Additional scan result of Farbar Recovery Scan Tool (x86) Version: 24-12-2019 01
Ran by Filip (24-12-2019 11:52:59)
Running from C:\Users\Filip\Desktop
Microsoft Windows 8.1 (Update) (X86) (2016-03-30 18:32:00)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-969322255-3080378673-2421515442-500 - Administrator - Disabled)
Filip (S-1-5-21-969322255-3080378673-2421515442-1001 - Administrator - Enabled) => C:\Users\Filip
Guest (S-1-5-21-969322255-3080378673-2421515442-501 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
32 Bit HP CIO Components Installer (HKLM\...\{A80FA752-C491-4ED9-ABF0-4278563160B2}) (Version: 7.1.8 - Hewlett-Packard) Hidden
Adobe Flash Player 32 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 32.0.0.303 - Adobe)
AIO_CDB_Software (HKLM\...\{2DFDE21D-AFFE-4CDD-BBD4-3B7832BEC036}) (Version: 140.0.428.000 - Hewlett-Packard) Hidden
AIO_Scan (HKLM\...\{104066F4-5897-4067-85D3-4C88B67CCF75}) (Version: 130.0.421.000 - Hewlett-Packard) Hidden
Apowersoft Online Launcher verze 1.7.0 (HKU\S-1-5-21-969322255-3080378673-2421515442-1001\...\{20BF67A8-D81A-4489-8225-FABAA0896E2D}_is1) (Version: 1.7.0 - APOWERSOFT LIMITED)
ASUS AC Reminder (HKLM\...\{B002B54C-FFE8-4331-8F9B-90CC9366362A}) (Version: 2.0.0 - ASUS)
ASUS Live Update (HKLM\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.6.8 - ASUSTeK COMPUTER INC.)
ASUS Screen Saver (HKLM\...\{0FBEEDF8-30FA-4FA3-B31F-C9C7E7E8DFA2}) (Version: 2.0.4 - ASUS)
ASUS Smart Gesture (HKLM\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 2.2.16 - ASUS)
ATK Package (HKLM\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0035 - ASUS)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 19.8.2393 - AVAST Software)
Broadcom 802.11 Network Adapter (HKLM\...\Broadcom 802.11 Network Adapter) (Version: 5.93.99.187.1 - Broadcom Corporation)
BufferChm (HKLM\...\{FA0FF682-CC70-4C57-93CD-E276F3E7537E}) (Version: 140.0.298.000 - Hewlett-Packard) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.62 - Piriform)
DocProc (HKLM\...\{9B362566-EC1B-4700-BB9C-EC661BDE2175}) (Version: 140.0.185.000 - Hewlett-Packard) Hidden
GOM Player (HKLM\...\GOM Player) (Version: 2.2.77.5240 - Gretech Corporation)
Google Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.169 - Google Inc.) Hidden
GPBaseService2 (HKLM\...\{BB3447F6-9553-4AA9-960E-0DB5310C5779}) (Version: 140.0.297.000 - Hewlett-Packard) Hidden
HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP)
HP Photosmart Officejet and Deskjet All-In-One Driver Software (HKLM\...\{6F5B70F0-EA6C-4A5B-BB16-8390BD66B251}) (Version: 14.0 - HP)
HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP)
HP Support Solutions Framework (HKLM\...\{7C3170E8-E61A-41D9-8547-8E96445EA510}) (Version: 12.13.42.1 - HP Inc.)
