Dobrý den všem, mám velmi zpomalený počítač, dnes při aktualizaci hry v polovině aktualizace přestane pracovat a sekne se, prosím mohl by někdo zkontrolovat log? Moc děkuji, Michal
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 20-10-2021
Ran by Michal (administrator) on MICHAL-PC (Acer Aspire M5811) (28-10-2021 10:52:43)
Running from C:\Users\Michal\Desktop
Loaded Profiles: Michal
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Default browser: Opera
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Acer Incorporated -> ) C:\OEM\USBDECTION\USBS3S4Detection.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <4>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(Node.js Foundation -> Node.js) C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(Opera Software AS -> Opera Software) C:\Program Files\Opera\80.0.4170.63\opera_crashreporter.exe
(Opera Software AS -> Opera Software) C:\Program Files\Opera\opera.exe <12>
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [134936 2021-10-25] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [8312352 2009-10-28] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-717758605-1106027559-3896876889-1000\...\Run: [CCXProcess] => C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [648328 2020-04-13] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-717758605-1106027559-3896876889-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-717758605-1106027559-3896876889-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35116160 2021-10-19] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-717758605-1106027559-3896876889-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {00D38C0A-DB75-43F9-93C2-285861907C68} - System32\Tasks\{58B8170D-FFFD-4CB1-B8A5-0234830FA395} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\McAfee\MSC\mcuninst.exe"
Task: {0D7ACE16-A882-486F-B374-81A2240807BC} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_465_pepper.exe [1499704 2020-12-09] (Adobe Inc. -> Adobe)
Task: {1404E4C4-D138-43B2-AF5D-5538A7FAE473} - System32\Tasks\{558938E5-1C74-4956-AD82-1BF109320A1A} => C:\Windows\system32\pcalua.exe -a D:\Downloads\funhouse.exe -d D:\Downloads
Task: {1D8B66DA-F02E-47DB-B089-F35729C1C852} - System32\Tasks\CCleanerSkipUAC - Michal => C:\Program Files\CCleaner\CCleaner.exe [29200512 2021-10-19] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {261796E6-D0D6-473D-B3F4-B221CC02B931} - System32\Tasks\{975148D1-6E39-44E4-9D89-2949ECB1FEFB} => C:\Windows\system32\pcalua.exe -a D:\Downloads\SetupWordToPDF.exe -d D:\Downloads
Task: {268513CA-CA15-4053-9160-1037DDB57B9D} - System32\Tasks\{8275FF53-43CE-420F-866F-2CF349A7E937} => C:\Windows\system32\pcalua.exe -a C:\Users\Michal\Desktop\GTA_5_CZ_Instalator.exe -d C:\Users\Michal\Desktop
Task: {27B9574C-BAC5-4DE5-87AC-E53400E18DDF} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {39EB975D-E105-474B-A31E-82987A91CA5F} - System32\Tasks\Opera scheduled Autoupdate 1496341338 => C:\Program Files\Opera\launcher.exe [46227664 2021-10-20] (Opera Software AS -> Opera Software)
Task: {3C4D575C-8C0A-4828-8864-99289641CE58} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-717758605-1106027559-3896876889-1000UA => C:\Users\Michal\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {491970B5-7A8F-400E-A1AF-55556AB5F160} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3325520 2020-05-05] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {62A67AE6-F0A0-4D55-963F-FB96302583B4} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4929304 2021-10-25] (Avast Software s.r.o. -> AVAST Software)
Task: {7B8C47C0-6840-4360-BAD9-3D4467F9A8EE} - System32\Tasks\Opera scheduled Autoupdate 1492376809 => C:\Program Files\Opera\launcher.exe [46227664 2021-10-20] (Opera Software AS -> Opera Software)
Task: {84A3CAB1-23B4-4422-A126-13319F9288A9} - System32\Tasks\{B157664F-963A-4AF1-B708-43B67AD93B11} => C:\Windows\system32\pcalua.exe -a C:\Users\Michal\Downloads\TeamSpeak3-cestina-0.1.-beta2.exe -d C:\Users\Michal\Downloads
Task: {858881D4-BC02-4556-8300-886E91482C5B} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1790184 2021-10-25] (Avast Software s.r.o. -> Avast Software)
Task: {89DF3408-E958-4695-9E4B-D5DC0118C180} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [29200512 2021-10-19] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {90F1844E-E3FD-40EB-A404-8B21D7871E62} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-717758605-1106027559-3896876889-1000Core => C:\Users\Michal\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {A9135EBE-DF3C-4CE8-ADE2-313FD3F57237} - System32\Tasks\Opera scheduled assistant Autoupdate 1582738583 => C:\Program Files\Opera\launcher.exe [46227664 2021-10-20] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Program Files\Opera\assistant" $(Arg0)
Task: {BA6F97BD-B2C2-47CA-B71E-454AFE219501} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-09] (Adobe Inc. -> Adobe)
Task: {C765A067-4D35-4B98-B97C-E724C00AB628} - System32\Tasks\Adobe Uninstaller => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2623032 2019-07-05] (Adobe Inc. -> Adobe Inc.)
Task: {CDF010E9-11B4-4858-A300-D3F6B7A66CEF} - System32\Tasks\{D06F5F84-8F55-4E45-A26F-565ED24D069E} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\THQ\S.T.A.L.K.E.R. - Shadow of Chernobyl\setup-bp.exe" -d "C:\Program Files (x86)\THQ\S.T.A.L.K.E.R. - Shadow of Chernobyl"
Task: {EBC7EAFA-BA42-45C0-8F32-D25A9E9D430F} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-10-19] (Piriform Software Ltd -> Piriform)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{1311EEBF-3D32-4CC0-AFB4-F75D58CB1316}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{4E05B988-A467-4A3C-A54A-EB389AEACD2E}: [DhcpNameServer] 88.83.169.2 195.113.144.194
FireFox:
========
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2019-07-05] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: @graphisoft.com/GDL Web Plug-in -> C:\Program Files (x86)\GRAPHISOFT\GDLWebControl\npGDLMozilla.dll [No File]
FF Plugin-x32: @java.com/DTPlugin,version=11.211.2 -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\dtplugin\npDeployJava1.dll [2019-04-22] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.211.2 -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\plugin2\npjp2.dll [2019-04-22] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8081.0709 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2009-07-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-03-24] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-03-24] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2019-07-05] (Adobe Inc. -> Adobe Systems)
Opera:
=======
OPR Profile: C:\Users\Michal\AppData\Roaming\Opera Software\Opera Stable [2021-10-28]
OPR DefaultSuggestURL: Opera Stable -> hxxps//www.google.com/complete/search?client=o ... utEncoding}
OPR Extension: (AdBlocker for YouTube™) - C:\Users\Michal\AppData\Roaming\Opera Software\Opera Stable\Extensions\cgdogbijachehheddakopmfjahhgmmma [2020-02-12]
OPR Extension: (Rich Hints Agent) - C:\Users\Michal\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2021-10-25]
OPR Extension: (Amazon Assistant Promotion) - C:\Users\Michal\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2021-10-25]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-09] (Adobe Inc. -> Adobe)
S4 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [816184 2019-07-05] (Adobe Inc. -> Adobe Inc.)
