Takže druhý PC, je o trošku rychlejší, ale žádná sláva. Po startu strašně dlouho šrotuje a zpomaluje Firefox, prosím o důkladné pročištění...díky.
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 31-03-2021 (ATTENTION: ====> FRSTversion is 266 days old and could be outdated)
Ran by Petr (administrator) on PETR-PC (Gigabyte Technology Co., Ltd. G31M-ES2L) (22-12-2021 22:05:54)
Running from C:\Stahování
Loaded Profiles: Petr
Platform: Microsoft Windows 7 Professional Service Pack 1 (X86) Language: Čeština (Česká republika)
Default browser: FF
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
(Corel Corporation -> WinZip Computing) C:\Program Files\WinZip\WzPreloader.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [143128 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [WinZip UN] => C:\Program Files\WinZip\WZUpdateNotifier.exe [2268624 2019-03-18] (Corel Corporation -> Corel Corporation)
HKLM\...\Run: [WinZip PreLoader] => C:\Program Files\WinZip\WzPreloader.exe [130624 2019-03-18] (Corel Corporation -> WinZip Computing)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-54223709-3085532525-3047887407-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner.exe [29442688 2021-12-07] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-54223709-3085532525-3047887407-1000\...\Run: [Xvid] => WScript "C:\Program Files\Xvid\CheckUpdateLauncher.vbs" "C:\Program Files\Xvid\CheckUpdate.ps1"
HKU\S-1-5-21-54223709-3085532525-3047887407-1000\...\MountPoints2: {54cae04e-ddba-11e8-a0ce-6cf049cbae7d} - F:\LGAutoRun.exe
HKLM\...\Windows NT x86\Print Processors\Canon MP250 series Print Processor: C:\Windows\System32\spool\prtprocs\W32X86\CNMPD9W.DLL [27648 2010-04-24] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MP250 series: C:\Windows\system32\CNMLM9W.DLL [272384 2010-04-24] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> "C:\Program Files\AVAST Software\Browser\Application\91.1.10666.124\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\96.0.4664.110\Installer\chrmstp.exe [2021-12-15] (Google LLC -> Google LLC) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files\AVAST Software\Browser\Application\96.1.13587.111\Installer\chrmstp.exe [2021-12-16] (Avast Software s.r.o. -> AVAST Software)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {1119EE64-F50A-43BB-8AF6-410045247D7A} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1546480 2021-04-29] (Avast Software s.r.o. -> Avast Software)
Task: {1296B2B2-DBA3-41A1-9EA7-533C8ED78805} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
Task: {1BFB1603-4B9E-4452-B2C3-A022694A0D46} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-12-07] (Piriform Software Ltd -> Piriform)
Task: {55887A39-2DC9-4FBC-8E91-873161F12FA0} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {57411C4B-E521-48F1-8316-E1A773C0D113} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [2209368 2021-12-15] (Avast Software s.r.o. -> AVAST Software)
Task: {59A797D3-D538-4175-86CC-CF31CF5D1417} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [2209368 2021-12-15] (Avast Software s.r.o. -> AVAST Software)
Task: {676A02C8-71CC-4A94-B052-F9B7368A3A42} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {9BA636B6-CA06-4AE9-976A-B620BADA2A15} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe
Task: {9F7E8A16-734C-4690-BC39-4176CB43438F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1562376 2021-08-16] (Adobe Inc. -> Adobe Inc.)
Task: {C75DD3FE-A745-4EB4-86E2-FB14BCD4DA22} - System32\Tasks\CCleanerSkipUAC - Petr => C:\Program Files\CCleaner\CCleaner.exe [29442688 2021-12-07] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {CB182F3A-1A80-4121-A4A1-7B771DAC168E} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4398872 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
Task: {D937303A-F898-4616-BD32-72DC99F0077A} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
Task: {DC44F6E2-077C-4500-9C48-ECF3EFE82AA1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [153752 2017-03-19] (Google Inc -> Google Inc.)
Task: {E3034B36-D419-4C1D-9A50-31D4125DC58A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [153752 2017-03-19] (Google Inc -> Google Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{7F10E948-19EF-499E-BEF8-E480C119DCEC}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Petr\AppData\Local\Microsoft\Edge\User Data\Default [2021-10-22]
FireFox:
========
FF DefaultProfile: fa8ytgvl.default-1606416614406
FF ProfilePath: C:\Users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\fa8ytgvl.default-1606416614406 [2021-12-22]
FF DownloadDir: C:\Stahování
FF Extension: (Picture-In-Picture) - C:\Program Files\Mozilla Firefox\browser\features\pictureinpicture@mozilla.org.xpi [2021-06-07] [not signed]
FF Extension: (Proxy Failover) - C:\Program Files\Mozilla Firefox\browser\features\proxy-failover@mozilla.com.xpi [2021-11-03] [not signed]
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll [2015-10-09] (Google Inc -> Google, Inc.)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-10-26] (Avast Software s.r.o. -> AVAST Software)
FF Plugin: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-10-26] (Avast Software s.r.o. -> AVAST Software)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-10-05] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default [2021-10-22]
CHR Extension: (Prezentace) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-09-10]
CHR Extension: (Dokumenty) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-09-10]
CHR Extension: (Disk Google) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-12-28]
CHR Extension: (YouTube) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-09-10]
CHR Extension: (Tabulky) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-09-10]
CHR Extension: (Dokumenty Google offline) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-12-28]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-09-10]
CHR Extension: (Gmail) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-12-28]
CHR Extension: (Chrome Media Router) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-12-28]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-08-16] (Adobe Inc. -> Adobe Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [7627856 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [428312 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [1583384 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [427800 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files\AVAST Software\Browser\Application\96.1.13587.111\elevation_service.exe [1544632 2021-12-15] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-06-02] (Avast Software s.r.o. -> AVAST Software)
S3 GoogleChromeElevationService; C:\Program Files\Google\Chrome\Application\96.0.4664.110\elevation_service.exe [1263448 2021-12-12] (Google LLC -> Google LLC) [File not signed]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [5578952 2020-08-01] (Malwarebytes Inc -> Malwarebytes)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [186288 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [308776 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [207368 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [91656 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [39288 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [154512 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [393032 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [36104 2018-05-01] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [92752 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [71912 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [690704 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [454408 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [161376 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [266184 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R3 AtiHDAudioService; C:\Windows\System32\drivers\AtihdW73.sys [87568 2016-03-01] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R3 L1C; C:\Windows\System32\DRIVERS\L1C62x86.sys [50688 2009-07-13] (Microsoft Windows -> Atheros Communications, Inc.)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [181000 2020-08-09] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [213912 2020-08-05] (Malwarebytes Inc -> Malwarebytes)
R3 pfc; C:\Windows\System32\drivers\pfc.sys [10368 2017-05-01] (Padus, Inc.) [File not signed]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-12-19 18:52 - 2021-12-20 08:08 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-12-14 13:35 - 2021-12-14 13:35 - 000000000 ____D C:\Users\Petr\AppData\LocalLow\WINZIP_W2da8
2021-12-14 13:33 - 2021-12-14 13:35 - 000000000 ____D C:\Users\Petr\AppData\LocalLow\WINZIP_W3268
2021-12-10 18:04 - 2021-12-10 18:03 - 000287512 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2021-12-10 18:04 - 2021-12-10 18:03 - 000161376 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-12-22 22:07 - 2016-12-24 11:15 - 000000000 ____D C:\FRST
2021-12-22 22:05 - 2017-03-18 14:38 - 000004168 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2021-12-22 22:05 - 2016-12-24 11:46 - 000000000 ____D C:\Program Files\Google
2021-12-22 22:05 - 2016-12-22 17:28 - 000000000 ____D C:\Program Files\CCleaner
2021-12-22 22:02 - 2009-07-14 05:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-12-22 22:00 - 2014-03-15 13:04 - 000000000 ____D C:\Stahování
2021-12-22 21:59 - 2019-02-05 11:26 - 000000000 ____D C:\ProgramData\Mozilla
2021-12-22 21:58 - 2016-12-22 16:48 - 000000000 ____D C:\Users\Petr\AppData\LocalLow\Mozilla
2021-12-22 21:44 - 2016-12-22 17:23 - 000000000 ____D C:\ProgramData\AVAST Software
2021-12-22 18:14 - 2016-12-22 20:34 - 000000000 ____D C:\Users\Petr\Documents\Soubory aplikace Outlook
2021-12-22 11:12 - 2020-08-26 20:11 - 000000000 ____D C:\Users\Petr\AppData\Local\AVAST Software
2021-12-22 10:58 - 2009-07-14 05:34 - 000038608 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2021-12-22 10:58 - 2009-07-14 05:34 - 000038608 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2021-12-20 08:08 - 2017-01-08 15:09 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service
2021-12-18 20:25 - 2020-08-09 10:36 - 000002167 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-12-18 20:25 - 2020-08-09 10:36 - 000002126 _____ C:\ProgramData\Desktop\Microsoft Edge.lnk
2021-12-16 20:51 - 2020-08-25 15:13 - 000003720 _____ C:\Windows\system32\Tasks\Avast Secure Browser Heartbeat Task (Hourly)
2021-12-16 20:51 - 2018-04-05 09:06 - 000002375 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2021-12-16 20:51 - 2018-04-05 09:06 - 000002332 _____ C:\ProgramData\Desktop\Avast Secure Browser.lnk
2021-12-15 11:23 - 2016-12-25 10:05 - 000000000 ____D C:\Windows\system32\MRT
2021-12-15 11:17 - 2016-12-25 10:04 - 134458776 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2021-12-15 10:30 - 2017-03-19 14:18 - 000002170 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-12-15 10:30 - 2017-03-19 14:18 - 000002129 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2021-12-15 10:20 - 2021-01-14 16:32 - 000003870 _____ C:\Windows\system32\Tasks\CCleaner Update
2021-12-14 16:52 - 2016-12-23 01:14 - 000668866 _____ C:\Windows\system32\perfh005.dat
2021-12-14 16:52 - 2016-12-23 01:14 - 000141526 _____ C:\Windows\system32\perfc005.dat
2021-12-14 16:52 - 2010-11-20 22:01 - 001584554 _____ C:\Windows\system32\PerfStringBackup.INI
2021-12-14 16:52 - 2009-07-14 03:37 - 000000000 ____D C:\Windows\inf