HPPhotoGadget (HKLM\...\{CAE4213F-F797-439D-BD9E-79B71D115BE3}) (Version: 140.0.524.000 - Hewlett-Packard) Hidden
HPProductAssistant (HKLM\...\{150B6201-E9E6-4DFB-960E-CCBD53FBDDED}) (Version: 140.0.298.000 - Hewlett-Packard) Hidden
HPSSupply (HKLM\...\{AC35A885-0F8F-4857-B7DA-6E8DFB43E6B3}) (Version: 140.0.297.000 - Hewlett-Packard) Hidden
Intel(R) Dynamic Platform and Thermal Framework (HKLM\...\FFD10ECE-F715-4a86-9BD8-F6F47DA5DA1C) (Version: 7.1.0.479 - Intel Corporation)
Intel(R) Processor Graphics (HKLM\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3643 - Intel Corporation)
Intel(R) Trusted Execution Engine (HKLM\...\{176E2755-0A17-42C6-88E2-192AB2131278}) (Version: 1.0.0.1064 - Intel Corporation)
MarketResearch (HKLM\...\{D360FA88-17C8-4F14-B67F-13AAF9607B12}) (Version: 140.0.299.000 - Hewlett-Packard) Hidden
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.11.1137.1 - McAfee, Inc.)
McAfee True Key (HKLM\...\TrueKey) (Version: 5.1.230.7 - McAfee, LLC)
Microsoft Office (HKLM\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Preview Redistributable (x86) - 12.0.20617 (HKLM\...\{1f407217-9aec-4146-8504-e64ac959c534}) (Version: 12.0.20617.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 71.0 (x86 cs) (HKLM\...\Mozilla Firefox 71.0 (x86 cs)) (Version: 71.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 71.0.0.7275 - Mozilla)
MyPC Backup (HKLM\...\OLBPre) (Version: - MyPC Backup) <==== ATTENTION
Network (HKLM\...\{B20B30E2-3071-4A7B-8967-3A4B3932DADF}) (Version: 140.0.306.000 - Hewlett-Packard) Hidden
OCR Software by I.R.I.S. 14.0 (HKLM\...\HPOCR) (Version: 14.0 - HP)
Realtek I2S Audio (HKLM\...\{89A448AA-3301-46AA-AFC3-34F2D7C670E8}) (Version: 6.2.9600.4087 - Realtek Semiconductor Corp.)
Scan (HKLM\...\{06A1D88C-E102-4527-AF70-29FFD7AF215A}) (Version: 140.0.253.000 - Hewlett-Packard) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 14.0 - HP)
SolutionCenter (HKLM\...\{BC5DD87B-0143-4D14-AAE6-97109614DC6B}) (Version: 140.0.299.000 - Hewlett-Packard) Hidden
Toolbox (HKLM\...\{292F0F52-B62D-4E71-921B-89A682402201}) (Version: 140.0.596.000 - Hewlett-Packard) Hidden
WebReg (HKLM\...\{8EE94FD8-5F52-4463-A340-185D16328158}) (Version: 140.0.297.017 - Hewlett-Packard) Hidden
WebStorage (HKLM\...\WebStorage) (Version: 2.2.7.557 - ASUS Cloud Corporation)
Windows Driver Package - ASUS (AsusHID) Mouse (03/17/2014 3.0.0.27) (HKLM\...\A2E56402A9DA7D645E15F917A8AD8C50FDC80753) (Version: 03/17/2014 3.0.0.27 - ASUS)
WinFlash (HKLM\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.42.0 - ASUS)
Packages:
=========
ASUS PhotoDirector -> C:\Program Files\WindowsApps\F5080380.ASUSPhotoDirector_2.1.3706.2_x86__tfv7c950n6xcr [2016-05-01] (CyberLink Corp.)
ASUS PowerDirector -> C:\Program Files\WindowsApps\F5080380.ASUSPowerDirector_1.0.3618.38952_x86__tfv7c950n6xcr [2016-05-01] (CyberLink Corp.)
