Pomalé PC

Zpráva

Petura · #1 Příspěvek od **Petura** » 24 říj 2020 09:59

Dobrý den,
prosím o kontrolu a radu....PC je strašně pomalé s HDD pořád šrotuje...díky.

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [109664 2020-10-14] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2494576 2010-10-08] (VIA Technologies Inc. -> VIA)
HKLM-x32\...\Run: [PivotSoftware] => C:\Program Files (x86)\Portrait Displays\Pivot Pro Plugin\Pivot_startup.exe [110192 2010-05-13] (Portrait Displays, Inc. -> )
HKLM-x32\...\Run: [DT ACR] => C:\Program Files (x86)\Common Files\Portrait Displays\Shared\DT_startup.exe [121456 2011-05-26] (Portrait Displays, Inc. -> Portrait Displays, Inc.)
HKLM-x32\...\Run: [vProt] => C:\Program Files (x86)\AVG Web TuneUp\vprot.exe [2187336 2017-10-27] (AVG Technologies CZ, s.r.o. -> )
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-642364921-1089016685-4093869991-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3481408 2012-02-13] (DT Soft Ltd -> DT Soft Ltd)
HKU\S-1-5-21-642364921-1089016685-4093869991-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [30870200 2020-09-22] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-642364921-1089016685-4093869991-1000\...\RunOnce: [FlashPlayerUpdate] => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_445_Plugin.exe [1502264 2020-10-14] (Adobe Inc. -> Adobe)
HKU\S-1-5-21-642364921-1089016685-4093869991-1000\...\MountPoints2: {6d2d08bc-5efa-11e1-9e8d-6c626daefe95} - H:\Setup.exe
HKU\S-1-5-21-642364921-1089016685-4093869991-1003\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3481408 2012-02-13] (DT Soft Ltd -> DT Soft Ltd)
HKU\S-1-5-21-642364921-1089016685-4093869991-1003\...\MountPoints2: {6d2d08bc-5efa-11e1-9e8d-6c626daefe95} - H:\Setup.exe
HKLM\...\Windows x64\Print Processors\Canon iPF605 Print Processor: C:\Windows\System32\spool\prtprocs\x64\cnwfdpA7.dll [95232 2009-05-08] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Windows x64\Print Processors\Canon MG5500 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDBU.DLL [30208 2013-04-04] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Windows x64\Print Processors\hpzpplhn: C:\Windows\System32\spool\prtprocs\x64\hpzpplhn.dll [99840 2008-05-07] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG5500 series: C:\Windows\system32\CNMLMBU.DLL [391168 2013-04-04] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon IOS Language Monitor: C:\Windows\system32\cnwilm64.dll [16896 2005-11-17] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\85.0.4183.121\Installer\chrmstp.exe [2020-09-23] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\85.0.5814.102\Installer\chrmstp.exe [2020-09-24] (Avast Software s.r.o. -> AVAST Software)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{73FA19D0-2D75-11D2-995D-00C04F98BBC9}] ->
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Microsoft Office.lnk [2011-07-10]
ShortcutTarget: Microsoft Office.lnk -> C:\Program Files (x86)\Microsoft Office\Office10\OSA.EXE (Microsoft Corporation -> Microsoft Corporation)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {5428888F-FF6B-4A1A-A623-100AAF6B6B3D} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4496488 2020-10-14] (Avast Software s.r.o. -> AVAST Software)
Task: {5730BDDB-BE1C-405C-A37D-E77E4101690C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2017-04-04] (Google Inc -> Google Inc.)
Task: {8562EBE4-F62D-43BF-9B21-F4487A97D697} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1195544 2018-12-16] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {9BF706D2-E5AA-4BB7-9BBE-A13CBEB204F0} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-10-14] (Adobe Inc. -> Adobe)
Task: {9BF7C315-5D89-49A5-86E9-722623959C3D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2017-04-04] (Google Inc -> Google Inc.)
Task: {9ECF8014-DAFD-4C96-A7B7-D93908736BA0} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-09-22] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {B9E261B6-289F-4C1D-9E03-A7D7C364A457} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_445_Plugin.exe [1502264 2020-10-14] (Adobe Inc. -> Adobe)
Task: {C2CD6CB3-22CA-4C34-AFD5-8631A46A0CA7} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-05] (AVAST Software s.r.o. -> AVAST Software)
Task: {CB6108C4-30BD-4AD7-8F13-55FADC078427} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [25492152 2020-09-22] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {CDB118EE-59E6-47C4-80C5-6FDF0CD87E16} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1741416 2020-09-23] (Avast Software s.r.o. -> Avast Software)
Task: {D59ABB6B-E050-4555-AE97-7CE63E3A2D5A} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1910664 2020-09-09] (Avast Software s.r.o. -> AVAST Software)
Task: {F0C665AE-0C32-4E45-8235-029B4C030FAE} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-05] (AVAST Software s.r.o. -> AVAST Software)
Task: {F1247025-8AEE-4BCD-A56A-67D599142251} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1910664 2020-09-09] (Avast Software s.r.o. -> AVAST Software)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{DAB09092-03A4-4AF2-A074-86BE96986353}: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF DefaultProfile: b0ozq1ow.default
FF ProfilePath: C:\Users\Nada\AppData\Roaming\Mozilla\Firefox\Profiles\b0ozq1ow.default [2020-10-24]
FF DownloadDir: C:\Stahování
FF Homepage: Mozilla\Firefox\Profiles\b0ozq1ow.default -> www.seznam.cz
FF Extension: (AVG Web TuneUp) - C:\Users\Nada\AppData\Roaming\Mozilla\Firefox\Profiles\b0ozq1ow.default\Extensions\avg@toolbar.xpi [2017-10-27] [Legacy]
FF SearchPlugin: C:\Users\Nada\AppData\Roaming\Mozilla\Firefox\Profiles\b0ozq1ow.default\searchplugins\avg-secure-search.xml [2020-10-24]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_445.dll [2020-10-14] (Adobe Inc. -> )
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_445.dll [2020-10-14] (Adobe Inc. -> )
FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\40.3.8\\npsitesafety.dll [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2013-01-18] (NVIDIA CORPORATION -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2013-01-18] (NVIDIA CORPORATION -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Inc.)

Chrome:
=======
CHR Profile: C:\Users\Nada\AppData\Local\Google\Chrome\User Data\Default [2020-10-24]
CHR HomePage: Default -> hxxp://www.google.com
CHR Extension: (Slides) - C:\Users\Nada\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-11-08]
CHR Extension: (Docs) - C:\Users\Nada\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-11-08]
CHR Extension: (Google Drive) - C:\Users\Nada\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-04-04]
CHR Extension: (YouTube) - C:\Users\Nada\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-04-04]
CHR Extension: (Avast SafePrice | Comparison, deals, coupons) - C:\Users\Nada\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2019-10-23]
CHR Extension: (Google Docs Offline) - C:\Users\Nada\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-09-03]
CHR Extension: (Avast Online Security) - C:\Users\Nada\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2019-10-09]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Nada\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-23]
CHR Extension: (Gmail) - C:\Users\Nada\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-09-03]
CHR Extension: (Chrome Media Router) - C:\Users\Nada\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-10-23]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [83984 2018-12-16] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-10-14] (Adobe Inc. -> Adobe)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8450976 2020-10-14] (Avast Software s.r.o. -> AVAST Software)
R2 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [18656 2011-02-02] (Autodesk, Inc. -> )
R2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-05] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [360408 2020-10-14] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [2748520 2020-10-14] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-05] (AVAST Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\85.0.5814.102\elevation_service.exe [1080640 2020-09-09] (Avast Software s.r.o. -> AVAST Software)
R2 DTSRVC; C:\Program Files (x86)\Common Files\Portrait Displays\Shared\dtsrvc.exe [129648 2011-05-26] (Portrait Displays, Inc. -> Portrait Displays, Inc.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7185288 2020-10-24] (Malwarebytes Inc -> Malwarebytes)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [60416 2009-06-22] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
R2 WtuSystemSupport; C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe [981576 2017-10-27] (AVG Technologies CZ, s.r.o. -> )

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [37152 2020-10-14] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [206408 2020-10-14] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [236112 2020-10-14] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [195664 2020-10-14] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [60496 2020-10-14] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42784 2020-10-14] (Avast Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [175720 2020-10-14] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [518664 2020-10-14] (Avast Software s.r.o. -> AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [38152 2020-04-27] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [109280 2020-10-14] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [84856 2020-10-14] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [851608 2020-10-14] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [470912 2020-10-14] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [217336 2020-10-14] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [326928 2020-10-14] (Avast Software s.r.o. -> AVAST Software)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2012-02-24] (DT Soft Ltd -> DT Soft Ltd)
R3 L1C; C:\Windows\System32\DRIVERS\L1C62x64.sys [57344 2009-06-10] (Microsoft Windows -> Atheros Communications, Inc.)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [218112 2020-10-24] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248968 2020-10-24] (Malwarebytes Inc -> Malwarebytes)
R3 PdiPorts; C:\Windows\System32\DRIVERS\PdiPorts.sys [20592 2011-05-05] (Portrait Displays, Inc. -> Portrait Displays, Inc.)
S3 pfc; C:\Windows\SysWOW64\drivers\pfc.sys [9856 2011-07-10] (Padus, Inc.) [File not signed]
U1 aswbdisk; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-10-24 10:45 - 2020-10-24 10:47 - 000016819 _____ C:\Users\Nada\Desktop\FRST.txt
2020-10-24 10:44 - 2020-10-24 10:46 - 000000000 ____D C:\FRST
2020-10-24 10:44 - 2020-10-24 10:44 - 002299904 _____ (Farbar) C:\Users\Nada\Desktop\FRST64.exe
2020-10-24 10:21 - 2020-10-24 10:21 - 000218112 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2020-10-24 10:21 - 2020-10-24 10:21 - 000001960 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2020-10-24 10:20 - 2020-10-24 10:20 - 000248968 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2020-10-14 09:18 - 2020-10-14 09:17 - 000339552 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2020-10-14 09:18 - 2020-10-14 09:17 - 000217336 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2020-10-14 09:18 - 2020-10-14 09:17 - 000175720 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-10-24 10:46 - 2012-07-26 13:17 - 000000000 ____D C:\ProgramData\Mozilla
2020-10-24 10:44 - 2011-07-10 20:44 - 000000000 ____D C:\Stahování
2020-10-24 10:42 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2020-10-24 10:40 - 2016-11-22 14:49 - 000000000 ____D C:\Users\Nada\AppData\LocalLow\Mozilla
2020-10-24 10:34 - 2019-10-11 17:45 - 000003870 _____ C:\Windows\system32\Tasks\CCleaner Update
2020-10-24 10:34 - 2019-10-11 17:45 - 000000822 _____ C:\Users\Public\Desktop\CCleaner.lnk
2020-10-24 10:34 - 2019-10-11 17:45 - 000000822 _____ C:\ProgramData\Desktop\CCleaner.lnk
2020-10-24 10:33 - 2009-07-14 06:45 - 000015152 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-10-24 10:33 - 2009-07-14 06:45 - 000015152 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-10-24 10:28 - 2017-04-04 08:06 - 000003386 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2020-10-24 10:28 - 2017-04-04 08:06 - 000003258 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2020-10-24 10:28 - 2015-09-15 11:01 - 000004476 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2020-10-24 10:26 - 2018-04-05 08:02 - 000000000 ____D C:\Users\Nada\AppData\Local\AVAST Software
2020-10-24 10:25 - 2011-07-10 21:09 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2020-10-24 10:21 - 2019-10-11 17:54 - 000001948 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2020-10-24 10:21 - 2019-10-11 17:54 - 000001948 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2020-10-24 10:18 - 2019-10-11 17:54 - 000153312 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2020-10-24 10:16 - 2017-06-29 15:33 - 000000000 ____D C:\ProgramData\AVAST Software
2020-10-24 10:14 - 2019-02-25 09:27 - 000004168 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2020-10-24 10:07 - 2011-02-21 16:49 - 000000000 ____D C:\ProgramData\NVIDIA
2020-10-24 10:07 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-10-14 09:51 - 2020-09-02 10:24 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2020-10-14 09:20 - 2018-03-14 09:15 - 000004524 _____ C:\Windows\system32\Tasks\Adobe Flash Player NPAPI Notifier
2020-10-14 09:20 - 2012-07-18 17:37 - 000842296 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe
2020-10-14 09:20 - 2012-07-18 17:37 - 000004396 _____ C:\Windows\system32\Tasks\Adobe Flash Player Updater
2020-10-14 09:20 - 2012-07-18 17:37 - 000000000 ____D C:\Windows\system32\Macromed
2020-10-14 09:20 - 2011-07-10 21:09 - 000175160 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2020-10-14 09:19 - 2020-04-27 08:19 - 000518664 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2020-10-14 09:17 - 2019-01-16 09:35 - 000236112 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2020-10-14 09:17 - 2019-01-07 09:09 - 000195664 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2020-10-14 09:17 - 2019-01-07 09:09 - 000060496 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2020-10-14 09:17 - 2019-01-07 09:09 - 000037152 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys
2020-10-14 09:17 - 2018-10-22 08:51 - 000042784 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2020-10-14 09:17 - 2017-11-20 09:01 - 000206408 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2020-10-14 09:17 - 2017-06-29 15:35 - 000851608 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2020-10-14 09:17 - 2017-06-29 15:35 - 000470912 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2020-10-14 09:17 - 2017-06-29 15:35 - 000326928 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2020-10-14 09:17 - 2017-06-29 15:35 - 000109280 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2020-10-14 09:17 - 2017-06-29 15:35 - 000084856 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2020-09-24 08:30 - 2019-04-18 08:13 - 000003732 _____ C:\Windows\system32\Tasks\Avast Secure Browser Heartbeat Task (Hourly)
2020-09-24 08:30 - 2018-04-05 08:05 - 000002429 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