S4 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3673680 2020-05-05] (Adobe Inc. -> Adobe Systems, Incorporated)
S4 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3406416 2020-05-05] (Adobe Inc. -> Adobe Systems, Incorporated)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8323664 2021-10-25] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [630040 2021-10-25] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [377624 2021-10-25] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-10-25] (Avast Software s.r.o. -> AVAST Software)
R2 USBS3S4Detection; C:\OEM\USBDECTION\USBS3S4Detection.exe [76320 2009-12-09] (Acer Incorporated -> )
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugin"
S2 Updater Service; C:\Program Files\Acer\Acer Updater\UpdaterService.exe [X]
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [35720 2021-10-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [221600 2021-10-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [369176 2021-10-25] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [250408 2021-10-25] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [99368 2021-10-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [41368 2021-10-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [184640 2021-10-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [538480 2021-10-25] (Avast Software s.r.o. -> AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [38152 2020-04-20] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [107864 2021-10-25] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [82912 2021-10-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [851712 2021-10-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [557152 2021-10-25] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [215392 2021-10-25] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [328568 2021-10-25] (Avast Software s.r.o. -> AVAST Software)
S3 atikmdag; C:\Windows\system32\drivers\atikmdag.sys [5020672 2009-07-13] (Microsoft Windows -> ATI Technologies Inc.)
S3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2018-02-01] (Disc Soft Ltd -> Disc Soft Ltd)
S3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2018-02-01] (Disc Soft Ltd -> Disc Soft Ltd)
S3 MTRACK2X2M; C:\Windows\System32\DRIVERS\MAudioMTrack2X2M.sys [245336 2018-06-08] (INMUSIC BRANDS INC -> M-Audio)
S4 secdrv; C:\Windows\SysWow64\Drivers\secdrv.sys [163644 2017-06-09] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [File not signed]
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S4 nvvad_WaveExtensible; system32\drivers\nvvad64v.sys [X]
S4 nvvhci; system32\DRIVERS\nvvhci.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-10-28 10:52 - 2021-10-28 10:53 - 000015762 _____ C:\Users\Michal\Desktop\FRST.txt
2021-10-28 10:47 - 2021-10-28 10:47 - 002249472 _____ (Acer Inc.) C:\Users\Michal\Downloads\HWVendorDetection.exe
2021-10-28 10:45 - 2021-10-28 10:45 - 000096096 _____ C:\Users\Michal\Downloads\SerialNumberDetectionTool.exe
2021-10-28 10:22 - 2021-10-28 10:22 - 008553680 _____ (Malwarebytes) C:\Users\Michal\Downloads\adwcleaner_8.3.0.exe
2021-10-28 10:05 - 2021-10-28 10:53 - 000000000 ____D C:\FRST
2021-10-28 10:00 - 2014-02-13 23:59 - 000024064 _____ C:\Windows\zoek-delete.exe
2021-10-28 09:54 - 2021-10-28 09:54 - 000000000 ____D C:\zoek_backup
2021-10-28 09:48 - 2021-10-28 09:50 - 000000000 ____D C:\AdwCleaner
2021-10-28 09:48 - 2021-10-28 09:48 - 008553680 _____ (Malwarebytes) C:\Users\Michal\Desktop\adwcleaner_8.3.0.exe
2021-10-28 01:20 - 2021-10-28 01:20 - 000002812 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC - Michal
2021-10-27 22:53 - 2021-10-27 22:53 - 000000000 ___HD C:\Users\Public\Documents\AdobeGC
2021-10-25 18:48 - 2021-10-25 18:48 - 000000864 _____ C:\Users\Michal\Desktop\Aslains WoT Logs Archiver.lnk
2021-10-25 09:50 - 2021-10-25 09:50 - 000001620 _____ C:\Users\Michal\Desktop\World of Tanks EU.lnk
2021-10-25 09:49 - 2021-10-25 09:50 - 000000000 ____D C:\Users\Michal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wargaming.net
2021-10-25 09:49 - 2021-10-25 09:49 - 000001851 _____ C:\Users\Michal\Desktop\Game Center.lnk
2021-10-25 09:40 - 2021-10-25 09:39 - 000340248 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2021-10-25 09:40 - 2021-10-25 09:39 - 000215392 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2021-10-25 08:06 - 2021-10-28 01:31 - 000003204 _____ C:\Windows\system32\Tasks\Adobe Uninstaller
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-10-28 10:47 - 2016-04-05 07:24 - 000668542 _____ C:\Windows\system32\perfh005.dat
2021-10-28 10:47 - 2016-04-05 07:24 - 000141202 _____ C:\Windows\system32\perfc005.dat
2021-10-28 10:47 - 2009-07-14 07:13 - 001583226 _____ C:\Windows\system32\PerfStringBackup.INI
2021-10-28 10:47 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2021-10-28 10:44 - 2016-04-05 23:02 - 000000000 ____D C:\Program Files\CCleaner
2021-10-28 10:41 - 2016-04-04 21:40 - 000000000 ____D C:\ProgramData\NVIDIA
2021-10-28 10:41 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-10-28 10:15 - 2009-07-14 06:45 - 000022256 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2021-10-28 10:15 - 2009-07-14 06:45 - 000022256 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2021-10-28 10:06 - 2019-07-18 20:41 - 002310656 _____ (Farbar) C:\Users\Michal\Desktop\FRST64.exe
2021-10-28 10:03 - 2016-04-04 22:33 - 000000000 ____D C:\ProgramData\AVAST Software
2021-10-28 09:50 - 2009-11-18 23:54 - 000000000 ____D C:\Program Files\Acer
2021-10-28 08:54 - 2016-04-04 21:42 - 000116328 _____ C:\Users\Michal\AppData\Local\GDIPFONTCACHEV1.DAT
2021-10-28 08:43 - 2017-03-18 17:45 - 000004168 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2021-10-28 01:47 - 2020-04-27 11:46 - 000000000 ____D C:\Program Files\Adobe
2021-10-28 01:47 - 2009-11-19 00:07 - 000000000 ____D C:\Program Files (x86)\Adobe
2021-10-28 01:42 - 2009-07-14 06:45 - 000442744 _____ C:\Windows\system32\FNTCACHE.DAT
2021-10-28 01:31 - 2016-04-06 17:33 - 000000000 ____D C:\Users\Michal\AppData\Local\Adobe
2021-10-28 01:31 - 2009-11-19 00:07 - 000000000 ____D C:\ProgramData\Adobe
2021-10-28 01:20 - 2018-04-24 16:10 - 000003870 _____ C:\Windows\system32\Tasks\CCleaner Update
2021-10-25 11:36 - 2016-04-04 23:09 - 000000000 ____D C:\Windows\system32\MRT
2021-10-25 11:33 - 2016-04-04 23:09 - 139806512 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2021-10-25 10:17 - 2019-12-18 16:46 - 000000000 ____D C:\Users\Michal\AppData\Local\AVAST Software
2021-10-25 09:59 - 2020-04-27 11:45 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2021-10-25 09:50 - 2019-11-14 22:13 - 000000000 ____D C:\Games
2021-10-25 09:50 - 2016-04-10 21:05 - 000000000 ____D C:\Users\Michal\AppData\Roaming\Wargaming.net
2021-10-25 09:44 - 2017-04-16 23:06 - 000000000 ____D C:\Program Files\Opera
2021-10-25 09:41 - 2020-09-09 15:49 - 000004028 _____ C:\Windows\system32\Tasks\Opera scheduled assistant Autoupdate 1582738583
2021-10-25 09:41 - 2017-06-01 20:22 - 000003836 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1496341338
2021-10-25 09:40 - 2020-11-01 20:15 - 000184640 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2021-10-25 09:39 - 2020-04-20 15:34 - 000538480 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2021-10-25 09:39 - 2019-01-17 18:07 - 000369176 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2021-10-25 09:39 - 2019-01-16 16:20 - 000250408 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2021-10-25 09:39 - 2019-01-16 16:20 - 000099368 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2021-10-25 09:39 - 2019-01-16 16:20 - 000035720 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys
2021-10-25 09:39 - 2018-10-22 20:06 - 000041368 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2021-10-25 09:39 - 2017-11-17 00:48 - 000221600 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2021-10-25 09:39 - 2016-04-04 22:34 - 000851712 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2021-10-25 09:39 - 2016-04-04 22:34 - 000557152 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2021-10-25 09:39 - 2016-04-04 22:34 - 000328568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2021-10-25 09:39 - 2016-04-04 22:34 - 000107864 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2021-10-25 09:39 - 2016-04-04 22:34 - 000082912 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2021-10-25 08:04 - 2017-03-02 21:24 - 000000000 ____D C:\Windows\Minidump
