:\Program Files\WindowsApps\Microsoft.XboxLIVEGames_2.0.139.0_x64__8wekyb3d8bbwe [2015-05-18] (Microsoft Corporation) [MS Ad]
Hudba -> C:\Program Files\WindowsApps\Microsoft.ZuneMusic_2.6.672.0_x64__8wekyb3d8bbwe [2015-12-03] (Microsoft Corporation) [MS Ad]
MSN Cestovanie -> C:\Program Files\WindowsApps\Microsoft.BingTravel_3.0.4.336_x64__8wekyb3d8bbwe [2015-12-03] (Microsoft Corporation) [MS Ad]
MSN Financie -> C:\Program Files\WindowsApps\Microsoft.BingFinance_3.0.4.344_x64__8wekyb3d8bbwe [2016-10-13] (Microsoft Corporation) [MS Ad]
MSN Jedlá a nápoje -> C:\Program Files\WindowsApps\Microsoft.BingFoodAndDrink_3.0.4.336_x64__8wekyb3d8bbwe [2015-12-03] (Microsoft Corporation) [MS Ad]
MSN Počasie -> C:\Program Files\WindowsApps\Microsoft.BingWeather_3.0.4.350_x64__8wekyb3d8bbwe [2016-11-29] (Microsoft Corporation) [MS Ad]
MSN Správy -> C:\Program Files\WindowsApps\Microsoft.BingNews_3.0.4.344_x64__8wekyb3d8bbwe [2016-10-13] (Microsoft Corporation) [MS Ad]
MSN Šport -> C:\Program Files\WindowsApps\Microsoft.BingSports_3.0.4.345_x64__8wekyb3d8bbwe [2016-10-13] (Microsoft Corporation) [MS Ad]
MSN Zdravie a fitnes -> C:\Program Files\WindowsApps\Microsoft.BingHealthAndFitness_3.0.4.336_x64__8wekyb3d8bbwe [2015-12-03] (Microsoft Corporation) [MS Ad]
Skype -> C:\Program Files\WindowsApps\Microsoft.SkypeApp_3.1.0.1016_x86__kzf8qxf38zg5c [2015-12-03] (Skype) [MS Ad]
Video -> C:\Program Files\WindowsApps\Microsoft.ZuneVideo_2.6.446.0_x64__8wekyb3d8bbwe [2015-12-03] (Microsoft Corporation) [MS Ad]
YouCam for HP -> C:\Program Files\WindowsApps\CyberLinkCorp.hs.YouCamforHP_1.0.2.29632_x86__06qsbagp91rvg [2015-12-03] (CYBERLINKCOM CORP)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2283098450-1521063285-1732289341-1001_Classes\CLSID\{D9AC5E73-BB10-467b-B884-AA1E475C51F5}\Shell\Open\Command -> C:\Program Files\Synaptics\SynTP\SynTPCpl.dll (Synaptics Incorporated -> Synaptics Incorporated)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-09-01] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2018-07-15] (Ivaylo Beltchev -> IvoSoft) [File not signed]
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2018-07-15] (Ivaylo Beltchev -> IvoSoft) [File not signed]
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [ALZip] -> [CC]{4EB37360-49E8-11D3-95B5-004033382980} => -> No File
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-09-01] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => -> No File
ContextMenuHandlers2: [ALZip] -> [CC]{4EB37360-49E8-11D3-95B5-004033382980} => -> No File
ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => -> No File
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-09-01] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [7-Zip] -> [CC]{23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers4: [ALZip] -> [CC]{4EB37360-49E8-11D3-95B5-004033382980} => -> No File
ContextMenuHandlers5: [ALZip] -> {4EB37360-49E8-11D3-95B5-004033382980} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2013-11-27] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [ALZip] -> [CC]{4EB37360-49E8-11D3-95B5-004033382980} => -> No File
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-09-01] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [StartMenuExt] -> {E595F05F-903F-4318-8B0A-7F633B520D2B} => C:\WINDOWS\system32\StartMenuHelper64.dll [2018-07-15] (Ivaylo Beltchev -> IvoSoft) [File not signed]

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2019-02-21 21:00 - 2019-02-21 21:00 - 000078336 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2018-07-15 14:15 - 2018-07-15 14:15 - 000885560 _____ (Ivaylo Beltchev -> IvoSoft) [File not signed] C:\Program Files\Classic Shell\ClassicExplorer64.dll
2018-07-15 14:15 - 2018-07-15 14:15 - 003664696 _____ (Ivaylo Beltchev -> IvoSoft) [File not signed] C:\Program Files\Classic Shell\ClassicStartMenuDLL.dll
2018-07-15 14:15 - 2018-07-15 14:15 - 000291128 _____ (Ivaylo Beltchev -> IvoSoft) [File not signed] C:\WINDOWS\system32\StartMenuHelper64.dll
2015-05-18 10:09 - 2015-05-18 10:09 - 001093120 _____ (Microsoft Corporation) [File not signed] C:\WINDOWS\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\MFC80U.DLL
2017-11-08 08:35 - 2017-11-08 08:35 - 000123904 _____ (Samsung Electronics Co., Ltd.) [File not signed] C:\Program Files (x86)\Samsung\Easy Printer Manager\SmartScreenPrint\CDAKEYMonitor64.dll
2018-05-18 10:57 - 2018-05-18 10:57 - 003696128 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\Samsung\Easy Printer Manager\ScanFax2PC\CDAScan2PCMonitor64.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2ce.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 15:25 - 2019-01-04 19:44 - 000000826 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\TXE Components\TCS\;C:\Program Files\Intel\TXE Components\TCS\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Hewlett-Packard\SimplePass\;C:\Program Files (x86)\Windows Live\Shared
HKU\S-1-5-21-2283098450-1521063285-1732289341-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Hewlett-Packard Backgrounds\backgroundDefault.jpg
DNS Servers: 192.168.100.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\StartupFolder: => "ISCTSystray.lnk"
HKLM\...\StartupApproved\StartupFolder: => "Avast Cleanup Premium.lnk"
HKLM\...\StartupApproved\Run: => "RTHDVCPL"
HKLM\...\StartupApproved\Run: => "SimplePass"
HKLM\...\StartupApproved\Run: => "OPBHOBroker"
HKLM\...\StartupApproved\Run: => "OPBHOBrokerDesktop"
HKLM\...\StartupApproved\Run: => "Classic Start Menu"
HKLM\...\StartupApproved\Run32: => "AccelerometerSysTrayApplet"
HKLM\...\StartupApproved\Run32: => "HPMessageService"
HKU\S-1-5-21-2283098450-1521063285-1732289341-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-2283098450-1521063285-1732289341-1001\...\StartupApproved\Run: => "AvastBrowserAutoLaunch_C603A72839B5FDE22DFFC1CBAEAAB320"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{D274810C-85CB-453C-A3D1-B33F1F86DC68}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{61B8F3B3-1B73-44E3-8709-9F0227FAA8EF}] => (Allow) LPort=2869
FirewallRules: [{128B9C44-E91E-4C8E-B2D8-CC8B35FB2C12}] => (Allow) LPort=1900
FirewallRules: [{57F6CF83-F1EF-42FA-AE40-4F69CADC32B7}] => (Allow) C:\Program Files (x86)\HPConnectedMusic\HPConnectedMusic.exe (Meridian Audio Ltd -> Meridian Audio Ltd)
FirewallRules: [{2B6A1BCD-0B17-4E1D-99BB-41B988C3BB2C}] => (Allow) C:\Program Files (x86)\HPConnectedMusic\HPConnectedMusic.exe (Meridian Audio Ltd -> Meridian Audio Ltd)
FirewallRules: [{A24D828E-6E13-4629-B71E-6BAB6CA1C99C}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDirector10\PDR10.EXE (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{C13BE1A3-74C4-416C-9B47-9FD9F945EDBE}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{874CA447-3461-465D-94C6-6B98B6B9051E}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{84C4A089-6E26-44E2-9A2F-1A7858F9ECD8}] => (Allow) C:\Program Files (x86)\AVAST Software\Avast Cleanup\TUNEUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
FirewallRules: [{49C7D819-0097-4EB6-92ED-FF34C5DD093A}] => (Allow) C:\Program Files (x86)\AVAST Software\Avast Cleanup\TUNEUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
FirewallRules: [{5440B7FF-A1EB-48A6-9F6C-2FC807E73D9E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{74AA7C98-7703-4A06-915D-38A4A33F92CC}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{D9124F8E-6E69-46EA-AC86-F5E95855ACE4}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{D8BA2838-6F23-4FBD-A6B0-E7590557476D}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{47CF74A1-384F-4822-B4D8-50C92BC9AE2D}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Printer Center\SamsungPrinterCenter.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{9658AE30-02DE-4AFC-9530-C4E9804AD2EB}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{F2F04A0D-68FD-4392-8612-C3A42B9FC0EC}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{5943A477-147B-4865-9C85-D71D899DD210}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\EasyPrinterManagerV2.exe (HP Inc. -> )
FirewallRules: [{7EC86463-BAC2-466D-A8F5-A6A816EF1A6D}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\OrderSupplies.exe (HP Inc. -> HP Printing Korea Co., Ltd.)
FirewallRules: [{099AA3AD-E6B5-4B18-9B95-27A6E42CFDD7}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\EPM2AlertList.exe (HP Inc. -> HP Printing Korea Co., Ltd.)
FirewallRules: [{D16981D0-50D6-4289-BF1F-260271D361CE}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\EPM2Migrator.exe (HP Inc. -> )
FirewallRules: [{4DD6B4A0-EFA0-4ECC-8C70-3C140D35FB73}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )

==================== Restore Points =========================

01-09-2020 21:09:51 Installed Avast Driver Updater
01-09-2020 22:27:55 Avast Driver Updater Installing Drivers
01-09-2020 22:46:39 Nainštalované Realtek Card Reader
01-09-2020 22:53:26 Installed Mediatek Wireless LAN
01-09-2020 23:00:10 Nainštalované Realtek Ethernet Controller Driver
01-09-2020 23:05:42 Odstránené Realtek High Definition Audio Driver
01-09-2020 23:12:41 Nainštalované Realtek High Definition Audio Driver

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (09/02/2020 05:40:01 PM) (Source: MsiInstaller) (EventID: 11723) (User: Aďka)
Description: Product: Avast Driver Updater -- Error 1723. There is a problem with this Windows Installer package. A DLL required for this install to complete could not be run. Contact your support personnel or package vendor. Action UlReportUninstall, entry: ReportUninstall, library: C:\WINDOWS\Installer\MSI8A6E.tmp

Error: (09/02/2020 05:39:58 PM) (Source: Microsoft-Windows-RestartManager) (EventID: 10006) (User: Aďka)
Description: Application or service 'aswbIDSAgent' could not be shut down.

Error: (09/02/2020 04:58:55 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: AvastBrowser.exe, verzia: 84.1.5542.136, časová značka: 0x5d83daff
Názov chybujúceho modulu: ntdll.dll, verzia: 6.3.9600.19678, časová značka: 0x5e82c88a
Kód výnimky: 0xc000000d
Odstup chyby: 0x0000000000102c20
Identifikácia chybujúceho procesu: 0x6f8
Čas spustenia chybujúcej aplikácie: 0x01d681396c1112cd
Cesta chybujúcej aplikácie: C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
Cesta chybujúceho modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
Identifikácia hlásenia: d2179d74-ed2c-11ea-8291-b0104139883e
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (09/02/2020 03:41:07 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Aďka)
Description: Aktivácia aplikácie microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 zlyhala pre chybu: -2144927141 Ďalšie informácie nájdete v denníku Microsoft-Windows-TWinUI/Operational.

Error: (09/02/2020 03:33:04 PM) (Source: System Restore) (EventID: 8206) (User: )
Description: Vybratý bod obnovenia bol poškodený alebo odstránený počas obnovovania (Scheduled Checkpoint).

Error: (09/01/2020 10:07:33 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: AvastBrowser.exe, verzia: 84.1.5542.136, časová značka: 0x5d83daff
Názov chybujúceho modulu: ntdll.dll, verzia: 6.3.9600.19678, časová značka: 0x5e82c88a
Kód výnimky: 0xc000000d
Odstup chyby: 0x0000000000102c20
Identifikácia chybujúceho procesu: 0x82c
Čas spustenia chybujúcej aplikácie: 0x01d6809b2a279ec6
Cesta chybujúcej aplikácie: C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
Cesta chybujúceho modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
Identifikácia hlásenia: c52b392f-ec8e-11ea-8283-b0104139883e
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (09/01/2020 10:07:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: AvastBrowser.exe, verzia: 84.1.5542.136, časová značka: 0x5d83daff
Názov chybujúceho modulu: ntdll.dll, verzia: 6.3.9600.19678, časová značka: 0x5e82c88a
Kód výnimky: 0xc000000d
Odstup chyby: 0x0000000000102c20
Identifikácia chybujúceho procesu: 0x82c
Čas spustenia chybujúcej aplikácie: 0x01d6809b2a279ec6
Cesta chybujúcej aplikácie: C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
Cesta chybujúceho modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
Identifikácia hlásenia: c17d6d29-ec8e-11ea-8283-b0104139883e
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (09/01/2020 10:07:21 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: AvastBrowser.exe, verzia: 84.1.5542.136, časová značka: 0x5d83daff
Názov chybujúceho modulu: ntdll.dll, verzia: 6.3.9600.19678, časová značka: 0x5e82c88a
Kód výnimky: 0xc000000d
Odstup chyby: 0x0000000000102c20
Identifikácia chybujúceho procesu: 0x82c
Čas spustenia chybujúcej aplikácie: 0x01d6809b2a279ec6
Cesta chybujúcej aplikácie: C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
Cesta chybujúceho modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
Identifikácia hlásenia: be2f0028-ec8e-11ea-8283-b0104139883e
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:


System errors:
=============
Error: (09/02/2020 05:49:31 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: The server {DDCFD26B-FEED-44CD-B71D-79487D2E5E5A} did not register with DCOM within the required timeout.

Error: (09/02/2020 05:49:31 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Avast Cleanup Premium sa pri spustení zablokovala.

Error: (09/02/2020 05:47:31 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: The server {DDCFD26B-FEED-44CD-B71D-79487D2E5E5A} did not register with DCOM within the required timeout.

Error: (09/02/2020 05:45:21 PM) (Source: Microsoft-Windows-Directory-Services-SAM) (EventID: 16953) (User: NT AUTHORITY)
Description: The password notification DLL "C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter" failed to load with error 126. Please verify that the notification DLL path defined in the registry, HKLM\System\CurrentControlSet\Control\Lsa\Notification Packages, refers to a correct and absolute path (<drive>:\<path>\<filename>.<ext>) and not a relative or invalid path. If the DLL path is correct, please validate that any supporting files are located in the same directory, and that the system account has read access to both the DLL path and any supporting files. Contact the provider of the notification DLL for additional support. Further details can be found on the web at http://go.microsoft.com/fwlink/?LinkId=245898.

Error: (09/02/2020 05:39:40 PM) (Source: DCOM) (EventID: 10016) (User: Aďka)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID
{7022A3B3-D004-4F52-AF11-E9E987FEE25F}
and APPID
{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}
to the user Aďka\Andrea SID (S-1-5-21-2283098450-1521063285-1732289341-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (09/02/2020 05:39:36 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Avast Cleanup Premium sa pri spustení zablokovala.

Error: (09/02/2020 05:39:36 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: The server {DDCFD26B-FEED-44CD-B71D-79487D2E5E5A} did not register with DCOM within the required timeout.

Error: (09/02/2020 05:37:36 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: The server {DDCFD26B-FEED-44CD-B71D-79487D2E5E5A} did not register with DCOM within the required timeout.


CodeIntegrity:
===================================

Date: 2020-09-02 17:59:11.590
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slvipp64.dll because the set of per-page image hashes could not be found on the system.

Date: 2020-09-02 17:57:05.270
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slvipp64.dll because the set of per-page image hashes could not be found on the system.

Date: 2020-09-02 17:56:55.723
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slvipp64.dll because the set of per-page image hashes could not be found on the system.

Date: 2020-09-02 17:56:02.400
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slvipp64.dll because the set of per-page image hashes could not be found on the system.

Date: 2020-09-02 17:49:16.517
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slvipp64.dll because the set of per-page image hashes could not be found on the system.

Date: 2020-09-02 17:49:09.515
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slvipp64.dll because the set of per-page image hashes could not be found on the system.