LastRegBack: 2020-09-16 10:58
==================== End of FRST.txt ========================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 19-10-2020
Ran by Nada (24-10-2020 10:50:38)
Running from C:\Users\Nada\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2011-07-10 13:54:02)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-642364921-1089016685-4093869991-500 - Administrator - Disabled)
Guest (S-1-5-21-642364921-1089016685-4093869991-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-642364921-1089016685-4093869991-1002 - Limited - Enabled)
Nada (S-1-5-21-642364921-1089016685-4093869991-1000 - Administrator - Enabled) => C:\Users\Nada
UpdatusUser (S-1-5-21-642364921-1089016685-4093869991-1003 - Limited - Enabled) => C:\Users\UpdatusUser

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {5078598A-1FA2-C888-AA5F-A9C66537DB12}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

ACDSee 6.0 PowerPack (HKLM-x32\...\{38A0BB97-772D-422E-BCCA-4BA2A5D81F42}) (Version: 6.0.0 - ACD Systems Ltd.)
Acer eDisplay Management (HKLM-x32\...\{A586DC50-B18D-48FB-B7CC-A598200457C2}) (Version: 1.36.003 - Portrait Displays, Inc.)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.445 - Adobe)
Adobe Reader X (10.1.16) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AA1000000001}) (Version: 10.1.16 - Adobe Systems Incorporated)
Aktualizace NVIDIA 1.11.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.11.3 - NVIDIA Corporation)
AutoCAD 2012 - Czech (HKLM\...\{5783F2D7-A001-0405-0102-0060B0CE6BBA}) (Version: 18.2.107.0 - Autodesk) Hidden
AutoCAD 2012 - Czech (HKLM\...\AutoCAD 2012 - Czech) (Version: 18.2.51.0 - Autodesk)
AutoCAD 2012 - Czech SP1 (HKLM\...\AutoCAD 2012 - Czech SP1) (Version: 1 - Autodesk)
AutoCAD 2012 Language Pack - Czech (HKLM\...\{5783F2D7-A001-0405-1102-0060B0CE6BBA}) (Version: 18.2.51.0 - Autodesk) Hidden
Autodesk Content Service (HKLM-x32\...\{086F9A69-CD39-4893-A9FB-D3A0634CE3F7}) (Version: 2.0.90 - Autodesk)
Autodesk Material Library 2012 (HKLM-x32\...\{8F0837C2-EE09-4903-88F3-1976FE7FFF4E}) (Version: 2.5.0.8 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2012 (HKLM-x32\...\{65420DC9-306E-4371-905F-F4DC3B418E52}) (Version: 2.5.0.8 - Autodesk)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 20.8.2432 - Avast Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 85.0.5814.102 - Autoři prohlížeče Avast Secure Browser)
AVG Web TuneUp (HKLM-x32\...\AVG Web TuneUp) (Version: 4.3.8.566 - AVG Technologies)
CCleaner (HKLM\...\CCleaner) (Version: 5.72 - Piriform)
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.45.3.0297 - DT Soft Ltd)
FARO LS 1.1.406.58 (HKLM-x32\...\{951B0F30-9F1A-4BF6-B3DA-99EB0E917B1C}) (Version: 4.6.58.2 - FARO Scanner Production)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 85.0.4183.121 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.31 - Google LLC) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.123 - Google Inc.) Hidden
Malwarebytes version 4.2.1.89 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.2.1.89 - Malwarebytes)
Microsoft .NET Framework 4.7 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.7.02053 - Microsoft Corporation)
Microsoft .NET Framework 4.7 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02053 - Microsoft Corporation)
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Klikni a spusť 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1011 - Microsoft Corporation)
Microsoft Office Starter 2010 - čeština (HKLM-x32\...\{90140011-0066-0405-0000-0000000FF1CE}) (Version: 14.0.4763.1011 - Microsoft Corporation)
Microsoft Office XP Professional s aplikací FrontPage (HKLM-x32\...\{90280405-6000-11D3-8CFE-0050048383C9}) (Version: 10.0.2627.11 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 81.0.2 (x64 cs) (HKLM\...\Mozilla Firefox 81.0.2 (x64 cs)) (Version: 81.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 80.0.1.7548 - Mozilla)
Mozilla Thunderbird 68.12.0 (x86 cs) (HKLM-x32\...\Mozilla Thunderbird 68.12.0 (x86 cs)) (Version: 68.12.0 - Mozilla)
NVIDIA Ovladač 3D Vision 311.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 311.06 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.1.9.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.1.9.0 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 311.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 311.06 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.10.0514 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.10.0514 - NVIDIA Corporation)
Ovládací panel NVIDIA 311.06 (HKLM\...\{B2FE1952-0186-46c3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 311.06 - NVIDIA Corporation) Hidden
Pivot Pro Plugin (HKLM-x32\...\{0217E1D1-BCEF-4A61-AF6D-F7740F65A066}) (Version: 9.50.110 - Portrait Displays, Inc.) Hidden
Platform (HKLM-x32\...\{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.) Hidden
Screen Calipers (HKLM-x32\...\Screen Calipers) (Version: 3.3 - Iconico)
SDK (HKLM-x32\...\{0DEA342C-15CB-4F52-97B6-06A9C4B9C06F}) (Version: 2.27.002 - Portrait Displays, Inc.) Hidden
Total Commander (Remove or Repair) (HKLM-x32\...\Totalcmd) (Version: 7.56a - Ghisler Software GmbH)
VIA Platforma Ovladače zařízení (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.)
Visual Studio 2008 x64 Redistributables (HKLM-x32\...\{FCDBEA60-79F0-4FAE-BBA8-55A26C609A49}) (Version: 10.0.0.2 - AVG Technologies)
Visual Studio 2010 x64 Redistributables (HKLM\...\{21B133D6-5979-47F0-BE1C-F6A6B304693F}) (Version: 13.0.0.1 - AVG Technologies)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-642364921-1089016685-4093869991-1000_Classes\CLSID\{6D7AE628-FF41-4CD3-91DD-34825BB1A251}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2012 - Czech\acad.exe (Autodesk, Inc -> Autodesk, Inc.) [File not signed]
CustomCLSID: HKU\S-1-5-21-642364921-1089016685-4093869991-1000_Classes\CLSID\{B77E471C-FBF3-4CB5-880F-D7528AD4B349}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2012 - Czech\acad.exe (Autodesk, Inc -> Autodesk, Inc.) [File not signed]
CustomCLSID: HKU\S-1-5-21-642364921-1089016685-4093869991-1000_Classes\CLSID\{C92FB640-AD4D-498A-9979-A51A2540C977}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2012 - Czech\acad.exe (Autodesk, Inc -> Autodesk, Inc.) [File not signed]
CustomCLSID: HKU\S-1-5-21-642364921-1089016685-4093869991-1000_Classes\CLSID\{D70E31AD-2614-49F2-B0FC-ACA781D81F3E}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2012 - Czech\acad.exe (Autodesk, Inc -> Autodesk, Inc.) [File not signed]
CustomCLSID: HKU\S-1-5-21-642364921-1089016685-4093869991-1000_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2012 - Czech\acadficn.dll (Autodesk Development Sarl -> Autodesk, Inc.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-10-14] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-10-14] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers: [Správa překryvné ikony digitálních podpisů AutoCADu ] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2011-02-04] (Autodesk, Inc -> Autodesk, Inc.) [File not signed]
ContextMenuHandlers1: [AcShellExtension.AcContextMenuHandler] -> {2E7A2C6C-B938-40a4-BA1C-C7EC982DC202} => C:\Program Files\Common Files\Autodesk Shared\AcShellEx\AcShellExtension.dll [2011-02-04] (Autodesk, Inc -> Autodesk) [File not signed]
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-10-14] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-10-14] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2013-01-18] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers5: [PortraitDisplaysContextMenu] -> {8602BDD8-9780-4717-B89A-7F89AF75B2AB} => C:\Program Files (x86)\Common Files\Portrait Displays\Shared\shellmenu64.dll [2010-05-13] (Portrait Displays, Inc. -> Portrait Displays, Inc.)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-10-14] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2012-07-18 17:08 - 2011-05-26 11:50 - 000176128 _____ () [File not signed] C:\Program Files (x86)\Common Files\Portrait Displays\Shared\PresetsCOM.dll
2011-02-04 05:42 - 2011-02-04 05:42 - 000180960 _____ (Autodesk, Inc -> Autodesk) [File not signed] C:\Program Files\Common Files\Autodesk Shared\AcShellEx\AcShellExtension.dll
2011-02-04 05:42 - 2011-02-04 05:42 - 000592608 _____ (Autodesk, Inc -> Autodesk, Inc.) [File not signed] C:\Program Files\Common Files\Autodesk Shared\AcSignCore16.dll
2011-02-04 05:42 - 2011-02-04 05:42 - 000045280 _____ (Autodesk, Inc -> Autodesk, Inc.) [File not signed] C:\Windows\system32\AcSignIcon.dll
2012-07-18 17:09 - 2010-05-13 16:32 - 000372736 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Portrait Displays\Pivot Pro Plugin\ijl15.dll
2017-04-21 13:24 - 2017-04-21 13:24 - 000112128 _____ (Microsoft Corporation) [File not signed] C:\Windows\Microsoft.Net\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
2014-05-19 14:56 - 2014-05-19 14:56 - 001101824 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\MFC80.DLL
2020-08-04 08:36 - 2020-08-04 08:36 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2020-08-04 08:36 - 2020-08-04 08:36 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2020-08-04 08:36 - 2020-08-04 08:36 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2020-08-04 08:36 - 2020-08-04 08:36 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2020-08-04 08:36 - 2020-08-04 08:36 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2020-08-04 08:36 - 2020-08-04 08:36 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2020-08-04 08:36 - 2020-08-04 08:36 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2020-08-04 08:36 - 2020-08-04 08:36 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2020-08-04 08:36 - 2020-08-04 08:36 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2020-08-04 08:36 - 2020-08-04 08:36 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2020-08-04 08:36 - 2020-08-04 08:36 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2020-08-04 08:36 - 2020-08-04 08:36 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\ucrtbase.DLL
2020-08-04 08:36 - 2020-08-04 08:36 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\VCRUNTIME140.dll
2020-10-24 10:22 - 2020-10-24 10:22 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20102304\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2020-10-24 10:22 - 2020-10-24 10:22 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20102304\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2020-10-24 10:22 - 2020-10-24 10:22 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20102304\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2020-10-24 10:22 - 2020-10-24 10:22 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20102304\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2020-10-24 10:22 - 2020-10-24 10:22 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20102304\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2020-10-24 10:22 - 2020-10-24 10:22 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20102304\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2020-10-24 10:22 - 2020-10-24 10:22 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20102304\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2020-10-24 10:22 - 2020-10-24 10:22 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20102304\avast.local_vc142.crt\api-ms-win-crt-environment-l1-1-0.dll
2020-10-24 10:22 - 2020-10-24 10:22 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20102304\avast.local_vc142.crt\api-ms-win-crt-filesystem-l1-1-0.dll
2020-10-24 10:22 - 2020-10-24 10:22 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20102304\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2020-10-24 10:22 - 2020-10-24 10:22 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20102304\avast.local_vc142.crt\api-ms-win-crt-locale-l1-1-0.dll
2020-10-24 10:22 - 2020-10-24 10:22 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20102304\avast.local_vc142.crt\api-ms-win-crt-math-l1-1-0.dll
2020-10-24 10:22 - 2020-10-24 10:22 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20102304\avast.local_vc142.crt\api-ms-win-crt-multibyte-l1-1-0.dll
2020-10-24 10:22 - 2020-10-24 10:22 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20102304\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2020-10-24 10:22 - 2020-10-24 10:22 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20102304\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2020-10-24 10:22 - 2020-10-24 10:22 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20102304\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2020-10-24 10:22 - 2020-10-24 10:22 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20102304\avast.local_vc142.crt\api-ms-win-crt-time-l1-1-0.dll
2020-10-24 10:22 - 2020-10-24 10:22 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20102304\avast.local_vc142.crt\api-ms-win-crt-utility-l1-1-0.dll
2020-10-24 10:22 - 2020-10-24 10:22 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20102304\avast.local_vc142.crt\MSVCP140.dll
2020-10-24 10:22 - 2020-10-24 10:22 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20102304\avast.local_vc142.crt\ucrtbase.DLL
2020-10-24 10:22 - 2020-10-24 10:22 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20102304\avast.local_vc142.crt\VCRUNTIME140.dll
2020-10-24 10:22 - 2020-10-24 10:22 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20102304\avast.local_vc142.crt\VCRUNTIME140_1.dll
2013-01-18 08:16 - 2013-01-18 08:16 - 001204272 _____ (NVIDIA CORPORATION -> NVIDIA Corporation) [File not signed] C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPI64.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