2021-12-10 18:03 - 2020-10-23 14:31 - 000154512 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2021-12-10 18:03 - 2020-04-17 11:14 - 000393032 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2021-12-10 18:03 - 2019-01-16 16:30 - 000207368 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2021-12-10 18:03 - 2019-01-16 16:30 - 000091656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2021-12-10 18:03 - 2018-10-22 15:42 - 000039288 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2021-12-10 18:03 - 2016-12-22 17:47 - 000454408 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2021-12-10 18:03 - 2016-12-22 17:47 - 000266184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2021-12-10 18:03 - 2016-12-22 17:47 - 000092752 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2021-12-10 18:03 - 2016-12-22 17:47 - 000071912 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2021-12-10 18:02 - 2017-11-20 08:36 - 000186288 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2021-12-10 18:02 - 2016-12-22 17:47 - 000690704 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2021-12-10 18:01 - 2019-01-16 16:33 - 000308776 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2021-12-09 10:42 - 2020-10-28 12:50 - 000003344 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6ad1792fe4ccc
2021-12-09 10:42 - 2020-08-09 10:35 - 000003472 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-12-08 14:07 - 2021-08-18 16:06 - 000002804 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC - Petr
2021-12-08 14:07 - 2021-04-21 11:48 - 000003376 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2021-12-08 14:07 - 2021-04-21 11:48 - 000003248 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2021-12-08 14:07 - 2020-08-09 10:35 - 000003344 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-12-08 14:07 - 2016-12-22 17:47 - 000000000 ____D C:\Windows\system32\Tasks\AVAST Software
2021-12-08 14:07 - 2016-12-22 17:16 - 000004464 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2021-11-23 09:12 - 2009-07-14 05:53 - 000032604 _____ C:\Windows\Tasks\SCHEDLGU.TXT
==================== Files in the root of some directories ========
2021-07-16 17:49 - 2021-07-16 17:49 - 000003584 _____ () C:\Users\Petr\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2020-10-27 16:57 - 2020-10-27 16:57 - 000004096 ____H () C:\Users\Petr\AppData\Local\keyfile3.drm
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
LastRegBack: 2021-12-19 19:20
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 31-03-2021
Ran by Petr (22-12-2021 22:08:47)
Running from C:\Stahování
Microsoft Windows 7 Professional Service Pack 1 (X86) (2016-12-22 15:36:45)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-54223709-3085532525-3047887407-500 - Administrator - Disabled)
Guest (S-1-5-21-54223709-3085532525-3047887407-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-54223709-3085532525-3047887407-1002 - Limited - Enabled)
Petr (S-1-5-21-54223709-3085532525-3047887407-1000 - Administrator - Enabled) => C:\Users\Petr
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {5078598A-1FA2-C888-AA5F-A9C66537DB12}
FW: Avast Antivirus (Enabled) {D322394B-73F7-C65E-BBB0-3B81E063D6D4}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Acrobat Reader DC - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 21.007.20099 - Adobe Systems Incorporated)
Avast Premium Security (HKLM\...\Avast Antivirus) (Version: 21.10.2498 - Avast Software)
Avast Secure Browser (HKLM\...\Avast Secure Browser) (Version: 96.1.13587.111 - Autoři prohlížeče Avast Secure Browser)
Canon MP250 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP250_series) (Version: - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.88 - Piriform)
FreeCommander 2009.02b (HKLM\...\FreeCommander_is1) (Version: 2009.02 - Marek Jasinski)
Google Chrome (HKLM\...\Google Chrome) (Version: 96.0.4664.110 - Google LLC)
Google Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.123 - Google Inc.) Hidden
Malwarebytes version 4.1.2.73 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.1.2.73 - Malwarebytes)
Microsoft .NET Framework 4.8 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft Edge (HKLM\...\Microsoft Edge) (Version: 96.0.1054.62 - Microsoft Corporation)
Microsoft Office Professional 2010 (HKLM\...\Office14.SingleImage) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
MozBackup 1.5.1 (HKLM\...\MozBackup) (Version: - Pavel Cvrcek)
Mozilla Firefox (x86 cs) (HKLM\...\Mozilla Firefox 95.0.2 (x86 cs)) (Version: 95.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 95.0.2.8022 - Mozilla)
Picasa 3 (HKLM\...\Picasa 3) (Version: 3.9.141.255 - Google, Inc.)
Skype verze 8.68 (HKLM\...\Skype_is1) (Version: 8.68 - Skype Technologies S.A.)
SysTools DBX Converter version 4.3 (HKLM\...\{0BDF5B3B-040E-4355-BAF5-DA626D01A1F8}_is1) (Version: 4.3 - SysTools Software)
WinZip 23.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C2411E}) (Version: 23.0.13431 - Corel Corporation)
Xvid Video Codec (HKLM\...\Xvid Video Codec 1.3.7) (Version: 1.3.7 - Xvid Team)
Zoom (HKU\S-1-5-21-54223709-3085532525-3047887407-1000\...\ZoomUMX) (Version: 5.3.2 (53291.1011) - Zoom Video Communications, Inc.)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-54223709-3085532525-3047887407-1000_Classes\CLSID\{CB2B673F-D441-4CD4-AFBE-DC4037CA4220}\InprocServer32 -> C:\Program Files\WinZip\adxloader.WinZipExpressForOffice.dll (Corel Corporation -> )
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-12-10] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-12-10] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshlstb.dll [2019-03-18] (Corel Corporation -> WinZip Computing)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-12-10] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshlstb.dll [2019-03-18] (Corel Corporation -> WinZip Computing)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-12-10] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshlstb.dll [2019-03-18] (Corel Corporation -> WinZip Computing)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [msacm.l3acm] => C:\Windows\system32\l3codecp.acm [220672 2009-07-14] (Microsoft Windows -> Fraunhofer Institut Integrierte Schaltungen IIS)
HKLM\...\Drivers32: [VIDC.ACDV] => C:\Windows\system32\ACDV.dll [462848 2005-06-20] (ACD Systems) [File not signed]
HKLM\...\Drivers32: [vidc.XVID] => C:\Windows\system32\xvidvfw.dll [235520 2019-12-28] () [File not signed]
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]
ShortcutWithArgument: C:\Users\Petr\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Microsoft Edge (2).lnk -> C:\Program Files\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation) -> --profile-directory=Default
==================== Loaded Modules (Whitelisted) =============
2021-11-14 10:32 - 2021-11-14 10:32 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2021-11-14 10:32 - 2021-11-14 10:32 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2021-11-14 10:32 - 2021-11-14 10:32 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2021-11-14 10:32 - 2021-11-14 10:32 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2021-11-14 10:32 - 2021-11-14 10:32 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2021-11-14 10:32 - 2021-11-14 10:32 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2021-11-14 10:32 - 2021-11-14 10:32 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2021-11-14 10:32 - 2021-11-14 10:32 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2021-11-14 10:32 - 2021-11-14 10:32 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2021-11-14 10:32 - 2021-11-14 10:32 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2021-11-14 10:32 - 2021-11-14 10:32 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2021-11-14 10:32 - 2021-11-14 10:32 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\ucrtbase.DLL
2021-11-14 10:32 - 2021-11-14 10:32 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\VCRUNTIME140.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\api-ms-win-crt-environment-l1-1-0.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\api-ms-win-crt-filesystem-l1-1-0.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\api-ms-win-crt-locale-l1-1-0.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\api-ms-win-crt-math-l1-1-0.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\api-ms-win-crt-multibyte-l1-1-0.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\api-ms-win-crt-time-l1-1-0.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\api-ms-win-crt-utility-l1-1-0.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\MSVCP140.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\ucrtbase.DLL
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\VCRUNTIME140.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Version 11) (Whitelisted) ==========
HKU\S-1-5-21-54223709-3085532525-3047887407-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.dell.com/
SearchScopes: HKU\S-1-5-21-54223709-3085532525-3047887407-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 03:04 - 2020-08-09 08:17 - 000000841 _____ C:\Windows\system32\drivers\etc\hosts
127.0.0.1 localhost
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-54223709-3085532525-3047887407-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Petr\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [SPPSVC-In-TCP] => (Allow) C:\Windows\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) C:\Windows\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{9421E7B2-F7A9-4A35-8B95-D4A9483F1020}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{9A92F8CF-3D62-4D92-855B-8899CC7A094D}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Allow) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{23BD3E6A-355C-4B29-AB06-EA1F0D535073}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Allow) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{EC48A628-51C4-4520-B3AA-1F68D54233F4}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{3CF3DDA8-F3E2-465A-966E-D734796E53FB}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{1CDB625C-8722-42B9-8E56-F5CA10B354B8}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform)
FirewallRules: [{DB07A551-80AF-4405-9C89-D2AEA9306CF5}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform)
FirewallRules: [{4ADED938-66A2-4AE8-B333-4E285EF166DA}] => (Allow) C:\Users\Petr\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{681D38D1-C7FF-44A7-ABCC-838D8C8B9519}] => (Allow) C:\Program Files\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{FA8CF9DB-89D7-49D0-B6E6-7CB78542DB5C}] => (Allow) C:\Program Files\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{9C19D9F2-7713-458A-8D6B-BE4AA51EC240}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{5DD6919F-A0AC-4360-852F-355ED0B26CAA}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{E3C71D6E-6550-4637-AA9F-A8666BD91823}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{0C049D28-0917-442A-8C12-855E0176A59E}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{CFA45A03-DB8B-4703-A1F3-3341A37CB579}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{B77B8EDE-0720-43C0-B5A1-1C0132BF6539}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{0B27BBF6-DE99-4BC2-A90A-9369F56389FB}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{8266BDF9-22CA-43CB-80F0-94E284700D0A}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{BF36E497-00D8-458D-B110-21FDEEC85D73}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) [File not signed]
FirewallRules: [{F40AE950-B8C8-4FBF-9367-800BC6BD417B}] => (Allow) C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe (Avast Software s.r.o. -> AVAST Software)
==================== Restore Points =========================
13-10-2021 09:00:19 Windows Update
20-10-2021 10:58:12 Naplánovaný kontrolní bod
27-10-2021 11:08:15 Naplánovaný kontrolní bod
04-11-2021 12:29:28 Naplánovaný kontrolní bod
10-11-2021 10:00:24 Windows Update
17-11-2021 12:24:13 Naplánovaný kontrolní bod
25-11-2021 10:37:31 Naplánovaný kontrolní bod
03-12-2021 16:38:10 Naplánovaný kontrolní bod
10-12-2021 19:58:48 Naplánovaný kontrolní bod
15-12-2021 11:16:36 Windows Update
22-12-2021 12:32:25 Naplánovaný kontrolní bod
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (12/22/2021 10:11:01 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4101) (User: )
Description: Selhalo načtení automatické aktualizace kořenového certifikátu jiného výrobce z: <http://ctldl.windowsupdate.com/msdownlo ... 5D05E4.crt>. Došlo k chybě Zvolený server nemůže provést požadovanou operaci.