Date: 2020-09-02 17:41:48.717
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slvipp64.dll because the set of per-page image hashes could not be found on the system.

Date: 2020-09-02 17:41:25.049
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slvipp64.dll because the set of per-page image hashes could not be found on the system.

==================== Memory info ===========================

BIOS: Insyde F.13 07/12/2014
Motherboard: Hewlett-Packard 2209
Processor: Intel(R) Pentium(R) CPU N3520 @ 2.16GHz
Percentage of memory in use: 55%
Total physical RAM: 3984.27 MB
Available physical RAM: 1755.31 MB
Total Virtual: 5200.27 MB
Available Virtual: 2674.84 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:449.43 GB) (Free:225.26 GB) NTFS
Drive d: (RECOVERY) (Fixed) (Total:15.45 GB) (Free:1.52 GB) NTFS ==>[system with boot components (obtained from drive)]

\\?\Volume{3c2ae0ef-fe01-45ad-9656-0942e3ee86c6}\ (WINRE) (Fixed) (Total:0.39 GB) (Free:0.1 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 920D509D)

Partition: GPT.

==================== End of Addition.txt =======================
2020-08-28 18:53 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\system32\setup
2020-08-28 18:52 - 2018-11-18 19:28 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-08-21 19:10 - 2013-08-22 17:20 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-08-17 17:07 - 2018-11-18 19:45 - 000002026 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2020-09-02 16:49
==================== End of FRST.txt ========================

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 112393
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosim o kontrolu logu

#2 Příspěvek od Rudy »

Zdravím!
Log FRST není kompletní. Dejte nový.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

RANKO
Návštěvník
Návštěvník
Příspěvky: 88
Registrován: 29 črc 2007 07:46
Bydliště: BA - SK

Re: Prosim o kontrolu logu

#3 Příspěvek od RANKO »

O.K sorry vyskocila na mna neaka hlaska pocas toho prveho FRST a som ju zavrel, tak to bolo asi preto. Medzitym mi videjka z HDD zacali frcat,ale dlho trva kym sa spustia. Vcera som totiz skusal aktualizovat drivery a obavam sa ze tam som to niekde ..

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 29-08-2020
Ran by Andrea (administrator) on AĎKA (Hewlett-Packard HP Pavilion 11 x360 PC) (02-09-2020 18:56:33)
Running from C:\Users\Andrea\Desktop
Loaded Profiles: Andrea
Platform: Windows 8.1 (Update) (X64) Language: Slovenčina (Slovensko)
Default browser: FF
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <5>
(CyberLink Corp. -> CyberLink Corp.) C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe
(CyberLink Corp. -> CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Ivaylo Beltchev -> IvoSoft) [File not signed] C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Samsung Electronics CO., LTD. -> ) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
(Samsung Electronics CO., LTD. -> ) C:\Windows\SysWOW64\SecUPDUtilSvc.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [163640 2018-07-15] (Ivaylo Beltchev -> IvoSoft) [File not signed]
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [109160 2020-09-01] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [464608 2014-09-08] (Samsung Electronics CO., LTD. -> )
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9235936 2017-11-02] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [AccelerometerSysTrayApplet] => C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [77088 2013-07-24] (Hewlett-Packard Company -> Hewlett-Packard Company)
HKU\S-1-5-21-2283098450-1521063285-1732289341-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [29271224 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM\...\Print\Monitors\HP Universal Port Monitor: C:\WINDOWS\system32\hpbprtmon.dll [404992 2013-08-10] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard)
HKLM\...\Print\Monitors\ux003 Langmon: C:\WINDOWS\system32\ux003lm.dll [22528 2015-03-12] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\...\Authentication\Credential Providers: [{538C240D-3DEE-4032-AB4C-08A3A6EB0861}] -> C:\Program Files (x86)\CyberLink\YouCam\CLCredProv\x64\CLCredProv.dll [2013-12-18] (CyberLink Corp. -> CyberLink)
HKLM\Software\...\Authentication\Credential Providers: [{F3F1B0FA-4775-41d8-8578-436772D93FB4}] ->
HKLM\Software\...\Authentication\Credential Provider Filters: [{F3F1B0FA-4775-41d8-8578-436772D93FB4}] ->
Lsa: [Notification Packages] scecli "C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter"
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast Cleanup Premium.lnk [2018-11-18]
ShortcutTarget: Avast Cleanup Premium.lnk -> C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupUI.exe (AVAST Software s.r.o. -> AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ISCTSystray.lnk [2015-05-18]
ShortcutTarget: ISCTSystray.lnk -> C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe (Intel(R) Smart Connect software -> Intel Corporation)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0D223EAB-C322-43A7-AA41-9360B6D2015F} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111576 2013-08-05] (CyberLink Corp. -> CyberLink)
Task: {121CC119-5D6D-40DB-8544-038C96F5F88E} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3850336 2020-09-01] (Avast Software s.r.o. -> AVAST Software)
Task: {26A7EF66-7272-48DA-A64A-5FF48C2D2DAB} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1660520 2020-02-27] (Avast Software s.r.o. -> Avast Software)
Task: {4C8C093C-F1B0-4194-BEA3-D7A569677009} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
Task: {5E8927C1-85C5-4181-980C-EAEAA2556775} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
Task: {65BE3011-8C78-43F9-9360-87F5445A2CFA} - System32\Tasks\YCMServiceAgent => C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe [267224 2013-12-18] (CyberLink Corp. -> CyberLink Corp.)
Task: {7EF3683D-1806-419B-B4D8-F70CA4EB46DE} - System32\Tasks\McAfee Remediation (Prepare) => C:\Program Files\Common Files\AV\McAfee VirusScan\upgrade.exe [1697848 2018-06-11] (McAfee, Inc. -> McAfee, Inc.)
Task: {9FC86E1D-E44A-40BF-8D1B-686259157182} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
Task: {A7E6331B-9DEF-48AE-B6F6-B43CEE157577} - System32\Tasks\Avast Cleanup Update => C:\Program Files (x86)\AVAST Software\Avast Cleanup\TUNEUpdate.exe [1659000 2019-06-17] (AVAST Software s.r.o. -> AVAST Software)
Task: {AFADF9A9-F3BB-4775-BA58-D0C86DC169BD} - \Hewlett-Packard\HP CoolSense\HP CoolSense Start at Logon -> No File <==== ATTENTION
Task: {B293AADD-B368-4571-B3B3-543C9AB6FE50} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [24770744 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {D0EE4E97-19D1-4A84-BBD9-8E0D716BA611} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [4397144 2017-08-18] (Synaptics Incorporated -> Synaptics Incorporated)
Task: {DDE494FB-2736-404D-9528-BB5E500C9530} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
Task: {E0EF243B-56C4-4D7F-AACB-2C573752642B} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {F4E5E43D-9305-434D-A8B3-93BF80C4C00D} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll => No File
Winsock: Catalog5-x64 07 C:\Program Files\Bonjour\mdnsNSP.dll => No File
Tcpip\Parameters: [DhcpNameServer] 192.168.100.1
Tcpip\..\Interfaces\{254F54EA-1251-4357-AC21-64269807B941}: [DhcpNameServer] 192.168.100.1
Tcpip\..\Interfaces\{AB51ACEE-B723-4FCF-8012-D4323D069A60}: [DhcpNameServer] 192.168.0.10 192.168.2.4 192.168.1.4

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HPNTDFJS
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HPNTDFJS
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HPNTDFJS
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HPNTDFJS
HKU\S-1-5-21-2283098450-1521063285-1732289341-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com/?pc=HPNTDFJS
HKU\S-1-5-21-2283098450-1521063285-1732289341-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HPNTDFJS
SearchScopes: HKLM -> {92DF01A1-31EC-491F-BF75-1C6211DC3D8C} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKLM-x32 -> {92DF01A1-31EC-491F-BF75-1C6211DC3D8C} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKU\S-1-5-21-2283098450-1521063285-1732289341-1001 -> {92DF01A1-31EC-491F-BF75-1C6211DC3D8C} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2018-07-15] (Ivaylo Beltchev -> IvoSoft) [File not signed]
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2018-07-15] (Ivaylo Beltchev -> IvoSoft) [File not signed]
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2018-07-15] (Ivaylo Beltchev -> IvoSoft) [File not signed]
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2018-07-15] (Ivaylo Beltchev -> IvoSoft) [File not signed]
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2018-07-15] (Ivaylo Beltchev -> IvoSoft) [File not signed]
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2018-07-15] (Ivaylo Beltchev -> IvoSoft) [File not signed]

Edge:
======
Edge Profile: C:\Users\Andrea\AppData\Local\Microsoft\Edge\User Data\Default [2020-09-02]

FireFox:
========
FF DefaultProfile: 5s0rzb81.default
FF ProfilePath: C:\Users\Andrea\AppData\Roaming\Mozilla\Firefox\Profiles\5s0rzb81.default [2020-09-02]
FF NewTab: Mozilla\Firefox\Profiles\5s0rzb81.default -> hxxps://www.yahoo.com/?fr=vmn&type=vmn__webcomp ... 0306__yaff
FF Session Restore: Mozilla\Firefox\Profiles\5s0rzb81.default -> is enabled.
FF Notifications: Mozilla\Firefox\Profiles\5s0rzb81.default -> hxxps://b.robotcaptcha2.info
FF HomepageOverride: Mozilla\Firefox\Profiles\5s0rzb81.default -> Disabled: _d1Membersttab03_@free.mysocialshortcut.com
FF NewTabOverride: Mozilla\Firefox\Profiles\5s0rzb81.default -> Disabled: _d1Membersttab03_@free.mysocialshortcut.com
FF Extension: (Avast Passwords) - C:\Users\Andrea\AppData\Roaming\Mozilla\Firefox\Profiles\5s0rzb81.default\Extensions\jid1-r1tDuNiNb4SEww@jetpack.xpi [2020-02-12] [UpdateUrl:hxxps://pamcdn.avast.com/pamcdn/extensions/firefox/update.json]
FF Extension: (Avast SafePrice | Porovnanie, ponuky, kupóny) - C:\Users\Andrea\AppData\Roaming\Mozilla\Firefox\Profiles\5s0rzb81.default\Extensions\sp@avast.com.xpi [2020-07-05]
FF Extension: (Avast Online Security) - C:\Users\Andrea\AppData\Roaming\Mozilla\Firefox\Profiles\5s0rzb81.default\Extensions\wrc@avast.com.xpi [2020-06-17]
FF Extension: (MyWay Search By MySocialShortcut) - C:\Users\Andrea\AppData\Roaming\Mozilla\Firefox\Profiles\5s0rzb81.default\Extensions\_d1Membersttab03_@free.mysocialshortcut.com.xpi [2020-06-30] [UpdateUrl:hxxps:\/\/updates.tb.ask.com\/updateXpi.json?id=223553785&version=9.100.18.23620&track=TTAB03&trackRevision=1&fromId=_d1Membersttab03_%40free.mysocialshortcut.com&isBridgeExtension=false]
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)