HKU\S-1-5-21-642364921-1089016685-4093869991-1000\Software\Classes\.scr: AutoCADScriptFile => C:\Windows\system32\notepad.exe "%1"

==================== Internet Explorer (Version 11) (Whitelisted) ==========

HKU\S-1-5-21-642364921-1089016685-4093869991-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://mysearch.avg.com/?cid={2B3CE46C-DF88-45F1-A76D-7D71F437A1E3}&mid=b2b3305a9d0447d1b749bd2b2b4a1766-2f0d14804bee9159ffdbbb79b17b77cf2d8325a9&lang=cs&ds=AVG&coid=avgtbavg&cmpid=0116avz&pr=fr&d=2016-01-27 07:57:34&v=4.3.6.255&pid=wtu&sg=&sap=hp
SearchScopes: HKU\S-1-5-21-642364921-1089016685-4093869991-1000 -> DefaultScope {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={2B3CE46C-DF88-45F1-A76D-7D71F437A1E3}&mid=b2b3305a9d0447d1b749bd2b2b4a1766-2f0d14804bee9159ffdbbb79b17b77cf2d8325a9&lang=cs&ds=AVG&coid=avgtbavg&cmpid=0116tb&pr=fr&d=2016-01-27 07:57:34&v=4.3.6.255&pid=wtu&sg=&sap=dsp&q={searchTerms}
SearchScopes: HKU\S-1-5-21-642364921-1089016685-4093869991-1000 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={2B3CE46C-DF88-45F1-A76D-7D71F437A1E3}&mid=b2b3305a9d0447d1b749bd2b2b4a1766-2f0d14804bee9159ffdbbb79b17b77cf2d8325a9&lang=cs&ds=AVG&coid=avgtbavg&cmpid=0116tb&pr=fr&d=2016-01-27 07:57:34&v=4.3.6.255&pid=wtu&sg=&sap=dsp&q={searchTerms}
BHO-x32: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files (x86)\AVG Web TuneUp\4.3.8.566\AVG Web TuneUp.dll [2017-10-27] (AVG Technologies CZ, s.r.o. -> AVG)
Handler-x32: cdo - {CD00020A-8B95-11D1-82DB-00C04FB1625D} - C:\Program Files (x86)\Common Files\Microsoft Shared\Web Folders\PKMCDO.DLL [2001-01-22] (Microsoft Corporation) [File not signed]
Handler-x32: http - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-02-12] (Microsoft Corporation) [File not signed]
Handler-x32: http - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-02-12] (Microsoft Corporation) [File not signed]
Handler-x32: https - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-02-12] (Microsoft Corporation) [File not signed]
Handler-x32: https - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-02-12] (Microsoft Corporation) [File not signed]
Handler-x32: msdaipp - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-02-12] (Microsoft Corporation) [File not signed]
Handler-x32: msdaipp - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-02-12] (Microsoft Corporation) [File not signed]

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2019-01-07 09:01 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\
HKU\S-1-5-21-642364921-1089016685-4093869991-1000\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{2EBEDB4E-B739-4755-99C9-2EB4F0E57841}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{AC4BA5D5-465F-4DD8-B7D8-3556B2D895B3}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{C4C25320-2E1C-42FB-B4A8-660E3A3F639F}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{228F78A8-9084-4146-BDA6-3A0E899D7045}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{B04DFFD6-AC9F-4A21-80B8-07E972623A5C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{4F49994E-ECF5-44A7-9075-41174BE3F22A}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{BC0F3644-B774-4A05-94FE-8C6E3FDC639C}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{916BF415-F285-4DEB-A201-67E4244212A6}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe (Avast Software s.r.o. -> AVAST Software)

==================== Restore Points =========================

22-01-2020 13:16:58 Naplánovaný kontrolní bod
09-06-2020 08:54:10 Naplánovaný kontrolní bod
16-09-2020 11:05:23 Naplánovaný kontrolní bod

==================== Faulty Device Manager Devices ============

==================== Event log errors: ========================

Application errors:
==================
Error: (10/24/2020 10:17:40 AM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (10/24/2020 10:11:54 AM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (10/14/2020 09:14:52 AM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (10/14/2020 09:11:06 AM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (09/24/2020 01:28:32 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (09/24/2020 12:28:32 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (09/24/2020 11:28:31 AM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (09/24/2020 10:28:32 AM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

System errors:
=============
Error: (10/24/2020 10:20:36 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 40.

Error: (10/24/2020 10:20:36 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 70.

Error: (10/24/2020 10:11:45 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba NVIDIA Update Service Daemon neuspěla při spuštění v důsledku následující chyby:
Služba nebyla zahájena, protože se nepodařilo přihlásit.

Error: (10/24/2020 10:11:45 AM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: Služba nvUpdatusService se nemohla přihlásit jako .\UpdatusUser s aktuálně konfigurovaným heslem z důvodu následující chyby:
Přihlašovací chyba: Platnost hesla pro tuto registraci vypršela.

Chcete-li zajistit správnou konfiguraci služby, použijte modul snap-in Služby konzoly Microsoft Management Console (MMC).

Error: (10/24/2020 10:08:49 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID
{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}
a APPID
{344ED43D-D086-4961-86A6-1106F4ACAD9B}
uživateli NT AUTHORITY\SYSTEM SID (S-1-5-18) z adresy LocalHost (pomocí LRPC). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (10/24/2020 10:07:15 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Načtení \SystemRoot\SysWow64\drivers\pfc.sys bylo zablokováno kvůli nekompatibilitě s tímto systémem. Požádejte dodavatele softwaru
o kompatibilní verzi ovladače.

Error: (10/24/2020 10:07:14 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Načtení \SystemRoot\SysWow64\drivers\pfc.sys bylo zablokováno kvůli nekompatibilitě s tímto systémem. Požádejte dodavatele softwaru
o kompatibilní verzi ovladače.

Error: (10/14/2020 09:51:29 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 40.

CodeIntegrity:
===================================

Date: 2013-12-10 17:09:22.304
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\Temp\08CFD924-E385-4183-8637-97674B053D38\amd64_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.22436_none_b5e7f8ade1f2fff4\appid.sys because the set of per-page image hashes could not be found on the system.

Date: 2013-12-10 17:09:21.867
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\Temp\08CFD924-E385-4183-8637-97674B053D38\amd64_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.22436_none_b5e7f8ade1f2fff4\appid.sys because the set of per-page image hashes could not be found on the system.

==================== Memory info ===========================

BIOS: American Megatrends Inc. V26.3 11/01/2010
Motherboard: MSI G41M-P28 (MS-7592)
Processor: Pentium(R) Dual-Core CPU E5700 @ 3.00GHz
Percentage of memory in use: 90%
Total physical RAM: 4095.18 MB
Available physical RAM: 372.85 MB
Total Virtual: 8188.54 MB
Available Virtual: 3772.88 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:931.41 GB) (Free:572.51 GB) NTFS

\\?\Volume{629b4f58-3d9d-11e0-827c-806e6f6e6963}\ (Rezervováno systémem) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 828A0713)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931.4 GB) - (Type=07 NTFS)

==================== End of Addition.txt =======================

#2 Příspěvek od **Rudy** » 24 říj 2020 10:16

Zdravím!
Spusťte tuto utilitu:

Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

Petura · #3 Příspěvek od **Petura** » 24 říj 2020 11:11

Zasílám log, jinak PC jke stále hodně pomalé a dlouho trvá než se zpustí Firefox

# -------------------------------
# Malwarebytes AdwCleaner 8.0.8.0
# -------------------------------
# Build: 10-08-2020
# Database: 2020-09-29.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 10-24-2020
# Duration: 00:00:40
# OS: Windows 7 Home Premium
# Cleaned: 36
# Failed: 0

***** [ Services ] *****

Deleted WtuSystemSupport

***** [ Folders ] *****

Deleted C:\Program Files (x86)\Common Files\AVG Secure Search
Deleted C:\Program Files (x86)\avg web tuneup
Deleted C:\Program Files\Common Files\AVG Secure Search
Deleted C:\ProgramData\AVG Secure Search
Deleted C:\ProgramData\AVG Security Toolbar
Deleted C:\ProgramData\avg web tuneup
Deleted C:\Users\Nada\AppData\Local\avg web tuneup

***** [ Files ] *****

Deleted C:\Users\Nada\AppData\Roaming\Mozilla\Firefox\Profiles\b0ozq1ow.default\searchplugins\avg-secure-search.xml

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKCU\Software\Microsoft\Internet Explorer\Main|Start Page
Deleted HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Deleted HKLM\Software\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Deleted HKLM\Software\Classes\TypeLib\{4BC8AD89-AC5F-4DBD-A38F-C355C7DD33D7}
Deleted HKLM\Software\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Deleted HKLM\Software\Classes\WtuServer.WtuServerObj
Deleted HKLM\Software\Classes\WtuServer.WtuServerObj.1
Deleted HKLM\Software\Wow6432Node\AVG Secure Search
Deleted HKLM\Software\Wow6432Node\AVG Tuneup
Deleted HKLM\Software\Wow6432Node\\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Deleted HKLM\Software\Wow6432Node\\Classes\CLSID\{CA3A5461-96B5-46DD-9341-5350D3C94615}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Deleted HKLM\Software\Wow6432Node\\Classes\TypeLib\{4BC8AD89-AC5F-4DBD-A38F-C355C7DD33D7}
Deleted HKLM\Software\Wow6432Node\\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Deleted HKLM\Software\Wow6432Node\\Google\Chrome\NativeMessagingHosts\avgsh
Deleted HKU\.DEFAULT\Software\IGearSettings
Deleted HKU\S-1-5-18\Software\IGearSettings
Deleted HKU\S-1-5-21-642364921-1089016685-4093869991-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Deleted HKU\S-1-5-21-642364921-1089016685-4093869991-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

Deleted Preinstalled.HPCleanFLC File C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2010.lnk
Deleted Preinstalled.HPTouchSmartMyDisplay Folder C:\Program Files (x86)\Common Files\PORTRAIT DISPLAYS\DRIVERS
Deleted Preinstalled.HPTouchSmartMyDisplay Registry HKLM\Software\Classes\CLSID\{8602BDD8-9780-4717-B89A-7F89AF75B2AB}
Deleted Preinstalled.HPTouchSmartMyDisplay Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved|{8602BDD8-9780-4717-B89A-7F89AF75B2AB}
Deleted Preinstalled.HPTouchSmartMyDisplay Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Run|DT ACR
Deleted Preinstalled.HPTouchSmartMyDisplay Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{0DEA342C-15CB-4F52-97B6-06A9C4B9C06F}

*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [4999 octets] - [24/10/2020 11:59:58]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

#4 Příspěvek od **Rudy** » 24 říj 2020 11:26

Dejte nové logy FRST+Addition.