ASUS WebStorage -> C:\Program Files\WindowsApps\ASUSCloudCorporation.MobileFileExplorer_1.0.24.190_x86__wk4d32h0cvhem [2016-05-01] (ASUS Cloud Corporation)
MSN Money -> C:\Program Files\WindowsApps\Microsoft.BingFinance_3.0.4.336_x86__8wekyb3d8bbwe [2016-05-01] (Microsoft Corporation) [MS Ad]
MSN News -> C:\Program Files\WindowsApps\Microsoft.BingNews_3.0.4.336_x86__8wekyb3d8bbwe [2016-05-01] (Microsoft Corporation) [MS Ad]
MSN Sports -> C:\Program Files\WindowsApps\Microsoft.BingSports_3.0.4.336_x86__8wekyb3d8bbwe [2016-05-01] (Microsoft Corporation) [MS Ad]
MSN Travel -> C:\Program Files\WindowsApps\Microsoft.BingTravel_3.0.4.336_x86__8wekyb3d8bbwe [2016-05-01] (Microsoft Corporation) [MS Ad]
Music -> C:\Program Files\WindowsApps\Microsoft.ZuneMusic_2.6.672.0_x86__8wekyb3d8bbwe [2016-05-01] (Microsoft Corporation) [MS Ad]
Skype -> C:\Program Files\WindowsApps\Microsoft.SkypeApp_3.1.0.1016_x86__kzf8qxf38zg5c [2016-05-01] (Skype) [MS Ad]
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_1.1.13.8_x86__wgeqdkkx372wm [2013-12-14] (Twitter Inc.)
Windows Phone -> C:\Program Files\WindowsApps\Microsoft.WindowsPhone_1.42.1701.1_x86__8wekyb3d8bbwe [2016-09-14] (Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellExecuteHooks: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [4171480 2013-12-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_BN] -> {CC5FC992-B0AA-47CD-9DC2-83445083CBB9} => C:\Program Files\Common Files\AWS\2.2.7.557\ASUSWSShellExt.dll [2014-11-18] (ASUS Cloud Corporation.) [File not signed]
ShellIconOverlayIdentifiers: [!AsusWSShellExt_ON] -> {618A47A2-528B-4D9A-AFC8-97D3233511E3} => C:\Program Files\Common Files\AWS\2.2.7.557\ASUSWSShellExt.dll [2014-11-18] (ASUS Cloud Corporation.) [File not signed]
ShellIconOverlayIdentifiers: [!AsusWSShellExt_UN] -> {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4E} => C:\Program Files\Common Files\AWS\2.2.7.557\ASUSWSShellExt.dll [2014-11-18] (ASUS Cloud Corporation.) [File not signed]
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [BackupContextMenuExtension] -> {b1b96b20-da1d-4a3c-92c1-7229b32f2326} => C:\Program Files\Common Files\AWS\2.2.7.557\ASUSWSContextMenu.dll [2016-03-15] (ASUS Cloud Corporation -> ASUS Cloud Corporation)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2014-06-10] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [igfxOSP] -> {FA507C3F-30C6-4DCA-9EE5-2656072EEC14} => C:\Windows\system32\igfxOSP.dll [2014-06-10] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2016-04-08 10:54 - 2016-04-08 10:54 - 000060928 _____ () [File not signed] C:\Program Files\OLBPre\LinqBridge.dll
2014-11-18 09:36 - 2014-11-18 09:36 - 001479680 _____ (ASUS Cloud Corporation.) [File not signed] C:\Program Files\Common Files\AWS\2.2.7.557\ASUSWSShellExt.dll
2011-08-18 00:24 - 2011-08-18 00:24 - 000696320 _____ (Hewlett-Packard Co.) [File not signed] c:\program files\hp\digital imaging\bin\hpslpsvc32.dll
2010-08-06 10:13 - 2010-08-06 10:13 - 000044032 _____ (Hewlett-Packard) [File not signed] c:\windows\system32\hpzinw12.dll
2010-08-06 10:13 - 2010-08-06 10:13 - 000053760 _____ (Hewlett-Packard) [File not signed] c:\windows\system32\hpzipm12.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2ce.sys => ""="Driver"
==================== Association (Whitelisted) =================
==================== Internet Explorer trusted/restricted ==========
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2013-08-22 07:13 - 2019-07-24 18:05 - 000000883 _____ C:\Windows\system32\drivers\etc\hosts
0.0.0.1 mssplus.mcafee.com
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\Driver;;;C:\Program Files\Intel\TXE Components\TCS\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\TXE Components\DAL\;C:\Program Files\Intel\TXE Components\IPT\
HKU\S-1-5-21-969322255-3080378673-2421515442-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Filip\AppData\Roaming\Mozilla\Firefox\Pozadí plochy.bmp
DNS Servers: 10.255.255.10 - 10.255.255.20
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{55F26D00-58B0-4610-B288-F605B157E9A7}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{38AD6094-E600-4148-ABFD-01497410B310}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{753B2B7F-B77C-4375-A3D6-73FBB11AF993}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{5F829EE0-ACBA-499B-8D9D-8481B8A35436}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
==================== Restore Points =========================
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (12/24/2019 11:34:00 AM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: Problém zabránil odeslání dat programu Zlepšování softwaru a služeb na základě zkušeností uživatelů společnosti Microsoft, (chyba 80070005).