.
Error: (12/22/2021 10:11:01 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4101) (User: )
Description: Selhalo načtení automatické aktualizace kořenového certifikátu jiného výrobce z: <http://ctldl.windowsupdate.com/msdownlo ... 5D05E4.crt>. Došlo k chybě Daná operace se vrátila, protože vypršel časový limit.
.
Error: (12/22/2021 10:07:57 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4101) (User: )
Description: Selhalo načtení automatické aktualizace kořenového certifikátu jiného výrobce z: <http://ctldl.windowsupdate.com/msdownlo ... 5D05E4.crt>. Došlo k chybě Zvolený server nemůže provést požadovanou operaci.
.
Error: (12/22/2021 10:07:57 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4101) (User: )
Description: Selhalo načtení automatické aktualizace kořenového certifikátu jiného výrobce z: <http://ctldl.windowsupdate.com/msdownlo ... 5D05E4.crt>. Došlo k chybě Daná operace se vrátila, protože vypršel časový limit.
.
Error: (12/22/2021 10:06:31 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4101) (User: )
Description: Selhalo načtení automatické aktualizace kořenového certifikátu jiného výrobce z: <http://ctldl.windowsupdate.com/msdownlo ... 5D05E4.crt>. Došlo k chybě Zvolený server nemůže provést požadovanou operaci.
.
Error: (12/22/2021 10:06:31 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4101) (User: )
Description: Selhalo načtení automatické aktualizace kořenového certifikátu jiného výrobce z: <http://ctldl.windowsupdate.com/msdownlo ... 5D05E4.crt>. Došlo k chybě Daná operace se vrátila, protože vypršel časový limit.
.
Error: (12/22/2021 10:03:17 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Error: (12/22/2021 09:46:17 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
System errors:
=============
Error: (12/22/2021 10:02:47 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (22:01:25, 22.12.2021) bylo neočekávané.
Error: (12/21/2021 08:28:06 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby avast! Tools bylo dosaženo časového limitu (30000 ms).
Error: (12/19/2021 06:29:16 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (18:28:04, 19.12.2021) bylo neočekávané.
Error: (12/19/2021 06:27:46 PM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Služba Avast Tools se po přijetí pokynu pro vypnutí neukončila správně.
Error: (12/19/2021 06:27:14 PM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Služba Avast Antivirus se po přijetí pokynu pro vypnutí neukončila správně.
Error: (12/19/2021 06:24:13 PM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Služba Klient zásad skupiny se po přijetí pokynu pro vypnutí neukončila správně.
Error: (12/18/2021 08:11:41 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Centrum zabezpečení byla ukončena s následující chybou:
%%16389
Error: (12/18/2021 08:10:44 PM) (Source: WMPNetworkSvc) (EventID: 14332) (User: )
Description: Služba WMPNetworkSvc nebyla spuštěna správně, protože u funkce CoCreateInstance (CLSID_UPnPDeviceFinder) došlo k chybě 0x80004005. Zkontrolujte, zda je spuštěná služba UPnPHost a zda je správně nainstalována součást systému Windows UPnPHost.
==================== Memory info ===========================
BIOS: Award Software International, Inc. FH 04/30/2010
Motherboard: Gigabyte Technology Co., Ltd. G31M-ES2L
Processor: Intel(R) Celeron(R) CPU E3300 @ 2.50GHz
Percentage of memory in use: 89%
Total physical RAM: 2046.49 MB
Available physical RAM: 225.05 MB
Total Virtual: 4092.98 MB
Available Virtual: 2383.07 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:465.66 GB) (Free:362.67 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: (Data) (Fixed) (Total:232.88 GB) (Free:158.68 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 54D22AD4)
Partition 1: (Active) - (Size=465.7 GB) - (Type=07 NTFS)
==========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 232.9 GB) (Disk ID: C46FBD09)
Partition 1: (Not Active) - (Size=232.9 GB) - (Type=07 NTFS)
==================== End of Addition.txt =======================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Pomalé PC
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Pomalé PC
Tak nakonec se mi podařilo update verze a scan trval o dost dýl...takže dávám aktuální:
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 11-12-2021
Ran by Petr (administrator) on PETR-PC (Gigabyte Technology Co., Ltd. G31M-ES2L) (22-12-2021 22:20:16)
Running from C:\Stahování
Loaded Profiles: Petr
Platform: Microsoft Windows 7 Professional Service Pack 1 (X86) Language: Čeština (Česká republika)
Default browser: FF
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <4>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe <4>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
(Corel Corporation -> WinZip Computing) C:\Program Files\WinZip\WzPreloader.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\msiexec.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <23>
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [143128 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [WinZip UN] => C:\Program Files\WinZip\WZUpdateNotifier.exe [2268624 2019-03-18] (Corel Corporation -> Corel Corporation)
HKLM\...\Run: [WinZip PreLoader] => C:\Program Files\WinZip\WzPreloader.exe [130624 2019-03-18] (Corel Corporation -> WinZip Computing)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-54223709-3085532525-3047887407-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner.exe [29442688 2021-12-07] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-54223709-3085532525-3047887407-1000\...\Run: [Xvid] => WScript "C:\Program Files\Xvid\CheckUpdateLauncher.vbs" "C:\Program Files\Xvid\CheckUpdate.ps1" (No File)
HKU\S-1-5-21-54223709-3085532525-3047887407-1000\...\MountPoints2: {54cae04e-ddba-11e8-a0ce-6cf049cbae7d} - F:\LGAutoRun.exe
HKLM\...\Windows NT x86\Print Processors\Canon MP250 series Print Processor: C:\Windows\System32\spool\prtprocs\W32X86\CNMPD9W.DLL [27648 2010-04-24] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MP250 series: C:\Windows\system32\CNMLM9W.DLL [272384 2010-04-24] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> "C:\Program Files\AVAST Software\Browser\Application\91.1.10666.124\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\96.0.4664.110\Installer\chrmstp.exe [2021-12-15] (Google LLC -> Google LLC) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files\AVAST Software\Browser\Application\96.1.13587.111\Installer\chrmstp.exe [2021-12-16] (Avast Software s.r.o. -> AVAST Software)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {1119EE64-F50A-43BB-8AF6-410045247D7A} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1546480 2021-04-29] (Avast Software s.r.o. -> Avast Software)
Task: {1296B2B2-DBA3-41A1-9EA7-533C8ED78805} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
Task: {1BFB1603-4B9E-4452-B2C3-A022694A0D46} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-12-07] (Piriform Software Ltd -> Piriform)
Task: {55887A39-2DC9-4FBC-8E91-873161F12FA0} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe /backup /iavs (No File)
Task: {57411C4B-E521-48F1-8316-E1A773C0D113} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [2209368 2021-12-15] (Avast Software s.r.o. -> AVAST Software)
Task: {59A797D3-D538-4175-86CC-CF31CF5D1417} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [2209368 2021-12-15] (Avast Software s.r.o. -> AVAST Software)
Task: {676A02C8-71CC-4A94-B052-F9B7368A3A42} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {9BA636B6-CA06-4AE9-976A-B620BADA2A15} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe /StartRecording (No File)
Task: {9F7E8A16-734C-4690-BC39-4176CB43438F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1562376 2021-08-16] (Adobe Inc. -> Adobe Inc.)
Task: {C75DD3FE-A745-4EB4-86E2-FB14BCD4DA22} - System32\Tasks\CCleanerSkipUAC - Petr => C:\Program Files\CCleaner\CCleaner.exe [29442688 2021-12-07] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {CB182F3A-1A80-4121-A4A1-7B771DAC168E} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4398872 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
Task: {D937303A-F898-4616-BD32-72DC99F0077A} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
Task: {DC44F6E2-077C-4500-9C48-ECF3EFE82AA1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [153752 2017-03-19] (Google Inc -> Google Inc.)