Petura · #5 Příspěvek od **Petura** » 24 říj 2020 13:40

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 24-10-2020
Ran by Nada (administrator) on NADA-PC (MSI MS-7592) (24-10-2020 14:21:23)
Running from C:\Users\Nada\Desktop
Loaded Profiles: Nada
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Default browser: FF
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Autodesk, Inc. -> ) C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler64.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\setup\instup.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe <2>
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Portrait Displays, Inc. -> ) C:\Program Files (x86)\Portrait Displays\Pivot Pro Plugin\Floater.exe
(Portrait Displays, Inc. -> ) C:\Program Files (x86)\Portrait Displays\Pivot Pro Plugin\wpCtrl.exe
(Portrait Displays, Inc. -> Portrait Displays, Inc.) C:\Program Files (x86)\Common Files\Portrait Displays\Shared\DTSRVC.exe
(VIA Technologies Inc. -> VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [109664 2020-10-14] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2494576 2010-10-08] (VIA Technologies Inc. -> VIA)
HKLM-x32\...\Run: [PivotSoftware] => C:\Program Files (x86)\Portrait Displays\Pivot Pro Plugin\Pivot_startup.exe [110192 2010-05-13] (Portrait Displays, Inc. -> )
HKLM-x32\...\Run: [vProt] => "C:\Program Files (x86)\AVG Web TuneUp\vprot.exe"
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-642364921-1089016685-4093869991-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3481408 2012-02-13] (DT Soft Ltd -> DT Soft Ltd)
HKU\S-1-5-21-642364921-1089016685-4093869991-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [30870200 2020-09-22] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-642364921-1089016685-4093869991-1000\...\MountPoints2: {6d2d08bc-5efa-11e1-9e8d-6c626daefe95} - H:\Setup.exe
HKLM\...\Windows x64\Print Processors\Canon iPF605 Print Processor: C:\Windows\System32\spool\prtprocs\x64\cnwfdpA7.dll [95232 2009-05-08] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Windows x64\Print Processors\Canon MG5500 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDBU.DLL [30208 2013-04-04] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Windows x64\Print Processors\hpzpplhn: C:\Windows\System32\spool\prtprocs\x64\hpzpplhn.dll [99840 2008-05-07] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG5500 series: C:\Windows\system32\CNMLMBU.DLL [391168 2013-04-04] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon IOS Language Monitor: C:\Windows\system32\cnwilm64.dll [16896 2005-11-17] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\85.0.4183.121\Installer\chrmstp.exe [2020-09-23] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\85.0.5814.102\Installer\chrmstp.exe [2020-09-24] (Avast Software s.r.o. -> AVAST Software)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{73FA19D0-2D75-11D2-995D-00C04F98BBC9}] ->
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Microsoft Office.lnk [2011-07-10]
ShortcutTarget: Microsoft Office.lnk -> C:\Program Files (x86)\Microsoft Office\Office10\OSA.EXE (Microsoft Corporation -> Microsoft Corporation)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {5428888F-FF6B-4A1A-A623-100AAF6B6B3D} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4496488 2020-10-14] (Avast Software s.r.o. -> AVAST Software)
Task: {5730BDDB-BE1C-405C-A37D-E77E4101690C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2017-04-04] (Google Inc -> Google Inc.)
Task: {8562EBE4-F62D-43BF-9B21-F4487A97D697} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1195544 2018-12-16] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {9BF706D2-E5AA-4BB7-9BBE-A13CBEB204F0} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-10-14] (Adobe Inc. -> Adobe)
Task: {9BF7C315-5D89-49A5-86E9-722623959C3D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2017-04-04] (Google Inc -> Google Inc.)
Task: {9ECF8014-DAFD-4C96-A7B7-D93908736BA0} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-09-22] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {B9E261B6-289F-4C1D-9E03-A7D7C364A457} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_445_Plugin.exe [1502264 2020-10-14] (Adobe Inc. -> Adobe)
Task: {C2CD6CB3-22CA-4C34-AFD5-8631A46A0CA7} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-05] (AVAST Software s.r.o. -> AVAST Software)
Task: {CB6108C4-30BD-4AD7-8F13-55FADC078427} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [25492152 2020-09-22] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {CDB118EE-59E6-47C4-80C5-6FDF0CD87E16} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1741416 2020-09-23] (Avast Software s.r.o. -> Avast Software)
Task: {D59ABB6B-E050-4555-AE97-7CE63E3A2D5A} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1910664 2020-09-09] (Avast Software s.r.o. -> AVAST Software)
Task: {F0C665AE-0C32-4E45-8235-029B4C030FAE} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-05] (AVAST Software s.r.o. -> AVAST Software)
Task: {F1247025-8AEE-4BCD-A56A-67D599142251} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1910664 2020-09-09] (Avast Software s.r.o. -> AVAST Software)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{DAB09092-03A4-4AF2-A074-86BE96986353}: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF DefaultProfile: b0ozq1ow.default
FF ProfilePath: C:\Users\Nada\AppData\Roaming\Mozilla\Firefox\Profiles\b0ozq1ow.default [2020-10-24]
FF DownloadDir: C:\Stahování
FF Homepage: Mozilla\Firefox\Profiles\b0ozq1ow.default -> www.seznam.cz
FF Extension: (AVG Web TuneUp) - C:\Users\Nada\AppData\Roaming\Mozilla\Firefox\Profiles\b0ozq1ow.default\Extensions\avg@toolbar.xpi [2017-10-27] [Legacy]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_445.dll [2020-10-14] (Adobe Inc. -> )
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_445.dll [2020-10-14] (Adobe Inc. -> )
FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\40.3.8\\npsitesafety.dll [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2013-01-18] (NVIDIA CORPORATION -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2013-01-18] (NVIDIA CORPORATION -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Inc.)