Chrome:
=======
CHR Profile: C:\Users\Andrea\AppData\Local\Google\Chrome\User Data\Default [2020-09-02]
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR Extension: (Prezentácie) - C:\Users\Andrea\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-11-18]
CHR Extension: (Dokumenty) - C:\Users\Andrea\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-12-26]
CHR Extension: (Disk Google) - C:\Users\Andrea\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-12-26]
CHR Extension: (YouTube) - C:\Users\Andrea\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-12-26]
CHR Extension: (Avast SafePrice | Porovnanie, ponuky, kupóny) - C:\Users\Andrea\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2019-04-02]
CHR Extension: (Tabuľky) - C:\Users\Andrea\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-11-18]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\Andrea\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-12-26]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Andrea\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-11-18]
CHR Extension: (Gmail) - C:\Users\Andrea\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-12-26]
CHR Extension: (Chrome Media Router) - C:\Users\Andrea\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-04-02]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [7824280 2020-09-01] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [357848 2020-09-01] (Avast Software s.r.o. -> AVAST Software)
R2 CleanupPSvc; C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupSvc.exe [10282024 2019-06-17] (AVAST Software s.r.o. -> AVAST Software)
S4 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [733696 2013-07-01] (Intel(R) Corporation) [File not signed]
S4 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [200168 2013-12-04] (Intel(R) Smart Connect software -> )
R2 SamsungUPDUtilSvc; C:\WINDOWS\SysWOW64\SecUPDUtilSvc.exe [143664 2019-01-16] (Samsung Electronics CO., LTD. -> )
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37136 2020-09-01] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [206392 2020-09-01] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [235584 2020-09-01] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [195648 2020-09-01] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [60480 2020-09-01] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42768 2020-09-01] (Avast Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [175192 2020-09-01] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [516560 2020-09-01] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [109272 2020-09-01] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [84848 2020-09-01] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [851600 2020-09-01] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [469880 2020-09-01] (Avast Software s.r.o. -> AVAST Software)
S2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [217328 2020-09-01] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [326408 2020-09-01] (Avast Software s.r.o. -> AVAST Software)
U3 BthHFSrv; C:\WINDOWS\System32\svchost.exe [38792 2014-10-29] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
U3 BthHFSrv; C:\WINDOWS\SysWOW64\svchost.exe [33088 2014-10-29] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 GPIO; C:\WINDOWS\System32\drivers\iaiogpioe.sys [31232 2013-11-11] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
S3 iaioi2c; C:\WINDOWS\System32\drivers\iaioi2ce.sys [67584 2013-11-11] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
R3 netr28x; C:\WINDOWS\system32\DRIVERS\netr28x.sys [2432656 2014-08-12] (MEDIATEK INC. -> MediaTek Inc.)
R3 rtbth; C:\WINDOWS\System32\drivers\rtbth.sys [1204936 2014-02-12] (Mediatek Inc. -> Ralink Technology, Corp.)
U5 RTSUER; C:\Windows\System32\Drivers\RTSUER.sys [413912 2015-12-22] (Realtek Semiconductor Corp -> Realsil Semiconductor Corporation)
S3 SensorsServiceDriver; C:\WINDOWS\System32\drivers\WUDFRd.sys [226304 2014-10-29] (Microsoft Windows -> Microsoft Corporation)
S3 SWDUMon; C:\WINDOWS\system32\DRIVERS\SWDUMon.sys [25608 2020-09-01] (AVG Technologies CZ, s.r.o. -> SlimWare Utilities, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [20800 2013-07-22] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)
S3 wmbclass; C:\WINDOWS\System32\drivers\wmbclass.sys [267264 2017-12-10] (Microsoft Windows -> Microsoft Corporation)
U1 aswbdisk; no ImagePath
U3 McAPExe; no ImagePath
U3 McMPFSvc; no ImagePath
U3 McNaiAnn; no ImagePath
U3 mfecore; no ImagePath
U3 MSK80Service; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-09-02 18:01 - 2020-09-02 18:03 - 000033574 _____ C:\Users\Andrea\Desktop\Addition.txt
2020-09-02 17:58 - 2020-09-02 18:57 - 000020601 _____ C:\Users\Andrea\Desktop\FRST.txt
2020-09-02 17:57 - 2020-09-02 18:57 - 000000000 ____D C:\FRST
2020-09-02 17:55 - 2020-09-02 17:55 - 002298880 _____ (Farbar) C:\Users\Andrea\Desktop\FRST64.exe
2020-09-02 17:37 - 2020-09-02 17:37 - 000000000 ____D C:\Users\Andrea\AppData\Local\SlimWare Utilities Inc
2020-09-02 15:48 - 2020-09-02 15:49 - 027072192 _____ (Piriform Software Ltd) C:\Users\Andrea\Downloads\ccsetup570.exe
2020-09-01 23:17 - 2020-09-01 23:17 - 000002025 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Beats Audio.lnk
2020-09-01 23:17 - 2020-09-01 23:17 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2020-09-01 23:17 - 2020-09-01 23:17 - 000000000 ____D C:\WINDOWS\LastGood
2020-09-01 23:17 - 2020-09-01 23:17 - 000000000 ____D C:\Program Files\Realtek
2020-09-01 23:16 - 2017-11-02 02:36 - 000532376 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2020-09-01 23:16 - 2017-11-02 02:36 - 000166192 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2020-09-01 23:16 - 2017-11-02 02:35 - 003410320 _____ (DTS, Inc.) C:\WINDOWS\system32\slcnt64.dll
2020-09-01 23:16 - 2017-11-02 02:35 - 003121112 _____ (DTS, Inc.) C:\WINDOWS\system32\sltech64.dll
2020-09-01 23:16 - 2017-11-02 02:35 - 001435136 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRRPTR64.dll
2020-09-01 23:16 - 2017-11-02 02:35 - 000986984 _____ (DTS, Inc.) C:\WINDOWS\system32\sl3apo64.dll
2020-09-01 23:16 - 2017-11-02 02:35 - 000467152 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRAPO64.dll
2020-09-01 23:16 - 2017-11-02 02:35 - 000381400 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM64.dll
2020-09-01 23:16 - 2017-11-02 02:35 - 000341144 _____ (Synopsys, Inc.) C:\WINDOWS\SysWOW64\SRCOM.dll
2020-09-01 23:16 - 2017-11-02 02:35 - 000341144 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM.dll
2020-09-01 23:16 - 2017-11-02 02:34 - 003509192 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2020-09-01 23:16 - 2017-11-02 02:34 - 001016920 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDHF64.dll
2020-09-01 23:16 - 2017-11-02 02:34 - 000877416 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SEHDHF32.dll
2020-09-01 23:16 - 2017-11-02 02:34 - 000868168 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SECOMN64.dll
2020-09-01 23:16 - 2017-11-02 02:34 - 000866632 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDRA64.dll
2020-09-01 23:16 - 2017-11-02 02:34 - 000737952 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SECOMN32.dll
2020-09-01 23:16 - 2017-11-02 02:34 - 000691672 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2020-09-01 23:16 - 2017-11-02 02:34 - 000526272 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEAPO64.dll
2020-09-01 23:16 - 2017-11-02 02:34 - 000387304 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2020-09-01 23:16 - 2017-11-02 02:34 - 000343696 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2020-09-01 23:16 - 2017-11-02 02:34 - 000214824 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2020-09-01 23:16 - 2017-11-02 02:34 - 000192976 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2020-09-01 23:16 - 2017-11-02 02:34 - 000110976 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2020-09-01 23:16 - 2017-11-02 02:34 - 000088336 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2020-09-01 23:16 - 2017-11-02 02:33 - 003677152 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2020-09-01 23:16 - 2017-11-02 02:33 - 003561920 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2020-09-01 23:16 - 2017-11-02 02:33 - 003205600 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2020-09-01 23:16 - 2017-11-02 02:33 - 001351232 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2020-09-01 23:16 - 2017-11-02 02:33 - 000321712 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2020-09-01 23:16 - 2017-11-02 02:33 - 000321704 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2020-09-01 23:16 - 2017-11-02 02:33 - 000258856 _____ (TODO: <Company name>) C:\WINDOWS\system32\slprp64.dll
2020-09-01 23:16 - 2017-11-02 02:32 - 072520704 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2020-09-01 23:16 - 2017-11-02 02:32 - 006025640 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2020-09-01 23:16 - 2017-11-02 02:32 - 002922976 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2020-09-01 23:16 - 2017-11-02 02:32 - 000023688 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2020-09-01 23:16 - 2017-11-02 02:31 - 001617728 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CX64APO.dll
2020-09-01 23:16 - 2017-11-02 02:31 - 001529136 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CX64Proxy.dll
2020-09-01 23:16 - 2017-11-02 02:31 - 000609384 _____ (Conexant Systems, Inc.) C:\WINDOWS\system32\CAF64APO2.dll
2020-09-01 23:16 - 2017-11-02 02:31 - 000122312 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2020-09-01 23:16 - 2017-11-02 02:31 - 000115112 _____ (Conexant System, Inc.) C:\WINDOWS\system32\Caf64api.dll
2020-09-01 23:16 - 2017-11-02 02:09 - 014566602 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2020-09-01 23:16 - 2017-11-02 02:09 - 000005604 _____ C:\WINDOWS\system32\cxapo.lncs
2020-09-01 23:16 - 2017-11-02 02:09 - 000003780 _____ C:\WINDOWS\system32\cxapo.prop
2020-09-01 23:00 - 2018-04-20 01:56 - 000999296 _____ (Realtek ) C:\WINDOWS\system32\Drivers\Rt630x64.sys
2020-09-01 23:00 - 2018-04-20 01:56 - 000122816 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp64.dll
2020-09-01 22:56 - 2020-09-01 22:57 - 048347713 _____ C:\Users\Andrea\Documents\Firefox 80.0.1 (x86 sk) - 2020-09-01.pcv
2020-09-01 22:54 - 2020-09-01 23:02 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2020-09-01 22:47 - 2015-12-22 09:39 - 000413912 _____ (Realsil Semiconductor Corporation) C:\WINDOWS\system32\Drivers\RtsUer.sys
2020-09-01 22:47 - 2015-12-18 10:06 - 004330200 _____ (TODO: <Company name>) C:\WINDOWS\RtCRU64.exe
2020-09-01 22:47 - 2015-12-18 10:06 - 000769752 _____ (Realsil Semiconductor Corporation) C:\WINDOWS\system32\Drivers\RtsPer.sys
2020-09-01 22:47 - 2015-12-15 16:39 - 000328920 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RtsP2Stor.sys
2020-09-01 22:47 - 2015-10-16 11:26 - 000367320 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RtsPStor.sys
2020-09-01 22:47 - 2015-06-03 09:47 - 000313048 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RtsBaStor.sys
2020-09-01 22:47 - 2014-10-20 17:50 - 000083160 _____ (Realtek Semiconductor.) C:\WINDOWS\system32\RtCRX64.dll
2020-09-01 22:47 - 2014-01-27 13:39 - 009890008 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RsCRIcon.dll
2020-09-01 22:40 - 2020-09-01 22:40 - 000000000 ____D C:\Program Files (x86)\Ralink Corporation
2020-09-01 22:16 - 2020-09-01 22:16 - 000372712 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-09-01 21:16 - 2020-09-01 21:13 - 000338528 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2020-09-01 21:16 - 2020-09-01 21:13 - 000217328 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2020-09-01 21:16 - 2020-09-01 21:13 - 000175192 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2020-09-01 21:15 - 2020-09-01 22:21 - 000025608 _____ (SlimWare Utilities, Inc.) C:\WINDOWS\system32\Drivers\SWDUMon.sys
2020-09-01 21:11 - 2020-09-02 17:40 - 000000000 ____D C:\Program Files (x86)\Avast Driver Updater
2020-08-25 20:51 - 2020-09-01 22:21 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2020-08-21 18:47 - 2020-08-15 06:51 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmxs.dll
2020-08-21 18:47 - 2020-08-15 06:51 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasser.dll
2020-08-21 18:47 - 2020-08-15 06:36 - 000428544 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasplap.dll
2020-08-21 18:47 - 2020-08-15 06:16 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasmxs.dll
2020-08-21 18:47 - 2020-08-15 06:16 - 000023040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasser.dll
2020-08-21 18:47 - 2020-08-15 06:05 - 000880640 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdlg.dll
2020-08-21 18:47 - 2020-08-15 06:05 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasplap.dll
2020-08-21 18:47 - 2020-08-15 05:55 - 000963072 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll
2020-08-21 18:47 - 2020-08-15 05:48 - 001080320 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2020-08-21 18:47 - 2020-08-15 05:42 - 000796160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdlg.dll
2020-08-21 18:47 - 2020-08-15 05:39 - 000424448 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprapi.dll
2020-08-21 18:47 - 2020-08-15 05:35 - 000856064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasgcw.dll
2020-08-21 18:47 - 2020-08-15 05:28 - 000542720 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2020-08-21 18:47 - 2020-08-15 05:26 - 000700928 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2020-08-21 18:47 - 2020-08-15 05:24 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprapi.dll
2020-08-21 18:47 - 2020-08-15 05:16 - 000629248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2020-08-17 18:09 - 2020-08-06 01:47 - 000477696 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2020-08-17 18:09 - 2020-08-06 01:19 - 000367616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2020-08-17 18:09 - 2020-08-06 01:00 - 001098240 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2020-08-17 18:09 - 2020-08-04 05:58 - 001483264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll
2020-08-17 18:09 - 2020-08-04 05:39 - 001441792 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2020-08-17 18:09 - 2020-08-04 05:35 - 000842240 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2020-08-17 18:09 - 2020-08-04 05:32 - 001338368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll
2020-08-17 18:09 - 2020-08-04 05:15 - 000698880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2020-08-17 18:09 - 2020-07-23 09:33 - 000559616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2020-08-17 18:09 - 2020-07-19 12:45 - 000431352 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2020-08-17 18:09 - 2020-07-19 12:39 - 000376056 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2020-08-17 18:09 - 2020-07-19 12:36 - 000955432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2020-08-17 18:09 - 2020-07-19 10:41 - 000950784 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2020-08-17 18:09 - 2020-07-19 10:37 - 001756160 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-08-17 18:09 - 2020-07-19 10:15 - 000453120 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
2020-08-17 18:09 - 2020-07-19 10:10 - 001730048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-08-17 18:09 - 2020-07-18 08:36 - 000317176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2020-08-17 18:09 - 2020-07-18 08:31 - 000317192 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2020-08-17 18:09 - 2020-07-18 08:24 - 000788104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2020-08-17 18:09 - 2020-07-18 05:40 - 000772096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2020-08-17 18:09 - 2020-07-18 05:38 - 001494016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-08-17 18:09 - 2020-07-18 05:23 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2020-08-17 18:09 - 2020-07-18 05:17 - 001548288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2020-08-17 18:09 - 2020-07-17 21:19 - 001542672 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-08-17 18:09 - 2020-07-16 08:20 - 002745080 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL
2020-08-17 18:09 - 2020-07-16 08:18 - 002528696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVDECOD.DLL
2020-08-17 18:09 - 2020-07-14 10:11 - 001370688 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2020-08-17 18:09 - 2020-07-14 06:55 - 025756672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-08-17 18:09 - 2020-07-14 06:43 - 004169216 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-08-17 18:09 - 2020-07-14 06:19 - 005499392 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2020-08-17 18:09 - 2020-07-14 06:19 - 000785408 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2020-08-17 18:09 - 2020-07-14 06:15 - 020291584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-08-17 18:09 - 2020-07-14 05:51 - 001993728 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2020-08-17 18:09 - 2020-07-14 05:50 - 000653824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2020-08-17 18:09 - 2020-07-14 05:42 - 015479296 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2020-08-17 18:09 - 2020-07-14 05:42 - 001384448 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2020-08-17 18:09 - 2020-07-14 05:27 - 004111872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2020-08-17 18:09 - 2020-07-14 05:27 - 001088512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2020-08-17 18:09 - 2020-07-14 05:25 - 001559552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2020-08-17 18:09 - 2020-07-14 05:21 - 013861888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2020-08-17 18:09 - 2020-07-14 03:17 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2020-08-17 18:09 - 2020-07-14 03:17 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll
2020-08-17 18:09 - 2020-07-14 03:17 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2020-08-17 18:09 - 2020-07-11 21:33 - 007363320 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-08-17 18:09 - 2020-07-11 18:40 - 000313856 _____ (Microsoft Corporation) C:\WINDOWS\system32\tapisrv.dll
2020-08-17 18:09 - 2020-07-11 18:29 - 000671744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaservc.dll
2020-08-17 18:09 - 2020-07-11 18:17 - 000254976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tapisrv.dll
2020-08-17 18:09 - 2020-07-11 18:08 - 000656384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2020-08-17 18:09 - 2020-07-11 18:07 - 000252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2020-08-17 18:09 - 2020-07-11 17:54 - 000499712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2020-08-17 18:09 - 2020-07-10 01:33 - 000629504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP4SDECD.DLL
2020-08-17 18:09 - 2020-07-10 01:30 - 000464184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP4SDECD.DLL
2020-08-17 18:09 - 2020-07-04 18:46 - 003331584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2020-08-17 18:09 - 2020-07-04 18:23 - 003640832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2020-08-17 18:09 - 2020-06-30 19:27 - 000955904 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2020-08-17 18:09 - 2020-06-28 11:16 - 001210112 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOD.DLL
2020-08-17 18:09 - 2020-06-28 10:30 - 001037584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOD.DLL
2020-08-17 18:08 - 2020-08-04 06:08 - 000445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2020-08-17 18:08 - 2020-08-04 05:39 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2020-08-17 18:08 - 2020-07-19 11:45 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2020-08-17 18:08 - 2020-07-18 06:27 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2020-08-17 18:08 - 2020-07-14 06:31 - 000581120 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2020-08-17 18:08 - 2020-07-14 06:00 - 000498176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2020-08-17 18:08 - 2020-07-14 05:51 - 001033216 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2020-08-17 18:08 - 2020-07-14 05:43 - 000809472 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2020-08-17 18:08 - 2020-07-14 05:30 - 000880640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2020-08-17 18:08 - 2020-07-14 05:29 - 004859392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2020-08-17 18:08 - 2020-07-14 05:25 - 000696320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2020-08-17 18:08 - 2020-07-14 05:18 - 001566720 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2020-08-17 18:08 - 2020-07-14 05:07 - 004387328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2020-08-17 18:08 - 2020-07-14 05:07 - 000801280 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2020-08-17 18:08 - 2020-07-14 05:03 - 001341952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2020-08-17 18:08 - 2020-07-14 05:01 - 000710656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2020-08-17 18:08 - 2020-07-11 17:57 - 000109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdSSDP.dll
2020-08-17 18:08 - 2020-07-11 17:53 - 001377792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-08-17 18:08 - 2020-07-11 17:47 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdSSDP.dll
2020-08-17 18:08 - 2020-07-04 19:06 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\msisip.dll
2020-08-17 18:08 - 2020-07-04 18:35 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msisip.dll