2021-10-24 19:43 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\system32\NDF
==================== Files in the root of some directories ========
2016-10-25 18:55 - 2016-10-25 18:55 - 000000100 _____ () C:\Users\Michal\AppData\Roaming\wklnhst.dat
2021-10-28 10:48 - 2021-10-28 10:48 - 000007298 _____ () C:\Users\Michal\AppData\Local\HWVendorDetection.log
2020-04-27 11:42 - 2020-04-27 11:42 - 000000410 _____ () C:\Users\Michal\AppData\Local\oobelibMkey.log
2016-04-04 23:46 - 2017-04-26 15:58 - 000007605 _____ () C:\Users\Michal\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
LastRegBack: 2020-12-30 15:06
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 20-10-2021
Ran by Michal (28-10-2021 10:53:51)
Running from C:\Users\Michal\Desktop
Microsoft Windows 7 Home Premium Service Pack 1 (X64) (2016-04-04 19:41:51)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-717758605-1106027559-3896876889-500 - Administrator - Disabled)
Guest (S-1-5-21-717758605-1106027559-3896876889-501 - Limited - Disabled)
Michal (S-1-5-21-717758605-1106027559-3896876889-1000 - Administrator - Enabled) => C:\Users\Michal
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {5078598A-1FA2-C888-AA5F-A9C66537DB12}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Acer eRecovery Management (HKLM-x32\...\{7F811A54-5A09-4579-90E1-C93498E230D9}) (Version: 4.05.3005 - Acer Incorporated)
Acer ScreenSaver (HKLM-x32\...\Acer Screensaver) (Version: 1.1.0812 - Acer Incorporated)
Acrobat.com (HKLM-x32\...\{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated)
Adblock Plus for IE (32-bit and 64-bit) (HKLM\...\{36381D51-CC5E-4698-A0CC-E939C75EC9D8}) (Version: 1.5 - Eyeo GmbH)
Adobe Flash Player 10 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 10.0.32.18 - Adobe Systems Incorporated)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.465 - Adobe)
Advertising Center (HKLM-x32\...\{b2ec4a38-b545-4a00-8214-13fe0e915e6d}) (Version: 0.0.0.2 - Nero AG) Hidden
Aslain's WoT Modpack verze 1.14.1.0.11 (HKLM-x32\...\Aslains_WoT_Modpack_Installer_is1) (Version: 1.14.1.0.11 - Aslain)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 21.8.2487 - Avast Software)
CCleaner (HKLM\...\CCleaner) (Version: 5.86 - Piriform)
Freemake Video Converter verze 4.1.9 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.9 - Ellora Assets Corporation)
Java 8 Update 211 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180211F0}) (Version: 8.0.2110.12 - Oracle Corporation)
JMicron JMB36X Driver (HKLM-x32\...\{3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}) (Version: 1.00.0000 - JMicron Technology Corp.)
Microsoft .NET Framework 4.8 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (HKLM-x32\...\{6e8f74e0-43bd-4dce-8477-6ff6828acc07}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM-x32\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.10.25008 (HKLM-x32\...\{f1e7e313-06df-4c56-96a9-99fdfd149c51}) (Version: 14.10.25008.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.15.26706 (HKLM-x32\...\{95ac1cfa-f4fb-4d1b-8912-7f9d5fbb140d}) (Version: 14.15.26706.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.10.25008 (HKLM-x32\...\{c239cea1-d49e-4e16-8e87-8c055765f7ec}) (Version: 14.10.25008.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.15.26706 (HKLM-x32\...\{7e9fae12-5bbf-47fb-b944-09c49e75c061}) (Version: 14.15.26706.0 - Microsoft Corporation)
Microsoft Works (HKLM-x32\...\{99D7DE4C-2775-4B16-B155-7F09AE939E8E}) (Version: 9.7.0621 - Microsoft Corporation)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Nero 9 Essentials (HKLM-x32\...\{965ef942-36c2-4f92-b60f-c75cd1dcde2f}) (Version: - Nero AG)
NVIDIA Ovladač 3D Vision 391.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 391.35 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.36.6 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.36.6 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 391.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 391.35 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.17.0329 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0329 - NVIDIA Corporation)
Opera Stable 45.0.2552.888 (HKLM-x32\...\Opera 45.0.2552.888) (Version: 45.0.2552.888 - Opera Software)
Opera Stable 49.0.2725.64 (HKLM-x32\...\Opera 49.0.2725.64) (Version: 49.0.2725.64 - Opera Software)
Opera Stable 51.0.2830.55 (HKLM-x32\...\Opera 51.0.2830.55) (Version: 51.0.2830.55 - Opera Software)
Opera Stable 80.0.4170.63 (HKLM-x32\...\Opera 80.0.4170.63) (Version: 80.0.4170.63 - Opera Software)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5969 - Realtek Semiconductor Corp.)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.52a - Ghisler Software GmbH)
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
Wargaming.net Game Center (HKU\S-1-5-21-717758605-1106027559-3896876889-1000\...\Wargaming.net Game Center) (Version: 21.7.0.6827 - Wargaming.net)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite_Wave3) (Version: 14.0.8089.0726 - Microsoft Corporation)
WinRAR 5.70 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)
World of Tanks EU (HKU\S-1-5-21-717758605-1106027559-3896876889-1000\...\WOT.EU.PRODUCTION) (Version: - Wargaming.net)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-717758605-1106027559-3896876889-1000_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-01-07] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-01-07] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-01-07] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-10-25] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-10-25] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-01-07] (Adobe Inc. -> )
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-10-25] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-10-25] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-01-07] (Adobe Inc. -> )
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-10-25] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\system32\frapsv64.dll [71680 2013-02-26] (Beepa P/L) [File not signed]
HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\SysWOW64\frapsvid.dll [65536 2013-02-26] (Beepa P/L) [File not signed]
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
Shortcut: C:\Users\Michal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Intеrnet Explоrer (No Add-ons).lnk -> C:\Users\Michal\AppData\Roaming\Browsers\exe.erolpxei.bat (No File) <==== Cyrillic
Shortcut: C:\Users\Michal\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Lаunch Intеrnet Eхplоrеr Browser.lnk -> C:\Users\Michal\AppData\Roaming\Browsers\exe.erolpxei.bat (No File) <==== Cyrillic
Shortcut: C:\Users\Michal\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Оpеrа (2).lnk -> C:\Users\Michal\AppData\Roaming\Browsers\exe.rehcnual.bat (No File) <==== Cyrillic
Shortcut: C:\Users\Michal\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Оpеrа.lnk -> C:\Users\Michal\AppData\Roaming\Browsers\exe.rehcnual.bat (No File) <==== Cyrillic
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Аvast SаfeZоne Вrowser.lnk -> C:\Users\Michal\AppData\Roaming\Browsers\exe.rehcnual.bat (No File) <==== Cyrillic
==================== Loaded Modules (Whitelisted) =============