Chrome:
=======
CHR Profile: C:\Users\Nada\AppData\Local\Google\Chrome\User Data\Default [2020-10-24]
CHR HomePage: Default -> hxxp://www.google.com
CHR Extension: (Slides) - C:\Users\Nada\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-11-08]
CHR Extension: (Docs) - C:\Users\Nada\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-11-08]
CHR Extension: (Google Drive) - C:\Users\Nada\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-04-04]
CHR Extension: (YouTube) - C:\Users\Nada\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-04-04]
CHR Extension: (Avast SafePrice | Comparison, deals, coupons) - C:\Users\Nada\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2019-10-23]
CHR Extension: (Google Docs Offline) - C:\Users\Nada\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-09-03]
CHR Extension: (Avast Online Security) - C:\Users\Nada\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2019-10-09]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Nada\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-23]
CHR Extension: (Gmail) - C:\Users\Nada\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-09-03]
CHR Extension: (Chrome Media Router) - C:\Users\Nada\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-10-23]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [83984 2018-12-16] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-10-14] (Adobe Inc. -> Adobe)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8450976 2020-10-14] (Avast Software s.r.o. -> AVAST Software)
R2 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [18656 2011-02-02] (Autodesk, Inc. -> )
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-05] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [360408 2020-10-14] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [2748520 2020-10-14] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-05] (AVAST Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\85.0.5814.102\elevation_service.exe [1080640 2020-09-09] (Avast Software s.r.o. -> AVAST Software)
R2 DTSRVC; C:\Program Files (x86)\Common Files\Portrait Displays\Shared\dtsrvc.exe [129648 2011-05-26] (Portrait Displays, Inc. -> Portrait Displays, Inc.)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [60416 2009-06-22] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
S2 PdiService; C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [37152 2020-10-14] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [206408 2020-10-14] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [236112 2020-10-14] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [195664 2020-10-14] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [60496 2020-10-14] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42784 2020-10-14] (Avast Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [175720 2020-10-14] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [518664 2020-10-14] (Avast Software s.r.o. -> AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [38152 2020-04-27] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [109280 2020-10-14] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [84856 2020-10-14] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [851608 2020-10-14] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [470912 2020-10-14] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [217336 2020-10-14] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [326928 2020-10-14] (Avast Software s.r.o. -> AVAST Software)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2012-02-24] (DT Soft Ltd -> DT Soft Ltd)
R3 L1C; C:\Windows\System32\DRIVERS\L1C62x64.sys [57344 2009-06-10] (Microsoft Windows -> Atheros Communications, Inc.)
R3 PdiPorts; C:\Windows\System32\DRIVERS\PdiPorts.sys [20592 2011-05-05] (Portrait Displays, Inc. -> Portrait Displays, Inc.)
S3 pfc; C:\Windows\SysWOW64\drivers\pfc.sys [9856 2011-07-10] (Padus, Inc.) [File not signed]
U1 aswbdisk; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-10-24 14:21 - 2020-10-24 14:23 - 000018620 _____ C:\Users\Nada\Desktop\FRST.txt
2020-10-24 14:20 - 2020-10-24 14:20 - 000000000 ____D C:\Users\Nada\Desktop\FRST-OlderVersion
2020-10-24 13:02 - 2019-02-21 06:12 - 000631680 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2020-10-24 13:02 - 2019-02-21 06:10 - 005552360 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2020-10-24 13:02 - 2019-02-21 06:10 - 000708328 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2020-10-24 13:02 - 2019-02-21 06:09 - 000262376 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2020-10-24 13:02 - 2019-02-21 06:09 - 000154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2020-10-24 13:02 - 2019-02-21 06:09 - 000095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2020-10-24 13:02 - 2019-02-21 06:08 - 001664360 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2020-10-24 13:02 - 2019-02-21 06:07 - 001211392 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2020-10-24 13:02 - 2019-02-21 06:07 - 000503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2020-10-24 13:02 - 2019-02-21 06:07 - 000361984 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2020-10-24 13:02 - 2019-02-21 06:07 - 000345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2020-10-24 13:02 - 2019-02-21 06:07 - 000316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2020-10-24 13:02 - 2019-02-21 06:07 - 000312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2020-10-24 13:02 - 2019-02-21 06:07 - 000243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2020-10-24 13:02 - 2019-02-21 06:07 - 000236032 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2020-10-24 13:02 - 2019-02-21 06:07 - 000215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2020-10-24 13:02 - 2019-02-21 06:07 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2020-10-24 13:02 - 2019-02-21 06:07 - 000190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2020-10-24 13:02 - 2019-02-21 06:07 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2020-10-24 13:02 - 2019-02-21 06:07 - 000135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2020-10-24 13:02 - 2019-02-21 06:07 - 000094208 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2020-10-24 13:02 - 2019-02-21 06:07 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2020-10-24 13:02 - 2019-02-21 06:07 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2020-10-24 13:02 - 2019-02-21 06:07 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2020-10-24 13:02 - 2019-02-21 06:07 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2020-10-24 13:02 - 2019-02-21 06:07 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2020-10-24 13:02 - 2019-02-21 06:07 - 000016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2020-10-24 13:02 - 2019-02-21 06:07 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2020-10-24 13:02 - 2019-02-21 06:07 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll
2020-10-24 13:02 - 2019-02-21 06:06 - 001472512 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2020-10-24 13:02 - 2019-02-21 06:06 - 001162752 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2020-10-24 13:02 - 2019-02-21 06:06 - 000880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2020-10-24 13:02 - 2019-02-21 06:06 - 000733184 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2020-10-24 13:02 - 2019-02-21 06:06 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2020-10-24 13:02 - 2019-02-21 06:06 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2020-10-24 13:02 - 2019-02-21 06:06 - 000419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2020-10-24 13:02 - 2019-02-21 06:06 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2020-10-24 13:02 - 2019-02-21 06:06 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2020-10-24 13:02 - 2019-02-21 06:06 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2020-10-24 13:02 - 2019-02-21 06:06 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2020-10-24 13:02 - 2019-02-21 06:06 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2020-10-24 13:02 - 2019-02-21 06:06 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2020-10-24 13:02 - 2019-02-21 06:06 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2020-10-24 13:02 - 2019-02-21 06:06 - 000006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2020-10-24 13:02 - 2019-02-21 06:06 - 000005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2020-10-24 13:02 - 2019-02-21 06:06 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2020-10-24 13:02 - 2019-02-21 06:06 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2020-10-24 13:02 - 2019-02-21 06:06 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2020-10-24 13:02 - 2019-02-21 06:06 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2020-10-24 13:02 - 2019-02-21 06:06 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2020-10-24 13:02 - 2019-02-21 06:06 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2020-10-24 13:02 - 2019-02-21 06:06 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2020-10-24 13:02 - 2019-02-21 06:06 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2020-10-24 13:02 - 2019-02-21 06:06 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2020-10-24 13:02 - 2019-02-21 06:06 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2020-10-24 13:02 - 2019-02-21 06:06 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2020-10-24 13:02 - 2019-02-21 06:06 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2020-10-24 13:02 - 2019-02-21 06:06 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2020-10-24 13:02 - 2019-02-21 06:06 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2020-10-24 13:02 - 2019-02-21 06:06 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2020-10-24 13:02 - 2019-02-21 06:06 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2020-10-24 13:02 - 2019-02-21 06:06 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2020-10-24 13:02 - 2019-02-21 06:06 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2020-10-24 13:02 - 2019-02-21 06:06 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2020-10-24 13:02 - 2019-02-21 06:06 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2020-10-24 13:02 - 2019-02-21 06:06 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2020-10-24 13:02 - 2019-02-21 06:06 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2020-10-24 13:02 - 2019-02-21 06:06 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2020-10-24 13:02 - 2019-02-21 06:06 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2020-10-24 13:02 - 2019-02-21 06:06 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2020-10-24 13:02 - 2019-02-21 06:06 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2020-10-24 13:02 - 2019-02-21 05:59 - 001314104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2020-10-24 13:02 - 2019-02-21 05:58 - 004055784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2020-10-24 13:02 - 2019-02-21 05:58 - 003960552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2020-10-24 13:02 - 2019-02-21 05:56 - 001114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2020-10-24 13:02 - 2019-02-21 05:56 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2020-10-24 13:02 - 2019-02-21 05:56 - 000666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2020-10-24 13:02 - 2019-02-21 05:56 - 000644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2020-10-24 13:02 - 2019-02-21 05:56 - 000556032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2020-10-24 13:02 - 2019-02-21 05:56 - 000342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2020-10-24 13:02 - 2019-02-21 05:56 - 000275968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2020-10-24 13:02 - 2019-02-21 05:56 - 000261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2020-10-24 13:02 - 2019-02-21 05:56 - 000254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2020-10-24 13:02 - 2019-02-21 05:56 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2020-10-24 13:02 - 2019-02-21 05:56 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2020-10-24 13:02 - 2019-02-21 05:56 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2020-10-24 13:02 - 2019-02-21 05:56 - 000141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2020-10-24 13:02 - 2019-02-21 05:56 - 000096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2020-10-24 13:02 - 2019-02-21 05:56 - 000082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2020-10-24 13:02 - 2019-02-21 05:56 - 000070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2020-10-24 13:02 - 2019-02-21 05:56 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2020-10-24 13:02 - 2019-02-21 05:56 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2020-10-24 13:02 - 2019-02-21 05:56 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2020-10-24 13:02 - 2019-02-21 05:56 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2020-10-24 13:02 - 2019-02-21 05:56 - 000017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2020-10-24 13:02 - 2019-02-21 05:56 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2020-10-24 13:02 - 2019-02-21 05:56 - 000005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2020-10-24 13:02 - 2019-02-21 05:56 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2020-10-24 13:02 - 2019-02-21 05:56 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2020-10-24 13:02 - 2019-02-21 05:56 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2020-10-24 13:02 - 2019-02-21 05:56 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2020-10-24 13:02 - 2019-02-21 05:56 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2020-10-24 13:02 - 2019-02-21 05:56 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2020-10-24 13:02 - 2019-02-21 05:56 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2020-10-24 13:02 - 2019-02-21 05:56 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2020-10-24 13:02 - 2019-02-21 05:56 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2020-10-24 13:02 - 2019-02-21 05:56 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2020-10-24 13:02 - 2019-02-21 05:56 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2020-10-24 13:02 - 2019-02-21 05:56 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2020-10-24 13:02 - 2019-02-21 05:56 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2020-10-24 13:02 - 2019-02-21 05:56 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2020-10-24 13:02 - 2019-02-21 05:56 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2020-10-24 13:02 - 2019-02-21 05:56 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2020-10-24 13:02 - 2019-02-21 05:56 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2020-10-24 13:02 - 2019-02-21 05:56 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2020-10-24 13:02 - 2019-02-21 05:56 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2020-10-24 13:02 - 2019-02-21 05:56 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2020-10-24 13:02 - 2019-02-21 05:56 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2020-10-24 13:02 - 2019-02-21 05:56 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2020-10-24 13:02 - 2019-02-21 05:56 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2020-10-24 13:02 - 2019-02-21 05:56 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2020-10-24 13:02 - 2019-02-21 05:42 - 000148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2020-10-24 13:02 - 2019-02-21 05:42 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2020-10-24 13:02 - 2019-02-21 05:42 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2020-10-24 13:02 - 2019-02-21 05:41 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2020-10-24 13:02 - 2019-02-21 05:39 - 000338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2020-10-24 13:02 - 2019-02-21 05:39 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\videoprt.sys
2020-10-24 13:02 - 2019-02-21 05:38 - 000296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2020-10-24 13:02 - 2019-02-21 05:38 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2020-10-24 13:02 - 2019-02-21 05:38 - 000009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sscore.dll
2020-10-24 13:02 - 2019-02-21 05:36 - 000464384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2020-10-24 13:02 - 2019-02-21 05:36 - 000406016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2020-10-24 13:02 - 2019-02-21 05:36 - 000291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2020-10-24 13:02 - 2019-02-21 05:36 - 000169984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2020-10-24 13:02 - 2019-02-21 05:36 - 000161280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2020-10-24 13:02 - 2019-02-21 05:36 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2020-10-24 13:02 - 2019-02-21 05:35 - 000112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2020-10-24 13:02 - 2019-02-21 05:35 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys
2020-10-24 13:02 - 2019-02-21 05:35 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelppm.sys
2020-10-24 13:02 - 2019-02-21 05:35 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys
2020-10-24 13:02 - 2019-02-21 05:35 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdppm.sys
2020-10-24 13:02 - 2019-02-21 05:35 - 000044544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\npfs.sys
2020-10-24 13:02 - 2019-02-21 05:35 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2020-10-24 13:02 - 2019-02-21 05:34 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2020-10-24 13:02 - 2019-02-21 05:34 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2020-10-24 13:02 - 2019-02-21 05:34 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2020-10-24 13:02 - 2019-02-21 05:34 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2020-10-24 13:02 - 2019-02-21 05:34 - 000006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2020-10-24 13:02 - 2019-02-21 05:34 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2020-10-24 13:02 - 2019-02-21 05:34 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2020-10-24 13:02 - 2019-02-21 05:34 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2020-10-24 13:02 - 2019-02-21 05:34 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2020-10-24 13:02 - 2019-02-10 18:41 - 012574208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2020-10-24 13:02 - 2019-02-10 18:41 - 011411968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2020-10-24 13:02 - 2019-02-10 18:41 - 003207168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2020-10-24 13:02 - 2019-02-10 18:41 - 001329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2020-10-24 13:02 - 2019-02-10 18:41 - 001177088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2020-10-24 13:02 - 2019-02-10 18:41 - 001005056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll
2020-10-24 13:02 - 2019-02-10 18:41 - 000988160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmv2clt.dll
2020-10-24 13:02 - 2019-02-10 18:41 - 000744960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\blackbox.dll
2020-10-24 13:02 - 2019-02-10 18:41 - 000617984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll
2020-10-24 13:02 - 2019-02-10 18:41 - 000519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2020-10-24 13:02 - 2019-02-10 18:41 - 000504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscp.dll
2020-10-24 13:02 - 2019-02-10 18:41 - 000489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2020-10-24 13:02 - 2019-02-10 18:41 - 000442368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2020-10-24 13:02 - 2019-02-10 18:41 - 000406016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmmgrtn.dll