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-09-02 18:55 - 2016-11-23 15:13 - 000000000 ____D C:\Users\Andrea\AppData\LocalLow\Mozilla
2020-09-02 18:54 - 2018-11-18 20:10 - 000000000 ____D C:\Users\Andrea\AppData\Roaming\vlc
2020-09-02 18:42 - 2018-11-18 19:23 - 000003600 _____ C:\WINDOWS\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2283098450-1521063285-1732289341-1001
2020-09-02 18:36 - 2018-11-18 19:34 - 000000000 ____D C:\ProgramData\AVAST Software
2020-09-02 17:50 - 2018-11-18 19:45 - 000000000 ____D C:\Users\Andrea\AppData\Local\AVAST Software
2020-09-02 17:45 - 2013-08-22 16:45 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-09-02 17:44 - 2018-12-23 14:28 - 000000000 ____D C:\Users\Andrea\AppData\Local\CrashDumps
2020-09-02 17:44 - 2018-11-18 19:39 - 000000000 ____D C:\Users\Andrea\AppData\Local\ClassicShell
2020-09-02 17:33 - 2018-11-18 19:41 - 000004168 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2020-09-02 17:22 - 2018-11-18 21:05 - 000000000 ____D C:\Program Files (x86)\AVAST Software
2020-09-02 17:20 - 2020-07-19 20:18 - 000003734 _____ C:\WINDOWS\system32\Tasks\Avast Secure Browser Heartbeat Task (Hourly)
2020-09-02 17:20 - 2020-07-19 20:18 - 000003152 _____ C:\WINDOWS\system32\Tasks\Avast Secure Browser Heartbeat Task (Logon)
2020-09-02 17:20 - 2020-07-19 20:15 - 000003410 _____ C:\WINDOWS\system32\Tasks\AvastUpdateTaskMachineUA
2020-09-02 16:49 - 2013-08-22 15:36 - 000000000 ____D C:\WINDOWS\Inf
2020-09-02 15:49 - 2018-11-18 19:54 - 000003870 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-09-02 15:49 - 2018-11-18 19:54 - 000000841 _____ C:\Users\Public\Desktop\CCleaner.lnk
2020-09-02 15:46 - 2018-11-18 19:54 - 000002802 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2020-09-02 15:41 - 2018-11-18 18:59 - 000000000 ____D C:\Users\Andrea
2020-09-02 15:37 - 2018-11-18 21:05 - 000004194 _____ C:\WINDOWS\system32\Tasks\Avast Cleanup Update
2020-09-01 23:18 - 2015-05-18 10:02 - 000000000 ___HD C:\Program Files (x86)\Temp
2020-09-01 23:16 - 2014-03-20 02:17 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2020-09-01 23:06 - 2015-05-18 10:04 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Music, Photos and Videos
2020-09-01 23:06 - 2015-05-18 10:00 - 000000000 ____D C:\Program Files (x86)\Realtek
2020-09-01 23:04 - 2013-09-01 05:49 - 000000000 ____D C:\SWSetup
2020-09-01 22:48 - 2015-05-18 10:04 - 000000000 ____D C:\WINDOWS\SysWOW64\sda
2020-09-01 22:44 - 2018-12-22 22:18 - 000017082 _____ C:\WINDOWS\system32\perfh01B.dat
2020-09-01 22:44 - 2018-12-22 22:18 - 000006132 _____ C:\WINDOWS\system32\perfc01B.dat
2020-09-01 22:44 - 2013-08-26 08:09 - 000963708 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-09-01 22:42 - 2015-05-18 10:00 - 000000000 ____D C:\ProgramData\Package Cache
2020-09-01 22:42 - 2015-05-18 09:57 - 000000000 ____D C:\Program Files\Intel
2020-09-01 22:41 - 2015-05-18 09:58 - 000000032 _____ C:\WINDOWS\0
2020-09-01 22:12 - 2020-07-19 20:15 - 000003282 _____ C:\WINDOWS\system32\Tasks\AvastUpdateTaskMachineCore
2020-09-01 22:04 - 2018-11-18 19:28 - 000001182 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-09-01 22:03 - 2020-07-19 20:10 - 000003478 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-09-01 22:03 - 2020-07-19 20:10 - 000003350 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-09-01 22:03 - 2015-05-18 10:05 - 000002992 _____ C:\WINDOWS\system32\Tasks\Synaptics TouchPad Enhancements
2020-09-01 22:03 - 2013-08-26 08:04 - 000000000 ____D C:\Users\Administrator
2020-09-01 21:13 - 2020-04-15 15:31 - 000516560 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2020-09-01 21:13 - 2019-01-05 12:43 - 000195648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2020-09-01 21:13 - 2019-01-05 12:43 - 000060480 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2020-09-01 21:13 - 2018-11-18 19:40 - 000469880 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2020-09-01 21:13 - 2018-11-18 19:40 - 000326408 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2020-09-01 21:13 - 2018-11-18 19:40 - 000109272 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2020-09-01 21:13 - 2018-11-18 19:40 - 000084848 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2020-09-01 21:13 - 2018-11-18 19:40 - 000042768 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2020-09-01 21:11 - 2019-01-15 12:15 - 000235584 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2020-09-01 21:11 - 2019-01-05 12:43 - 000037136 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2020-09-01 21:11 - 2018-11-18 19:40 - 000851600 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2020-09-01 21:11 - 2018-11-18 19:40 - 000206392 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2020-08-28 23:27 - 2018-11-18 19:42 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2020-08-28 23:27 - 2018-11-18 18:56 - 000002360 _____ C:\WINDOWS\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2283098450-1521063285-1732289341-500
2020-08-28 23:27 - 2015-05-18 10:15 - 000003160 _____ C:\WINDOWS\system32\Tasks\CLMLSvc_P2G8
2020-08-28 23:27 - 2015-05-18 10:12 - 000003156 _____ C:\WINDOWS\system32\Tasks\YCMServiceAgent
2020-08-28 19:02 - 2013-08-22 15:25 - 000262144 ___SH C:\WINDOWS\system32\config\BBI
2020-08-28 18:53 - 2013-08-22 17:36 - 000000000 ___RD C:\WINDOWS\ToastData
2020-08-28 18:53 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2020-08-28 18:53 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\system32\setup
2020-08-28 18:52 - 2018-11-18 19:28 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-08-21 19:10 - 2013-08-22 17:20 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-08-17 17:07 - 2018-11-18 19:45 - 000002026 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2020-09-02 16:49
==================== End of FRST.txt ========================

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 112393
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosim o kontrolu logu

#4 Příspěvek od Rudy »

Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

RANKO
Návštěvník
Návštěvník
Příspěvky: 88
Registrován: 29 črc 2007 07:46
Bydliště: BA - SK

Re: Prosim o kontrolu logu

#5 Příspěvek od RANKO »

# -------------------------------
# Malwarebytes AdwCleaner 8.0.7.0
# -------------------------------
# Build: 07-22-2020
# Database: 2020-07-20.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 09-02-2020
# Duration: 00:00:02
# OS: Windows 8.1
# Cleaned: 2
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted C:\Users\Andrea\AppData\Local\slimware utilities inc

***** [ Files ] *****

Deleted C:\Windows\System32\drivers\swdumon.sys

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

No malicious registry entries cleaned.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [5212 octets] - [07/06/2020 16:49:18]
AdwCleaner[C00].txt - [5657 octets] - [07/06/2020 16:51:14]
AdwCleaner[S01].txt - [1627 octets] - [02/09/2020 20:03:24]
AdwCleaner[S02].txt - [1688 octets] - [02/09/2020 20:05:20]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C02].txt ##########

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 112393
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosim o kontrolu logu

#6 Příspěvek od Rudy »

Dejte nové logy FRST+Addition.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

RANKO
Návštěvník
Návštěvník
Příspěvky: 88
Registrován: 29 črc 2007 07:46
Bydliště: BA - SK

Re: Prosim o kontrolu logu

#7 Příspěvek od RANKO »

Zatial bez zmeny.


Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-08-2020
Ran by Andrea (02-09-2020 21:21:35)
Running from C:\Users\Andrea\Desktop
Windows 8.1 (Update) (X64) (2018-11-18 17:09:51)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2283098450-1521063285-1732289341-500 - Administrator - Disabled) => C:\Users\Administrator
Andrea (S-1-5-21-2283098450-1521063285-1732289341-1001 - Administrator - Enabled) => C:\Users\Andrea
Guest (S-1-5-21-2283098450-1521063285-1732289341-501 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {5078598A-1FA2-C888-AA5F-A9C66537DB12}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 19.00 (x64 edition) (HKLM\...\{23170F69-40C1-2702-1900-000001000000}) (Version: 19.00.00.0 - Igor Pavlov)
Adobe Shockwave Player 12.0 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.0.4.144 - Adobe Systems, Inc.)
Avast Cleanup Premium (HKLM-x32\...\{075CC190-59EE-499F-828B-0B5C098C8C15}_is1) (Version: 19.1.7475 - AVAST Software)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 20.7.2425 - Avast Software)
Avast Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.7.915.0 - AVAST Software) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.70 - Piriform)
Classic Shell (HKLM\...\{CABCE573-0A86-42FA-A52A-C7EA61D5BE08}) (Version: 4.3.1 - IvoSoft)
Common Desktop Agent (HKLM\...\{031A0E14-0413-4C97-9772-2639B782F46F}) (Version: 1.62.0 - OEM) Hidden
CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.5.3606 - CyberLink Corp.)
Cyberlink PhotoDirector (HKLM-x32\...\InstallShield_{39337565-330E-4ab6-A9AE-AC81E0720B10}) (Version: 3.0.3.4503 - CyberLink Corp.)
CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.5.3304 - CyberLink Corp.)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
DisableMSDefender (HKLM\...\{74FE39A0-FB76-47CD-84BA-91E2BBB17EF2}) (Version: 1.0.0 - Hewlett-Packard Company) Hidden
Eco Driver Pack (HKLM-x32\...\Samsung Eco Driver Pack) (Version: 2.01.10.00 (28.5.2015) - Samsung Electronics Co., Ltd.)
Energy Star (HKLM\...\{465CA2B6-98AF-4E77-BE22-A908C34BB9EC}) (Version: 1.0.9 - Hewlett-Packard Company)
Fotogaléria (HKLM-x32\...\{08466673-3905-4437-93E8-34A221B7CA4E}) (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Fotogalerie (HKLM-x32\...\{AEA7CE08-09DC-4186-99FD-66A26F3B8B21}) (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
HP 3D DriveGuard (HKLM-x32\...\{07F6DC37-0857-4B68-A675-4E35989E85E3}) (Version: 6.0.15.1 - Hewlett-Packard Company)
HP Connected Music (Meridian - installer) (HKLM-x32\...\StartHPConnectedMusic) (Version: 1.0 - Meridian Audio Ltd)
HP Documentation (HKLM-x32\...\{7A0ABFEA-662B-42EC-AE28-483BA77805B8}) (Version: 1.1.0.0 - Hewlett-Packard)
HP Utility Center (HKLM\...\{891A1782-8B20-4403-8383-458962525926}) (Version: 2.3.4 - Hewlett-Packard Company)
HP Wireless Button Driver (HKLM-x32\...\{30B2D1D8-0A07-4B71-9553-0710C5D31E35}) (Version: 1.1.2.1 - Hewlett-Packard Company)
Inst5675 (HKLM\...\{2DE6247C-7077-451B-8BA7-FFD1A2ABBB47}) (Version: 8.00.57 - Softex Inc.) Hidden
Inst5676 (HKLM\...\{878F6913-7421-4713-97F7-0A736EE2A188}) (Version: 8.00.57 - Softex Inc.) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3366 - Intel Corporation)
Intel(R) Sideband Fabric Device Driver (HKLM-x32\...\C5A8BC6E-723A-4C0F-96E1-C426D1A4BCA9) (Version: 1.70.305.16316 - Intel Corporation)
Intel(R) Smart Connect Technology (HKLM\...\{4FDEF4A5-3088-47FA-82B7-1EF6C082D5B4}) (Version: 4.2.41.2710 - Intel Corporation)
Intel(R) Trusted Execution Engine (HKLM\...\{176E2755-0A17-42C6-88E2-192AB2131278}) (Version: 1.0.0.1050 - Intel Corporation)
Intel(R) Virtual Buttons (HKLM-x32\...\1992736F-C90A-481C-B21B-EE34CAD07387) (Version: 1.0.0.14 - Intel Corporation)
Intel® Chipset Device Software (HKLM-x32\...\{314d4c01-f54b-4125-a71f-1e2722c29050}) (Version: 10.1.1.40 - Intel(R) Corporation) Hidden
IrfanView 4.54 (64-bit) (HKLM\...\IrfanView64) (Version: 4.54 - Irfan Skiljan)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 83.0.478.50 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.129.37 - )
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{379A0618-EF50-423C-9637-EEB2D25A4BB4}) (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{3C5F91EF-5C0B-4D13-BCBE-0FC6FC3ED7F9}) (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{45898170-E68C-4F02-AA35-C2186BF347A3}) (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{CFBFE244-6269-41DC-85B6-86F99C88ED02}) (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
MozBackup 1.5.1 (HKLM-x32\...\MozBackup) (Version: - Pavel Cvrcek)
Mozilla Firefox 80.0.1 (x86 sk) (HKLM-x32\...\Mozilla Firefox 80.0.1 (x86 sk)) (Version: 80.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 63.0.1 - Mozilla)
OpenOffice 4.1.5 (HKLM-x32\...\{E177AC33-EC9C-4537-8996-37ED331D9227}) (Version: 4.15.9789 - Apache Software Foundation)
Ralink Bluetooth Stack (HKLM\...\{49AA3AFC-37F9-94C8-BFC6-43E7DCE88C77}) (Version: 11.0.752.0 - Mediatek)
Ralink RT3290 802.11bgn Wi-Fi Adapter (HKLM-x32\...\{8FC4F1DD-F7FD-4766-804D-3C8FF1D309AF}) (Version: 5.0.50.0 - Mediatek)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.370.119 - Realtek Semiconduct Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.63.328.2018 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8287 - Realtek Semiconductor Corp.)
Samsung Easy Printer Manager (HKLM-x32\...\Samsung Easy Printer Manager) (Version: 2.00.01.24 - HP Printing Korea Co., Ltd.)
Samsung Printer Center (HKLM-x32\...\Samsung Printer Center) (Version: 1.0.0.21 - Samsung Electronics Co., Ltd.)
Samsung Scan Process Machine (HKLM-x32\...\Samsung Scan Process Machine) (Version: 1.03.05.28 - Samsung Electronics Co., Ltd.) Hidden
SumatraPDF (HKLM\...\SumatraPDF) (Version: 3.1.2 - Krzysztof Kowalczyk)
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics ClickPad Driver (HKLM\...\SynTPDeinstKey) (Version: 19.3.31.31 - Synaptics Incorporated)
Uninstall Samsung Printer Software (HKLM-x32\...\TotalUninstaller) (Version: 4.0.0.13 - Samsung Electronics CO., LTD.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.7.1 - VideoLAN)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)

Packages:
=========
Box for Windows 8 -> C:\Program Files\WindowsApps\134D4F5B.Box_2.1.4.4_neutral__2qk4zy5s3qmee [2015-12-03] (Box, Inc.)
Getting Started with Windows 8 -> C:\Program Files\WindowsApps\AD2F1837.GettingStartedwithWindows8_1.6.0.0_neutral__v10z8vjag6ke6 [2015-12-03] (Hewlett-Packard Company)
HP Registration -> C:\Program Files\WindowsApps\AD2F1837.HPRegistration_1.2.1.166_neutral__v10z8vjag6ke6 [2015-12-03] (Hewlett-Packard Company)
Hry -> C:\Program Files\WindowsApps\Microsoft.XboxLIVEGames_2.0.139.0_x64__8wekyb3d8bbwe [2015-05-18] (Microsoft Corporation) [MS Ad]
Hudba -> C:\Program Files\WindowsApps\Microsoft.ZuneMusic_2.6.672.0_x64__8wekyb3d8bbwe [2015-12-03] (Microsoft Corporation) [MS Ad]
MSN Cestovanie -> C:\Program Files\WindowsApps\Microsoft.BingTravel_3.0.4.336_x64__8wekyb3d8bbwe [2015-12-03] (Microsoft Corporation) [MS Ad]
MSN Financie -> C:\Program Files\WindowsApps\Microsoft.BingFinance_3.0.4.344_x64__8wekyb3d8bbwe [2016-10-13] (Microsoft Corporation) [MS Ad]
MSN Jedlá a nápoje -> C:\Program Files\WindowsApps\Microsoft.BingFoodAndDrink_3.0.4.336_x64__8wekyb3d8bbwe [2015-12-03] (Microsoft Corporation) [MS Ad]
MSN Počasie -> C:\Program Files\WindowsApps\Microsoft.BingWeather_3.0.4.350_x64__8wekyb3d8bbwe [2016-11-29] (Microsoft Corporation) [MS Ad]
MSN Správy -> C:\Program Files\WindowsApps\Microsoft.BingNews_3.0.4.344_x64__8wekyb3d8bbwe [2016-10-13] (Microsoft Corporation) [MS Ad]
MSN Šport -> C:\Program Files\WindowsApps\Microsoft.BingSports_3.0.4.345_x64__8wekyb3d8bbwe [2016-10-13] (Microsoft Corporation) [MS Ad]
MSN Zdravie a fitnes -> C:\Program Files\WindowsApps\Microsoft.BingHealthAndFitness_3.0.4.336_x64__8wekyb3d8bbwe [2015-12-03] (Microsoft Corporation) [MS Ad]
Skype -> C:\Program Files\WindowsApps\Microsoft.SkypeApp_3.1.0.1016_x86__kzf8qxf38zg5c [2015-12-03] (Skype) [MS Ad]
Video -> C:\Program Files\WindowsApps\Microsoft.ZuneVideo_2.6.446.0_x64__8wekyb3d8bbwe [2015-12-03] (Microsoft Corporation) [MS Ad]
YouCam for HP -> C:\Program Files\WindowsApps\CyberLinkCorp.hs.YouCamforHP_1.0.2.29632_x86__06qsbagp91rvg [2015-12-03] (CYBERLINKCOM CORP)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2283098450-1521063285-1732289341-1001_Classes\CLSID\{D9AC5E73-BB10-467b-B884-AA1E475C51F5}\Shell\Open\Command -> C:\Program Files\Synaptics\SynTP\SynTPCpl.dll (Synaptics Incorporated -> Synaptics Incorporated)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-09-01] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2018-07-15] (Ivaylo Beltchev -> IvoSoft) [File not signed]
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2018-07-15] (Ivaylo Beltchev -> IvoSoft) [File not signed]
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [ALZip] -> [CC]{4EB37360-49E8-11D3-95B5-004033382980} => -> No File
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-09-01] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => -> No File
ContextMenuHandlers2: [ALZip] -> [CC]{4EB37360-49E8-11D3-95B5-004033382980} => -> No File
ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => -> No File
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-09-01] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [7-Zip] -> [CC]{23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers4: [ALZip] -> [CC]{4EB37360-49E8-11D3-95B5-004033382980} => -> No File
ContextMenuHandlers5: [ALZip] -> {4EB37360-49E8-11D3-95B5-004033382980} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2013-11-27] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [ALZip] -> [CC]{4EB37360-49E8-11D3-95B5-004033382980} => -> No File
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-09-01] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [StartMenuExt] -> {E595F05F-903F-4318-8B0A-7F633B520D2B} => C:\WINDOWS\system32\StartMenuHelper64.dll [2018-07-15] (Ivaylo Beltchev -> IvoSoft) [File not signed]