2020-07-26 18:47 - 2020-07-26 18:47 - 000000000 ____L (Microsoft Corporation) [simlink -> c:\program files\avast software\avast\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2021-10-28 08:42 - 2021-10-28 08:42 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll] C:\Program Files\AVAST Software\Avast\defs\21102800\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2020-07-26 18:47 - 2020-07-26 18:47 - 000000000 ____L (Microsoft Corporation) [simlink -> c:\program files\avast software\avast\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2021-10-28 08:42 - 2021-10-28 08:42 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\21102800\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2020-07-26 18:47 - 2020-07-26 18:47 - 000000000 ____L (Microsoft Corporation) [simlink -> c:\program files\avast software\avast\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2021-10-28 08:42 - 2021-10-28 08:42 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll] C:\Program Files\AVAST Software\Avast\defs\21102800\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2020-07-26 18:47 - 2020-07-26 18:47 - 000000000 ____L (Microsoft Corporation) [simlink -> c:\program files\avast software\avast\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2021-10-28 08:42 - 2021-10-28 08:42 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll] C:\Program Files\AVAST Software\Avast\defs\21102800\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2020-07-26 18:47 - 2020-07-26 18:47 - 000000000 ____L (Microsoft Corporation) [simlink -> c:\program files\avast software\avast\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2021-10-28 08:42 - 2021-10-28 08:42 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll] C:\Program Files\AVAST Software\Avast\defs\21102800\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2020-07-26 18:47 - 2020-07-26 18:47 - 000000000 ____L (Microsoft Corporation) [simlink -> c:\program files\avast software\avast\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2021-10-28 08:42 - 2021-10-28 08:42 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\21102800\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2020-07-26 18:47 - 2020-07-26 18:47 - 000000000 ____L (Microsoft Corporation) [simlink -> c:\program files\avast software\avast\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2021-10-28 08:42 - 2021-10-28 08:42 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\21102800\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2021-10-28 08:42 - 2021-10-28 08:42 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-environment-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\21102800\avast.local_vc142.crt\api-ms-win-crt-environment-l1-1-0.dll
2021-10-28 08:42 - 2021-10-28 08:42 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-filesystem-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\21102800\avast.local_vc142.crt\api-ms-win-crt-filesystem-l1-1-0.dll
2020-07-26 18:47 - 2020-07-26 18:47 - 000000000 ____L (Microsoft Corporation) [simlink -> c:\program files\avast software\avast\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2021-10-28 08:42 - 2021-10-28 08:42 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\21102800\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2021-10-28 08:42 - 2021-10-28 08:42 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-locale-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\21102800\avast.local_vc142.crt\api-ms-win-crt-locale-l1-1-0.dll
2021-10-28 08:42 - 2021-10-28 08:42 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-math-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\21102800\avast.local_vc142.crt\api-ms-win-crt-math-l1-1-0.dll
2021-10-28 08:42 - 2021-10-28 08:42 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-multibyte-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\21102800\avast.local_vc142.crt\api-ms-win-crt-multibyte-l1-1-0.dll
2020-07-26 18:47 - 2020-07-26 18:47 - 000000000 ____L (Microsoft Corporation) [simlink -> c:\program files\avast software\avast\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2021-10-28 08:42 - 2021-10-28 08:42 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\21102800\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2020-07-26 18:47 - 2020-07-26 18:47 - 000000000 ____L (Microsoft Corporation) [simlink -> c:\program files\avast software\avast\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2021-10-28 08:42 - 2021-10-28 08:42 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\21102800\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2020-07-26 18:47 - 2020-07-26 18:47 - 000000000 ____L (Microsoft Corporation) [simlink -> c:\program files\avast software\avast\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2021-10-28 08:42 - 2021-10-28 08:42 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\21102800\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2021-10-28 08:42 - 2021-10-28 08:42 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-time-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\21102800\avast.local_vc142.crt\api-ms-win-crt-time-l1-1-0.dll
2021-10-28 08:42 - 2021-10-28 08:42 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-utility-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\21102800\avast.local_vc142.crt\api-ms-win-crt-utility-l1-1-0.dll
2021-10-28 08:42 - 2021-10-28 08:42 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\msvcp140.dll] C:\Program Files\AVAST Software\Avast\defs\21102800\avast.local_vc142.crt\MSVCP140.dll
2020-07-26 18:47 - 2020-07-26 18:47 - 000000000 ____L (Microsoft Corporation) [simlink -> c:\program files\avast software\avast\avast.local_vc142.crt\ucrtbase.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\ucrtbase.DLL
2021-10-28 08:42 - 2021-10-28 08:42 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\ucrtbase.dll] C:\Program Files\AVAST Software\Avast\defs\21102800\avast.local_vc142.crt\ucrtbase.DLL
2020-07-26 18:47 - 2020-07-26 18:47 - 000000000 ____L (Microsoft Corporation) [simlink -> c:\program files\avast software\avast\avast.local_vc142.crt\vcruntime140.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\VCRUNTIME140.dll
2021-10-28 08:42 - 2021-10-28 08:42 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\vcruntime140.dll] C:\Program Files\AVAST Software\Avast\defs\21102800\avast.local_vc142.crt\VCRUNTIME140.dll
2021-10-28 08:42 - 2021-10-28 08:42 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\vcruntime140_1.dll] C:\Program Files\AVAST Software\Avast\defs\21102800\avast.local_vc142.crt\VCRUNTIME140_1.dll
2019-12-18 16:58 - 2018-03-24 01:05 - 000343728 _____ (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed] C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem\NvStereo\_nvstapisvr64.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MpfService => ""="Service"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Version 11) (Whitelisted) ==========
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp//go.microsoft.com/fwlink/p/?LinkId=255141
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp//go.microsoft.com/fwlink/p/?LinkId=255141
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp//go.microsoft.com/fwlink/?LinkId=69157
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp//go.microsoft.com/fwlink/p/?LinkId=255141
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp//go.microsoft.com/fwlink/?LinkId=54896
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp//go.microsoft.com/fwlink/?LinkId=54896
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp//www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp//www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-717758605-1106027559-3896876889-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps//www.seznam.cz/#
HKU\S-1-5-21-717758605-1106027559-3896876889-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp//www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKLM -> DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp//www.google.com/search?q={searchTerms}&r ... urceid=ie7
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&FORM=IE8SRC
SearchScopes: HKLM -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp//www.google.com/search?q={searchTerms}&r ... urceid=ie7
SearchScopes: HKLM-x32 -> DefaultScope {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp//www.google.com/search?sourceid=ie7&q={s ... lz=1I7ACAW
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&FORM=IE8SRC
SearchScopes: HKLM-x32 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp//www.google.com/search?sourceid=ie7&q={s ... lz=1I7ACAW
SearchScopes: HKLM-x32 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp//www.google.com/search?q={searchTerms}&r ... urceid=ie7
SearchScopes: HKU\S-1-5-21-717758605-1106027559-3896876889-1000 -> DefaultScope {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp//www.google.com/search?sourceid=ie7&q={s ... AW_csCZ687