2020-10-24 13:02 - 2019-02-10 18:41 - 000373248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2020-10-24 13:02 - 2019-02-10 18:41 - 000354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2020-10-24 13:02 - 2019-02-10 18:41 - 000265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msnetobj.dll
2020-10-24 13:02 - 2019-02-10 18:41 - 000195072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2020-10-24 13:02 - 2019-02-10 18:41 - 000179712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2020-10-24 13:02 - 2019-02-10 18:41 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2020-10-24 13:02 - 2019-02-10 18:41 - 000106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2020-10-24 13:02 - 2019-02-10 18:41 - 000103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2020-10-24 13:02 - 2019-02-10 18:41 - 000080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsp.dll
2020-10-24 13:02 - 2019-02-10 18:41 - 000046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssign32.dll
2020-10-24 13:02 - 2019-02-10 18:41 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2020-10-24 13:02 - 2019-02-10 18:29 - 000008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2020-10-24 13:02 - 2019-02-10 18:29 - 000004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2020-10-24 13:02 - 2019-02-10 18:29 - 000004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2020-10-24 13:02 - 2019-02-10 18:28 - 000050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2020-10-24 13:02 - 2019-02-10 18:28 - 000023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2020-10-24 13:02 - 2019-02-10 18:10 - 000094440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2020-10-24 13:02 - 2019-02-10 18:09 - 014635520 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2020-10-24 13:02 - 2019-02-10 18:09 - 012574720 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2020-10-24 13:02 - 2019-02-10 18:09 - 001574400 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2020-10-24 13:02 - 2019-02-10 18:09 - 000782848 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2020-10-24 13:02 - 2019-02-10 18:09 - 000499712 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2020-10-24 13:02 - 2019-02-10 18:09 - 000371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2020-10-24 13:02 - 2019-02-10 18:09 - 000229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2020-10-24 13:02 - 2019-02-10 18:09 - 000187904 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2020-10-24 13:02 - 2019-02-10 18:09 - 000037376 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
2020-10-24 13:02 - 2019-02-10 18:09 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2020-10-24 13:02 - 2019-02-10 18:09 - 000008704 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
2020-10-24 13:02 - 2019-02-10 18:09 - 000005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2020-10-24 13:02 - 2019-02-10 18:09 - 000005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2020-10-24 13:02 - 2019-02-10 18:08 - 004120576 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2020-10-24 13:02 - 2019-02-10 18:08 - 001484800 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2020-10-24 13:02 - 2019-02-10 18:08 - 001202176 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
2020-10-24 13:02 - 2019-02-10 18:08 - 001068544 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2020-10-24 13:02 - 2019-02-10 18:08 - 000641024 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2020-10-24 13:02 - 2019-02-10 18:08 - 000632320 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2020-10-24 13:02 - 2019-02-10 18:08 - 000497664 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
2020-10-24 13:02 - 2019-02-10 18:08 - 000433152 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2020-10-24 13:02 - 2019-02-10 18:08 - 000325632 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
2020-10-24 13:02 - 2019-02-10 18:08 - 000284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2020-10-24 13:02 - 2019-02-10 18:08 - 000206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2020-10-24 13:02 - 2019-02-10 18:08 - 000190976 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2020-10-24 13:02 - 2019-02-10 18:08 - 000141824 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2020-10-24 13:02 - 2019-02-10 18:08 - 000081920 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll
2020-10-24 13:02 - 2019-02-10 18:08 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\mssign32.dll
2020-10-24 13:02 - 2019-02-10 18:08 - 000011264 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
2020-10-24 13:02 - 2019-02-10 18:08 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2020-10-24 13:02 - 2019-02-10 18:07 - 000842240 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2020-10-24 13:02 - 2019-02-10 18:07 - 000680448 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2020-10-24 13:02 - 2019-02-10 18:07 - 000438784 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2020-10-24 13:02 - 2019-02-10 18:07 - 000295936 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2020-10-24 13:02 - 2019-02-10 18:02 - 000663552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2020-10-24 13:02 - 2019-02-10 17:50 - 000055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2020-10-24 13:02 - 2019-02-10 17:49 - 000125952 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2020-10-24 13:02 - 2019-02-10 17:49 - 000024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2020-10-24 13:02 - 2019-02-10 17:38 - 000011264 _____ (Microsoft Corporation) C:\Windows\system32\pcawrk.exe
2020-10-24 13:02 - 2019-02-10 17:38 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2020-10-24 13:02 - 2018-11-18 04:56 - 000459632 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2020-10-24 13:02 - 2018-11-18 04:44 - 000634272 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2020-10-24 13:02 - 2018-11-18 04:43 - 000467856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2020-10-24 13:01 - 2017-11-17 06:23 - 003222528 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2020-10-24 13:01 - 2017-11-15 03:27 - 000395968 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2020-10-24 13:01 - 2017-11-15 02:36 - 000347336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2020-10-24 13:01 - 2017-11-14 05:57 - 025731072 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2020-10-24 13:01 - 2017-11-14 05:43 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2020-10-24 13:01 - 2017-11-14 05:43 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2020-10-24 13:01 - 2017-11-14 05:32 - 002903552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2020-10-24 13:01 - 2017-11-14 05:31 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2020-10-24 13:01 - 2017-11-14 05:31 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2020-10-24 13:01 - 2017-11-14 05:30 - 000577024 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2020-10-24 13:01 - 2017-11-14 05:30 - 000417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2020-10-24 13:01 - 2017-11-14 05:30 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2020-10-24 13:01 - 2017-11-14 05:25 - 005925888 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2020-10-24 13:01 - 2017-11-14 05:24 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2020-10-24 13:01 - 2017-11-14 05:24 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2020-10-24 13:01 - 2017-11-14 05:21 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2020-10-24 13:01 - 2017-11-14 05:20 - 000817152 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2020-10-24 13:01 - 2017-11-14 05:20 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2020-10-24 13:01 - 2017-11-14 05:20 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2020-10-24 13:01 - 2017-11-14 05:20 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2020-10-24 13:01 - 2017-11-14 05:15 - 000968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2020-10-24 13:01 - 2017-11-14 05:12 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2020-10-24 13:01 - 2017-11-14 05:06 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2020-10-24 13:01 - 2017-11-14 05:06 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2020-10-24 13:01 - 2017-11-14 05:05 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2020-10-24 13:01 - 2017-11-14 05:03 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2020-10-24 13:01 - 2017-11-14 05:02 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2020-10-24 13:01 - 2017-11-14 05:00 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2020-10-24 13:01 - 2017-11-14 04:59 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2020-10-24 13:01 - 2017-11-14 04:51 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2020-10-24 13:01 - 2017-11-14 04:48 - 015267328 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2020-10-24 13:01 - 2017-11-14 04:48 - 000807936 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2020-10-24 13:01 - 2017-11-14 04:48 - 000726528 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2020-10-24 13:01 - 2017-11-14 04:47 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2020-10-24 13:01 - 2017-11-14 04:46 - 002134528 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2020-10-24 13:01 - 2017-11-14 04:39 - 003241472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2020-10-24 13:01 - 2017-11-14 04:27 - 001544192 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2020-10-24 13:01 - 2017-11-14 04:16 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2020-10-24 13:01 - 2017-11-14 03:37 - 013679616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2020-10-24 13:01 - 2017-11-14 03:15 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2020-10-24 13:01 - 2017-11-14 03:15 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2020-10-24 13:01 - 2017-11-14 03:15 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2020-10-24 13:01 - 2017-11-14 03:10 - 020269056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2020-10-24 13:01 - 2017-11-14 02:32 - 000499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2020-10-24 13:01 - 2017-11-14 02:31 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2020-10-24 13:01 - 2017-11-07 22:56 - 002724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2020-10-24 13:01 - 2017-11-07 22:46 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2020-10-24 13:01 - 2017-11-07 22:46 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2020-10-24 13:01 - 2017-11-07 22:46 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2020-10-24 13:01 - 2017-11-07 22:44 - 002293760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2020-10-24 13:01 - 2017-11-07 22:41 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2020-10-24 13:01 - 2017-11-07 22:41 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2020-10-24 13:01 - 2017-11-07 22:40 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2020-10-24 13:01 - 2017-11-07 22:39 - 000662016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2020-10-24 13:01 - 2017-11-07 22:38 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2020-10-24 13:01 - 2017-11-07 22:38 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2020-10-24 13:01 - 2017-11-07 22:29 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2020-10-24 13:01 - 2017-11-07 22:28 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2020-10-24 13:01 - 2017-11-07 22:28 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2020-10-24 13:01 - 2017-11-07 22:27 - 004509696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2020-10-24 13:01 - 2017-11-07 22:26 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2020-10-24 13:01 - 2017-11-07 22:24 - 000130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2020-10-24 13:01 - 2017-11-07 22:19 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2020-10-24 13:01 - 2017-11-07 22:18 - 000694272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2020-10-24 13:01 - 2017-11-07 22:17 - 002058752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2020-10-24 13:01 - 2017-11-07 22:17 - 001155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2020-10-24 13:01 - 2017-11-07 22:04 - 002767872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2020-10-24 13:01 - 2017-11-07 22:01 - 001313280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2020-10-24 13:01 - 2017-11-07 21:58 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2020-10-24 13:01 - 2017-11-07 18:31 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2020-10-24 13:01 - 2017-11-07 18:13 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2020-10-24 13:01 - 2017-11-04 17:31 - 000194048 _____ (Microsoft Corporation) C:\Windows\system32\itircl.dll
2020-10-24 13:01 - 2017-11-04 17:31 - 000170496 _____ (Microsoft Corporation) C:\Windows\system32\itss.dll
2020-10-24 13:01 - 2017-11-04 17:10 - 000158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itircl.dll
2020-10-24 13:01 - 2017-11-04 17:10 - 000142336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itss.dll
2020-10-24 13:01 - 2017-11-02 18:55 - 000281600 _____ (Microsoft Corporation) C:\Windows\system32\iprtrmgr.dll
2020-10-24 13:01 - 2017-11-02 18:55 - 000138240 _____ (Microsoft Corporation) C:\Windows\system32\rtm.dll
2020-10-24 13:01 - 2017-11-02 18:55 - 000097792 _____ (Microsoft Corporation) C:\Windows\system32\mprdim.dll
2020-10-24 13:01 - 2017-11-02 18:55 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\iprtprio.dll
2020-10-24 13:01 - 2017-11-02 17:11 - 000271360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iprtrmgr.dll
2020-10-24 13:01 - 2017-11-02 17:11 - 000115200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rtm.dll
2020-10-24 13:01 - 2017-11-02 17:11 - 000075264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mprdim.dll
2020-10-24 13:01 - 2017-11-02 16:56 - 000008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iprtprio.dll
2020-10-24 13:01 - 2017-10-17 01:04 - 001001984 _____ (Microsoft Corporation) C:\Windows\system32\gpedit.dll
2020-10-24 13:01 - 2017-10-17 00:46 - 000953344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpedit.dll
2020-10-24 13:01 - 2017-10-12 02:20 - 000317440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2020-10-24 11:59 - 2020-10-24 12:01 - 000000000 ____D C:\AdwCleaner
2020-10-24 11:58 - 2020-10-24 11:58 - 008447152 _____ (Malwarebytes) C:\Users\Nada\Desktop\AdwCleaner.exe
2020-10-24 11:37 - 2020-10-24 11:37 - 002062144 _____ (Malwarebytes) C:\Users\Nada\Desktop\MBSetup.exe
2020-10-24 10:50 - 2020-10-24 10:53 - 000031647 _____ C:\Users\Nada\Desktop\Addition.txt
2020-10-24 10:44 - 2020-10-24 14:22 - 000000000 ____D C:\FRST
2020-10-24 10:44 - 2020-10-24 14:20 - 002299904 _____ (Farbar) C:\Users\Nada\Desktop\FRST64.exe
2020-10-14 09:18 - 2020-10-14 09:17 - 000339552 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2020-10-14 09:18 - 2020-10-14 09:17 - 000217336 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2020-10-14 09:18 - 2020-10-14 09:17 - 000175720 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-10-24 14:20 - 2009-07-14 06:57 - 000001547 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2020-10-24 14:19 - 2009-07-14 06:45 - 000023376 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-10-24 14:19 - 2009-07-14 06:45 - 000023376 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-10-24 14:18 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-10-24 14:17 - 2011-02-21 16:49 - 000000000 ____D C:\ProgramData\NVIDIA
2020-10-24 14:17 - 2009-07-14 06:45 - 000360472 _____ C:\Windows\system32\FNTCACHE.DAT
2020-10-24 14:14 - 2017-06-29 15:33 - 000000000 ____D C:\ProgramData\AVAST Software
2020-10-24 14:13 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\SysWOW64\Setup
2020-10-24 14:13 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\SysWOW64\Dism
2020-10-24 14:13 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\system32\Setup
2020-10-24 14:13 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\system32\Dism
2020-10-24 14:13 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2020-10-24 13:53 - 2012-02-25 12:41 - 001560884 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2020-10-24 13:53 - 2009-09-21 21:15 - 000669318 _____ C:\Windows\system32\perfh005.dat
2020-10-24 13:53 - 2009-09-21 21:15 - 000141720 _____ C:\Windows\system32\perfc005.dat
2020-10-24 13:53 - 2009-07-14 07:13 - 001560884 _____ C:\Windows\system32\PerfStringBackup.INI
2020-10-24 13:42 - 2009-07-14 04:34 - 000000499 _____ C:\Windows\win.ini
2020-10-24 13:41 - 2013-08-15 08:45 - 000000000 ____D C:\Windows\system32\MRT
2020-10-24 13:35 - 2011-02-21 17:43 - 129170736 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2020-10-24 13:25 - 2011-07-10 21:09 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2020-10-24 12:06 - 2016-11-22 14:49 - 000000000 ____D C:\Users\Nada\AppData\LocalLow\Mozilla
2020-10-24 11:58 - 2011-07-10 20:44 - 000000000 ____D C:\Stahování
2020-10-24 11:11 - 2020-09-02 10:24 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2020-10-24 11:11 - 2012-07-26 13:17 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-10-24 10:46 - 2012-07-26 13:17 - 000000000 ____D C:\ProgramData\Mozilla
2020-10-24 10:34 - 2019-10-11 17:45 - 000003870 _____ C:\Windows\system32\Tasks\CCleaner Update
2020-10-24 10:34 - 2019-10-11 17:45 - 000000822 _____ C:\Users\Public\Desktop\CCleaner.lnk
2020-10-24 10:34 - 2019-10-11 17:45 - 000000822 _____ C:\ProgramData\Desktop\CCleaner.lnk
2020-10-24 10:28 - 2017-04-04 08:06 - 000003386 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2020-10-24 10:28 - 2017-04-04 08:06 - 000003258 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2020-10-24 10:28 - 2015-09-15 11:01 - 000004476 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2020-10-24 10:26 - 2018-04-05 08:02 - 000000000 ____D C:\Users\Nada\AppData\Local\AVAST Software
2020-10-24 10:14 - 2019-02-25 09:27 - 000004168 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2020-10-14 09:20 - 2018-03-14 09:15 - 000004524 _____ C:\Windows\system32\Tasks\Adobe Flash Player NPAPI Notifier
2020-10-14 09:20 - 2012-07-18 17:37 - 000842296 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe
2020-10-14 09:20 - 2012-07-18 17:37 - 000004396 _____ C:\Windows\system32\Tasks\Adobe Flash Player Updater
2020-10-14 09:20 - 2012-07-18 17:37 - 000000000 ____D C:\Windows\system32\Macromed
2020-10-14 09:20 - 2011-07-10 21:09 - 000175160 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2020-10-14 09:19 - 2020-04-27 08:19 - 000518664 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2020-10-14 09:17 - 2019-01-16 09:35 - 000236112 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2020-10-14 09:17 - 2019-01-07 09:09 - 000195664 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2020-10-14 09:17 - 2019-01-07 09:09 - 000060496 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2020-10-14 09:17 - 2019-01-07 09:09 - 000037152 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys
2020-10-14 09:17 - 2018-10-22 08:51 - 000042784 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2020-10-14 09:17 - 2017-11-20 09:01 - 000206408 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2020-10-14 09:17 - 2017-06-29 15:35 - 000851608 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2020-10-14 09:17 - 2017-06-29 15:35 - 000470912 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2020-10-14 09:17 - 2017-06-29 15:35 - 000326928 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2020-10-14 09:17 - 2017-06-29 15:35 - 000109280 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2020-10-14 09:17 - 2017-06-29 15:35 - 000084856 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2020-09-24 08:30 - 2019-04-18 08:13 - 000003732 _____ C:\Windows\system32\Tasks\Avast Secure Browser Heartbeat Task (Hourly)
2020-09-24 08:30 - 2018-04-05 08:05 - 000002429 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