Task: {E3034B36-D419-4C1D-9A50-31D4125DC58A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [153752 2017-03-19] (Google Inc -> Google Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{7F10E948-19EF-499E-BEF8-E480C119DCEC}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Petr\AppData\Local\Microsoft\Edge\User Data\Default [2021-10-22]
FireFox:
========
FF DefaultProfile: fa8ytgvl.default-1606416614406
FF ProfilePath: C:\Users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\fa8ytgvl.default-1606416614406 [2021-12-22]
FF DownloadDir: C:\Stahování
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll [2015-10-09] (Google Inc -> Google, Inc.)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-10-26] (Avast Software s.r.o. -> AVAST Software)
FF Plugin: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-10-26] (Avast Software s.r.o. -> AVAST Software)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-10-05] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default [2021-10-22]
CHR Extension: (Prezentace) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-09-10]
CHR Extension: (Dokumenty) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-09-10]
CHR Extension: (Disk Google) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-12-28]
CHR Extension: (YouTube) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-09-10]
CHR Extension: (Tabulky) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-09-10]
CHR Extension: (Dokumenty Google offline) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-12-28]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-09-10]
CHR Extension: (Gmail) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-12-28]
CHR Extension: (Chrome Media Router) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-12-28]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-08-16] (Adobe Inc. -> Adobe Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [7627856 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [428312 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [1583384 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [427800 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files\AVAST Software\Browser\Application\96.1.13587.111\elevation_service.exe [1544632 2021-12-15] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-06-02] (Avast Software s.r.o. -> AVAST Software)
S3 GoogleChromeElevationService; C:\Program Files\Google\Chrome\Application\96.0.4664.110\elevation_service.exe [1263448 2021-12-12] (Google LLC -> Google LLC) [File not signed]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [5578952 2020-08-01] (Malwarebytes Inc -> Malwarebytes)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [186288 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [308776 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [207368 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [91656 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [39288 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [154512 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [393032 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [36104 2018-05-01] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [92752 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [71912 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [690704 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [454408 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [161376 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [266184 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R3 AtiHDAudioService; C:\Windows\System32\drivers\AtihdW73.sys [87568 2016-03-01] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R3 L1C; C:\Windows\System32\DRIVERS\L1C62x86.sys [50688 2009-07-13] (Microsoft Windows -> Atheros Communications, Inc.)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [181000 2020-08-09] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [213912 2020-08-05] (Malwarebytes Inc -> Malwarebytes)
R3 pfc; C:\Windows\System32\drivers\pfc.sys [10368 2017-05-01] (Padus, Inc.) [File not signed]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-12-19 18:52 - 2021-12-20 08:08 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-12-14 13:35 - 2021-12-14 13:35 - 000000000 ____D C:\Users\Petr\AppData\LocalLow\WINZIP_W2da8
2021-12-14 13:33 - 2021-12-14 13:35 - 000000000 ____D C:\Users\Petr\AppData\LocalLow\WINZIP_W3268
2021-12-10 18:04 - 2021-12-10 18:03 - 000287512 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2021-12-10 18:04 - 2021-12-10 18:03 - 000161376 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-12-22 22:21 - 2016-12-24 11:15 - 000000000 ____D C:\FRST
2021-12-22 22:20 - 2016-12-22 17:28 - 000000000 ____D C:\Program Files\CCleaner
2021-12-22 22:19 - 2014-03-15 13:04 - 000000000 ____D C:\Stahování
2021-12-22 22:17 - 2016-12-24 11:46 - 000000000 ____D C:\Program Files\Google
2021-12-22 22:13 - 2019-02-05 11:26 - 000000000 ____D C:\ProgramData\Mozilla
2021-12-22 22:12 - 2016-12-22 16:48 - 000000000 ____D C:\Users\Petr\AppData\LocalLow\Mozilla
2021-12-22 22:11 - 2009-07-14 05:34 - 000038608 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2021-12-22 22:11 - 2009-07-14 05:34 - 000038608 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2021-12-22 22:05 - 2017-03-18 14:38 - 000004168 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2021-12-22 22:02 - 2009-07-14 05:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-12-22 21:44 - 2016-12-22 17:23 - 000000000 ____D C:\ProgramData\AVAST Software
2021-12-22 18:14 - 2016-12-22 20:34 - 000000000 ____D C:\Users\Petr\Documents\Soubory aplikace Outlook
2021-12-22 11:12 - 2020-08-26 20:11 - 000000000 ____D C:\Users\Petr\AppData\Local\AVAST Software
2021-12-20 08:08 - 2017-01-08 15:09 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service
2021-12-18 20:25 - 2020-08-09 10:36 - 000002167 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-12-18 20:25 - 2020-08-09 10:36 - 000002126 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-12-16 20:51 - 2020-08-25 15:13 - 000003720 _____ C:\Windows\system32\Tasks\Avast Secure Browser Heartbeat Task (Hourly)
2021-12-16 20:51 - 2018-04-05 09:06 - 000002375 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2021-12-16 20:51 - 2018-04-05 09:06 - 000002332 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2021-12-15 11:23 - 2016-12-25 10:05 - 000000000 ____D C:\Windows\system32\MRT
2021-12-15 11:17 - 2016-12-25 10:04 - 134458776 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2021-12-15 10:30 - 2017-03-19 14:18 - 000002170 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-12-15 10:30 - 2017-03-19 14:18 - 000002129 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-12-15 10:20 - 2021-01-14 16:32 - 000003870 _____ C:\Windows\system32\Tasks\CCleaner Update
2021-12-14 16:52 - 2016-12-23 01:14 - 000668866 _____ C:\Windows\system32\perfh005.dat
2021-12-14 16:52 - 2016-12-23 01:14 - 000141526 _____ C:\Windows\system32\perfc005.dat
2021-12-14 16:52 - 2010-11-20 22:01 - 001584554 _____ C:\Windows\system32\PerfStringBackup.INI
2021-12-14 16:52 - 2009-07-14 03:37 - 000000000 ____D C:\Windows\inf
2021-12-10 18:03 - 2020-10-23 14:31 - 000154512 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2021-12-10 18:03 - 2020-04-17 11:14 - 000393032 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2021-12-10 18:03 - 2019-01-16 16:30 - 000207368 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2021-12-10 18:03 - 2019-01-16 16:30 - 000091656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2021-12-10 18:03 - 2018-10-22 15:42 - 000039288 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2021-12-10 18:03 - 2016-12-22 17:47 - 000454408 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2021-12-10 18:03 - 2016-12-22 17:47 - 000266184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2021-12-10 18:03 - 2016-12-22 17:47 - 000092752 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2021-12-10 18:03 - 2016-12-22 17:47 - 000071912 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2021-12-10 18:02 - 2017-11-20 08:36 - 000186288 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2021-12-10 18:02 - 2016-12-22 17:47 - 000690704 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2021-12-10 18:01 - 2019-01-16 16:33 - 000308776 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2021-12-09 10:42 - 2020-10-28 12:50 - 000003344 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6ad1792fe4ccc
2021-12-09 10:42 - 2020-08-09 10:35 - 000003472 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-12-08 14:07 - 2021-08-18 16:06 - 000002804 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC - Petr
2021-12-08 14:07 - 2021-04-21 11:48 - 000003376 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2021-12-08 14:07 - 2021-04-21 11:48 - 000003248 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2021-12-08 14:07 - 2020-08-09 10:35 - 000003344 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-12-08 14:07 - 2016-12-22 17:47 - 000000000 ____D C:\Windows\system32\Tasks\AVAST Software
2021-12-08 14:07 - 2016-12-22 17:16 - 000004464 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2021-11-23 09:12 - 2009-07-14 05:53 - 000032604 _____ C:\Windows\Tasks\SCHEDLGU.TXT
==================== Files in the root of some directories ========
2021-07-16 17:49 - 2021-07-16 17:49 - 000003584 _____ () C:\Users\Petr\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2020-10-27 16:57 - 2020-10-27 16:57 - 000004096 ____H () C:\Users\Petr\AppData\Local\keyfile3.drm
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
LastRegBack: 2021-12-19 19:20
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 11-12-2021
Ran by Petr (22-12-2021 22:23:54)
Running from C:\Stahování
Microsoft Windows 7 Professional Service Pack 1 (X86) (2016-12-22 15:36:45)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-54223709-3085532525-3047887407-500 - Administrator - Disabled)
Guest (S-1-5-21-54223709-3085532525-3047887407-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-54223709-3085532525-3047887407-1002 - Limited - Enabled)
Petr (S-1-5-21-54223709-3085532525-3047887407-1000 - Administrator - Enabled) => C:\Users\Petr
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {5078598A-1FA2-C888-AA5F-A9C66537DB12}
FW: Avast Antivirus (Enabled) {D322394B-73F7-C65E-BBB0-3B81E063D6D4}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Acrobat Reader DC - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 21.007.20099 - Adobe Systems Incorporated)
Avast Premium Security (HKLM\...\Avast Antivirus) (Version: 21.10.2498 - Avast Software)
Avast Secure Browser (HKLM\...\Avast Secure Browser) (Version: 96.1.13587.111 - Autoři prohlížeče Avast Secure Browser)
Canon MP250 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP250_series) (Version: - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.88 - Piriform)
FreeCommander 2009.02b (HKLM\...\FreeCommander_is1) (Version: 2009.02 - Marek Jasinski)
Google Chrome (HKLM\...\Google Chrome) (Version: 96.0.4664.110 - Google LLC)
Google Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.123 - Google Inc.) Hidden
Malwarebytes version 4.1.2.73 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.1.2.73 - Malwarebytes)
Microsoft .NET Framework 4.8 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft Edge (HKLM\...\Microsoft Edge) (Version: 96.0.1054.62 - Microsoft Corporation)
Microsoft Office Professional 2010 (HKLM\...\Office14.SingleImage) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
MozBackup 1.5.1 (HKLM\...\MozBackup) (Version: - Pavel Cvrcek)
Mozilla Firefox (x86 cs) (HKLM\...\Mozilla Firefox 95.0.2 (x86 cs)) (Version: 95.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 95.0.2.8022 - Mozilla)
Picasa 3 (HKLM\...\Picasa 3) (Version: 3.9.141.255 - Google, Inc.)
Skype verze 8.68 (HKLM\...\Skype_is1) (Version: 8.68 - Skype Technologies S.A.)