Error: (12/23/2019 12:22:06 PM) (Source: VSS) (EventID: 12305) (User: )
Description: Chyba služby Stínová kopie svazků: Svazek nebo disk není připojen nebo nebyl nalezen.
Kontext chyby: CreateFileW(\\?\GLOBALROOT\Device\HarddiskVolumeShadowCopy1,0xc0000000,0x00000003,...).
Operation:
Processing PostFinalCommitSnapshots
Context:
Execution Context: System Provider
Error: (12/23/2019 06:39:28 AM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: Problém zabránil odeslání dat programu Zlepšování softwaru a služeb na základě zkušeností uživatelů společnosti Microsoft, (chyba 80070005).
Error: (12/09/2019 12:55:34 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: Problém zabránil odeslání dat programu Zlepšování softwaru a služeb na základě zkušeností uživatelů společnosti Microsoft, (chyba 80070005).
Error: (12/09/2019 06:42:42 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: FILIP)
Description: Aplikaci Microsoft.BingNews_8wekyb3d8bbwe!AppexNews se nepovedlo aktivovat, protože došlo k chybě: -2144927148. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.
Error: (12/09/2019 05:48:16 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: FILIP)
Description: Aplikaci Microsoft.BingNews_8wekyb3d8bbwe!AppexNews se nepovedlo aktivovat, protože došlo k chybě: -2144927148. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.
Error: (12/09/2019 03:37:41 AM) (Source: Microsoft-Windows-Defrag) (EventID: 257) (User: )
Description: Svazek Recovery nebyl optimalizován, protože byla zjištěna chyba: The parameter is incorrect. (0x80070057).
Error: (12/08/2019 10:42:42 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: FILIP)
Description: Aplikaci Microsoft.BingNews_8wekyb3d8bbwe!AppexNews se nepovedlo aktivovat, protože došlo k chybě: -2144927148. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.
System errors:
=============
Error: (12/23/2019 01:35:26 PM) (Source: disk) (EventID: 11) (User: )
Description: Ovladač zjistil chybu řadiče na \Device\Harddisk1\DR18.
Error: (12/23/2019 01:10:45 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Software Protection neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (12/23/2019 01:10:45 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Software Protection bylo dosaženo časového limitu (30000 ms).
Error: (12/23/2019 12:43:37 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Adobe Flash Player Update Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (12/23/2019 12:43:37 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Adobe Flash Player Update Service bylo dosaženo časového limitu (30000 ms).
Error: (12/23/2019 12:22:06 PM) (Source: volsnap) (EventID: 36) (User: )
Description: Stínové kopie svazku C: byly přerušeny, protože z důvodu limitu stanoveného uživatelem se nepodařilo zvětšit úložiště stínové kopie.
Error: (12/09/2019 08:43:46 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Adobe Flash Player Update Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (12/09/2019 08:43:46 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Adobe Flash Player Update Service bylo dosaženo časového limitu (30000 ms).