SearchScopes: HKU\S-1-5-21-717758605-1106027559-3896876889-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp//www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-717758605-1106027559-3896876889-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&src ... ORM=IESR02
SearchScopes: HKU\S-1-5-21-717758605-1106027559-3896876889-1000 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp//www.google.com/search?sourceid=ie7&q={s ... AW_csCZ687
SearchScopes: HKU\S-1-5-21-717758605-1106027559-3896876889-1000 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp//www.google.com/search?q={searchTerms}&r ... urceid=ie7
SearchScopes: HKU\S-1-5-21-717758605-1106027559-3896876889-1000 -> {A11D0B67-762F-4FA4-8FCE-2C8B249D7634} URL = hxxp//tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_29530
BHO: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2015-09-22] (Eyeo GmbH -> Eyeo GmbH)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\ssv.dll [2019-04-22] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\jp2ssv.dll [2019-04-22] (Oracle America, Inc. -> Oracle Corporation)
DPF: HKLM-x32 {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp//java.sun.com/update/1.8.0/jinstall-1_8_0_121-windows-i586.cab
DPF: HKLM-x32 {CAFEEFAC-0018-0000-00121-ABCDEFFEDCBA} hxxp//java.sun.com/update/1.8.0/jinstall-1_8_0_121-windows-i586.cab
DPF: HKLM-x32 {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp//java.sun.com/update/1.8.0/jinstall-1_8_0_121-windows-i586.cab
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\S-1-5-21-717758605-1106027559-3896876889-1000\...\ibcsob24.cz -> hxxps://www.ibcsob24.cz
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 04:34 - 2019-07-23 20:08 - 000000035 _____ C:\Windows\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\system32\wbem;C:\Windows\System32\WindowsPowerShell\v1.0;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common
HKU\S-1-5-21-717758605-1106027559-3896876889-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Michal\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: AdobeUpdateService => 2
MSCONFIG\Services: AGMService => 2
MSCONFIG\Services: AGSService => 2
MSCONFIG\startupreg: Acrobat Assistant 8.0 => "C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe"
MSCONFIG\startupreg: Adobe Acrobat Synchronizer => "C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe"
MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: AdobeGCInvoker-1.0 => "C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe"
MSCONFIG\startupreg: ShadowPlay => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: Wargaming.net Game Center => "C:\ProgramData\Wargaming.net\GameCenter\wgc.exe" --background
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [TCP Query User{5D2E3A8E-943F-405C-A701-62F0C53FA29E}C:\totalcmd\totalcmd64.exe] => (Allow) C:\totalcmd\totalcmd64.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [UDP Query User{FB8C0A67-D787-46A2-9153-0087A2656F52}C:\totalcmd\totalcmd64.exe] => (Allow) C:\totalcmd\totalcmd64.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [{A985B7C2-361A-4537-B723-E081826C8020}] => (Allow) C:\Windows\system32\rundll32.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{BFD46346-7FBE-484E-8075-31BC1449E921}] => (Allow) C:\Windows\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{B29F98D5-92C5-49DE-B642-3B7CEDF974A3}] => (Allow) C:\Windows\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{2BE83862-DDAE-4B8A-9EE9-3DC792EBBBB7}] => (Allow) C:\Windows\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{E1BB9E0F-DF79-401F-A5EB-C2179A771BBB}] => (Allow) C:\Windows\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{594A58ED-4E53-4080-944C-A00B481756B6}] => (Allow) C:\Program Files\Opera\49.0.2725.47\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{B1BCBFEE-4D30-41C5-B468-AA69E57CF6CF}] => (Allow) C:\Program Files\Opera\51.0.2830.40\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{D228C7EC-0E4D-4342-B074-6A03D205B199}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform)
FirewallRules: [{F2E3C43A-5EC9-41E6-A902-477372C48B41}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform)
FirewallRules: [{E133C5C7-E2BA-4885-9BAB-3CAC1BDFB073}] => (Allow) C:\Program Files\Opera\73.0.3856.284\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{017A4434-B217-4545-82C1-64D1F495248C}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{EE315501-4B1E-497A-BEB7-51774CF82127}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{4A624CF8-A722-4DFD-9778-E7D83317FE45}] => (Allow) C:\Program Files\Opera\80.0.4170.63\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [TCP Query User{9B452A3E-4D72-4CF8-B67A-B80408A24A64}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{C329EABA-938D-40A7-9219-4CC51EFC065B}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [TCP Query User{51675980-8A2C-4A7E-A16F-A4F0FA4CEDC4}C:\games\world_of_tanks_eu\win64\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\win64\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{690C4D24-31A6-423F-9E0B-FF2FF96AC00D}C:\games\world_of_tanks_eu\win64\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\win64\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
==================== Restore Points =========================
25-10-2021 11:33:14 Windows Update
28-10-2021 01:26:01 Removed Adobe Acrobat DC.
28-10-2021 01:30:53 Removed Adobe Reader 9.1 MUI.
28-10-2021 01:33:30 Removed M-Audio M-Track 2X2M 1.0.14
28-10-2021 09:50:19 AdwCleaner_BeforeCleaning_28/10/2021_09:50:15
28-10-2021 09:51:45 JRT Pre-Junkware Removal
28-10-2021 09:57:10 zoek.exe restore point
==================== Faulty Device Manager Devices ============
Name: Standardní klávesnice PS/2
Description: Standardní klávesnice PS/2
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standardní klávesnice)
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
Name: Myš Microsoft pro port PS/2
Description: Myš Microsoft pro port PS/2
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
==================== Event log errors: ========================
Application errors:
==================
Error: (10/28/2021 01:18:02 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program WINWORD.EXE verze 12.0.4518.1014 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.
ID procesu: 1614
Čas spuštění: 01d7cb88ccdad762
Čas ukončení: 0
Cesta k aplikaci: C:\Program Files (x86)\Microsoft Office\Office12\WINWORD.EXE
ID hlášení: 1fef01fa-377c-11ec-920c-90fba6473217
Error: (10/25/2021 10:27:28 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program CCleaner64.exe verze 5.70.0.7909 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.
ID procesu: 1558
Čas spuštění: 01d7c9790ff4f1cb
Čas ukončení: 553
Cesta k aplikaci: C:\Program Files\CCleaner\CCleaner64.exe
ID hlášení: 5a653213-356d-11ec-8e65-90fba6473217
Error: (08/29/2020 04:34:42 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: TrustedInstaller.exe, verze: 6.1.7601.17514, časové razítko: 0x4ce7989b
Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.24545, časové razítko: 0x5e0eb67f
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000002d3ec
ID chybujícího procesu: 0xb0c
Čas spuštění chybující aplikace: 0x01d67e117da9f287
Cesta k chybující aplikaci: C:\Windows\servicing\TrustedInstaller.exe
Cesta k chybujícímu modulu: C:\Windows\SYSTEM32\ntdll.dll
ID zprávy: c65d9d6c-ea04-11ea-823c-90fba6473217
Error: (08/24/2020 07:28:33 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: TrustedInstaller.exe, verze: 6.1.7601.17514, časové razítko: 0x4ce7989b
Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.24545, časové razítko: 0x5e0eb67f
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000002a365
ID chybujícího procesu: 0x12c4
Čas spuštění chybující aplikace: 0x01d67a3beee06f8a
Cesta k chybující aplikaci: C:\Windows\servicing\TrustedInstaller.exe
Cesta k chybujícímu modulu: C:\Windows\SYSTEM32\ntdll.dll
ID zprávy: 3b5364fd-e62f-11ea-8268-90fba6473217
Error: (08/23/2020 06:23:28 PM) (Source: Windows Search Service) (EventID: 7010) (User: )
Description: Index nebyl inicializován.
Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)
Error: (08/23/2020 06:23:28 PM) (Source: Windows Search Service) (EventID: 3058) (User: )
Description: Aplikace nebyla inicializována.
Kontext: aplikace Windows
Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)
Error: (08/23/2020 06:23:28 PM) (Source: Windows Search Service) (EventID: 3028) (User: )
Description: Objekt indexování nebyl inicializován.
Kontext: aplikace Windows, katalog SystemIndex
Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)
Error: (08/23/2020 06:23:28 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Modul plug-in v <Search.TripoliIndexer> nebyl inicializován.
Kontext: aplikace Windows, katalog SystemIndex
Podrobnosti:
Prvek nebyl nalezen. (HRESULT : 0x80070490) (0x80070490)
System errors:
=============
Error: (10/28/2021 10:56:47 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {BB6DF56B-CACE-11DC-9992-0019B93A3A84} se v daném časovém limitu neregistroval u služby DCOM.
Error: (10/28/2021 10:41:33 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Updater Service neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.
Error: (10/28/2021 10:41:07 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (10:28:34, 28.10.2021) bylo neočekávané.
Error: (10/28/2021 10:14:14 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {BB6DF56B-CACE-11DC-9992-0019B93A3A84} se v daném časovém limitu neregistroval u služby DCOM.
Error: (10/28/2021 10:04:00 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Updater Service neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.
Error: (10/28/2021 09:51:58 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba NVIDIA Display Container LS byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 1000 milisekund: Restartovat službu.
Error: (10/28/2021 09:50:36 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Ochrana softwaru byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 120000 milisekund: Restartovat službu.
Error: (10/28/2021 09:50:36 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba USBS3S4Detection byla neočekávaně ukončena. Tento stav nastal již 1krát.
==================== Memory info ===========================
BIOS: American Megatrends Inc. P01-A3 12/31/2009
Motherboard: Acer H57M01
Processor: Intel(R) Core(TM) i3 CPU 530 @ 2.93GHz
Percentage of memory in use: 84%
Total physical RAM: 3959.06 MB
Available physical RAM: 610.18 MB
Total Virtual: 7916.27 MB
Available Virtual: 2994.27 MB
==================== Drives ================================
Drive c: (Acer) (Fixed) (Total:489.32 GB) (Free:335.97 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: (Data) (Fixed) (Total:442.19 GB) (Free:367.93 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 59797029)
Partition 1: (Active) - (Size=489.3 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=442.2 GB) - (Type=07 NTFS)
==================== End of Addition.txt =======================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
zpomalený PC
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: zpomalený PC
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/
ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
michal1223
- Návštěvník
- Příspěvky: 18
- Registrován: 08 srp 2008 16:35
Re: zpomalený PC
No, šlo mi pouze udělat scan, možnost čištění a opravy zde není....
# -------------------------------
# Malwarebytes AdwCleaner 8.3.0.0
# -------------------------------
# Build: 06-29-2021
# Database: 2021-10-26.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 10-28-2021
# Duration: 00:00:09
# OS: Windows 7 Home Premium
# Scanned: 32013
# Detected: 0
***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
No malicious folders found.
***** [ Files ] *****
No malicious files found.
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
No malicious tasks found.
***** [ Registry ] *****
No malicious registry entries found.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries found.
***** [ Chromium URLs ] *****
No malicious Chromium URLs found.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries found.
***** [ Firefox URLs ] *****
No malicious Firefox URLs found.
***** [ Hosts File Entries ] *****
No malicious hosts file entries found.
***** [ Preinstalled Software ] *****
No Preinstalled Software found.
AdwCleaner[C00].txt - [2043 octets] - [28/10/2021 09:50:44]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S01].txt ##########
# -------------------------------
# Malwarebytes AdwCleaner 8.3.0.0
# -------------------------------
# Build: 06-29-2021
# Database: 2021-10-26.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 10-28-2021
# Duration: 00:00:09
# OS: Windows 7 Home Premium
# Scanned: 32013
# Detected: 0
***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
No malicious folders found.
***** [ Files ] *****
No malicious files found.
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
No malicious tasks found.
***** [ Registry ] *****
No malicious registry entries found.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries found.
***** [ Chromium URLs ] *****
No malicious Chromium URLs found.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries found.
***** [ Firefox URLs ] *****
No malicious Firefox URLs found.
***** [ Hosts File Entries ] *****
No malicious hosts file entries found.
***** [ Preinstalled Software ] *****
No Preinstalled Software found.
AdwCleaner[C00].txt - [2043 octets] - [28/10/2021 09:50:44]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S01].txt ##########
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: zpomalený PC
Není, neboť utilita nic nenašla. Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-717758605-1106027559-3896876889-1000\...\Run: [AdobeBridge] => [X]
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {00D38C0A-DB75-43F9-93C2-285861907C68} - System32\Tasks\{58B8170D-FFFD-4CB1-B8A5-0234830FA395} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\McAfee\MSC\mcuninst.exe"
Task: {1404E4C4-D138-43B2-AF5D-5538A7FAE473} - System32\Tasks\{558938E5-1C74-4956-AD82-1BF109320A1A} => C:\Windows\system32\pcalua.exe -a D:\Downloads\funhouse.exe -d D:\Downloads
Task: {261796E6-D0D6-473D-B3F4-B221CC02B931} - System32\Tasks\{975148D1-6E39-44E4-9D89-2949ECB1FEFB} => C:\Windows\system32\pcalua.exe -a D:\Downloads\SetupWordToPDF.exe -d D:\Downloads
Task: {268513CA-CA15-4053-9160-1037DDB57B9D} - System32\Tasks\{8275FF53-43CE-420F-866F-2CF349A7E937} => C:\Windows\system32\pcalua.exe -a C:\Users\Michal\Desktop\GTA_5_CZ_Instalator.exe -d C:\Users\Michal\Desktop
Task: {3C4D575C-8C0A-4828-8864-99289641CE58} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-717758605-1106027559-3896876889-1000UA => C:\Users\Michal\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {90F1844E-E3FD-40EB-A404-8B21D7871E62} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-717758605-1106027559-3896876889-1000Core => C:\Users\Michal\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {CDF010E9-11B4-4858-A300-D3F6B7A66CEF} - System32\Tasks\{D06F5F84-8F55-4E45-A26F-565ED24D069E} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\THQ\S.T.A.L.K.E.R. - Shadow of Chernobyl\setup-bp.exe" -d "C:\Program Files (x86)\THQ\S.T.A.L.K.E.R. - Shadow of Chernobyl"
Shortcut: C:\Users\Michal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Intеrnet Explоrer (No Add-ons).lnk -> C:\Users\Michal\AppData\Roaming\Browsers\exe.erolpxei.bat (No File) <==== Cyrillic
Shortcut: C:\Users\Michal\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Lаunch Intеrnet Eхplоrеr Browser.lnk -> C:\Users\Michal\AppData\Roaming\Browsers\exe.erolpxei.bat (No File) <==== Cyrillic
Shortcut: C:\Users\Michal\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Оpеrа (2).lnk -> C:\Users\Michal\AppData\Roaming\Browsers\exe.rehcnual.bat (No File) <==== Cyrillic
Shortcut: C:\Users\Michal\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Оpеrа.lnk -> C:\Users\Michal\AppData\Roaming\Browsers\exe.rehcnual.bat (No File) <==== Cyrillic