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2018-07-15 14:15 - 2018-07-15 14:15 - 003664696 _____ (Ivaylo Beltchev -> IvoSoft) [File not signed] C:\Program Files\Classic Shell\ClassicStartMenuDLL.dll
2015-05-18 10:09 - 2015-05-18 10:09 - 001093120 _____ (Microsoft Corporation) [File not signed] C:\WINDOWS\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\MFC80U.DLL
2017-11-08 08:35 - 2017-11-08 08:35 - 000123904 _____ (Samsung Electronics Co., Ltd.) [File not signed] C:\Program Files (x86)\Samsung\Easy Printer Manager\SmartScreenPrint\CDAKEYMonitor64.dll
2018-05-18 10:57 - 2018-05-18 10:57 - 003696128 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\Samsung\Easy Printer Manager\ScanFax2PC\CDAScan2PCMonitor64.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2ce.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 15:25 - 2019-01-04 19:44 - 000000826 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\TXE Components\TCS\;C:\Program Files\Intel\TXE Components\TCS\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Hewlett-Packard\SimplePass\;C:\Program Files (x86)\Windows Live\Shared
HKU\S-1-5-21-2283098450-1521063285-1732289341-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Hewlett-Packard Backgrounds\backgroundDefault.jpg
DNS Servers: 192.168.100.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\StartupFolder: => "ISCTSystray.lnk"
HKLM\...\StartupApproved\StartupFolder: => "Avast Cleanup Premium.lnk"
HKLM\...\StartupApproved\Run: => "RTHDVCPL"
HKLM\...\StartupApproved\Run: => "SimplePass"
HKLM\...\StartupApproved\Run: => "OPBHOBroker"
HKLM\...\StartupApproved\Run: => "OPBHOBrokerDesktop"
HKLM\...\StartupApproved\Run: => "Classic Start Menu"
HKLM\...\StartupApproved\Run32: => "AccelerometerSysTrayApplet"
HKLM\...\StartupApproved\Run32: => "HPMessageService"
HKU\S-1-5-21-2283098450-1521063285-1732289341-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-2283098450-1521063285-1732289341-1001\...\StartupApproved\Run: => "AvastBrowserAutoLaunch_C603A72839B5FDE22DFFC1CBAEAAB320"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{D274810C-85CB-453C-A3D1-B33F1F86DC68}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{61B8F3B3-1B73-44E3-8709-9F0227FAA8EF}] => (Allow) LPort=2869
FirewallRules: [{128B9C44-E91E-4C8E-B2D8-CC8B35FB2C12}] => (Allow) LPort=1900
FirewallRules: [{57F6CF83-F1EF-42FA-AE40-4F69CADC32B7}] => (Allow) C:\Program Files (x86)\HPConnectedMusic\HPConnectedMusic.exe (Meridian Audio Ltd -> Meridian Audio Ltd)
FirewallRules: [{2B6A1BCD-0B17-4E1D-99BB-41B988C3BB2C}] => (Allow) C:\Program Files (x86)\HPConnectedMusic\HPConnectedMusic.exe (Meridian Audio Ltd -> Meridian Audio Ltd)
FirewallRules: [{A24D828E-6E13-4629-B71E-6BAB6CA1C99C}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDirector10\PDR10.EXE (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{C13BE1A3-74C4-416C-9B47-9FD9F945EDBE}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{874CA447-3461-465D-94C6-6B98B6B9051E}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{84C4A089-6E26-44E2-9A2F-1A7858F9ECD8}] => (Allow) C:\Program Files (x86)\AVAST Software\Avast Cleanup\TUNEUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
FirewallRules: [{49C7D819-0097-4EB6-92ED-FF34C5DD093A}] => (Allow) C:\Program Files (x86)\AVAST Software\Avast Cleanup\TUNEUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
FirewallRules: [{5440B7FF-A1EB-48A6-9F6C-2FC807E73D9E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{74AA7C98-7703-4A06-915D-38A4A33F92CC}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{D9124F8E-6E69-46EA-AC86-F5E95855ACE4}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{D8BA2838-6F23-4FBD-A6B0-E7590557476D}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{47CF74A1-384F-4822-B4D8-50C92BC9AE2D}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Printer Center\SamsungPrinterCenter.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{9658AE30-02DE-4AFC-9530-C4E9804AD2EB}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{F2F04A0D-68FD-4392-8612-C3A42B9FC0EC}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{5943A477-147B-4865-9C85-D71D899DD210}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\EasyPrinterManagerV2.exe (HP Inc. -> )
FirewallRules: [{7EC86463-BAC2-466D-A8F5-A6A816EF1A6D}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\OrderSupplies.exe (HP Inc. -> HP Printing Korea Co., Ltd.)
FirewallRules: [{099AA3AD-E6B5-4B18-9B95-27A6E42CFDD7}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\EPM2AlertList.exe (HP Inc. -> HP Printing Korea Co., Ltd.)
FirewallRules: [{D16981D0-50D6-4289-BF1F-260271D361CE}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\EPM2Migrator.exe (HP Inc. -> )
FirewallRules: [{4DD6B4A0-EFA0-4ECC-8C70-3C140D35FB73}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )

==================== Restore Points =========================

01-09-2020 21:09:51 Installed Avast Driver Updater
01-09-2020 22:27:55 Avast Driver Updater Installing Drivers
01-09-2020 22:46:39 Nainštalované Realtek Card Reader
01-09-2020 22:53:26 Installed Mediatek Wireless LAN
01-09-2020 23:00:10 Nainštalované Realtek Ethernet Controller Driver
01-09-2020 23:05:42 Odstránené Realtek High Definition Audio Driver
01-09-2020 23:12:41 Nainštalované Realtek High Definition Audio Driver

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (09/02/2020 05:40:01 PM) (Source: MsiInstaller) (EventID: 11723) (User: Aďka)
Description: Product: Avast Driver Updater -- Error 1723. There is a problem with this Windows Installer package. A DLL required for this install to complete could not be run. Contact your support personnel or package vendor. Action UlReportUninstall, entry: ReportUninstall, library: C:\WINDOWS\Installer\MSI8A6E.tmp

Error: (09/02/2020 05:39:58 PM) (Source: Microsoft-Windows-RestartManager) (EventID: 10006) (User: Aďka)
Description: Application or service 'aswbIDSAgent' could not be shut down.

Error: (09/02/2020 04:58:55 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: AvastBrowser.exe, verzia: 84.1.5542.136, časová značka: 0x5d83daff
Názov chybujúceho modulu: ntdll.dll, verzia: 6.3.9600.19678, časová značka: 0x5e82c88a
Kód výnimky: 0xc000000d
Odstup chyby: 0x0000000000102c20
Identifikácia chybujúceho procesu: 0x6f8
Čas spustenia chybujúcej aplikácie: 0x01d681396c1112cd
Cesta chybujúcej aplikácie: C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
Cesta chybujúceho modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
Identifikácia hlásenia: d2179d74-ed2c-11ea-8291-b0104139883e
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (09/02/2020 03:41:07 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Aďka)
Description: Aktivácia aplikácie microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 zlyhala pre chybu: -2144927141 Ďalšie informácie nájdete v denníku Microsoft-Windows-TWinUI/Operational.

Error: (09/02/2020 03:33:04 PM) (Source: System Restore) (EventID: 8206) (User: )
Description: Vybratý bod obnovenia bol poškodený alebo odstránený počas obnovovania (Scheduled Checkpoint).

Error: (09/01/2020 10:07:33 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: AvastBrowser.exe, verzia: 84.1.5542.136, časová značka: 0x5d83daff
Názov chybujúceho modulu: ntdll.dll, verzia: 6.3.9600.19678, časová značka: 0x5e82c88a
Kód výnimky: 0xc000000d
Odstup chyby: 0x0000000000102c20
Identifikácia chybujúceho procesu: 0x82c
Čas spustenia chybujúcej aplikácie: 0x01d6809b2a279ec6
Cesta chybujúcej aplikácie: C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
Cesta chybujúceho modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
Identifikácia hlásenia: c52b392f-ec8e-11ea-8283-b0104139883e
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (09/01/2020 10:07:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: AvastBrowser.exe, verzia: 84.1.5542.136, časová značka: 0x5d83daff
Názov chybujúceho modulu: ntdll.dll, verzia: 6.3.9600.19678, časová značka: 0x5e82c88a
Kód výnimky: 0xc000000d
Odstup chyby: 0x0000000000102c20
Identifikácia chybujúceho procesu: 0x82c
Čas spustenia chybujúcej aplikácie: 0x01d6809b2a279ec6
Cesta chybujúcej aplikácie: C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
Cesta chybujúceho modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
Identifikácia hlásenia: c17d6d29-ec8e-11ea-8283-b0104139883e
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (09/01/2020 10:07:21 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: AvastBrowser.exe, verzia: 84.1.5542.136, časová značka: 0x5d83daff
Názov chybujúceho modulu: ntdll.dll, verzia: 6.3.9600.19678, časová značka: 0x5e82c88a
Kód výnimky: 0xc000000d
Odstup chyby: 0x0000000000102c20
Identifikácia chybujúceho procesu: 0x82c
Čas spustenia chybujúcej aplikácie: 0x01d6809b2a279ec6
Cesta chybujúcej aplikácie: C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
Cesta chybujúceho modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
Identifikácia hlásenia: be2f0028-ec8e-11ea-8283-b0104139883e
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:


System errors:
=============
Error: (09/02/2020 08:17:46 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Avast Cleanup Premium sa pri spustení zablokovala.

Error: (09/02/2020 08:16:21 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: The server {DDCFD26B-FEED-44CD-B71D-79487D2E5E5A} did not register with DCOM within the required timeout.

Error: (09/02/2020 08:13:48 PM) (Source: Microsoft-Windows-Directory-Services-SAM) (EventID: 16953) (User: NT AUTHORITY)
Description: The password notification DLL "C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter" failed to load with error 126. Please verify that the notification DLL path defined in the registry, HKLM\System\CurrentControlSet\Control\Lsa\Notification Packages, refers to a correct and absolute path (<drive>:\<path>\<filename>.<ext>) and not a relative or invalid path. If the DLL path is correct, please validate that any supporting files are located in the same directory, and that the system account has read access to both the DLL path and any supporting files. Contact the provider of the notification DLL for additional support. Further details can be found on the web at http://go.microsoft.com/fwlink/?LinkId=245898.

Error: (09/02/2020 08:12:38 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba HP Service sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 1-krát.

Error: (09/02/2020 08:12:38 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Samsung UPD Utility Service sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 1-krát.

Error: (09/02/2020 05:49:31 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: The server {DDCFD26B-FEED-44CD-B71D-79487D2E5E5A} did not register with DCOM within the required timeout.

Error: (09/02/2020 05:49:31 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Avast Cleanup Premium sa pri spustení zablokovala.

Error: (09/02/2020 05:47:31 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: The server {DDCFD26B-FEED-44CD-B71D-79487D2E5E5A} did not register with DCOM within the required timeout.


CodeIntegrity:
===================================

Date: 2020-09-02 21:06:53.287
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slvipp64.dll because the set of per-page image hashes could not be found on the system.

Date: 2020-09-02 21:06:46.600
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slvipp64.dll because the set of per-page image hashes could not be found on the system.

Date: 2020-09-02 20:56:50.651
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slvipp64.dll because the set of per-page image hashes could not be found on the system.

Date: 2020-09-02 20:56:44.658
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slvipp64.dll because the set of per-page image hashes could not be found on the system.

Date: 2020-09-02 20:56:39.063
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slvipp64.dll because the set of per-page image hashes could not be found on the system.

Date: 2020-09-02 20:56:33.151
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slvipp64.dll because the set of per-page image hashes could not be found on the system.

Date: 2020-09-02 20:56:27.346
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slvipp64.dll because the set of per-page image hashes could not be found on the system.

Date: 2020-09-02 20:56:21.355
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slvipp64.dll because the set of per-page image hashes could not be found on the system.

==================== Memory info ===========================

BIOS: Insyde F.13 07/12/2014
Motherboard: Hewlett-Packard 2209
Processor: Intel(R) Pentium(R) CPU N3520 @ 2.16GHz
Percentage of memory in use: 62%
Total physical RAM: 3984.27 MB
Available physical RAM: 1510.87 MB
Total Virtual: 5200.27 MB
Available Virtual: 2346.34 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:449.43 GB) (Free:223.97 GB) NTFS
Drive d: (RECOVERY) (Fixed) (Total:15.45 GB) (Free:1.52 GB) NTFS ==>[system with boot components (obtained from drive)]

\\?\Volume{3c2ae0ef-fe01-45ad-9656-0942e3ee86c6}\ (WINRE) (Fixed) (Total:0.39 GB) (Free:0.1 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 920D509D)

Partition: GPT.

==================== End of Addition.txt =======================

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 29-08-2020
Ran by Andrea (administrator) on AĎKA (Hewlett-Packard HP Pavilion 11 x360 PC) (02-09-2020 21:18:52)
Running from C:\Users\Andrea\Desktop
Loaded Profiles: Andrea & Administrator
Platform: Windows 8.1 (Update) (X64) Language: Slovenčina (Slovensko)
Default browser: FF
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <5>
(CyberLink Corp. -> CyberLink Corp.) C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe
(CyberLink Corp. -> CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Ivaylo Beltchev -> IvoSoft) [File not signed] C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe <7>
(Samsung Electronics CO., LTD. -> ) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
(Samsung Electronics CO., LTD. -> ) C:\Windows\SysWOW64\SecUPDUtilSvc.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [163640 2018-07-15] (Ivaylo Beltchev -> IvoSoft) [File not signed]
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [109160 2020-09-01] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [464608 2014-09-08] (Samsung Electronics CO., LTD. -> )
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9235936 2017-11-02] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [AccelerometerSysTrayApplet] => C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [77088 2013-07-24] (Hewlett-Packard Company -> Hewlett-Packard Company)
HKU\S-1-5-21-2283098450-1521063285-1732289341-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [29271224 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2283098450-1521063285-1732289341-500\...\Run: [Power2GoExpress8] => C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe [1714952 2013-10-16] (CyberLink Corp. -> CyberLink Corp.)
HKLM\...\Print\Monitors\HP Universal Port Monitor: C:\WINDOWS\system32\hpbprtmon.dll [404992 2013-08-10] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard)
HKLM\...\Print\Monitors\ux003 Langmon: C:\WINDOWS\system32\ux003lm.dll [22528 2015-03-12] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\...\Authentication\Credential Providers: [{538C240D-3DEE-4032-AB4C-08A3A6EB0861}] -> C:\Program Files (x86)\CyberLink\YouCam\CLCredProv\x64\CLCredProv.dll [2013-12-18] (CyberLink Corp. -> CyberLink)
HKLM\Software\...\Authentication\Credential Providers: [{F3F1B0FA-4775-41d8-8578-436772D93FB4}] ->
HKLM\Software\...\Authentication\Credential Provider Filters: [{F3F1B0FA-4775-41d8-8578-436772D93FB4}] ->
Lsa: [Notification Packages] scecli "C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter"
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast Cleanup Premium.lnk [2018-11-18]
ShortcutTarget: Avast Cleanup Premium.lnk -> C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupUI.exe (AVAST Software s.r.o. -> AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ISCTSystray.lnk [2015-05-18]
ShortcutTarget: ISCTSystray.lnk -> C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe (Intel(R) Smart Connect software -> Intel Corporation)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0D223EAB-C322-43A7-AA41-9360B6D2015F} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111576 2013-08-05] (CyberLink Corp. -> CyberLink)
Task: {121CC119-5D6D-40DB-8544-038C96F5F88E} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3850336 2020-09-01] (Avast Software s.r.o. -> AVAST Software)
Task: {26A7EF66-7272-48DA-A64A-5FF48C2D2DAB} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1660520 2020-02-27] (Avast Software s.r.o. -> Avast Software)
Task: {4C8C093C-F1B0-4194-BEA3-D7A569677009} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
Task: {5E8927C1-85C5-4181-980C-EAEAA2556775} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
Task: {65BE3011-8C78-43F9-9360-87F5445A2CFA} - System32\Tasks\YCMServiceAgent => C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe [267224 2013-12-18] (CyberLink Corp. -> CyberLink Corp.)
Task: {7EF3683D-1806-419B-B4D8-F70CA4EB46DE} - System32\Tasks\McAfee Remediation (Prepare) => C:\Program Files\Common Files\AV\McAfee VirusScan\upgrade.exe [1697848 2018-06-11] (McAfee, Inc. -> McAfee, Inc.)
Task: {9FC86E1D-E44A-40BF-8D1B-686259157182} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
Task: {A7E6331B-9DEF-48AE-B6F6-B43CEE157577} - System32\Tasks\Avast Cleanup Update => C:\Program Files (x86)\AVAST Software\Avast Cleanup\TUNEUpdate.exe [1659000 2019-06-17] (AVAST Software s.r.o. -> AVAST Software)
Task: {AFADF9A9-F3BB-4775-BA58-D0C86DC169BD} - \Hewlett-Packard\HP CoolSense\HP CoolSense Start at Logon -> No File <==== ATTENTION
Task: {B293AADD-B368-4571-B3B3-543C9AB6FE50} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [24770744 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {D0EE4E97-19D1-4A84-BBD9-8E0D716BA611} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [4397144 2017-08-18] (Synaptics Incorporated -> Synaptics Incorporated)
Task: {DDE494FB-2736-404D-9528-BB5E500C9530} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
Task: {E0EF243B-56C4-4D7F-AACB-2C573752642B} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {F4E5E43D-9305-434D-A8B3-93BF80C4C00D} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll => No File
Winsock: Catalog5-x64 07 C:\Program Files\Bonjour\mdnsNSP.dll => No File
Tcpip\Parameters: [DhcpNameServer] 192.168.100.1
Tcpip\..\Interfaces\{254F54EA-1251-4357-AC21-64269807B941}: [DhcpNameServer] 192.168.100.1
Tcpip\..\Interfaces\{AB51ACEE-B723-4FCF-8012-D4323D069A60}: [DhcpNameServer] 192.168.0.10 192.168.2.4 192.168.1.4