Windows Defender:
===================================
Date: 2019-05-13 12:08:09.731
Description:
Prohledávání Windows Defender zjistilo chybu pri pokusu o aktualizaci podpisu.
Nová verze podpisu:
Predchozí verze podpisu: 1.293.1283.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Predchozí verze modulu: 1.1.15900.4
Kód chyby: 0x80072efe
Popis chyby :The connection with the server was terminated abnormally
Date: 2019-04-17 13:49:23.811
Description:
Prohledávání Windows Defender zjistilo chybu pri pokusu o aktualizaci podpisu.
Nová verze podpisu:
Predchozí verze podpisu: 119.0.0.0
Zdroj aktualizace: Centrum spolecnosti Microsoft pro ochranu pred škodlivým softwarem
Typ podpisu: Systém kontroly síte
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Predchozí verze modulu: 2.1.14600.4
Kód chyby: 0x80072ee7
Popis chyby :The server name or address could not be resolved
Date: 2019-04-17 13:49:18.654
Description:
Prohledávání Windows Defender zjistilo chybu pri pokusu o aktualizaci podpisu.
Nová verze podpisu:
Predchozí verze podpisu: 1.291.2121.0
Zdroj aktualizace: Centrum spolecnosti Microsoft pro ochranu pred škodlivým softwarem
Typ podpisu: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Predchozí verze modulu: 1.1.15800.1
Kód chyby: 0x80072ee2
Popis chyby :The operation timed out
Date: 2019-04-17 13:49:18.654
Description:
Prohledávání Windows Defender zjistilo chybu pri pokusu o aktualizaci podpisu.
Nová verze podpisu:
Predchozí verze podpisu: 1.291.2121.0
Zdroj aktualizace: Centrum spolecnosti Microsoft pro ochranu pred škodlivým softwarem
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Predchozí verze modulu: 1.1.15800.1
Kód chyby: 0x80072ee2
Popis chyby :The operation timed out
Date: 2019-04-17 13:38:59.796
Description:
Prohledávání Windows Defender zjistilo chybu pri pokusu o aktualizaci podpisu.
Nová verze podpisu:
Predchozí verze podpisu: 1.291.2032.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Predchozí verze modulu: 1.1.15800.1
Kód chyby: 0x80240016
Popis chyby :An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support.
CodeIntegrity:
===================================
Date: 2019-04-23 15:10:48.133
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-03-27 11:03:56.335
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-02-19 04:51:12.304
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-01-31 12:39:09.248
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-01-16 03:24:16.836
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-01-10 11:11:05.319
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2018-11-28 08:59:27.264
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2018-11-20 04:30:21.522
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. T100TA.313 08/13/2014
Motherboard: ASUSTeK COMPUTER INC. T100TA
Processor: Intel(R) Atom(TM) CPU Z3740 @ 1.33GHz
Percentage of memory in use: 89%
Total physical RAM: 1933.15 MB
Available physical RAM: 204.8 MB
Total Virtual: 4700.18 MB
Available Virtual: 817.92 MB
==================== Drives ================================
Drive c: (OS) (Fixed) (Total:28.22 GB) (Free:0.86 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (Data1) (Fixed) (Total:465.76 GB) (Free:461.83 GB) NTFS
\\?\Volume{d62c6061-95e2-4f59-8ac9-7fa03192058f}\ (Recovery) (Fixed) (Total:0.68 GB) (Free:0.39 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 29.1 GB) (Disk ID: 0F449B5E)
Partition: GPT.
==========================================================
Disk: 1 (Size: 465.8 GB) (Disk ID: 4F39B478)
Partition: GPT.