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Аvast SаfeZоne Вrowser.lnk -> C:\Users\Michal\AppData\Roaming\Browsers\exe.rehcnual.bat (No File) <==== Cyrillic
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&FORM=IE8SRC
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&FORM=IE8SRC
SearchScopes: HKU\S-1-5-21-717758605-1106027559-3896876889-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&src ... ORM=IESR02
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
michal1223
- Návštěvník
- Příspěvky: 18
- Registrován: 08 srp 2008 16:35
Re: zpomalený PC
Fix result of Farbar Recovery Scan Tool (x64) Version: 20-10-2021
Ran by Michal (28-10-2021 13:37:08) Run:1
Running from C:\Users\Michal\Desktop
Loaded Profiles: Michal
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-717758605-1106027559-3896876889-1000\...\Run: [AdobeBridge] => [X]
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {00D38C0A-DB75-43F9-93C2-285861907C68} - System32\Tasks\{58B8170D-FFFD-4CB1-B8A5-0234830FA395} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\McAfee\MSC\mcuninst.exe"
Task: {1404E4C4-D138-43B2-AF5D-5538A7FAE473} - System32\Tasks\{558938E5-1C74-4956-AD82-1BF109320A1A} => C:\Windows\system32\pcalua.exe -a D:\Downloads\funhouse.exe -d D:\Downloads
Task: {261796E6-D0D6-473D-B3F4-B221CC02B931} - System32\Tasks\{975148D1-6E39-44E4-9D89-2949ECB1FEFB} => C:\Windows\system32\pcalua.exe -a D:\Downloads\SetupWordToPDF.exe -d D:\Downloads
Task: {268513CA-CA15-4053-9160-1037DDB57B9D} - System32\Tasks\{8275FF53-43CE-420F-866F-2CF349A7E937} => C:\Windows\system32\pcalua.exe -a C:\Users\Michal\Desktop\GTA_5_CZ_Instalator.exe -d C:\Users\Michal\Desktop
Task: {3C4D575C-8C0A-4828-8864-99289641CE58} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-717758605-1106027559-3896876889-1000UA => C:\Users\Michal\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {90F1844E-E3FD-40EB-A404-8B21D7871E62} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-717758605-1106027559-3896876889-1000Core => C:\Users\Michal\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {CDF010E9-11B4-4858-A300-D3F6B7A66CEF} - System32\Tasks\{D06F5F84-8F55-4E45-A26F-565ED24D069E} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\THQ\S.T.A.L.K.E.R. - Shadow of Chernobyl\setup-bp.exe" -d "C:\Program Files (x86)\THQ\S.T.A.L.K.E.R. - Shadow of Chernobyl"
Shortcut: C:\Users\Michal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Intеrnet Explоrer (No Add-ons).lnk -> C:\Users\Michal\AppData\Roaming\Browsers\exe.erolpxei.bat (No File) <==== Cyrillic
Shortcut: C:\Users\Michal\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Lаunch Intеrnet Eхplоrеr Browser.lnk -> C:\Users\Michal\AppData\Roaming\Browsers\exe.erolpxei.bat (No File) <==== Cyrillic
Shortcut: C:\Users\Michal\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Оpеrа (2).lnk -> C:\Users\Michal\AppData\Roaming\Browsers\exe.rehcnual.bat (No File) <==== Cyrillic
Shortcut: C:\Users\Michal\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Оpеrа.lnk -> C:\Users\Michal\AppData\Roaming\Browsers\exe.rehcnual.bat (No File) <==== Cyrillic
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Аvast SаfeZоne Вrowser.lnk -> C:\Users\Michal\AppData\Roaming\Browsers\exe.rehcnual.bat (No File) <==== Cyrillic
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&FORM=IE8SRC
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&FORM=IE8SRC
SearchScopes: HKU\S-1-5-21-717758605-1106027559-3896876889-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&src ... ORM=IESR02
EmptyTemp:
End
*****************
Processes closed successfully.
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => removed successfully
"HKU\S-1-5-21-717758605-1106027559-3896876889-1000\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeBridge" => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
HKLM\SOFTWARE\Policies\Google => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{00D38C0A-DB75-43F9-93C2-285861907C68}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{00D38C0A-DB75-43F9-93C2-285861907C68}" => removed successfully
C:\Windows\System32\Tasks\{58B8170D-FFFD-4CB1-B8A5-0234830FA395} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{58B8170D-FFFD-4CB1-B8A5-0234830FA395}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1404E4C4-D138-43B2-AF5D-5538A7FAE473}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1404E4C4-D138-43B2-AF5D-5538A7FAE473}" => removed successfully
C:\Windows\System32\Tasks\{558938E5-1C74-4956-AD82-1BF109320A1A} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{558938E5-1C74-4956-AD82-1BF109320A1A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{261796E6-D0D6-473D-B3F4-B221CC02B931}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{261796E6-D0D6-473D-B3F4-B221CC02B931}" => removed successfully
C:\Windows\System32\Tasks\{975148D1-6E39-44E4-9D89-2949ECB1FEFB} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{975148D1-6E39-44E4-9D89-2949ECB1FEFB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{268513CA-CA15-4053-9160-1037DDB57B9D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{268513CA-CA15-4053-9160-1037DDB57B9D}" => removed successfully
C:\Windows\System32\Tasks\{8275FF53-43CE-420F-866F-2CF349A7E937} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{8275FF53-43CE-420F-866F-2CF349A7E937}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3C4D575C-8C0A-4828-8864-99289641CE58}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3C4D575C-8C0A-4828-8864-99289641CE58}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-717758605-1106027559-3896876889-1000UA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskUserS-1-5-21-717758605-1106027559-3896876889-1000UA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{90F1844E-E3FD-40EB-A404-8B21D7871E62}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{90F1844E-E3FD-40EB-A404-8B21D7871E62}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-717758605-1106027559-3896876889-1000Core => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskUserS-1-5-21-717758605-1106027559-3896876889-1000Core" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CDF010E9-11B4-4858-A300-D3F6B7A66CEF}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CDF010E9-11B4-4858-A300-D3F6B7A66CEF}" => removed successfully
C:\Windows\System32\Tasks\{D06F5F84-8F55-4E45-A26F-565ED24D069E} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{D06F5F84-8F55-4E45-A26F-565ED24D069E}" => removed successfully
C:\Users\Michal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Intеrnet Explоrer (No Add-ons).lnk => moved successfully
C:\Users\Michal\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Lаunch Intеrnet Eхplоrеr Browser.lnk => moved successfully
C:\Users\Michal\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Оpеrа (2).lnk => moved successfully
C:\Users\Michal\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Оpеrа.lnk => moved successfully
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Аvast SаfeZоne Вrowser.lnk => moved successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => removed successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => removed successfully
HKU\S-1-5-21-717758605-1106027559-3896876889-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => removed successfully
=========== EmptyTemp: ==========
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 8242839 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 1339 B
Edge => 0 B
Chrome => 0 B
Firefox => 0 B
Opera => 13977397 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 128 B
systemprofile32 => 256 B
LocalService => 256 B
NetworkService => 256 B
Michal => 16998935 B
UpdatusUser => 16998935 B
RecycleBin => 66259 B
EmptyTemp: => 53.7 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 13:37:15 ====
Ran by Michal (28-10-2021 13:37:08) Run:1
Running from C:\Users\Michal\Desktop
Loaded Profiles: Michal