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HPNTDFJS
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HPNTDFJS
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HPNTDFJS
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HPNTDFJS
HKU\S-1-5-21-2283098450-1521063285-1732289341-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com/?pc=HPNTDFJS
HKU\S-1-5-21-2283098450-1521063285-1732289341-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HPNTDFJS
SearchScopes: HKLM -> {92DF01A1-31EC-491F-BF75-1C6211DC3D8C} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKLM-x32 -> {92DF01A1-31EC-491F-BF75-1C6211DC3D8C} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKU\S-1-5-21-2283098450-1521063285-1732289341-1001 -> {92DF01A1-31EC-491F-BF75-1C6211DC3D8C} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2018-07-15] (Ivaylo Beltchev -> IvoSoft) [File not signed]
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2018-07-15] (Ivaylo Beltchev -> IvoSoft) [File not signed]
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2018-07-15] (Ivaylo Beltchev -> IvoSoft) [File not signed]
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2018-07-15] (Ivaylo Beltchev -> IvoSoft) [File not signed]
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2018-07-15] (Ivaylo Beltchev -> IvoSoft) [File not signed]
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2018-07-15] (Ivaylo Beltchev -> IvoSoft) [File not signed]

Edge:
======
Edge Profile: C:\Users\Andrea\AppData\Local\Microsoft\Edge\User Data\Default [2020-09-02]

FireFox:
========
FF DefaultProfile: 5s0rzb81.default
FF ProfilePath: C:\Users\Andrea\AppData\Roaming\Mozilla\Firefox\Profiles\5s0rzb81.default [2020-09-02]
FF NewTab: Mozilla\Firefox\Profiles\5s0rzb81.default -> hxxps://www.yahoo.com/?fr=vmn&type=vmn__webcomp ... 0306__yaff
FF Session Restore: Mozilla\Firefox\Profiles\5s0rzb81.default -> is enabled.
FF Notifications: Mozilla\Firefox\Profiles\5s0rzb81.default -> hxxps://b.robotcaptcha2.info
FF HomepageOverride: Mozilla\Firefox\Profiles\5s0rzb81.default -> Disabled: _d1Membersttab03_@free.mysocialshortcut.com
FF NewTabOverride: Mozilla\Firefox\Profiles\5s0rzb81.default -> Disabled: _d1Membersttab03_@free.mysocialshortcut.com
FF Extension: (Avast Passwords) - C:\Users\Andrea\AppData\Roaming\Mozilla\Firefox\Profiles\5s0rzb81.default\Extensions\jid1-r1tDuNiNb4SEww@jetpack.xpi [2020-02-12] [UpdateUrl:hxxps://pamcdn.avast.com/pamcdn/extensions/firefox/update.json]
FF Extension: (Avast SafePrice | Porovnanie, ponuky, kupóny) - C:\Users\Andrea\AppData\Roaming\Mozilla\Firefox\Profiles\5s0rzb81.default\Extensions\sp@avast.com.xpi [2020-07-05]
FF Extension: (Avast Online Security) - C:\Users\Andrea\AppData\Roaming\Mozilla\Firefox\Profiles\5s0rzb81.default\Extensions\wrc@avast.com.xpi [2020-06-17]
FF Extension: (MyWay Search By MySocialShortcut) - C:\Users\Andrea\AppData\Roaming\Mozilla\Firefox\Profiles\5s0rzb81.default\Extensions\_d1Membersttab03_@free.mysocialshortcut.com.xpi [2020-06-30] [UpdateUrl:hxxps:\/\/updates.tb.ask.com\/updateXpi.json?id=223553785&version=9.100.18.23620&track=TTAB03&trackRevision=1&fromId=_d1Membersttab03_%40free.mysocialshortcut.com&isBridgeExtension=false]
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)

Chrome:
=======
CHR Profile: C:\Users\Andrea\AppData\Local\Google\Chrome\User Data\Default [2020-09-02]
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR Extension: (Prezentácie) - C:\Users\Andrea\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-11-18]
CHR Extension: (Dokumenty) - C:\Users\Andrea\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-12-26]
CHR Extension: (Disk Google) - C:\Users\Andrea\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-12-26]
CHR Extension: (YouTube) - C:\Users\Andrea\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-12-26]
CHR Extension: (Avast SafePrice | Porovnanie, ponuky, kupóny) - C:\Users\Andrea\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2019-04-02]
CHR Extension: (Tabuľky) - C:\Users\Andrea\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-11-18]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\Andrea\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-12-26]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Andrea\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-11-18]
CHR Extension: (Gmail) - C:\Users\Andrea\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-12-26]
CHR Extension: (Chrome Media Router) - C:\Users\Andrea\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-04-02]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [7824280 2020-09-01] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [357848 2020-09-01] (Avast Software s.r.o. -> AVAST Software)
R2 CleanupPSvc; C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupSvc.exe [10282024 2019-06-17] (AVAST Software s.r.o. -> AVAST Software)
S4 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [733696 2013-07-01] (Intel(R) Corporation) [File not signed]
S4 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [200168 2013-12-04] (Intel(R) Smart Connect software -> )
R2 SamsungUPDUtilSvc; C:\WINDOWS\SysWOW64\SecUPDUtilSvc.exe [143664 2019-01-16] (Samsung Electronics CO., LTD. -> )
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37136 2020-09-01] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [206392 2020-09-01] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [235584 2020-09-01] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [195648 2020-09-01] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [60480 2020-09-01] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42768 2020-09-01] (Avast Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [175192 2020-09-01] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [516560 2020-09-01] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [109272 2020-09-01] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [84848 2020-09-01] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [851600 2020-09-01] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [469880 2020-09-01] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [217328 2020-09-01] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [326408 2020-09-01] (Avast Software s.r.o. -> AVAST Software)
U3 BthHFSrv; C:\WINDOWS\System32\svchost.exe [38792 2014-10-29] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
U3 BthHFSrv; C:\WINDOWS\SysWOW64\svchost.exe [33088 2014-10-29] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 GPIO; C:\WINDOWS\System32\drivers\iaiogpioe.sys [31232 2013-11-11] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
S3 iaioi2c; C:\WINDOWS\System32\drivers\iaioi2ce.sys [67584 2013-11-11] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
R3 netr28x; C:\WINDOWS\system32\DRIVERS\netr28x.sys [2432656 2014-08-12] (MEDIATEK INC. -> MediaTek Inc.)
R3 rtbth; C:\WINDOWS\System32\drivers\rtbth.sys [1204936 2014-02-12] (Mediatek Inc. -> Ralink Technology, Corp.)
U5 RTSUER; C:\Windows\System32\Drivers\RTSUER.sys [413912 2015-12-22] (Realtek Semiconductor Corp -> Realsil Semiconductor Corporation)
S3 SensorsServiceDriver; C:\WINDOWS\System32\drivers\WUDFRd.sys [226304 2014-10-29] (Microsoft Windows -> Microsoft Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [20800 2013-07-22] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)
S3 wmbclass; C:\WINDOWS\System32\drivers\wmbclass.sys [267264 2017-12-10] (Microsoft Windows -> Microsoft Corporation)
U1 aswbdisk; no ImagePath
U3 McAPExe; no ImagePath
U3 McMPFSvc; no ImagePath
U3 McNaiAnn; no ImagePath
U3 mfecore; no ImagePath
U3 MSK80Service; no ImagePath
S3 SWDUMon; \SystemRoot\system32\DRIVERS\SWDUMon.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-09-02 20:00 - 2020-09-02 20:00 - 008414384 _____ (Malwarebytes) C:\Users\Andrea\Desktop\adwcleaner_8.0.7.exe
2020-09-02 18:01 - 2020-09-02 21:15 - 000032786 _____ C:\Users\Andrea\Desktop\Addition.txt
2020-09-02 17:58 - 2020-09-02 21:20 - 000020947 _____ C:\Users\Andrea\Desktop\FRST.txt
2020-09-02 17:57 - 2020-09-02 21:19 - 000000000 ____D C:\FRST
2020-09-02 17:55 - 2020-09-02 17:55 - 002298880 _____ (Farbar) C:\Users\Andrea\Desktop\FRST64.exe
2020-09-02 15:48 - 2020-09-02 15:49 - 027072192 _____ (Piriform Software Ltd) C:\Users\Andrea\Downloads\ccsetup570.exe
2020-09-01 23:17 - 2020-09-01 23:17 - 000002025 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Beats Audio.lnk
2020-09-01 23:17 - 2020-09-01 23:17 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2020-09-01 23:17 - 2020-09-01 23:17 - 000000000 ____D C:\WINDOWS\LastGood
2020-09-01 23:17 - 2020-09-01 23:17 - 000000000 ____D C:\Program Files\Realtek
2020-09-01 23:16 - 2017-11-02 02:36 - 000532376 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2020-09-01 23:16 - 2017-11-02 02:36 - 000166192 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2020-09-01 23:16 - 2017-11-02 02:35 - 003410320 _____ (DTS, Inc.) C:\WINDOWS\system32\slcnt64.dll
2020-09-01 23:16 - 2017-11-02 02:35 - 003121112 _____ (DTS, Inc.) C:\WINDOWS\system32\sltech64.dll
2020-09-01 23:16 - 2017-11-02 02:35 - 001435136 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRRPTR64.dll
2020-09-01 23:16 - 2017-11-02 02:35 - 000986984 _____ (DTS, Inc.) C:\WINDOWS\system32\sl3apo64.dll
2020-09-01 23:16 - 2017-11-02 02:35 - 000467152 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRAPO64.dll
2020-09-01 23:16 - 2017-11-02 02:35 - 000381400 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM64.dll
2020-09-01 23:16 - 2017-11-02 02:35 - 000341144 _____ (Synopsys, Inc.) C:\WINDOWS\SysWOW64\SRCOM.dll
2020-09-01 23:16 - 2017-11-02 02:35 - 000341144 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM.dll
2020-09-01 23:16 - 2017-11-02 02:34 - 003509192 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2020-09-01 23:16 - 2017-11-02 02:34 - 001016920 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDHF64.dll
2020-09-01 23:16 - 2017-11-02 02:34 - 000877416 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SEHDHF32.dll
2020-09-01 23:16 - 2017-11-02 02:34 - 000868168 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SECOMN64.dll
2020-09-01 23:16 - 2017-11-02 02:34 - 000866632 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDRA64.dll
2020-09-01 23:16 - 2017-11-02 02:34 - 000737952 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SECOMN32.dll
2020-09-01 23:16 - 2017-11-02 02:34 - 000691672 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2020-09-01 23:16 - 2017-11-02 02:34 - 000526272 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEAPO64.dll
2020-09-01 23:16 - 2017-11-02 02:34 - 000387304 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2020-09-01 23:16 - 2017-11-02 02:34 - 000343696 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2020-09-01 23:16 - 2017-11-02 02:34 - 000214824 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2020-09-01 23:16 - 2017-11-02 02:34 - 000192976 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2020-09-01 23:16 - 2017-11-02 02:34 - 000110976 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2020-09-01 23:16 - 2017-11-02 02:34 - 000088336 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2020-09-01 23:16 - 2017-11-02 02:33 - 003677152 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2020-09-01 23:16 - 2017-11-02 02:33 - 003561920 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2020-09-01 23:16 - 2017-11-02 02:33 - 003205600 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2020-09-01 23:16 - 2017-11-02 02:33 - 001351232 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2020-09-01 23:16 - 2017-11-02 02:33 - 000321712 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2020-09-01 23:16 - 2017-11-02 02:33 - 000321704 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2020-09-01 23:16 - 2017-11-02 02:33 - 000258856 _____ (TODO: <Company name>) C:\WINDOWS\system32\slprp64.dll
2020-09-01 23:16 - 2017-11-02 02:32 - 072520704 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2020-09-01 23:16 - 2017-11-02 02:32 - 006025640 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2020-09-01 23:16 - 2017-11-02 02:32 - 002922976 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2020-09-01 23:16 - 2017-11-02 02:32 - 000023688 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2020-09-01 23:16 - 2017-11-02 02:31 - 001617728 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CX64APO.dll
2020-09-01 23:16 - 2017-11-02 02:31 - 001529136 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CX64Proxy.dll
2020-09-01 23:16 - 2017-11-02 02:31 - 000609384 _____ (Conexant Systems, Inc.) C:\WINDOWS\system32\CAF64APO2.dll
2020-09-01 23:16 - 2017-11-02 02:31 - 000122312 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2020-09-01 23:16 - 2017-11-02 02:31 - 000115112 _____ (Conexant System, Inc.) C:\WINDOWS\system32\Caf64api.dll
2020-09-01 23:16 - 2017-11-02 02:09 - 014566602 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2020-09-01 23:16 - 2017-11-02 02:09 - 000005604 _____ C:\WINDOWS\system32\cxapo.lncs
2020-09-01 23:16 - 2017-11-02 02:09 - 000003780 _____ C:\WINDOWS\system32\cxapo.prop
2020-09-01 23:00 - 2018-04-20 01:56 - 000999296 _____ (Realtek ) C:\WINDOWS\system32\Drivers\Rt630x64.sys
2020-09-01 23:00 - 2018-04-20 01:56 - 000122816 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp64.dll
2020-09-01 22:56 - 2020-09-01 22:57 - 048347713 _____ C:\Users\Andrea\Documents\Firefox 80.0.1 (x86 sk) - 2020-09-01.pcv
2020-09-01 22:54 - 2020-09-01 23:02 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2020-09-01 22:47 - 2015-12-22 09:39 - 000413912 _____ (Realsil Semiconductor Corporation) C:\WINDOWS\system32\Drivers\RtsUer.sys
2020-09-01 22:47 - 2015-12-18 10:06 - 004330200 _____ (TODO: <Company name>) C:\WINDOWS\RtCRU64.exe
2020-09-01 22:47 - 2015-12-18 10:06 - 000769752 _____ (Realsil Semiconductor Corporation) C:\WINDOWS\system32\Drivers\RtsPer.sys
2020-09-01 22:47 - 2015-12-15 16:39 - 000328920 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RtsP2Stor.sys
2020-09-01 22:47 - 2015-10-16 11:26 - 000367320 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RtsPStor.sys
2020-09-01 22:47 - 2015-06-03 09:47 - 000313048 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RtsBaStor.sys
2020-09-01 22:47 - 2014-10-20 17:50 - 000083160 _____ (Realtek Semiconductor.) C:\WINDOWS\system32\RtCRX64.dll
2020-09-01 22:47 - 2014-01-27 13:39 - 009890008 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RsCRIcon.dll
2020-09-01 22:40 - 2020-09-01 22:40 - 000000000 ____D C:\Program Files (x86)\Ralink Corporation
2020-09-01 22:16 - 2020-09-01 22:16 - 000372712 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-09-01 21:16 - 2020-09-01 21:13 - 000338528 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2020-09-01 21:16 - 2020-09-01 21:13 - 000217328 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2020-09-01 21:16 - 2020-09-01 21:13 - 000175192 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2020-09-01 21:11 - 2020-09-02 17:40 - 000000000 ____D C:\Program Files (x86)\Avast Driver Updater
2020-08-25 20:51 - 2020-09-01 22:21 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2020-08-21 18:47 - 2020-08-15 06:51 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmxs.dll
2020-08-21 18:47 - 2020-08-15 06:51 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasser.dll
2020-08-21 18:47 - 2020-08-15 06:36 - 000428544 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasplap.dll
2020-08-21 18:47 - 2020-08-15 06:16 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasmxs.dll
2020-08-21 18:47 - 2020-08-15 06:16 - 000023040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasser.dll
2020-08-21 18:47 - 2020-08-15 06:05 - 000880640 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdlg.dll
2020-08-21 18:47 - 2020-08-15 06:05 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasplap.dll
2020-08-21 18:47 - 2020-08-15 05:55 - 000963072 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll
2020-08-21 18:47 - 2020-08-15 05:48 - 001080320 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2020-08-21 18:47 - 2020-08-15 05:42 - 000796160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdlg.dll
2020-08-21 18:47 - 2020-08-15 05:39 - 000424448 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprapi.dll
2020-08-21 18:47 - 2020-08-15 05:35 - 000856064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasgcw.dll
2020-08-21 18:47 - 2020-08-15 05:28 - 000542720 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2020-08-21 18:47 - 2020-08-15 05:26 - 000700928 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2020-08-21 18:47 - 2020-08-15 05:24 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprapi.dll
2020-08-21 18:47 - 2020-08-15 05:16 - 000629248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2020-08-17 18:09 - 2020-08-06 01:47 - 000477696 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2020-08-17 18:09 - 2020-08-06 01:19 - 000367616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2020-08-17 18:09 - 2020-08-06 01:00 - 001098240 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2020-08-17 18:09 - 2020-08-04 05:58 - 001483264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll
2020-08-17 18:09 - 2020-08-04 05:39 - 001441792 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2020-08-17 18:09 - 2020-08-04 05:35 - 000842240 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2020-08-17 18:09 - 2020-08-04 05:32 - 001338368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll
2020-08-17 18:09 - 2020-08-04 05:15 - 000698880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2020-08-17 18:09 - 2020-07-23 09:33 - 000559616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2020-08-17 18:09 - 2020-07-19 12:45 - 000431352 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2020-08-17 18:09 - 2020-07-19 12:39 - 000376056 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2020-08-17 18:09 - 2020-07-19 12:36 - 000955432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2020-08-17 18:09 - 2020-07-19 10:41 - 000950784 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2020-08-17 18:09 - 2020-07-19 10:37 - 001756160 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-08-17 18:09 - 2020-07-19 10:15 - 000453120 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
2020-08-17 18:09 - 2020-07-19 10:10 - 001730048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-08-17 18:09 - 2020-07-18 08:36 - 000317176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2020-08-17 18:09 - 2020-07-18 08:31 - 000317192 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2020-08-17 18:09 - 2020-07-18 08:24 - 000788104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2020-08-17 18:09 - 2020-07-18 05:40 - 000772096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2020-08-17 18:09 - 2020-07-18 05:38 - 001494016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-08-17 18:09 - 2020-07-18 05:23 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2020-08-17 18:09 - 2020-07-18 05:17 - 001548288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2020-08-17 18:09 - 2020-07-17 21:19 - 001542672 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-08-17 18:09 - 2020-07-16 08:20 - 002745080 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL
2020-08-17 18:09 - 2020-07-16 08:18 - 002528696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVDECOD.DLL
2020-08-17 18:09 - 2020-07-14 10:11 - 001370688 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2020-08-17 18:09 - 2020-07-14 06:55 - 025756672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-08-17 18:09 - 2020-07-14 06:43 - 004169216 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-08-17 18:09 - 2020-07-14 06:19 - 005499392 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2020-08-17 18:09 - 2020-07-14 06:19 - 000785408 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2020-08-17 18:09 - 2020-07-14 06:15 - 020291584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-08-17 18:09 - 2020-07-14 05:51 - 001993728 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2020-08-17 18:09 - 2020-07-14 05:50 - 000653824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2020-08-17 18:09 - 2020-07-14 05:42 - 015479296 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2020-08-17 18:09 - 2020-07-14 05:42 - 001384448 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2020-08-17 18:09 - 2020-07-14 05:27 - 004111872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2020-08-17 18:09 - 2020-07-14 05:27 - 001088512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2020-08-17 18:09 - 2020-07-14 05:25 - 001559552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2020-08-17 18:09 - 2020-07-14 05:21 - 013861888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2020-08-17 18:09 - 2020-07-14 03:17 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2020-08-17 18:09 - 2020-07-14 03:17 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll
2020-08-17 18:09 - 2020-07-14 03:17 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2020-08-17 18:09 - 2020-07-11 21:33 - 007363320 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-08-17 18:09 - 2020-07-11 18:40 - 000313856 _____ (Microsoft Corporation) C:\WINDOWS\system32\tapisrv.dll
2020-08-17 18:09 - 2020-07-11 18:29 - 000671744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaservc.dll
2020-08-17 18:09 - 2020-07-11 18:17 - 000254976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tapisrv.dll
2020-08-17 18:09 - 2020-07-11 18:08 - 000656384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2020-08-17 18:09 - 2020-07-11 18:07 - 000252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2020-08-17 18:09 - 2020-07-11 17:54 - 000499712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2020-08-17 18:09 - 2020-07-10 01:33 - 000629504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP4SDECD.DLL
2020-08-17 18:09 - 2020-07-10 01:30 - 000464184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP4SDECD.DLL
2020-08-17 18:09 - 2020-07-04 18:46 - 003331584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2020-08-17 18:09 - 2020-07-04 18:23 - 003640832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2020-08-17 18:09 - 2020-06-30 19:27 - 000955904 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2020-08-17 18:09 - 2020-06-28 11:16 - 001210112 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOD.DLL
2020-08-17 18:09 - 2020-06-28 10:30 - 001037584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOD.DLL
2020-08-17 18:08 - 2020-08-04 06:08 - 000445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2020-08-17 18:08 - 2020-08-04 05:39 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2020-08-17 18:08 - 2020-07-19 11:45 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2020-08-17 18:08 - 2020-07-18 06:27 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2020-08-17 18:08 - 2020-07-14 06:31 - 000581120 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2020-08-17 18:08 - 2020-07-14 06:00 - 000498176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2020-08-17 18:08 - 2020-07-14 05:51 - 001033216 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2020-08-17 18:08 - 2020-07-14 05:43 - 000809472 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2020-08-17 18:08 - 2020-07-14 05:30 - 000880640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2020-08-17 18:08 - 2020-07-14 05:29 - 004859392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2020-08-17 18:08 - 2020-07-14 05:25 - 000696320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2020-08-17 18:08 - 2020-07-14 05:18 - 001566720 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2020-08-17 18:08 - 2020-07-14 05:07 - 004387328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2020-08-17 18:08 - 2020-07-14 05:07 - 000801280 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2020-08-17 18:08 - 2020-07-14 05:03 - 001341952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2020-08-17 18:08 - 2020-07-14 05:01 - 000710656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2020-08-17 18:08 - 2020-07-11 17:57 - 000109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdSSDP.dll
2020-08-17 18:08 - 2020-07-11 17:53 - 001377792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-08-17 18:08 - 2020-07-11 17:47 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdSSDP.dll
2020-08-17 18:08 - 2020-07-04 19:06 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\msisip.dll
2020-08-17 18:08 - 2020-07-04 18:35 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msisip.dll