SysTools DBX Converter version 4.3 (HKLM\...\{0BDF5B3B-040E-4355-BAF5-DA626D01A1F8}_is1) (Version: 4.3 - SysTools Software)
WinZip 23.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C2411E}) (Version: 23.0.13431 - Corel Corporation)
Xvid Video Codec (HKLM\...\Xvid Video Codec 1.3.7) (Version: 1.3.7 - Xvid Team)
Zoom (HKU\S-1-5-21-54223709-3085532525-3047887407-1000\...\ZoomUMX) (Version: 5.3.2 (53291.1011) - Zoom Video Communications, Inc.)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-54223709-3085532525-3047887407-1000_Classes\CLSID\{CB2B673F-D441-4CD4-AFBE-DC4037CA4220}\InprocServer32 -> C:\Program Files\WinZip\adxloader.WinZipExpressForOffice.dll (Corel Corporation -> )
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-12-10] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-12-10] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshlstb.dll [2019-03-18] (Corel Corporation -> WinZip Computing)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-12-10] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshlstb.dll [2019-03-18] (Corel Corporation -> WinZip Computing)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-12-10] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshlstb.dll [2019-03-18] (Corel Corporation -> WinZip Computing)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [msacm.l3acm] => C:\Windows\system32\l3codecp.acm [220672 2009-07-14] (Microsoft Windows -> Fraunhofer Institut Integrierte Schaltungen IIS)
HKLM\...\Drivers32: [VIDC.ACDV] => C:\Windows\system32\ACDV.dll [462848 2005-06-20] (ACD Systems) [File not signed]
HKLM\...\Drivers32: [vidc.XVID] => C:\Windows\system32\xvidvfw.dll [235520 2019-12-28] () [File not signed]
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]
ShortcutWithArgument: C:\Users\Petr\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Microsoft Edge (2).lnk -> C:\Program Files\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation) -> --profile-directory=Default
==================== Loaded Modules (Whitelisted) =============
2021-11-14 10:32 - 2021-11-14 10:32 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll] C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2021-11-14 10:32 - 2021-11-14 10:32 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2021-11-14 10:32 - 2021-11-14 10:32 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll] C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2021-11-14 10:32 - 2021-11-14 10:32 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll] C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2021-11-14 10:32 - 2021-11-14 10:32 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll] C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2021-11-14 10:32 - 2021-11-14 10:32 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2021-11-14 10:32 - 2021-11-14 10:32 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-environment-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\api-ms-win-crt-environment-l1-1-0.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-filesystem-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\api-ms-win-crt-filesystem-l1-1-0.dll
2021-11-14 10:32 - 2021-11-14 10:32 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-locale-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\api-ms-win-crt-locale-l1-1-0.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-math-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\api-ms-win-crt-math-l1-1-0.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-multibyte-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\api-ms-win-crt-multibyte-l1-1-0.dll
2021-11-14 10:32 - 2021-11-14 10:32 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2021-11-14 10:32 - 2021-11-14 10:32 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2021-11-14 10:32 - 2021-11-14 10:32 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-time-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\api-ms-win-crt-time-l1-1-0.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-utility-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\api-ms-win-crt-utility-l1-1-0.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\msvcp140.dll] C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\MSVCP140.dll
2021-11-14 10:32 - 2021-11-14 10:32 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\ucrtbase.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\ucrtbase.DLL
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\ucrtbase.dll] C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\ucrtbase.DLL
2021-11-14 10:32 - 2021-11-14 10:32 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\vcruntime140.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\VCRUNTIME140.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\vcruntime140.dll] C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\VCRUNTIME140.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Version 11) (Whitelisted) ==========
HKU\S-1-5-21-54223709-3085532525-3047887407-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.dell.com/
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 03:04 - 2020-08-09 08:17 - 000000841 _____ C:\Windows\system32\drivers\etc\hosts
127.0.0.1 localhost
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-54223709-3085532525-3047887407-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Petr\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [SPPSVC-In-TCP] => (Allow) C:\Windows\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) C:\Windows\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{9421E7B2-F7A9-4A35-8B95-D4A9483F1020}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{9A92F8CF-3D62-4D92-855B-8899CC7A094D}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Allow) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{23BD3E6A-355C-4B29-AB06-EA1F0D535073}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Allow) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{EC48A628-51C4-4520-B3AA-1F68D54233F4}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{3CF3DDA8-F3E2-465A-966E-D734796E53FB}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{1CDB625C-8722-42B9-8E56-F5CA10B354B8}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform)
FirewallRules: [{DB07A551-80AF-4405-9C89-D2AEA9306CF5}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform)
FirewallRules: [{4ADED938-66A2-4AE8-B333-4E285EF166DA}] => (Allow) C:\Users\Petr\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{681D38D1-C7FF-44A7-ABCC-838D8C8B9519}] => (Allow) C:\Program Files\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{FA8CF9DB-89D7-49D0-B6E6-7CB78542DB5C}] => (Allow) C:\Program Files\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{9C19D9F2-7713-458A-8D6B-BE4AA51EC240}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{5DD6919F-A0AC-4360-852F-355ED0B26CAA}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{E3C71D6E-6550-4637-AA9F-A8666BD91823}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{0C049D28-0917-442A-8C12-855E0176A59E}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{CFA45A03-DB8B-4703-A1F3-3341A37CB579}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{B77B8EDE-0720-43C0-B5A1-1C0132BF6539}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{0B27BBF6-DE99-4BC2-A90A-9369F56389FB}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{8266BDF9-22CA-43CB-80F0-94E284700D0A}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{BF36E497-00D8-458D-B110-21FDEEC85D73}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) [File not signed]
FirewallRules: [{F40AE950-B8C8-4FBF-9367-800BC6BD417B}] => (Allow) C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe (Avast Software s.r.o. -> AVAST Software)
==================== Restore Points =========================
20-10-2021 10:58:12 Naplánovaný kontrolní bod
27-10-2021 11:08:15 Naplánovaný kontrolní bod
04-11-2021 12:29:28 Naplánovaný kontrolní bod
10-11-2021 10:00:24 Windows Update
17-11-2021 12:24:13 Naplánovaný kontrolní bod
25-11-2021 10:37:31 Naplánovaný kontrolní bod
03-12-2021 16:38:10 Naplánovaný kontrolní bod
10-12-2021 19:58:48 Naplánovaný kontrolní bod
15-12-2021 11:16:36 Windows Update
22-12-2021 12:32:25 Naplánovaný kontrolní bod
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (12/22/2021 10:28:33 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4101) (User: )
Description: Selhalo načtení automatické aktualizace kořenového certifikátu jiného výrobce z: <http://ctldl.windowsupdate.com/msdownlo ... 5D05E4.crt>. Došlo k chybě Zvolený server nemůže provést požadovanou operaci.
.
Error: (12/22/2021 10:28:32 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4101) (User: )
Description: Selhalo načtení automatické aktualizace kořenového certifikátu jiného výrobce z: <http://ctldl.windowsupdate.com/msdownlo ... 5D05E4.crt>. Došlo k chybě Daná operace se vrátila, protože vypršel časový limit.
.
Error: (12/22/2021 10:22:33 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4101) (User: )
Description: Selhalo načtení automatické aktualizace kořenového certifikátu jiného výrobce z: <http://ctldl.windowsupdate.com/msdownlo ... 5D05E4.crt>. Došlo k chybě Zvolený server nemůže provést požadovanou operaci.
.
Error: (12/22/2021 10:22:33 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4101) (User: )
Description: Selhalo načtení automatické aktualizace kořenového certifikátu jiného výrobce z: <http://ctldl.windowsupdate.com/msdownlo ... 5D05E4.crt>. Došlo k chybě Daná operace se vrátila, protože vypršel časový limit.
.
Error: (12/22/2021 10:20:59 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4101) (User: )
Description: Selhalo načtení automatické aktualizace kořenového certifikátu jiného výrobce z: <http://ctldl.windowsupdate.com/msdownlo ... 5D05E4.crt>. Došlo k chybě Zvolený server nemůže provést požadovanou operaci.
.
Error: (12/22/2021 10:20:59 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4101) (User: )
Description: Selhalo načtení automatické aktualizace kořenového certifikátu jiného výrobce z: <http://ctldl.windowsupdate.com/msdownlo ... 5D05E4.crt>. Došlo k chybě Daná operace se vrátila, protože vypršel časový limit.
.
Error: (12/22/2021 10:19:57 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.
Error: (12/22/2021 10:17:47 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4101) (User: )
Description: Selhalo načtení automatické aktualizace kořenového certifikátu jiného výrobce z: <http://ctldl.windowsupdate.com/msdownlo ... 5D05E4.crt>. Došlo k chybě Zvolený server nemůže provést požadovanou operaci.
.
System errors:
=============
Error: (12/22/2021 10:27:48 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {BB6DF56B-CACE-11DC-9992-0019B93A3A84} se v daném časovém limitu neregistroval u služby DCOM.
Error: (12/22/2021 10:02:47 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (22:01:25, 22.12.2021) bylo neočekávané.
Error: (12/21/2021 08:28:06 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby avast! Tools bylo dosaženo časového limitu (30000 ms).
Error: (12/19/2021 06:29:16 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (18:28:04, 19.12.2021) bylo neočekávané.
Error: (12/19/2021 06:27:46 PM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Služba Avast Tools se po přijetí pokynu pro vypnutí neukončila správně.
Error: (12/19/2021 06:27:14 PM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Služba Avast Antivirus se po přijetí pokynu pro vypnutí neukončila správně.
Error: (12/19/2021 06:24:13 PM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Služba Klient zásad skupiny se po přijetí pokynu pro vypnutí neukončila správně.
Error: (12/18/2021 08:11:41 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Centrum zabezpečení byla ukončena s následující chybou:
%%16389
==================== Memory info ===========================
BIOS: Award Software International, Inc. FH 04/30/2010
Motherboard: Gigabyte Technology Co., Ltd. G31M-ES2L
Processor: Intel(R) Celeron(R) CPU E3300 @ 2.50GHz
Percentage of memory in use: 92%
Total physical RAM: 2046.49 MB
Available physical RAM: 149.08 MB
Total Virtual: 4092.98 MB
Available Virtual: 1414.12 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:465.66 GB) (Free:366.73 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: (Data) (Fixed) (Total:232.88 GB) (Free:158.68 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 54D22AD4)
Partition 1: (Active) - (Size=465.7 GB) - (Type=07 NTFS)
==========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 232.9 GB) (Disk ID: C46FBD09)
Partition 1: (Not Active) - (Size=232.9 GB) - (Type=07 NTFS)
==================== End of Addition.txt =======================
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 11-12-2021
Ran by Petr (administrator) on PETR-PC (Gigabyte Technology Co., Ltd. G31M-ES2L) (22-12-2021 22:20:16)
Running from C:\Stahování
Loaded Profiles: Petr
Platform: Microsoft Windows 7 Professional Service Pack 1 (X86) Language: Čeština (Česká republika)
Default browser: FF
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <4>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe <4>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
(Corel Corporation -> WinZip Computing) C:\Program Files\WinZip\WzPreloader.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\msiexec.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <23>
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [143128 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [WinZip UN] => C:\Program Files\WinZip\WZUpdateNotifier.exe [2268624 2019-03-18] (Corel Corporation -> Corel Corporation)
HKLM\...\Run: [WinZip PreLoader] => C:\Program Files\WinZip\WzPreloader.exe [130624 2019-03-18] (Corel Corporation -> WinZip Computing)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-54223709-3085532525-3047887407-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner.exe [29442688 2021-12-07] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-54223709-3085532525-3047887407-1000\...\Run: [Xvid] => WScript "C:\Program Files\Xvid\CheckUpdateLauncher.vbs" "C:\Program Files\Xvid\CheckUpdate.ps1" (No File)
HKU\S-1-5-21-54223709-3085532525-3047887407-1000\...\MountPoints2: {54cae04e-ddba-11e8-a0ce-6cf049cbae7d} - F:\LGAutoRun.exe
HKLM\...\Windows NT x86\Print Processors\Canon MP250 series Print Processor: C:\Windows\System32\spool\prtprocs\W32X86\CNMPD9W.DLL [27648 2010-04-24] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MP250 series: C:\Windows\system32\CNMLM9W.DLL [272384 2010-04-24] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> "C:\Program Files\AVAST Software\Browser\Application\91.1.10666.124\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\96.0.4664.110\Installer\chrmstp.exe [2021-12-15] (Google LLC -> Google LLC) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files\AVAST Software\Browser\Application\96.1.13587.111\Installer\chrmstp.exe [2021-12-16] (Avast Software s.r.o. -> AVAST Software)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {1119EE64-F50A-43BB-8AF6-410045247D7A} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1546480 2021-04-29] (Avast Software s.r.o. -> Avast Software)
Task: {1296B2B2-DBA3-41A1-9EA7-533C8ED78805} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
Task: {1BFB1603-4B9E-4452-B2C3-A022694A0D46} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-12-07] (Piriform Software Ltd -> Piriform)
Task: {55887A39-2DC9-4FBC-8E91-873161F12FA0} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe /backup /iavs (No File)
Task: {57411C4B-E521-48F1-8316-E1A773C0D113} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [2209368 2021-12-15] (Avast Software s.r.o. -> AVAST Software)
Task: {59A797D3-D538-4175-86CC-CF31CF5D1417} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [2209368 2021-12-15] (Avast Software s.r.o. -> AVAST Software)
Task: {676A02C8-71CC-4A94-B052-F9B7368A3A42} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {9BA636B6-CA06-4AE9-976A-B620BADA2A15} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe /StartRecording (No File)
Task: {9F7E8A16-734C-4690-BC39-4176CB43438F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1562376 2021-08-16] (Adobe Inc. -> Adobe Inc.)