==================== End of Addition.txt =======================
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 24-12-2019 01
Ran by Filip (administrator) on FILIP (ASUSTeK COMPUTER INC. T100TA) (24-12-2019 11:50:48)
Running from C:\Users\Filip\Desktop
Loaded Profiles: Filip (Available Profiles: Filip)
Platform: Microsoft Windows 8.1 (Update) (X86) Language: Angličtina (Spojené království)
Default browser: FF
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
() [File not signed] C:\Program Files\OLBPre\OLBPre.exe
(ASUS Cloud Corporation -> ASUS Cloud Corporation) C:\Program Files\ASUS\WebStorage\2.2.7.557\AsusWSPanel.exe
(ASUS Cloud Corporation) [File not signed] C:\Program Files\ASUS\WebStorage\2.0.3.226\AsusWSWinService.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer INC.) C:\Program Files\ASUS\ASUS AC Reminder\ACReminderSrv.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files\ASUS\ATK Package\ATK Hotkey\AsHidSrv.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer INC.) C:\ProgramData\AsTouchPanel\AsPatchTouchPanel.exe
(ASUSTeK Computer Inc. -> AsusTek) C:\Program Files\ASUS\ASUS Smart Gesture\AsTPCenter\x86\AsusTPLoader.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(HP Inc. -> HP Inc.) C:\Program Files\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Intel Corporation - Client Components Group -> Intel Corporation) C:\Program Files\Intel\TXE Components\DAL\jhi_service.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxTray.exe
(Intel MCG PIV Tablet Validation -> Intel Corporation) C:\Windows\System32\DptfParticipantProcessorService.exe
(Intel MCG PIV Tablet Validation -> Intel Corporation) C:\Windows\System32\DptfPolicyCriticalService.exe
(Intel MCG PIV Tablet Validation -> Intel Corporation) C:\Windows\System32\DptfPolicyLpmService.exe
(Intel MCG PIV Tablet Validation -> Intel Corporation) C:\Windows\System32\DptfPolicyLpmServiceHelper.exe
(Intel(R) Corporation) [File not signed] C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.11.1137\SSScheduler.exe
(McAfee, Inc. -> McAfee, LLC.) C:\Program Files\McAfee\TrueKey\McAfee.TrueKey.Service.exe
(McAfee, Inc. -> McAfee, LLC.) C:\Program Files\McAfee\TrueKey\McAfee.TrueKey.ServiceHelper.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Piriform Software Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Realtek Semiconductor) [File not signed] C:\Program Files\Realtek\Audio\AP\RtkNGUI.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [ASUSPRP] => C:\Program Files\ASUS\APRP\APRP.EXE [3216032 2013-12-13] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) [File not signed]
HKLM\...\Run: [WebStorage] => C:\Program Files\ASUS\WebStorage\2.2.7.557\ASUSWSLoader.exe [63272 2016-03-15] (ASUS Cloud Corporation -> )
HKLM\...\Run: [RtkNGUI] => C:\Program Files\Realtek\Audio\AP\RtkNGUI.exe [2912256 2014-01-17] (Realtek Semiconductor) [File not signed]
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Run: [DptfPolicyLpmServiceHelper] => C:\Windows\system32\DptfPolicyLpmServiceHelper.exe [81360 2014-01-22] (Intel MCG PIV Tablet Validation -> Intel Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [232840 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
HKU\S-1-5-21-969322255-3080378673-2421515442-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-16] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-969322255-3080378673-2421515442-1001\...\MountPoints2: {453a4696-475b-11e8-975e-40167e925b5f} - "E:\Lenovo_Suite.exe"
HKU\S-1-5-21-969322255-3080378673-2421515442-1001\...\MountPoints2: {99c782c5-9154-11e7-9743-40167e925b5f} - "E:\Lenovo_Suite.exe"
HKU\S-1-5-21-969322255-3080378673-2421515442-1001\...\MountPoints2: {ec1a3365-ed02-11e7-9751-40167e925b5f} - "E:\Lenovo_Suite.exe"
HKU\S-1-5-21-969322255-3080378673-2421515442-1001\...\MountPoints2: {ee8baaf3-d6a3-11e8-9770-40167e925b5f} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-969322255-3080378673-2421515442-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Bubbles.scr [778752 2014-10-29] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{B7724AE5-1135-4889-8A5F-CA98BE6CA1ED}] -> C:\Program Files\McAfee\TrueKey\McAfee.TrueKey.CredentialProvider.dll [2018-10-10] (McAfee, Inc. -> McAfee, LLC.)
Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter "C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter" "C:\Program Files\McAfee\TrueKey\McAfeeTrueKeyPasswordFilter"
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2019-07-24]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.1137\SSScheduler.exe (McAfee, Inc. -> McAfee, Inc.)
Startup: C:\Users\Filip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyPC Backup.lnk [2016-04-08]
ShortcutTarget: MyPC Backup.lnk -> C:\Program Files\OLBPre\OLBPre.exe () [File not signed]
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {092D8C00-9CA3-4278-92DB-B22EE642D313} - System32\Tasks\ASUS AC Reminder => C:\Program Files\ASUS\ASUS AC Reminder\ACReminderSrv.exe [378992 2013-12-23] (ASUSTeK Computer Inc. -> ASUSTek Computer INC.)
Task: {0DFDA773-1251-4292-8855-3628B5DB546F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater – Install HPSA => C:\Program Files\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [655736 2019-07-31] (HP Inc. -> HP Inc.)
Task: {15A801D6-7ACF-40A8-B4D0-503126B25E89} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [655736 2019-07-31] (HP Inc. -> HP Inc.)
Task: {1C4F6141-DA5C-4944-AEEB-D18320E0D4E7} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [145272 2019-10-31] (HP Inc. -> HP Inc.)
Task: {298FD637-CF69-4793-8608-5428B8443F03} - System32\Tasks\ASUS Patch for Touch Panel => C:\ProgramData\AsTouchPanel\AsPatchTouchPanel.exe [144512 2013-01-09] (ASUSTeK Computer Inc. -> ASUSTek Computer INC.)
Task: {39245206-2A84-497D-B53B-F8C9BA5DEB19} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-16] (Piriform Software Ltd -> Piriform Ltd)
Task: {414BED96-D502-45DA-B9CA-ADC830E0D69D} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [109880 2014-01-14] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {46502E1A-4329-4A5B-BDCD-A86B4E6419AA} - System32\Tasks\Update Checker => C:\Program Files\ASUS\ASUS Live Update\UpdateChecker.exe [143672 2019-04-02] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
Task: {58C330F1-51C0-4A56-A210-E216A11AB025} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3250056 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
Task: {6C43B0E0-B189-4EF4-8377-470D492B4378} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\system32\Macromed\Flash\FlashUtil32_32_0_0_303_Plugin.exe [1457720 2019-12-23] (Adobe Inc. -> Adobe)
Task: {91C3A2E7-3799-4FF8-AEB7-395DDBE8C806} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files\ASUS\ASUS Smart Gesture\AsTPCenter\x86\AsusTPLauncher.exe [17208 2014-04-08] (ASUSTeK Computer Inc. -> AsusTek)
Task: {95F22C93-F989-43C4-AAE0-6737390D7810} - System32\Tasks\LaunchPreSignup => C:\Program Files\OLBPre\OLBPre.exe [2474496 2016-04-08] () [File not signed] <==== ATTENTION
Task: {B5A79897-F5A9-4B83-83BE-7B58F3C1F3E0} - System32\Tasks\McAfee Remediation (Prepare) => C:\Program Files\Common Files\AV\McAfee VirusScan\upgrade.exe [3692792 2018-09-11] (McAfee, Inc. -> McAfee, Inc.)