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-09-02 20:53 - 2018-11-18 19:34 - 000000000 ____D C:\ProgramData\AVAST Software
2020-09-02 20:41 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\rescache
2020-09-02 20:18 - 2018-11-18 20:10 - 000000000 ____D C:\Users\Andrea\AppData\Roaming\vlc
2020-09-02 20:18 - 2018-11-18 19:45 - 000000000 ____D C:\Users\Andrea\AppData\Local\AVAST Software
2020-09-02 20:14 - 2016-11-23 15:13 - 000000000 ____D C:\Users\Andrea\AppData\LocalLow\Mozilla
2020-09-02 20:13 - 2013-08-22 16:45 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-09-02 18:42 - 2018-11-18 19:23 - 000003600 _____ C:\WINDOWS\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2283098450-1521063285-1732289341-1001
2020-09-02 17:44 - 2018-12-23 14:28 - 000000000 ____D C:\Users\Andrea\AppData\Local\CrashDumps
2020-09-02 17:44 - 2018-11-18 19:39 - 000000000 ____D C:\Users\Andrea\AppData\Local\ClassicShell
2020-09-02 17:33 - 2018-11-18 19:41 - 000004168 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2020-09-02 17:22 - 2018-11-18 21:05 - 000000000 ____D C:\Program Files (x86)\AVAST Software
2020-09-02 17:20 - 2020-07-19 20:18 - 000003734 _____ C:\WINDOWS\system32\Tasks\Avast Secure Browser Heartbeat Task (Hourly)
2020-09-02 17:20 - 2020-07-19 20:18 - 000003152 _____ C:\WINDOWS\system32\Tasks\Avast Secure Browser Heartbeat Task (Logon)
2020-09-02 17:20 - 2020-07-19 20:15 - 000003410 _____ C:\WINDOWS\system32\Tasks\AvastUpdateTaskMachineUA
2020-09-02 16:49 - 2013-08-22 15:36 - 000000000 ____D C:\WINDOWS\Inf
2020-09-02 15:49 - 2018-11-18 19:54 - 000003870 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-09-02 15:49 - 2018-11-18 19:54 - 000000841 _____ C:\Users\Public\Desktop\CCleaner.lnk
2020-09-02 15:46 - 2018-11-18 19:54 - 000002802 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2020-09-02 15:41 - 2018-11-18 18:59 - 000000000 ____D C:\Users\Andrea
2020-09-02 15:37 - 2018-11-18 21:05 - 000004194 _____ C:\WINDOWS\system32\Tasks\Avast Cleanup Update
2020-09-01 23:18 - 2015-05-18 10:02 - 000000000 ___HD C:\Program Files (x86)\Temp
2020-09-01 23:16 - 2014-03-20 02:17 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2020-09-01 23:06 - 2015-05-18 10:04 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Music, Photos and Videos
2020-09-01 23:06 - 2015-05-18 10:00 - 000000000 ____D C:\Program Files (x86)\Realtek
2020-09-01 23:04 - 2013-09-01 05:49 - 000000000 ____D C:\SWSetup
2020-09-01 22:48 - 2015-05-18 10:04 - 000000000 ____D C:\WINDOWS\SysWOW64\sda
2020-09-01 22:44 - 2018-12-22 22:18 - 000017082 _____ C:\WINDOWS\system32\perfh01B.dat
2020-09-01 22:44 - 2018-12-22 22:18 - 000006132 _____ C:\WINDOWS\system32\perfc01B.dat
2020-09-01 22:44 - 2013-08-26 08:09 - 000963708 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-09-01 22:42 - 2015-05-18 10:00 - 000000000 ____D C:\ProgramData\Package Cache
2020-09-01 22:42 - 2015-05-18 09:57 - 000000000 ____D C:\Program Files\Intel
2020-09-01 22:41 - 2015-05-18 09:58 - 000000032 _____ C:\WINDOWS\0
2020-09-01 22:12 - 2020-07-19 20:15 - 000003282 _____ C:\WINDOWS\system32\Tasks\AvastUpdateTaskMachineCore
2020-09-01 22:04 - 2018-11-18 19:28 - 000001182 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-09-01 22:03 - 2020-07-19 20:10 - 000003478 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-09-01 22:03 - 2020-07-19 20:10 - 000003350 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-09-01 22:03 - 2015-05-18 10:05 - 000002992 _____ C:\WINDOWS\system32\Tasks\Synaptics TouchPad Enhancements
2020-09-01 22:03 - 2013-08-26 08:04 - 000000000 ____D C:\Users\Administrator
2020-09-01 21:13 - 2020-04-15 15:31 - 000516560 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2020-09-01 21:13 - 2019-01-05 12:43 - 000195648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2020-09-01 21:13 - 2019-01-05 12:43 - 000060480 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2020-09-01 21:13 - 2018-11-18 19:40 - 000469880 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2020-09-01 21:13 - 2018-11-18 19:40 - 000326408 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2020-09-01 21:13 - 2018-11-18 19:40 - 000109272 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2020-09-01 21:13 - 2018-11-18 19:40 - 000084848 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2020-09-01 21:13 - 2018-11-18 19:40 - 000042768 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2020-09-01 21:11 - 2019-01-15 12:15 - 000235584 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2020-09-01 21:11 - 2019-01-05 12:43 - 000037136 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2020-09-01 21:11 - 2018-11-18 19:40 - 000851600 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2020-09-01 21:11 - 2018-11-18 19:40 - 000206392 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2020-08-28 23:27 - 2018-11-18 19:42 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2020-08-28 23:27 - 2018-11-18 18:56 - 000002360 _____ C:\WINDOWS\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2283098450-1521063285-1732289341-500
2020-08-28 23:27 - 2015-05-18 10:15 - 000003160 _____ C:\WINDOWS\system32\Tasks\CLMLSvc_P2G8
2020-08-28 23:27 - 2015-05-18 10:12 - 000003156 _____ C:\WINDOWS\system32\Tasks\YCMServiceAgent
2020-08-28 19:02 - 2013-08-22 15:25 - 000262144 ___SH C:\WINDOWS\system32\config\BBI
2020-08-28 18:53 - 2013-08-22 17:36 - 000000000 ___RD C:\WINDOWS\ToastData
2020-08-28 18:53 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2020-08-28 18:53 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\system32\setup
2020-08-28 18:52 - 2018-11-18 19:28 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-08-21 19:10 - 2013-08-22 17:20 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-08-17 17:07 - 2018-11-18 19:45 - 000002026 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2020-09-02 16:49
==================== End of FRST.txt ========================

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 112393
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosim o kontrolu logu

#8 Příspěvek od Rudy »

Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
ContextMenuHandlers1: [ALZip] -> [CC]{4EB37360-49E8-11D3-95B5-004033382980} => -> No File
ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => -> No File
ContextMenuHandlers2: [ALZip] -> [CC]{4EB37360-49E8-11D3-95B5-004033382980} => -> No File
ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => -> No File
ContextMenuHandlers4: [7-Zip] -> [CC]{23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers4: [ALZip] -> [CC]{4EB37360-49E8-11D3-95B5-004033382980} => -> No File
ContextMenuHandlers5: [ALZip] -> {4EB37360-49E8-11D3-95B5-004033382980} => -> No File
ContextMenuHandlers6: [ALZip] -> [CC]{4EB37360-49E8-11D3-95B5-004033382980} => -> No File
HKLM\Software\...\Authentication\Credential Providers: [{F3F1B0FA-4775-41d8-8578-436772D93FB4}] ->
HKLM\Software\...\Authentication\Credential Provider Filters: [{F3F1B0FA-4775-41d8-8578-436772D93FB4}] ->
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {AFADF9A9-F3BB-4775-BA58-D0C86DC169BD} - \Hewlett-Packard\HP CoolSense\HP CoolSense Start at Logon -> No File <==== ATTENTION
C:\Program Files (x86)\Bonjour
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HPNTDFJS
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HPNTDFJS
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HPNTDFJS
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HPNTDFJS
HKU\S-1-5-21-2283098450-1521063285-1732289341-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com/?pc=HPNTDFJS
HKU\S-1-5-21-2283098450-1521063285-1732289341-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HPNTDFJS
U3 BthHFSrv; C:\WINDOWS\System32\svchost.exe [38792 2014-10-29] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
U1 aswbdisk; no ImagePath
U3 McAPExe; no ImagePath
U3 McMPFSvc; no ImagePath
U3 McNaiAnn; no ImagePath
U3 mfecore; no ImagePath
U3 MSK80Service; no ImagePath
C:\WINDOWS\LastGood.Tmp