Task: {C75DD3FE-A745-4EB4-86E2-FB14BCD4DA22} - System32\Tasks\CCleanerSkipUAC - Petr => C:\Program Files\CCleaner\CCleaner.exe [29442688 2021-12-07] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {CB182F3A-1A80-4121-A4A1-7B771DAC168E} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4398872 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
Task: {D937303A-F898-4616-BD32-72DC99F0077A} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
Task: {DC44F6E2-077C-4500-9C48-ECF3EFE82AA1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [153752 2017-03-19] (Google Inc -> Google Inc.)
Task: {E3034B36-D419-4C1D-9A50-31D4125DC58A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [153752 2017-03-19] (Google Inc -> Google Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{7F10E948-19EF-499E-BEF8-E480C119DCEC}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Petr\AppData\Local\Microsoft\Edge\User Data\Default [2021-10-22]
FireFox:
========
FF DefaultProfile: fa8ytgvl.default-1606416614406
FF ProfilePath: C:\Users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\fa8ytgvl.default-1606416614406 [2021-12-22]
FF DownloadDir: C:\Stahování
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll [2015-10-09] (Google Inc -> Google, Inc.)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-10-26] (Avast Software s.r.o. -> AVAST Software)
FF Plugin: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-10-26] (Avast Software s.r.o. -> AVAST Software)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-10-05] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default [2021-10-22]
CHR Extension: (Prezentace) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-09-10]
CHR Extension: (Dokumenty) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-09-10]
CHR Extension: (Disk Google) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-12-28]
CHR Extension: (YouTube) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-09-10]
CHR Extension: (Tabulky) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-09-10]
CHR Extension: (Dokumenty Google offline) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-12-28]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-09-10]
CHR Extension: (Gmail) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-12-28]
CHR Extension: (Chrome Media Router) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-12-28]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-08-16] (Adobe Inc. -> Adobe Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [7627856 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [428312 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [1583384 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [427800 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files\AVAST Software\Browser\Application\96.1.13587.111\elevation_service.exe [1544632 2021-12-15] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-06-02] (Avast Software s.r.o. -> AVAST Software)
S3 GoogleChromeElevationService; C:\Program Files\Google\Chrome\Application\96.0.4664.110\elevation_service.exe [1263448 2021-12-12] (Google LLC -> Google LLC) [File not signed]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [5578952 2020-08-01] (Malwarebytes Inc -> Malwarebytes)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [186288 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [308776 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [207368 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [91656 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [39288 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [154512 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [393032 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [36104 2018-05-01] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [92752 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [71912 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [690704 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [454408 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [161376 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [266184 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R3 AtiHDAudioService; C:\Windows\System32\drivers\AtihdW73.sys [87568 2016-03-01] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R3 L1C; C:\Windows\System32\DRIVERS\L1C62x86.sys [50688 2009-07-13] (Microsoft Windows -> Atheros Communications, Inc.)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [181000 2020-08-09] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [213912 2020-08-05] (Malwarebytes Inc -> Malwarebytes)
R3 pfc; C:\Windows\System32\drivers\pfc.sys [10368 2017-05-01] (Padus, Inc.) [File not signed]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-12-19 18:52 - 2021-12-20 08:08 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-12-14 13:35 - 2021-12-14 13:35 - 000000000 ____D C:\Users\Petr\AppData\LocalLow\WINZIP_W2da8
2021-12-14 13:33 - 2021-12-14 13:35 - 000000000 ____D C:\Users\Petr\AppData\LocalLow\WINZIP_W3268
2021-12-10 18:04 - 2021-12-10 18:03 - 000287512 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2021-12-10 18:04 - 2021-12-10 18:03 - 000161376 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-12-22 22:21 - 2016-12-24 11:15 - 000000000 ____D C:\FRST
2021-12-22 22:20 - 2016-12-22 17:28 - 000000000 ____D C:\Program Files\CCleaner
2021-12-22 22:19 - 2014-03-15 13:04 - 000000000 ____D C:\Stahování
2021-12-22 22:17 - 2016-12-24 11:46 - 000000000 ____D C:\Program Files\Google
2021-12-22 22:13 - 2019-02-05 11:26 - 000000000 ____D C:\ProgramData\Mozilla
2021-12-22 22:12 - 2016-12-22 16:48 - 000000000 ____D C:\Users\Petr\AppData\LocalLow\Mozilla
2021-12-22 22:11 - 2009-07-14 05:34 - 000038608 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2021-12-22 22:11 - 2009-07-14 05:34 - 000038608 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2021-12-22 22:05 - 2017-03-18 14:38 - 000004168 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2021-12-22 22:02 - 2009-07-14 05:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-12-22 21:44 - 2016-12-22 17:23 - 000000000 ____D C:\ProgramData\AVAST Software
2021-12-22 18:14 - 2016-12-22 20:34 - 000000000 ____D C:\Users\Petr\Documents\Soubory aplikace Outlook
2021-12-22 11:12 - 2020-08-26 20:11 - 000000000 ____D C:\Users\Petr\AppData\Local\AVAST Software
2021-12-20 08:08 - 2017-01-08 15:09 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service
2021-12-18 20:25 - 2020-08-09 10:36 - 000002167 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-12-18 20:25 - 2020-08-09 10:36 - 000002126 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-12-16 20:51 - 2020-08-25 15:13 - 000003720 _____ C:\Windows\system32\Tasks\Avast Secure Browser Heartbeat Task (Hourly)
2021-12-16 20:51 - 2018-04-05 09:06 - 000002375 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2021-12-16 20:51 - 2018-04-05 09:06 - 000002332 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2021-12-15 11:23 - 2016-12-25 10:05 - 000000000 ____D C:\Windows\system32\MRT
2021-12-15 11:17 - 2016-12-25 10:04 - 134458776 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2021-12-15 10:30 - 2017-03-19 14:18 - 000002170 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-12-15 10:30 - 2017-03-19 14:18 - 000002129 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-12-15 10:20 - 2021-01-14 16:32 - 000003870 _____ C:\Windows\system32\Tasks\CCleaner Update
2021-12-14 16:52 - 2016-12-23 01:14 - 000668866 _____ C:\Windows\system32\perfh005.dat
2021-12-14 16:52 - 2016-12-23 01:14 - 000141526 _____ C:\Windows\system32\perfc005.dat
2021-12-14 16:52 - 2010-11-20 22:01 - 001584554 _____ C:\Windows\system32\PerfStringBackup.INI
2021-12-14 16:52 - 2009-07-14 03:37 - 000000000 ____D C:\Windows\inf
2021-12-10 18:03 - 2020-10-23 14:31 - 000154512 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2021-12-10 18:03 - 2020-04-17 11:14 - 000393032 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2021-12-10 18:03 - 2019-01-16 16:30 - 000207368 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2021-12-10 18:03 - 2019-01-16 16:30 - 000091656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2021-12-10 18:03 - 2018-10-22 15:42 - 000039288 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2021-12-10 18:03 - 2016-12-22 17:47 - 000454408 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2021-12-10 18:03 - 2016-12-22 17:47 - 000266184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2021-12-10 18:03 - 2016-12-22 17:47 - 000092752 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2021-12-10 18:03 - 2016-12-22 17:47 - 000071912 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2021-12-10 18:02 - 2017-11-20 08:36 - 000186288 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2021-12-10 18:02 - 2016-12-22 17:47 - 000690704 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2021-12-10 18:01 - 2019-01-16 16:33 - 000308776 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2021-12-09 10:42 - 2020-10-28 12:50 - 000003344 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6ad1792fe4ccc
2021-12-09 10:42 - 2020-08-09 10:35 - 000003472 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-12-08 14:07 - 2021-08-18 16:06 - 000002804 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC - Petr
2021-12-08 14:07 - 2021-04-21 11:48 - 000003376 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2021-12-08 14:07 - 2021-04-21 11:48 - 000003248 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2021-12-08 14:07 - 2020-08-09 10:35 - 000003344 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-12-08 14:07 - 2016-12-22 17:47 - 000000000 ____D C:\Windows\system32\Tasks\AVAST Software
2021-12-08 14:07 - 2016-12-22 17:16 - 000004464 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2021-11-23 09:12 - 2009-07-14 05:53 - 000032604 _____ C:\Windows\Tasks\SCHEDLGU.TXT
==================== Files in the root of some directories ========
2021-07-16 17:49 - 2021-07-16 17:49 - 000003584 _____ () C:\Users\Petr\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2020-10-27 16:57 - 2020-10-27 16:57 - 000004096 ____H () C:\Users\Petr\AppData\Local\keyfile3.drm
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
LastRegBack: 2021-12-19 19:20
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 11-12-2021
Ran by Petr (22-12-2021 22:23:54)
Running from C:\Stahování
Microsoft Windows 7 Professional Service Pack 1 (X86) (2016-12-22 15:36:45)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-54223709-3085532525-3047887407-500 - Administrator - Disabled)
Guest (S-1-5-21-54223709-3085532525-3047887407-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-54223709-3085532525-3047887407-1002 - Limited - Enabled)
Petr (S-1-5-21-54223709-3085532525-3047887407-1000 - Administrator - Enabled) => C:\Users\Petr
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {5078598A-1FA2-C888-AA5F-A9C66537DB12}
FW: Avast Antivirus (Enabled) {D322394B-73F7-C65E-BBB0-3B81E063D6D4}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Acrobat Reader DC - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 21.007.20099 - Adobe Systems Incorporated)
Avast Premium Security (HKLM\...\Avast Antivirus) (Version: 21.10.2498 - Avast Software)
Avast Secure Browser (HKLM\...\Avast Secure Browser) (Version: 96.1.13587.111 - Autoři prohlížeče Avast Secure Browser)
Canon MP250 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP250_series) (Version: - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.88 - Piriform)
FreeCommander 2009.02b (HKLM\...\FreeCommander_is1) (Version: 2009.02 - Marek Jasinski)
Google Chrome (HKLM\...\Google Chrome) (Version: 96.0.4664.110 - Google LLC)
Google Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.123 - Google Inc.) Hidden
Malwarebytes version 4.1.2.73 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.1.2.73 - Malwarebytes)
Microsoft .NET Framework 4.8 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft Edge (HKLM\...\Microsoft Edge) (Version: 96.0.1054.62 - Microsoft Corporation)
Microsoft Office Professional 2010 (HKLM\...\Office14.SingleImage) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
MozBackup 1.5.1 (HKLM\...\MozBackup) (Version: - Pavel Cvrcek)
Mozilla Firefox (x86 cs) (HKLM\...\Mozilla Firefox 95.0.2 (x86 cs)) (Version: 95.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 95.0.2.8022 - Mozilla)
Picasa 3 (HKLM\...\Picasa 3) (Version: 3.9.141.255 - Google, Inc.)