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-717758605-1106027559-3896876889-1000\...\Run: [AdobeBridge] => [X]
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {00D38C0A-DB75-43F9-93C2-285861907C68} - System32\Tasks\{58B8170D-FFFD-4CB1-B8A5-0234830FA395} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\McAfee\MSC\mcuninst.exe"
Task: {1404E4C4-D138-43B2-AF5D-5538A7FAE473} - System32\Tasks\{558938E5-1C74-4956-AD82-1BF109320A1A} => C:\Windows\system32\pcalua.exe -a D:\Downloads\funhouse.exe -d D:\Downloads
Task: {261796E6-D0D6-473D-B3F4-B221CC02B931} - System32\Tasks\{975148D1-6E39-44E4-9D89-2949ECB1FEFB} => C:\Windows\system32\pcalua.exe -a D:\Downloads\SetupWordToPDF.exe -d D:\Downloads
Task: {268513CA-CA15-4053-9160-1037DDB57B9D} - System32\Tasks\{8275FF53-43CE-420F-866F-2CF349A7E937} => C:\Windows\system32\pcalua.exe -a C:\Users\Michal\Desktop\GTA_5_CZ_Instalator.exe -d C:\Users\Michal\Desktop
Task: {3C4D575C-8C0A-4828-8864-99289641CE58} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-717758605-1106027559-3896876889-1000UA => C:\Users\Michal\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {90F1844E-E3FD-40EB-A404-8B21D7871E62} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-717758605-1106027559-3896876889-1000Core => C:\Users\Michal\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {CDF010E9-11B4-4858-A300-D3F6B7A66CEF} - System32\Tasks\{D06F5F84-8F55-4E45-A26F-565ED24D069E} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\THQ\S.T.A.L.K.E.R. - Shadow of Chernobyl\setup-bp.exe" -d "C:\Program Files (x86)\THQ\S.T.A.L.K.E.R. - Shadow of Chernobyl"
Shortcut: C:\Users\Michal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Intеrnet Explоrer (No Add-ons).lnk -> C:\Users\Michal\AppData\Roaming\Browsers\exe.erolpxei.bat (No File) <==== Cyrillic
Shortcut: C:\Users\Michal\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Lаunch Intеrnet Eхplоrеr Browser.lnk -> C:\Users\Michal\AppData\Roaming\Browsers\exe.erolpxei.bat (No File) <==== Cyrillic
Shortcut: C:\Users\Michal\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Оpеrа (2).lnk -> C:\Users\Michal\AppData\Roaming\Browsers\exe.rehcnual.bat (No File) <==== Cyrillic
Shortcut: C:\Users\Michal\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Оpеrа.lnk -> C:\Users\Michal\AppData\Roaming\Browsers\exe.rehcnual.bat (No File) <==== Cyrillic
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Аvast SаfeZоne Вrowser.lnk -> C:\Users\Michal\AppData\Roaming\Browsers\exe.rehcnual.bat (No File) <==== Cyrillic
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&FORM=IE8SRC
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&FORM=IE8SRC
SearchScopes: HKU\S-1-5-21-717758605-1106027559-3896876889-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&src ... ORM=IESR02
EmptyTemp:
End
*****************
Processes closed successfully.
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => removed successfully
"HKU\S-1-5-21-717758605-1106027559-3896876889-1000\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeBridge" => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
HKLM\SOFTWARE\Policies\Google => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{00D38C0A-DB75-43F9-93C2-285861907C68}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{00D38C0A-DB75-43F9-93C2-285861907C68}" => removed successfully
C:\Windows\System32\Tasks\{58B8170D-FFFD-4CB1-B8A5-0234830FA395} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{58B8170D-FFFD-4CB1-B8A5-0234830FA395}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1404E4C4-D138-43B2-AF5D-5538A7FAE473}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1404E4C4-D138-43B2-AF5D-5538A7FAE473}" => removed successfully
C:\Windows\System32\Tasks\{558938E5-1C74-4956-AD82-1BF109320A1A} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{558938E5-1C74-4956-AD82-1BF109320A1A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{261796E6-D0D6-473D-B3F4-B221CC02B931}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{261796E6-D0D6-473D-B3F4-B221CC02B931}" => removed successfully
C:\Windows\System32\Tasks\{975148D1-6E39-44E4-9D89-2949ECB1FEFB} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{975148D1-6E39-44E4-9D89-2949ECB1FEFB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{268513CA-CA15-4053-9160-1037DDB57B9D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{268513CA-CA15-4053-9160-1037DDB57B9D}" => removed successfully
C:\Windows\System32\Tasks\{8275FF53-43CE-420F-866F-2CF349A7E937} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{8275FF53-43CE-420F-866F-2CF349A7E937}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3C4D575C-8C0A-4828-8864-99289641CE58}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3C4D575C-8C0A-4828-8864-99289641CE58}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-717758605-1106027559-3896876889-1000UA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskUserS-1-5-21-717758605-1106027559-3896876889-1000UA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{90F1844E-E3FD-40EB-A404-8B21D7871E62}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{90F1844E-E3FD-40EB-A404-8B21D7871E62}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-717758605-1106027559-3896876889-1000Core => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskUserS-1-5-21-717758605-1106027559-3896876889-1000Core" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CDF010E9-11B4-4858-A300-D3F6B7A66CEF}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CDF010E9-11B4-4858-A300-D3F6B7A66CEF}" => removed successfully
C:\Windows\System32\Tasks\{D06F5F84-8F55-4E45-A26F-565ED24D069E} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{D06F5F84-8F55-4E45-A26F-565ED24D069E}" => removed successfully
C:\Users\Michal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Intеrnet Explоrer (No Add-ons).lnk => moved successfully
C:\Users\Michal\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Lаunch Intеrnet Eхplоrеr Browser.lnk => moved successfully
C:\Users\Michal\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Оpеrа (2).lnk => moved successfully
C:\Users\Michal\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Оpеrа.lnk => moved successfully
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Аvast SаfeZоne Вrowser.lnk => moved successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => removed successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => removed successfully
HKU\S-1-5-21-717758605-1106027559-3896876889-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => removed successfully
=========== EmptyTemp: ==========
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 8242839 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 1339 B
Edge => 0 B
Chrome => 0 B
Firefox => 0 B
Opera => 13977397 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 128 B
systemprofile32 => 256 B
LocalService => 256 B
NetworkService => 256 B
Michal => 16998935 B
UpdatusUser => 16998935 B
RecycleBin => 66259 B
EmptyTemp: => 53.7 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 13:37:15 ====
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: zpomalený PC
Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
michal1223
- Návštěvník
- Příspěvky: 18
- Registrován: 08 srp 2008 16:35
Re: zpomalený PC
Děkuji. Nenastala. asi bude chyba v softwaru, mám pořád sedmičky. Občas i vypadne zobrazení, kdy monitor hlásí, že je bez signálu. Prostě se pc někdy kousne, jak kdyby bylo málo paměti. Ale i tak moc děkuji.
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: zpomalený PC
Zkuste obnovu systému j datu, kdy korektně fungoval.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
michal1223
- Návštěvník
- Příspěvky: 18
- Registrován: 08 srp 2008 16:35
Re: zpomalený PC
přeinstaloval jsem na 10, ač nerad....děkuji vám za váš čas, Michal
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: zpomalený PC
OK, rádo se stalo! 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?