EmptyTemp:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

RANKO
Návštěvník
Návštěvník
Příspěvky: 88
Registrován: 29 črc 2007 07:46
Bydliště: BA - SK

Re: Prosim o kontrolu logu

#9 Příspěvek od RANKO »

Fix result of Farbar Recovery Scan Tool (x64) Version: 29-08-2020
Ran by Andrea (03-09-2020 06:00:00) Run:1
Running from C:\Users\Andrea\Desktop
Loaded Profiles: Andrea & Administrator
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
ContextMenuHandlers1: [ALZip] -> [CC]{4EB37360-49E8-11D3-95B5-004033382980} => -> No File
ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => -> No File
ContextMenuHandlers2: [ALZip] -> [CC]{4EB37360-49E8-11D3-95B5-004033382980} => -> No File
ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => -> No File
ContextMenuHandlers4: [7-Zip] -> [CC]{23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers4: [ALZip] -> [CC]{4EB37360-49E8-11D3-95B5-004033382980} => -> No File
ContextMenuHandlers5: [ALZip] -> {4EB37360-49E8-11D3-95B5-004033382980} => -> No File
ContextMenuHandlers6: [ALZip] -> [CC]{4EB37360-49E8-11D3-95B5-004033382980} => -> No File
HKLM\Software\...\Authentication\Credential Providers: [{F3F1B0FA-4775-41d8-8578-436772D93FB4}] ->
HKLM\Software\...\Authentication\Credential Provider Filters: [{F3F1B0FA-4775-41d8-8578-436772D93FB4}] ->
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {AFADF9A9-F3BB-4775-BA58-D0C86DC169BD} - \Hewlett-Packard\HP CoolSense\HP CoolSense Start at Logon -> No File <==== ATTENTION
C:\Program Files (x86)\Bonjour
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HPNTDFJS
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HPNTDFJS
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HPNTDFJS
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HPNTDFJS
HKU\S-1-5-21-2283098450-1521063285-1732289341-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com/?pc=HPNTDFJS
HKU\S-1-5-21-2283098450-1521063285-1732289341-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HPNTDFJS
U3 BthHFSrv; C:\WINDOWS\System32\svchost.exe [38792 2014-10-29] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
U1 aswbdisk; no ImagePath
U3 McAPExe; no ImagePath
U3 McMPFSvc; no ImagePath
U3 McNaiAnn; no ImagePath
U3 mfecore; no ImagePath
U3 MSK80Service; no ImagePath
C:\WINDOWS\LastGood.Tmp

EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ALZip => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\CLVDShellExt => removed successfully
HKLM\Software\Classes\Drive\ShellEx\ContextMenuHandlers\ALZip => removed successfully
HKLM\Software\Classes\Drive\ShellEx\ContextMenuHandlers\CLVDShellExt => removed successfully
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\7-Zip => removed successfully
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\ALZip => removed successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\ALZip => removed successfully
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\ALZip => removed successfully
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers\{F3F1B0FA-4775-41d8-8578-436772D93FB4} => removed successfully
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Provider Filters\{F3F1B0FA-4775-41d8-8578-436772D93FB4} => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
HKLM\SOFTWARE\Policies\Google => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{AFADF9A9-F3BB-4775-BA58-D0C86DC169BD}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AFADF9A9-F3BB-4775-BA58-D0C86DC169BD}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Hewlett-Packard\HP CoolSense\HP CoolSense Start at Logon" => removed successfully
"C:\Program Files (x86)\Bonjour" => not found
HKLM\Software\\Microsoft\Internet Explorer\Main\\"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" => value restored successfully
HKU\S-1-5-21-2283098450-1521063285-1732289341-1001\Software\Microsoft\Internet Explorer\Main\\"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" => value restored successfully
HKU\S-1-5-21-2283098450-1521063285-1732289341-1001\Software\Microsoft\Internet Explorer\Main\\"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" => value restored successfully
HKLM\System\CurrentControlSet\Services\BthHFSrv => removed successfully
BthHFSrv => service removed successfully
HKLM\System\CurrentControlSet\Services\aswbdisk => could not remove, key could be protected
HKLM\System\CurrentControlSet\Services\McAPExe => removed successfully
McAPExe => service removed successfully
HKLM\System\CurrentControlSet\Services\McMPFSvc => removed successfully
McMPFSvc => service removed successfully
HKLM\System\CurrentControlSet\Services\McNaiAnn => removed successfully
McNaiAnn => service removed successfully
HKLM\System\CurrentControlSet\Services\mfecore => removed successfully
mfecore => service removed successfully
HKLM\System\CurrentControlSet\Services\MSK80Service => removed successfully
MSK80Service => service removed successfully
C:\WINDOWS\LastGood.Tmp => moved successfully

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 9576497 B
Java, Flash, Steam htmlcache => 506 B
Windows/system/drivers => 8225746 B
Edge => 0 B
Chrome => 143921 B
Firefox => 166319582 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 128 B
systemprofile32 => 3838393 B
LocalService => 3841651 B
NetworkService => 3841651 B
Andrea => 39925634 B
Administrator => 39936977 B

RecycleBin => 0 B
EmptyTemp: => 270.9 MB temporary data Removed.

================================

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 03-09-2020 06:05:51)


Result of scheduled keys to remove after reboot:

HKLM\System\CurrentControlSet\Services\aswbdisk => could not remove, key could be protected

==== End of Fixlog 06:05:51 ====

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 112393
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosim o kontrolu logu

#10 Příspěvek od Rudy »

Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

RANKO
Návštěvník
Návštěvník
Příspěvky: 88
Registrován: 29 črc 2007 07:46
Bydliště: BA - SK

Re: Prosim o kontrolu logu

#11 Příspěvek od RANKO »

Ani nie. Ked pustim na youtube video, tak sa asi2é sekund toci kolecko, potom vyskoci hlaska " Ak sa prehravanie o chvilu nezacne, restartujte zariadenie" A po asi 20 sekundach sa nakoniec spusti. VLC spustenie trva 30 sekund. Inak notebook reaguje v norme, na svoj vek :) ostatne programy a okn sa otvaraju ako obvykle.

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 112393
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosim o kontrolu logu

#12 Příspěvek od Rudy »

Ještě zkusíme vyčistit prohlížeče. Spusťte postupně tyto utility:

1. Stahnete Zoek.exe http://download.bleepingcomputer.com/smeenk/zoek.exe a ulozte jej na plochu

Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
Do okna vlozte skript nize




autoclean;
resethosts;
emptyclsid;
IEdefaults;
FFdefaults;
CHRdefaults;
emptyIEcache;
emptyFFcache;
emptyCHRcache;
emptyalltemp;
emptyflash;
emptyjava;
emptyrecycle.bin;





Nasledne kliknete na Run Script
PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem.

a

2. Junkware removal tool: https://www.stahuj.cz/utility_a_ostatni ... oval-tool/
•Ulozte nejlepe na plochu
•Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
•Probehne vytvoreni zalohy a nasledne prohledavani
•Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

RANKO
Návštěvník
Návštěvník
Příspěvky: 88
Registrován: 29 črc 2007 07:46
Bydliště: BA - SK

Re: Prosim o kontrolu logu

#13 Příspěvek od RANKO »

info Avast po restarte hlasi "get.bat sa snazi zmenit alebo odstranit subor JRT.txt blokovat/povolit?
pridavam logy


Zoek.exe v5.0.0.2 Updated 03-May-2018(Online Version)
Tool run by Andrea on çt 03.09.2020 at 18:03:57,61.
Microsoft Windows 8.1 6.3.9600 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Andrea\Desktop\zoek(1).exe [Scan all users] [Script inserted]

==== System Restore Info ======================

3.9.2020 18:08:18 Zoek.exe System Restore Point Created Successfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

# localhost name resolution is handled within DNS itself.
127.0.0.1 localhost
::1 localhost

==== Empty Folders Check ======================

C:\Users\Administrator\AppData\Roaming\Hewlett-Packard deleted successfully
C:\Users\Andrea\AppData\Roaming\hpqlog deleted successfully
C:\Users\Andrea\AppData\Local\CrashDumps deleted successfully
C:\Users\Andrea\AppData\Local\Hewlett-Packard deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-2283098450-1521063285-1732289341-1001\Software\Microsoft\Internet Explorer\SearchScopes\{92DF01A1-31EC-491F-BF75-1C6211DC3D8C} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{92DF01A1-31EC-491F-BF75-1C6211DC3D8C} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{92DF01A1-31EC-491F-BF75-1C6211DC3D8C} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== FireFox Fix ======================

Deleted from C:\Users\Andrea\AppData\Roaming\Mozilla\Firefox\Profiles\5s0rzb81.default\prefs.js:
user_pref("browser.newtab.url", "https://www.yahoo.com/?fr=vmn&type=vmn_ ... 0306__yaff");
user_pref("browser.search.selectedEngine", "Yahoo®");

Added to C:\Users\Andrea\AppData\Roaming\Mozilla\Firefox\Profiles\5s0rzb81.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

ProfilePath: C:\Users\Andrea\AppData\Roaming\Mozilla\Firefox\Profiles\5s0rzb81.default

user.js not found
---- Lines yahoo removed from prefs.js ----
user_pref("browser.newtabpage.url", "https://www.yahoo.com/?fr=vmn&type=vmn_ ... 0306__yaff");
user_pref("browser.search.hiddenOneOffs", "Azet,Atlas,DuckDuckGo,Dunaj,Slovnik.sk (EN-SK),Wikipédia (sk),Yahoo®,Zoznam");
---- Lines searchengine removed from prefs.js ----
user_pref("browser.pageActions.persistedActions", "{\"version\":1,\"ids\":[\"bookmark\",\"bookmarkSeparator\",\"copyURL\",\"emailLink\",\"addSearchEng
---- Lines browser.startup.page removed from prefs.js ----
user_pref("browser.startup.page", 3);
---- FireFox user.js and prefs.js backups ----

prefs_03.09.2020_1843_.backup

==== Deleting Files \ Folders ======================

C:\DriverPack-17-Online-By.Houmers.exe deleted
C:\PROGRA~3\{C19CA186-4F06-4E22-A1E6-6BAB4723A0DE} deleted
C:\PROGRA~3\Package Cache deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted
C:\windows\SysNative\Tasks\Avast Cleanup Update deleted
C:\windows\SysNative\Tasks\Avast Secure Browser Heartbeat Task (Hourly) deleted
C:\windows\SysNative\Tasks\Avast Secure Browser Heartbeat Task (Logon) deleted
C:\windows\SysNative\Tasks\AvastUpdateTaskMachineCore deleted
C:\windows\SysNative\Tasks\AvastUpdateTaskMachineUA deleted
"C:\Users\Andrea\AppData\Local\AVAST Software\APM\kv_pam.db" not deleted
"C:\Users\Andrea\AppData\Local\AVAST Software\APM\kv_pamcore.db" not deleted
"C:\Users\Andrea\AppData\Local\AVAST Software\APM\kv_pampub.db" not deleted
"C:\Users\Andrea\AppData\Local\AVAST Software\APM\pam.db" not deleted
"C:\Users\Andrea\AppData\Local\AVAST Software" not deleted
"C:\Users\Andrea\AppData\Local\AVAST Software\APM" not deleted

==== Orphaned Tasks deleted from Registry ======================

Avast Cleanup Update deleted
Avast Secure Browser Heartbeat Task (Hourly) deleted
Avast Secure Browser Heartbeat Task (Logon) deleted
AvastUpdateTaskMachineCore deleted
AvastUpdateTaskMachineUA deleted
Hewlett-Packard\HP CoolSense deleted

==== Firefox Start and Search pages ======================

ProfilePath: C:\Users\Andrea\AppData\Roaming\Mozilla\Firefox\Profiles\5s0rzb81.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

==== Firefox Extensions ======================

ProfilePath: C:\Users\Andrea\AppData\Roaming\Mozilla\Firefox\Profiles\5s0rzb81.default
- short_ passwords - %ProfilePath%\extensions\jid1-r1tDuNiNb4SEww@jetpack.xpi
- __MSG_avastAppShortName__ - %ProfilePath%\extensions\sp@avast.com.xpi
- __MSG_appName__ - %ProfilePath%\extensions\wrc@avast.com.xpi
- MyWay Search By MySocialShortcut - %ProfilePath%\extensions\_d1Membersttab03_@free.mysocialshortcut.com.xpi

==== Firefox Plugins ======================

Profilepath: C:\Users\Andrea\AppData\Roaming\Mozilla\Firefox\Profiles\5s0rzb81.default
- C:\Program Files x86\AVAST Software\Browser\Update\1.7.915.0\npAvastBrowserUpdate3.dll - [?]
- C:\Program Files x86\Windows Live\Photo Gallery\NPWLPG.dll - [?]
0C0C5C207121C7A78414A8250E8E099A - C:\windows\SysWOW64\Adobe\Director\np32dsw_1204144.dll - Shockwave for Director / Shockwave for Director


==== Chromium Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
eofcbnmajmjmplflapaojjnihcjkigck - No path found[]
gomekmidlodglbbmalcneegieacbdmki - No path found[]

Chrome Media Router - Andrea\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
"First Home Page"="http://www.bing.com?pc=HPNTDFJS"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"First Home Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"

==== All HKLM and HKCU SearchScopes ======================

HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTer ... c=HPNTDFJS
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTer ... c=HPNTDFJS
HKCU\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms}
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTer ... c=HPNTDFJS

==== Reset Google Chrome ======================

C:\Users\Andrea\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Andrea\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\Andrea\AppData\Local\Microsoft\Edge\User Data\Default\Preferences was reset successfully
C:\Users\Andrea\AppData\Local\Microsoft\Edge\User Data\Default\Secure Preferences was reset successfully
C:\Users\Andrea\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\Andrea\AppData\Local\Microsoft\Edge\User Data\Default\Web Data was reset successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\isctmodernui.exe\2a0f538a_PD deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\isctsystray8.exe\2a0f538a_PD deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msedge.exe\54331c8f_PD deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\rtkngui64.exe\2e599ed6_PD deleted successfully

==== Empty IE Cache ======================

C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Andrea\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Andrea\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully

==== Empty FireFox Cache ======================

C:\Users\Andrea\AppData\Local\Mozilla\Firefox\Profiles\5s0rzb81.default\cache2 emptied successfully

==== Empty Chrome Cache ======================

C:\Users\Andrea\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
C:\Users\Andrea\AppData\Local\Microsoft\Edge\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=2435 folders=732 1156519389 bytes)

==== Empty Temp Folders ======================

C:\Users\Andrea\AppData\Local\Temp will be emptied at reboot
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\Users\Andrea\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\Andrea\AppData\Local\AVAST Software\APM\kv_pam.db" not found
"C:\Users\Andrea\AppData\Local\AVAST Software\APM\kv_pamcore.db" not found
"C:\Users\Andrea\AppData\Local\AVAST Software\APM\kv_pampub.db" not found
"C:\Users\Andrea\AppData\Local\AVAST Software\APM\pam.db" not found
"C:\Users\Andrea\AppData\Local\AVAST Software" not found

==== EOF on çt 03.09.2020 at 19:05:41,44 ======================

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.4 (07.09.2017)
Operating System: Windows 8.1 x64
Ran by Andrea (Administrator) on çt 03.09.2020 at 19:09:18,64
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 0




Registry: 1

Successfully deleted: HKLM\SYSTEM\CurrentControlSet\services\SWDUMon (Registry Key)




~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on çt 03.09.2020 at 19:44:02,83
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 112393
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosim o kontrolu logu

#14 Příspěvek od Rudy »

Některým antivirům se nelíbí, ale virus to není. Běžně ho používáme. Změnilo se něco teď?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

RANKO
Návštěvník
Návštěvník
Příspěvky: 88
Registrován: 29 črc 2007 07:46
Bydliště: BA - SK

Re: Prosim o kontrolu logu

#15 Příspěvek od RANKO »

Nie, stalo je to rovnako,je este neaka moznost? Ci uz len preinstalovat win.

Zamčeno