LastRegBack: 2020-10-24 11:33
==================== End of FRST.txt ========================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 24-10-2020
Ran by Nada (24-10-2020 14:27:36)
Running from C:\Users\Nada\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2011-07-10 13:54:02)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-642364921-1089016685-4093869991-500 - Administrator - Disabled)
Guest (S-1-5-21-642364921-1089016685-4093869991-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-642364921-1089016685-4093869991-1002 - Limited - Enabled)
Nada (S-1-5-21-642364921-1089016685-4093869991-1000 - Administrator - Enabled) => C:\Users\Nada
UpdatusUser (S-1-5-21-642364921-1089016685-4093869991-1003 - Limited - Enabled) => C:\Users\UpdatusUser

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {5078598A-1FA2-C888-AA5F-A9C66537DB12}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

ACDSee 6.0 PowerPack (HKLM-x32\...\{38A0BB97-772D-422E-BCCA-4BA2A5D81F42}) (Version: 6.0.0 - ACD Systems Ltd.)
Acer eDisplay Management (HKLM-x32\...\{A586DC50-B18D-48FB-B7CC-A598200457C2}) (Version: 1.36.003 - Portrait Displays, Inc.)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.445 - Adobe)
Adobe Reader X (10.1.16) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AA1000000001}) (Version: 10.1.16 - Adobe Systems Incorporated)
Aktualizace NVIDIA 1.11.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.11.3 - NVIDIA Corporation)
AutoCAD 2012 - Czech (HKLM\...\{5783F2D7-A001-0405-0102-0060B0CE6BBA}) (Version: 18.2.107.0 - Autodesk) Hidden
AutoCAD 2012 - Czech (HKLM\...\AutoCAD 2012 - Czech) (Version: 18.2.51.0 - Autodesk)
AutoCAD 2012 - Czech SP1 (HKLM\...\AutoCAD 2012 - Czech SP1) (Version: 1 - Autodesk)
AutoCAD 2012 Language Pack - Czech (HKLM\...\{5783F2D7-A001-0405-1102-0060B0CE6BBA}) (Version: 18.2.51.0 - Autodesk) Hidden
Autodesk Content Service (HKLM-x32\...\{086F9A69-CD39-4893-A9FB-D3A0634CE3F7}) (Version: 2.0.90 - Autodesk)
Autodesk Material Library 2012 (HKLM-x32\...\{8F0837C2-EE09-4903-88F3-1976FE7FFF4E}) (Version: 2.5.0.8 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2012 (HKLM-x32\...\{65420DC9-306E-4371-905F-F4DC3B418E52}) (Version: 2.5.0.8 - Autodesk)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 20.8.2432 - Avast Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 85.0.5814.102 - Autoři prohlížeče Avast Secure Browser)
AVG Web TuneUp (HKLM-x32\...\AVG Web TuneUp) (Version: 4.3.8.566 - AVG Technologies)
CCleaner (HKLM\...\CCleaner) (Version: 5.72 - Piriform)
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.45.3.0297 - DT Soft Ltd)
FARO LS 1.1.406.58 (HKLM-x32\...\{951B0F30-9F1A-4BF6-B3DA-99EB0E917B1C}) (Version: 4.6.58.2 - FARO Scanner Production)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 85.0.4183.121 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.31 - Google LLC) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.123 - Google Inc.) Hidden
Microsoft .NET Framework 4.7 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.7.02053 - Microsoft Corporation)
Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Klikni a spusť 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1011 - Microsoft Corporation)
Microsoft Office Starter 2010 - čeština (HKLM-x32\...\{90140011-0066-0405-0000-0000000FF1CE}) (Version: 14.0.4763.1011 - Microsoft Corporation)
Microsoft Office XP Professional s aplikací FrontPage (HKLM-x32\...\{90280405-6000-11D3-8CFE-0050048383C9}) (Version: 10.0.6626.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 82.0 (x64 cs) (HKLM\...\Mozilla Firefox 82.0 (x64 cs)) (Version: 82.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 82.0.0.7592 - Mozilla)
Mozilla Thunderbird 68.12.0 (x86 cs) (HKLM-x32\...\Mozilla Thunderbird 68.12.0 (x86 cs)) (Version: 68.12.0 - Mozilla)
NVIDIA Ovladač 3D Vision 311.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 311.06 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.1.9.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.1.9.0 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 311.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 311.06 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.10.0514 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.10.0514 - NVIDIA Corporation)
Ovládací panel NVIDIA 311.06 (HKLM\...\{B2FE1952-0186-46c3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 311.06 - NVIDIA Corporation) Hidden
Pivot Pro Plugin (HKLM-x32\...\{0217E1D1-BCEF-4A61-AF6D-F7740F65A066}) (Version: 9.50.110 - Portrait Displays, Inc.) Hidden
Platform (HKLM-x32\...\{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.) Hidden
Screen Calipers (HKLM-x32\...\Screen Calipers) (Version: 3.3 - Iconico)
Total Commander (Remove or Repair) (HKLM-x32\...\Totalcmd) (Version: 7.56a - Ghisler Software GmbH)
VIA Platforma Ovladače zařízení (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.)
Visual Studio 2008 x64 Redistributables (HKLM-x32\...\{FCDBEA60-79F0-4FAE-BBA8-55A26C609A49}) (Version: 10.0.0.2 - AVG Technologies)
Visual Studio 2010 x64 Redistributables (HKLM\...\{21B133D6-5979-47F0-BE1C-F6A6B304693F}) (Version: 13.0.0.1 - AVG Technologies)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-642364921-1089016685-4093869991-1000_Classes\CLSID\{6D7AE628-FF41-4CD3-91DD-34825BB1A251}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2012 - Czech\acad.exe (Autodesk, Inc -> Autodesk, Inc.) [File not signed]
CustomCLSID: HKU\S-1-5-21-642364921-1089016685-4093869991-1000_Classes\CLSID\{B77E471C-FBF3-4CB5-880F-D7528AD4B349}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2012 - Czech\acad.exe (Autodesk, Inc -> Autodesk, Inc.) [File not signed]
CustomCLSID: HKU\S-1-5-21-642364921-1089016685-4093869991-1000_Classes\CLSID\{C92FB640-AD4D-498A-9979-A51A2540C977}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2012 - Czech\acad.exe (Autodesk, Inc -> Autodesk, Inc.) [File not signed]
CustomCLSID: HKU\S-1-5-21-642364921-1089016685-4093869991-1000_Classes\CLSID\{D70E31AD-2614-49F2-B0FC-ACA781D81F3E}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2012 - Czech\acad.exe (Autodesk, Inc -> Autodesk, Inc.) [File not signed]
CustomCLSID: HKU\S-1-5-21-642364921-1089016685-4093869991-1000_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2012 - Czech\acadficn.dll (Autodesk Development Sarl -> Autodesk, Inc.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-10-14] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-10-14] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers: [Správa překryvné ikony digitálních podpisů AutoCADu ] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2011-02-04] (Autodesk, Inc -> Autodesk, Inc.) [File not signed]
ContextMenuHandlers1: [AcShellExtension.AcContextMenuHandler] -> {2E7A2C6C-B938-40a4-BA1C-C7EC982DC202} => C:\Program Files\Common Files\Autodesk Shared\AcShellEx\AcShellExtension.dll [2011-02-04] (Autodesk, Inc -> Autodesk) [File not signed]
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-10-14] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-10-14] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2013-01-18] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers5: [PortraitDisplaysContextMenu] -> {8602BDD8-9780-4717-B89A-7F89AF75B2AB} => -> No File
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-10-14] (Avast Software s.r.o. -> AVAST Software)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2011-02-04 05:42 - 2011-02-04 05:42 - 000180960 _____ (Autodesk, Inc -> Autodesk) [File not signed] C:\Program Files\Common Files\Autodesk Shared\AcShellEx\AcShellExtension.dll
2011-02-04 05:42 - 2011-02-04 05:42 - 000592608 _____ (Autodesk, Inc -> Autodesk, Inc.) [File not signed] C:\Program Files\Common Files\Autodesk Shared\AcSignCore16.dll
2011-02-04 05:42 - 2011-02-04 05:42 - 000045280 _____ (Autodesk, Inc -> Autodesk, Inc.) [File not signed] C:\Windows\system32\AcSignIcon.dll
2012-07-18 17:09 - 2010-05-13 16:32 - 000372736 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Portrait Displays\Pivot Pro Plugin\ijl15.dll
2019-03-27 23:48 - 2019-03-27 23:48 - 000115200 _____ (Microsoft Corporation) [File not signed] C:\Windows\Microsoft.Net\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
2020-08-04 08:36 - 2020-08-04 08:36 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2020-08-04 08:36 - 2020-08-04 08:36 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2020-08-04 08:36 - 2020-08-04 08:36 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2020-08-04 08:36 - 2020-08-04 08:36 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2020-08-04 08:36 - 2020-08-04 08:36 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2020-08-04 08:36 - 2020-08-04 08:36 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2020-08-04 08:36 - 2020-08-04 08:36 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2020-08-04 08:36 - 2020-08-04 08:36 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2020-08-04 08:36 - 2020-08-04 08:36 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2020-08-04 08:36 - 2020-08-04 08:36 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2020-08-04 08:36 - 2020-08-04 08:36 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2020-08-04 08:36 - 2020-08-04 08:36 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\ucrtbase.DLL
2020-08-04 08:36 - 2020-08-04 08:36 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\VCRUNTIME140.dll
2020-10-24 10:22 - 2020-10-24 10:22 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20102304\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2020-10-24 10:22 - 2020-10-24 10:22 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20102304\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2020-10-24 10:22 - 2020-10-24 10:22 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20102304\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2020-10-24 10:22 - 2020-10-24 10:22 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20102304\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2020-10-24 10:22 - 2020-10-24 10:22 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20102304\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2020-10-24 10:22 - 2020-10-24 10:22 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20102304\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2020-10-24 10:22 - 2020-10-24 10:22 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20102304\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2020-10-24 10:22 - 2020-10-24 10:22 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20102304\avast.local_vc142.crt\api-ms-win-crt-environment-l1-1-0.dll
2020-10-24 10:22 - 2020-10-24 10:22 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20102304\avast.local_vc142.crt\api-ms-win-crt-filesystem-l1-1-0.dll
2020-10-24 10:22 - 2020-10-24 10:22 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20102304\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2020-10-24 10:22 - 2020-10-24 10:22 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20102304\avast.local_vc142.crt\api-ms-win-crt-locale-l1-1-0.dll
2020-10-24 10:22 - 2020-10-24 10:22 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20102304\avast.local_vc142.crt\api-ms-win-crt-math-l1-1-0.dll
2020-10-24 10:22 - 2020-10-24 10:22 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20102304\avast.local_vc142.crt\api-ms-win-crt-multibyte-l1-1-0.dll
2020-10-24 10:22 - 2020-10-24 10:22 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20102304\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2020-10-24 10:22 - 2020-10-24 10:22 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20102304\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2020-10-24 10:22 - 2020-10-24 10:22 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20102304\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2020-10-24 10:22 - 2020-10-24 10:22 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20102304\avast.local_vc142.crt\api-ms-win-crt-time-l1-1-0.dll
2020-10-24 10:22 - 2020-10-24 10:22 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20102304\avast.local_vc142.crt\api-ms-win-crt-utility-l1-1-0.dll
2020-10-24 10:22 - 2020-10-24 10:22 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20102304\avast.local_vc142.crt\MSVCP140.dll
2020-10-24 10:22 - 2020-10-24 10:22 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20102304\avast.local_vc142.crt\ucrtbase.DLL
2020-10-24 10:22 - 2020-10-24 10:22 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20102304\avast.local_vc142.crt\VCRUNTIME140.dll
2020-10-24 10:22 - 2020-10-24 10:22 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\20102304\avast.local_vc142.crt\VCRUNTIME140_1.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

HKU\S-1-5-21-642364921-1089016685-4093869991-1000\Software\Classes\.scr: AutoCADScriptFile => C:\Windows\system32\notepad.exe "%1"

==================== Internet Explorer (Version 11) (Whitelisted) ==========

SearchScopes: HKU\S-1-5-21-642364921-1089016685-4093869991-1000 -> DefaultScope {95B7759C-8C7F-4BF1-B163-73684A933233} URL =
BHO-x32: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files (x86)\AVG Web TuneUp\4.3.8.566\AVG Web TuneUp.dll => No File
Handler-x32: cdo - {CD00020A-8B95-11D1-82DB-00C04FB1625D} - C:\Program Files (x86)\Common Files\Microsoft Shared\Web Folders\PKMCDO.DLL [2001-01-22] (Microsoft Corporation) [File not signed]
Handler-x32: http - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2003-02-11] (Microsoft Corporation) [File not signed]
Handler-x32: http - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2003-02-11] (Microsoft Corporation) [File not signed]
Handler-x32: https - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2003-02-11] (Microsoft Corporation) [File not signed]
Handler-x32: https - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2003-02-11] (Microsoft Corporation) [File not signed]
Handler-x32: msdaipp - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2003-02-11] (Microsoft Corporation) [File not signed]
Handler-x32: msdaipp - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2003-02-11] (Microsoft Corporation) [File not signed]

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2019-01-07 09:01 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\
HKU\S-1-5-21-642364921-1089016685-4093869991-1000\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{2EBEDB4E-B739-4755-99C9-2EB4F0E57841}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{AC4BA5D5-465F-4DD8-B7D8-3556B2D895B3}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{C4C25320-2E1C-42FB-B4A8-660E3A3F639F}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{228F78A8-9084-4146-BDA6-3A0E899D7045}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{B04DFFD6-AC9F-4A21-80B8-07E972623A5C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{4F49994E-ECF5-44A7-9075-41174BE3F22A}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{BC0F3644-B774-4A05-94FE-8C6E3FDC639C}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{916BF415-F285-4DEB-A201-67E4244212A6}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe (Avast Software s.r.o. -> AVAST Software)

==================== Restore Points =========================

22-01-2020 13:16:58 Naplánovaný kontrolní bod
09-06-2020 08:54:10 Naplánovaný kontrolní bod
16-09-2020 11:05:23 Naplánovaný kontrolní bod
24-10-2020 12:00:56 AdwCleaner_BeforeCleaning_24/10/2020_12:00:47
24-10-2020 13:24:49 Windows Update

==================== Faulty Device Manager Devices ============

==================== Event log errors: ========================

Application errors:
==================
Error: (10/24/2020 02:08:21 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (10/24/2020 01:08:01 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (10/24/2020 12:08:39 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (10/24/2020 11:08:07 AM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (10/24/2020 10:17:40 AM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (10/24/2020 10:11:54 AM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (10/14/2020 09:14:52 AM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (10/14/2020 09:11:06 AM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

System errors:
=============
Error: (10/24/2020 02:21:08 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba NVIDIA Update Service Daemon neuspěla při spuštění v důsledku následující chyby:
Služba nebyla zahájena, protože se nepodařilo přihlásit.

Error: (10/24/2020 02:21:08 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: Služba nvUpdatusService se nemohla přihlásit jako .\UpdatusUser s aktuálně konfigurovaným heslem z důvodu následující chyby:
Přihlašovací chyba: Platnost hesla pro tuto registraci vypršela.

Chcete-li zajistit správnou konfiguraci služby, použijte modul snap-in Služby konzoly Microsoft Management Console (MMC).

Error: (10/24/2020 02:19:55 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID
{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}
a APPID
{344ED43D-D086-4961-86A6-1106F4ACAD9B}
uživateli NT AUTHORITY\SYSTEM SID (S-1-5-18) z adresy LocalHost (pomocí LRPC). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (10/24/2020 02:18:18 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Portrait Displays SDK Service neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.

Error: (10/24/2020 02:17:36 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Načtení \SystemRoot\SysWow64\drivers\pfc.sys bylo zablokováno kvůli nekompatibilitě s tímto systémem. Požádejte dodavatele softwaru
o kompatibilní verzi ovladače.

Error: (10/24/2020 02:17:34 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Načtení \SystemRoot\SysWow64\drivers\pfc.sys bylo zablokováno kvůli nekompatibilitě s tímto systémem. Požádejte dodavatele softwaru
o kompatibilní verzi ovladače.

Error: (10/24/2020 01:32:37 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80092004): 2020-01, kum. akt. zab. a kval. pro .NET Framework 3.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 pro Windows 7 a Server 2008 R2 pro x64 (KB4535102).

Error: (10/24/2020 12:07:32 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba NVIDIA Update Service Daemon neuspěla při spuštění v důsledku následující chyby:
Služba nebyla zahájena, protože se nepodařilo přihlásit.

CodeIntegrity:
===================================

Date: 2013-12-10 17:09:22.304
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\Temp\08CFD924-E385-4183-8637-97674B053D38\amd64_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.22436_none_b5e7f8ade1f2fff4\appid.sys because the set of per-page image hashes could not be found on the system.