Skype verze 8.68 (HKLM\...\Skype_is1) (Version: 8.68 - Skype Technologies S.A.)
SysTools DBX Converter version 4.3 (HKLM\...\{0BDF5B3B-040E-4355-BAF5-DA626D01A1F8}_is1) (Version: 4.3 - SysTools Software)
WinZip 23.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C2411E}) (Version: 23.0.13431 - Corel Corporation)
Xvid Video Codec (HKLM\...\Xvid Video Codec 1.3.7) (Version: 1.3.7 - Xvid Team)
Zoom (HKU\S-1-5-21-54223709-3085532525-3047887407-1000\...\ZoomUMX) (Version: 5.3.2 (53291.1011) - Zoom Video Communications, Inc.)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-54223709-3085532525-3047887407-1000_Classes\CLSID\{CB2B673F-D441-4CD4-AFBE-DC4037CA4220}\InprocServer32 -> C:\Program Files\WinZip\adxloader.WinZipExpressForOffice.dll (Corel Corporation -> )
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-12-10] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-12-10] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshlstb.dll [2019-03-18] (Corel Corporation -> WinZip Computing)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-12-10] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshlstb.dll [2019-03-18] (Corel Corporation -> WinZip Computing)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-12-10] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshlstb.dll [2019-03-18] (Corel Corporation -> WinZip Computing)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [msacm.l3acm] => C:\Windows\system32\l3codecp.acm [220672 2009-07-14] (Microsoft Windows -> Fraunhofer Institut Integrierte Schaltungen IIS)
HKLM\...\Drivers32: [VIDC.ACDV] => C:\Windows\system32\ACDV.dll [462848 2005-06-20] (ACD Systems) [File not signed]
HKLM\...\Drivers32: [vidc.XVID] => C:\Windows\system32\xvidvfw.dll [235520 2019-12-28] () [File not signed]
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]
ShortcutWithArgument: C:\Users\Petr\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Microsoft Edge (2).lnk -> C:\Program Files\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation) -> --profile-directory=Default
==================== Loaded Modules (Whitelisted) =============
2021-11-14 10:32 - 2021-11-14 10:32 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll] C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2021-11-14 10:32 - 2021-11-14 10:32 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2021-11-14 10:32 - 2021-11-14 10:32 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll] C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2021-11-14 10:32 - 2021-11-14 10:32 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll] C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2021-11-14 10:32 - 2021-11-14 10:32 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll] C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2021-11-14 10:32 - 2021-11-14 10:32 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2021-11-14 10:32 - 2021-11-14 10:32 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-environment-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\api-ms-win-crt-environment-l1-1-0.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-filesystem-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\api-ms-win-crt-filesystem-l1-1-0.dll
2021-11-14 10:32 - 2021-11-14 10:32 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-locale-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\api-ms-win-crt-locale-l1-1-0.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-math-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\api-ms-win-crt-math-l1-1-0.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-multibyte-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\api-ms-win-crt-multibyte-l1-1-0.dll
2021-11-14 10:32 - 2021-11-14 10:32 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2021-11-14 10:32 - 2021-11-14 10:32 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2021-11-14 10:32 - 2021-11-14 10:32 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-time-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\api-ms-win-crt-time-l1-1-0.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-utility-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\api-ms-win-crt-utility-l1-1-0.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\msvcp140.dll] C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\MSVCP140.dll
2021-11-14 10:32 - 2021-11-14 10:32 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\ucrtbase.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\ucrtbase.DLL
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\ucrtbase.dll] C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\ucrtbase.DLL
2021-11-14 10:32 - 2021-11-14 10:32 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\vcruntime140.dll] C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\VCRUNTIME140.dll
2021-12-22 21:45 - 2021-12-22 21:45 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\vcruntime140.dll] C:\Program Files\AVAST Software\Avast\defs\21122204\avast.local_vc142.crt\VCRUNTIME140.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Version 11) (Whitelisted) ==========
HKU\S-1-5-21-54223709-3085532525-3047887407-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.dell.com/
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 03:04 - 2020-08-09 08:17 - 000000841 _____ C:\Windows\system32\drivers\etc\hosts
127.0.0.1 localhost
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-54223709-3085532525-3047887407-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Petr\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [SPPSVC-In-TCP] => (Allow) C:\Windows\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) C:\Windows\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{9421E7B2-F7A9-4A35-8B95-D4A9483F1020}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{9A92F8CF-3D62-4D92-855B-8899CC7A094D}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Allow) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{23BD3E6A-355C-4B29-AB06-EA1F0D535073}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Allow) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{EC48A628-51C4-4520-B3AA-1F68D54233F4}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{3CF3DDA8-F3E2-465A-966E-D734796E53FB}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{1CDB625C-8722-42B9-8E56-F5CA10B354B8}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform)
FirewallRules: [{DB07A551-80AF-4405-9C89-D2AEA9306CF5}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform)
FirewallRules: [{4ADED938-66A2-4AE8-B333-4E285EF166DA}] => (Allow) C:\Users\Petr\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{681D38D1-C7FF-44A7-ABCC-838D8C8B9519}] => (Allow) C:\Program Files\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{FA8CF9DB-89D7-49D0-B6E6-7CB78542DB5C}] => (Allow) C:\Program Files\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{9C19D9F2-7713-458A-8D6B-BE4AA51EC240}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{5DD6919F-A0AC-4360-852F-355ED0B26CAA}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{E3C71D6E-6550-4637-AA9F-A8666BD91823}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{0C049D28-0917-442A-8C12-855E0176A59E}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{CFA45A03-DB8B-4703-A1F3-3341A37CB579}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{B77B8EDE-0720-43C0-B5A1-1C0132BF6539}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{0B27BBF6-DE99-4BC2-A90A-9369F56389FB}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{8266BDF9-22CA-43CB-80F0-94E284700D0A}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{BF36E497-00D8-458D-B110-21FDEEC85D73}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) [File not signed]
FirewallRules: [{F40AE950-B8C8-4FBF-9367-800BC6BD417B}] => (Allow) C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe (Avast Software s.r.o. -> AVAST Software)
==================== Restore Points =========================
20-10-2021 10:58:12 Naplánovaný kontrolní bod
27-10-2021 11:08:15 Naplánovaný kontrolní bod
04-11-2021 12:29:28 Naplánovaný kontrolní bod
10-11-2021 10:00:24 Windows Update
17-11-2021 12:24:13 Naplánovaný kontrolní bod
25-11-2021 10:37:31 Naplánovaný kontrolní bod
03-12-2021 16:38:10 Naplánovaný kontrolní bod
10-12-2021 19:58:48 Naplánovaný kontrolní bod
15-12-2021 11:16:36 Windows Update
22-12-2021 12:32:25 Naplánovaný kontrolní bod
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (12/22/2021 10:28:33 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4101) (User: )
Description: Selhalo načtení automatické aktualizace kořenového certifikátu jiného výrobce z: <http://ctldl.windowsupdate.com/msdownlo ... 5D05E4.crt>. Došlo k chybě Zvolený server nemůže provést požadovanou operaci.
.
Error: (12/22/2021 10:28:32 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4101) (User: )
Description: Selhalo načtení automatické aktualizace kořenového certifikátu jiného výrobce z: <http://ctldl.windowsupdate.com/msdownlo ... 5D05E4.crt>. Došlo k chybě Daná operace se vrátila, protože vypršel časový limit.
.
Error: (12/22/2021 10:22:33 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4101) (User: )
Description: Selhalo načtení automatické aktualizace kořenového certifikátu jiného výrobce z: <http://ctldl.windowsupdate.com/msdownlo ... 5D05E4.crt>. Došlo k chybě Zvolený server nemůže provést požadovanou operaci.
.
Error: (12/22/2021 10:22:33 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4101) (User: )
Description: Selhalo načtení automatické aktualizace kořenového certifikátu jiného výrobce z: <http://ctldl.windowsupdate.com/msdownlo ... 5D05E4.crt>. Došlo k chybě Daná operace se vrátila, protože vypršel časový limit.
.
Error: (12/22/2021 10:20:59 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4101) (User: )
Description: Selhalo načtení automatické aktualizace kořenového certifikátu jiného výrobce z: <http://ctldl.windowsupdate.com/msdownlo ... 5D05E4.crt>. Došlo k chybě Zvolený server nemůže provést požadovanou operaci.
.
Error: (12/22/2021 10:20:59 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4101) (User: )
Description: Selhalo načtení automatické aktualizace kořenového certifikátu jiného výrobce z: <http://ctldl.windowsupdate.com/msdownlo ... 5D05E4.crt>. Došlo k chybě Daná operace se vrátila, protože vypršel časový limit.
.
Error: (12/22/2021 10:19:57 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.
Error: (12/22/2021 10:17:47 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4101) (User: )
Description: Selhalo načtení automatické aktualizace kořenového certifikátu jiného výrobce z: <http://ctldl.windowsupdate.com/msdownlo ... 5D05E4.crt>. Došlo k chybě Zvolený server nemůže provést požadovanou operaci.
.
System errors:
=============
Error: (12/22/2021 10:27:48 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {BB6DF56B-CACE-11DC-9992-0019B93A3A84} se v daném časovém limitu neregistroval u služby DCOM.
Error: (12/22/2021 10:02:47 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (22:01:25, 22.12.2021) bylo neočekávané.
Error: (12/21/2021 08:28:06 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby avast! Tools bylo dosaženo časového limitu (30000 ms).
Error: (12/19/2021 06:29:16 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (18:28:04, 19.12.2021) bylo neočekávané.
Error: (12/19/2021 06:27:46 PM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Služba Avast Tools se po přijetí pokynu pro vypnutí neukončila správně.
Error: (12/19/2021 06:27:14 PM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Služba Avast Antivirus se po přijetí pokynu pro vypnutí neukončila správně.
Error: (12/19/2021 06:24:13 PM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Služba Klient zásad skupiny se po přijetí pokynu pro vypnutí neukončila správně.
Error: (12/18/2021 08:11:41 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Centrum zabezpečení byla ukončena s následující chybou:
%%16389
==================== Memory info ===========================
BIOS: Award Software International, Inc. FH 04/30/2010
Motherboard: Gigabyte Technology Co., Ltd. G31M-ES2L
Processor: Intel(R) Celeron(R) CPU E3300 @ 2.50GHz
Percentage of memory in use: 92%
Total physical RAM: 2046.49 MB
Available physical RAM: 149.08 MB
Total Virtual: 4092.98 MB
Available Virtual: 1414.12 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:465.66 GB) (Free:366.73 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: (Data) (Fixed) (Total:232.88 GB) (Free:158.68 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 54D22AD4)
Partition 1: (Active) - (Size=465.7 GB) - (Type=07 NTFS)
==========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 232.9 GB) (Disk ID: C46FBD09)
Partition 1: (Not Active) - (Size=232.9 GB) - (Type=07 NTFS)
==================== End of Addition.txt =======================
-
Rudy
- Site Admin
- Příspěvky: 118272
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalé PC
Stáhněte nový FRST (tento je 266 dní po expiraci a dejte nové logy.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Pomalé PC
příspěvěk č.17 je tam log z 22:30 z aktuálního
-
Rudy
- Site Admin
- Příspěvky: 118272
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalé PC
Omlouvám se, přehlédl jsem. Spusťte opět ADWCleaner:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/
ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Pomalé PC
# -------------------------------
# Malwarebytes AdwCleaner 8.3.1.0
# -------------------------------
# Build: 11-18-2021
# Database: 2021-12-02.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 12-23-2021
# Duration: 00:00:02
# OS: Windows 7 Professional
# Cleaned: 0
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
No malicious registry entries cleaned.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [1257 octets] - [15/12/2018 12:34:34]
AdwCleaner[S01].txt - [1318 octets] - [15/12/2018 12:40:35]
AdwCleaner[C01].txt - [1504 octets] - [15/12/2018 12:41:01]
AdwCleaner[S02].txt - [1516 octets] - [24/08/2019 17:45:22]
AdwCleaner[S03].txt - [1577 octets] - [24/08/2019 20:06:38]
AdwCleaner[C03].txt - [1765 octets] - [24/08/2019 20:07:23]
AdwCleaner[S04].txt - [1778 octets] - [21/02/2021 10:28:49]
AdwCleaner[S05].txt - [1840 octets] - [02/04/2021 20:37:55]
AdwCleaner[C05].txt - [2030 octets] - [02/04/2021 20:41:02]
AdwCleaner[S06].txt - [1962 octets] - [23/12/2021 20:11:49]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C06].txt ##########
# Malwarebytes AdwCleaner 8.3.1.0
# -------------------------------
# Build: 11-18-2021
# Database: 2021-12-02.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 12-23-2021
# Duration: 00:00:02
# OS: Windows 7 Professional
# Cleaned: 0
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
No malicious registry entries cleaned.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [1257 octets] - [15/12/2018 12:34:34]
AdwCleaner[S01].txt - [1318 octets] - [15/12/2018 12:40:35]
AdwCleaner[C01].txt - [1504 octets] - [15/12/2018 12:41:01]
AdwCleaner[S02].txt - [1516 octets] - [24/08/2019 17:45:22]
AdwCleaner[S03].txt - [1577 octets] - [24/08/2019 20:06:38]
AdwCleaner[C03].txt - [1765 octets] - [24/08/2019 20:07:23]
AdwCleaner[S04].txt - [1778 octets] - [21/02/2021 10:28:49]
AdwCleaner[S05].txt - [1840 octets] - [02/04/2021 20:37:55]
AdwCleaner[C05].txt - [2030 octets] - [02/04/2021 20:41:02]
AdwCleaner[S06].txt - [1962 octets] - [23/12/2021 20:11:49]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C06].txt ##########
-
Rudy
- Site Admin
- Příspěvky: 118272
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalé PC
Toto je OK. Otevřte poznámkový blok a zkopírujte do něj:
Uložte do C:\Stahování jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-54223709-3085532525-3047887407-1000\...\Run: [Xvid] => WScript "C:\Program Files\Xvid\CheckUpdateLauncher.vbs" "C:\Program Files\Xvid\CheckUpdate.ps1" (No File)
HKU\S-1-5-21-54223709-3085532525-3047887407-1000\...\MountPoints2: {54cae04e-ddba-11e8-a0ce-6cf049cbae7d} - F:\LGAutoRun.exe
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {DC44F6E2-077C-4500-9C48-ECF3EFE82AA1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [153752 2017-03-19] (Google Inc -> Google Inc.)
Task: {E3034B36-D419-4C1D-9A50-31D4125DC58A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [153752 2017-03-19] (Google Inc -> Google Inc.)
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
C:\Users\Petr\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Pomalé PC
Fix result of Farbar Recovery Scan Tool (x86) Version: 11-12-2021
Ran by Petr (23-12-2021 21:05:55) Run:3
Running from C:\Stahování
Loaded Profiles: Petr
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-54223709-3085532525-3047887407-1000\...\Run: [Xvid] => WScript "C:\Program Files\Xvid\CheckUpdateLauncher.vbs" "C:\Program Files\Xvid\CheckUpdate.ps1" (No File)
HKU\S-1-5-21-54223709-3085532525-3047887407-1000\...\MountPoints2: {54cae04e-ddba-11e8-a0ce-6cf049cbae7d} - F:\LGAutoRun.exe
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {DC44F6E2-077C-4500-9C48-ECF3EFE82AA1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [153752 2017-03-19] (Google Inc -> Google Inc.)
Task: {E3034B36-D419-4C1D-9A50-31D4125DC58A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [153752 2017-03-19] (Google Inc -> Google Inc.)
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
C:\Users\Petr\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
EmptyTemp:
End
*****************
Processes closed successfully.
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => removed successfully.
"HKU\S-1-5-21-54223709-3085532525-3047887407-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Xvid" => removed successfully.
HKU\S-1-5-21-54223709-3085532525-3047887407-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{54cae04e-ddba-11e8-a0ce-6cf049cbae7d} => removed successfully.
HKLM\SOFTWARE\Policies\Mozilla => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DC44F6E2-077C-4500-9C48-ECF3EFE82AA1}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DC44F6E2-077C-4500-9C48-ECF3EFE82AA1}" => removed successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{E3034B36-D419-4C1D-9A50-31D4125DC58A}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E3034B36-D419-4C1D-9A50-31D4125DC58A}" => removed successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully.
"C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore" => not found
C:\Users\Petr\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini => moved successfully
=========== EmptyTemp: ==========
BITS transfer queue => 0 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 43186606 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 170803041 B
Edge => 0 B
Chrome => 0 B
Firefox => 450033068 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 0 B
LocalService => 0 B
NetworkService => 6008 B
Petr => 89814464 B
RecycleBin => 18009091 B
EmptyTemp: => 736.1 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 21:07:01 ====
Ran by Petr (23-12-2021 21:05:55) Run:3
Running from C:\Stahování
Loaded Profiles: Petr
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-54223709-3085532525-3047887407-1000\...\Run: [Xvid] => WScript "C:\Program Files\Xvid\CheckUpdateLauncher.vbs" "C:\Program Files\Xvid\CheckUpdate.ps1" (No File)
HKU\S-1-5-21-54223709-3085532525-3047887407-1000\...\MountPoints2: {54cae04e-ddba-11e8-a0ce-6cf049cbae7d} - F:\LGAutoRun.exe
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {DC44F6E2-077C-4500-9C48-ECF3EFE82AA1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [153752 2017-03-19] (Google Inc -> Google Inc.)
Task: {E3034B36-D419-4C1D-9A50-31D4125DC58A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [153752 2017-03-19] (Google Inc -> Google Inc.)
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
C:\Users\Petr\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
EmptyTemp:
End
*****************
Processes closed successfully.
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => removed successfully.
"HKU\S-1-5-21-54223709-3085532525-3047887407-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Xvid" => removed successfully.
HKU\S-1-5-21-54223709-3085532525-3047887407-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{54cae04e-ddba-11e8-a0ce-6cf049cbae7d} => removed successfully.
HKLM\SOFTWARE\Policies\Mozilla => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DC44F6E2-077C-4500-9C48-ECF3EFE82AA1}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DC44F6E2-077C-4500-9C48-ECF3EFE82AA1}" => removed successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{E3034B36-D419-4C1D-9A50-31D4125DC58A}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E3034B36-D419-4C1D-9A50-31D4125DC58A}" => removed successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully.
"C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore" => not found
C:\Users\Petr\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini => moved successfully
=========== EmptyTemp: ==========
BITS transfer queue => 0 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 43186606 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 170803041 B
Edge => 0 B
Chrome => 0 B
Firefox => 450033068 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 0 B
LocalService => 0 B
NetworkService => 6008 B
Petr => 89814464 B
RecycleBin => 18009091 B
EmptyTemp: => 736.1 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 21:07:01 ====
Re: Pomalé PC
Po restartu stále šrotuje a ve správci úloh vidím využití fyzické paměti 80-93%
-
Rudy
- Site Admin
- Příspěvky: 118272
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalé PC
Bylo smazáno. Jak velký je adresář C:\users\Petr\Plocha?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Pomalé PC
3,44 GB to je nějak moc...
Re: Pomalé PC
Snaz sa upratat, aby velkost nepresahovala 500MB
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Pomalé PC
Promazáno, nyní je velikost 36 MB.
-
Rudy
- Site Admin
- Příspěvky: 118272
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalé PC
To už by mělo být v pořádku. Zrychlil se start?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Pomalé PC
Je to o poznání lepší, ale jak jsem psal minule, nečekám zázraky od starého počítače.
Přispějete na provoz fóra?