Date: 2013-12-10 17:09:21.867
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\Temp\08CFD924-E385-4183-8637-97674B053D38\amd64_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.22436_none_b5e7f8ade1f2fff4\appid.sys because the set of per-page image hashes could not be found on the system.

==================== Memory info ===========================

BIOS: American Megatrends Inc. V26.3 11/01/2010
Motherboard: MSI G41M-P28 (MS-7592)
Processor: Pentium(R) Dual-Core CPU E5700 @ 3.00GHz
Percentage of memory in use: 93%
Total physical RAM: 4095.18 MB
Available physical RAM: 249.43 MB
Total Virtual: 8188.5 MB
Available Virtual: 4691.93 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:931.41 GB) (Free:563.69 GB) NTFS

\\?\Volume{629b4f58-3d9d-11e0-827c-806e6f6e6963}\ (Rezervováno systémem) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 828A0713)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931.4 GB) - (Type=07 NTFS)

==================== End of Addition.txt =======================

#6 Příspěvek od **Rudy** » 24 říj 2020 16:18

Otevřte poznámkový blok a zkopírujte do něj:

Start:

CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-642364921-1089016685-4093869991-1000\...\MountPoints2: {6d2d08bc-5efa-11e1-9e8d-6c626daefe95} - H:\Setup.exe
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{73FA19D0-2D75-11D2-995D-00C04F98BBC9}] ->
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {5730BDDB-BE1C-405C-A37D-E77E4101690C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2017-04-04] (Google Inc -> Google Inc.)
Task: {9BF7C315-5D89-49A5-86E9-722623959C3D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2017-04-04] (Google Inc -> Google Inc.)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
U1 aswbdisk; no ImagePath
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
ContextMenuHandlers5: [PortraitDisplaysContextMenu] -> {8602BDD8-9780-4717-B89A-7F89AF75B2AB} => -> No File
SearchScopes: HKU\S-1-5-21-642364921-1089016685-4093869991-1000 -> DefaultScope {95B7759C-8C7F-4BF1-B163-73684A933233} URL =
BHO-x32: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files (x86)\AVG Web TuneUp\4.3.8.566\AVG Web TuneUp.dll => No File

EmptyTemp:
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Petura · #7 Příspěvek od **Petura** » 24 říj 2020 17:55

POsílám další log...jinak HDD nepřetržitě šrotuje, firefox se startuje pomalu a dává i hlášku že se startuje pomalu

Fix result of Farbar Recovery Scan Tool (x64) Version: 24-10-2020
Ran by Nada (24-10-2020 18:44:06) Run:1
Running from C:\Users\Nada\Desktop
Loaded Profiles: Nada
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start:

CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-642364921-1089016685-4093869991-1000\...\MountPoints2: {6d2d08bc-5efa-11e1-9e8d-6c626daefe95} - H:\Setup.exe
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{73FA19D0-2D75-11D2-995D-00C04F98BBC9}] ->
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {5730BDDB-BE1C-405C-A37D-E77E4101690C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2017-04-04] (Google Inc -> Google Inc.)
Task: {9BF7C315-5D89-49A5-86E9-722623959C3D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2017-04-04] (Google Inc -> Google Inc.)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
U1 aswbdisk; no ImagePath
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
ContextMenuHandlers5: [PortraitDisplaysContextMenu] -> {8602BDD8-9780-4717-B89A-7F89AF75B2AB} => -> No File
SearchScopes: HKU\S-1-5-21-642364921-1089016685-4093869991-1000 -> DefaultScope {95B7759C-8C7F-4BF1-B163-73684A933233} URL =
BHO-x32: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files (x86)\AVG Web TuneUp\4.3.8.566\AVG Web TuneUp.dll => No File

EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => removed successfully
HKU\S-1-5-21-642364921-1089016685-4093869991-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6d2d08bc-5efa-11e1-9e8d-6c626daefe95} => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components\{73FA19D0-2D75-11D2-995D-00C04F98BBC9} => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
HKLM\SOFTWARE\Policies\Google => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5730BDDB-BE1C-405C-A37D-E77E4101690C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5730BDDB-BE1C-405C-A37D-E77E4101690C}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{9BF7C315-5D89-49A5-86E9-722623959C3D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9BF7C315-5D89-49A5-86E9-722623959C3D}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE => removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE => removed successfully
HKLM\System\CurrentControlSet\Services\aswbdisk => could not remove, key could be protected
"C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore" => not found
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\PortraitDisplaysContextMenu => removed successfully
"HKU\S-1-5-21-642364921-1089016685-4093869991-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233} => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233} => removed successfully

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 44893728 B
Java, Flash, Steam htmlcache => 592 B
Windows/system/drivers => 563673791 B
Edge => 0 B
Chrome => 132140 B
Firefox => 274127230 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 111271 B
systemprofile32 => 177627 B
LocalService => 243855 B
NetworkService => 310083 B
Nada => 66719428 B
UpdatusUser => 66719428 B

RecycleBin => 1407443522 B
EmptyTemp: => 2.3 GB temporary data Removed.

================================

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 24-10-2020 18:46:40)

Result of scheduled keys to remove after reboot:

HKLM\System\CurrentControlSet\Services\aswbdisk => could not remove, key could be protected

==== End of Fixlog 18:46:40 ====

#8 Příspěvek od **Rudy** » 24 říj 2020 18:58

OK. Vyčistíme prohlížeče. Spusťte postupně tyto utility:

1. Stahnete Zoek.exe http://download.bleepingcomputer.com/smeenk/zoek.exe a ulozte jej na plochu

Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
Do okna vlozte skript nize

autoclean;
resethosts;
emptyclsid;
IEdefaults;
FFdefaults;
CHRdefaults;
emptyIEcache;
emptyFFcache;
emptyCHRcache;
emptyalltemp;
emptyflash;
emptyjava;
emptyrecycle.bin;

Nasledne kliknete na Run Script
PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem.

a

2. Junkware removal tool: https://www.stahuj.cz/utility_a_ostatni ... oval-tool/
•Ulozte nejlepe na plochu
•Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
•Probehne vytvoreni zalohy a nasledne prohledavani
•Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte.

Petura · #9 Příspěvek od **Petura** » 25 říj 2020 17:45

Zoek.exe v5.0.0.2 Updated 03-May-2018(Online Version)
Tool run by Nada on ne 25.10.2020 at 11:30:03,68.
Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Nada\Desktop\zoek.exe [Scan all users] [Script inserted]

==== Older Logs ======================

C:\zoek-results2020-10-25-100102.log 7775 bytes

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

# localhost name resolution is handled within DNS itself.
127.0.0.1 localhost
::1 localhost

==== Empty Folders Check ======================

C:\Users\Nada\AppData\Roaming\TP deleted successfully
C:\Users\Nada\AppData\Local\GHISLER deleted successfully
C:\Users\Nada\AppData\Local\VirtualStore deleted successfully

==== Deleting CLSID Registry Keys ======================

==== Deleting CLSID Registry Values ======================

==== Deleting Services ======================

==== FireFox Fix ======================

Deleted from C:\Users\Nada\AppData\Roaming\Mozilla\Firefox\Profiles\b0ozq1ow.default\prefs.js:
user_pref("browser.startup.homepage", "www.seznam.cz");

Added to C:\Users\Nada\AppData\Roaming\Mozilla\Firefox\Profiles\b0ozq1ow.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

Deleted from C:\Users\Nada\AppData\Roaming\Thunderbird\Profiles\so1ci3qj.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

Added to C:\Users\Nada\AppData\Roaming\Thunderbird\Profiles\so1ci3qj.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

ProfilePath: C:\Users\Nada\AppData\Roaming\Mozilla\Firefox\Profiles\b0ozq1ow.default

user.js not found
---- Lines searchengine removed from prefs.js ----
user_pref("browser.pageActions.persistedActions", "{\"version\":1,\"ids\":[\"bookmark\",\"bookmarkSeparator\",\"copyURL\",\"emailLink\",\"sendToDevice
---- FireFox user.js and prefs.js backups ----

prefs_25.10.2020_1056_.backup
prefs_25.10.2020_1219_.backup

ProfilePath: C:\Users\Nada\AppData\Roaming\Thunderbird\Profiles\so1ci3qj.default

user.js not found
---- FireFox user.js and prefs.js backups ----

prefs_25.10.2020_1056_.backup
prefs_25.10.2020_1219_.backup

==== Deleting Files \ Folders ======================

C:\PROGRA~3\Avg_Update_0517tb_a02728 deleted
C:\Users\Nada\AppData\Local\cache deleted
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\AVAST Software deleted
C:\windows\SysNative\Tasks\Avast Secure Browser Heartbeat Task (Hourly) deleted
C:\windows\SysNative\Tasks\Avast Secure Browser Heartbeat Task (Logon) deleted
C:\windows\SysNative\Tasks\AvastUpdateTaskMachineCore deleted
C:\windows\SysNative\Tasks\AvastUpdateTaskMachineUA deleted
C:\Users\Nada\AppData\Roaming\Thunderbird\Profiles\so1ci3qj.default\extensions\staged deleted
"C:\Users\Nada\AppData\Local\AVAST Software\APM\Nada\kv_pam.db" not deleted
"C:\Users\Nada\AppData\Local\AVAST Software" not deleted
"C:\Users\Nada\AppData\Local\AVAST Software\APM" not deleted
"C:\Users\Nada\AppData\Local\AVAST Software\APM\Nada" not deleted

==== Orphaned Tasks deleted from Registry ======================

Avast Secure Browser Heartbeat Task (Hourly) deleted
Avast Secure Browser Heartbeat Task (Logon) deleted
AvastUpdateTaskMachineCore deleted
AvastUpdateTaskMachineUA deleted

==== Firefox Start and Search pages ======================

ProfilePath: C:\Users\Nada\AppData\Roaming\Mozilla\Firefox\Profiles\b0ozq1ow.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

ProfilePath: C:\Users\Nada\AppData\Roaming\Thunderbird\Profiles\so1ci3qj.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

==== Firefox Extensions ======================

ProfilePath: C:\Users\Nada\AppData\Roaming\Mozilla\Firefox\Profiles\b0ozq1ow.default
- AVG Web TuneUp - %ProfilePath%\extensions\avg@toolbar.xpi

==== Firefox Plugins ======================

==== Deleted Firefox Extensions ======================

C:\Users\Nada\AppData\Roaming\Mozilla\Firefox\Profiles\b0ozq1ow.default\extensions\avg@toolbar.xpi deleted

==== Chromium Look ======================

Google Chrome Version: 86.0.4240.111

Avast Online Security - Nada\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki
Chrome Media Router - Nada\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"

==== All HKLM and HKCU SearchScopes ======================

HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKCU\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms}
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTer ... ORM=IE8SRC

==== Reset Google Chrome ======================

Nothing found to reset

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\AVG Web TuneUp deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Nada\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

C:\Users\Nada\AppData\Local\Mozilla\Firefox\Profiles\b0ozq1ow.default\cache2 will be emptied at reboot

==== Empty Chrome Cache ======================

C:\Users\Nada\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
C:\Users\Nada\AppData\Local\Microsoft\Edge\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=798 folders=113 554845440 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Nada\AppData\Local\Temp will be emptied at reboot
C:\Users\UpdatusUser\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Nada\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\Nada\AppData\Local\AVAST Software\APM\Nada\kv_pam.db" not found
"C:\Users\Nada\AppData\Local\AVAST Software" not found
"C:\Users\Nada\AppData\Local\Mozilla\Firefox\Profiles\b0ozq1ow.default\cache2\entries" deleted

==== EOF on ne 25.10.2020 at 12:47:18,20 ======================

#10 Příspěvek od **Rudy** » 25 říj 2020 17:48

OK, něco bylo smazáno. Změnilo se něco nyní?

Petura · #11 Příspěvek od **Petura** » 25 říj 2020 17:53

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.4 (07.09.2017)
Operating System: Windows 7 Home Premium x64
Ran by Nada (Administrator) on ne 25.10.2020 at 17:47:20,09
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

File System: 8

Successfully deleted: C:\Users\Nada\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3GHH2HNU (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Nada\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\D954QWII (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Nada\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\GUGSJCHW (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Nada\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Q04D617E (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3GHH2HNU (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\D954QWII (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\GUGSJCHW (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Q04D617E (Temporary Internet Files Folder)

Registry: 0

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on ne 25.10.2020 at 17:52:31,34
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Petura · #12 Příspěvek od **Petura** » 25 říj 2020 17:54

Vypadá to že je to o něco lepší. Ještě dám vedět.

#13 Příspěvek od **Rudy** » 25 říj 2020 18:49

OK, nechám to tu otevřené.

VIRY.CZ

Pomalé PC

Pomalé PC

Re: Pomalé PC

Re: Pomalé PC

Re: Pomalé PC

Re: Pomalé PC

Re: Pomalé PC

Re: Pomalé PC

Re: Pomalé PC

Re: Pomalé PC

Re: Pomalé PC

Re: Pomalé PC

Re: Pomalé PC

Re: Pomalé PC