Task: {C3588880-1698-4B69-8B38-913407506CD9} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-12-23] (Adobe Inc. -> Adobe)
Task: {E05914FB-7609-425F-B420-F814B91A3CC9} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-16] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {E415BDCB-3436-4AE7-9682-FB8D8E584533} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1542536 2019-09-23] (AVAST Software s.r.o. -> AVAST Software)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: 0.0.0.1 mssplus.mcafee.com
Tcpip\Parameters: [DhcpNameServer] 10.255.255.10 10.255.255.20
Tcpip\..\Interfaces\{CE7AB9EE-CFDE-4479-BE22-7AC8A9D07756}: [DhcpNameServer] 10.255.255.10 10.255.255.20
Internet Explorer:
==================
HKU\S-1-5-21-969322255-3080378673-2421515442-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.centrum.cz/
HKU\S-1-5-21-969322255-3080378673-2421515442-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus13.msn.com/?pc=ASJB
SearchScopes: HKU\S-1-5-21-969322255-3080378673-2421515442-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-969322255-3080378673-2421515442-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\McAfee\TrueKey\MSIE\truekey_ie.dll [2018-04-23] (McAfee, Inc. -> Intel Security)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-18] (Microsoft Corporation -> Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
Toolbar: HKLM - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\McAfee\TrueKey\MSIE\truekey_ie.dll [2018-04-23] (McAfee, Inc. -> Intel Security)
FireFox:
========
FF DefaultProfile: prbb2jq9.default
FF ProfilePath: C:\Users\Filip\AppData\Roaming\Mozilla\Firefox\Profiles\prbb2jq9.default [2019-12-24]
FF Homepage: Mozilla\Firefox\Profiles\prbb2jq9.default -> hxxps://www.centrum.cz/
FF Session Restore: Mozilla\Firefox\Profiles\prbb2jq9.default -> is enabled.
FF Extension: (Pomocník GIVT.cz) - C:\Users\Filip\AppData\Roaming\Mozilla\Firefox\Profiles\prbb2jq9.default\Extensions\@givt-toolbar-cz.xpi [2019-03-21]
FF Extension: (Avast Online Security) - C:\Users\Filip\AppData\Roaming\Mozilla\Firefox\Profiles\prbb2jq9.default\Extensions\wrc@avast.com.xpi [2019-12-20]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_32_0_0_303.dll [2019-12-23] (Adobe Inc. -> )
FF Plugin: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files\Intel\TXE Components\IPT\npIntelWebAPIIPT.dll [2013-07-12] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files\Intel\TXE Components\IPT\npIntelWebAPIUpdater.dll [2013-07-12] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AsHidService; C:\Program Files\ASUS\ATK Package\ATK Hotkey\AsHidSrv.exe [103224 2013-09-09] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
R2 ASLDRService; C:\Program Files\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe [115512 2014-03-26] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
R2 Asus WebStorage Windows Service; C:\Program Files\ASUS\WebStorage\2.0.3.226\AsusWSWinService.exe [71680 2013-08-16] (ASUS Cloud Corporation) [File not signed]
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [5035312 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
R2 ATKGFNEXSrv; C:\Program Files\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [96896 2011-11-21] (ASUSTeK Computer Inc. -> ASUS)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [859096 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
S2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [1677016 2014-11-05] (Broadcom Corporation -> Broadcom Corporation.)
S3 cphs; C:\Windows\system32\IntelCpHeciSvc.exe [278344 2014-06-10] (Intel Corporation - pGFX -> Intel Corporation)
R2 DptfParticipantProcessorService; C:\Windows\system32\DptfParticipantProcessorService.exe [83920 2014-01-22] (Intel MCG PIV Tablet Validation -> Intel Corporation)
R2 DptfPolicyCriticalService; C:\Windows\system32\DptfPolicyCriticalService.exe [96720 2014-01-22] (Intel MCG PIV Tablet Validation -> Intel Corporation)
R2 DptfPolicyLpmService; C:\Windows\system32\DptfPolicyLpmService.exe [90576 2014-01-22] (Intel MCG PIV Tablet Validation -> Intel Corporation)
R2 HPSLPSVC; C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL [696320 2011-08-18] (Hewlett-Packard Co.) [File not signed]
R2 HPSupportSolutionsFrameworkService; C:\Program Files\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [360312 2019-10-14] (HP Inc. -> HP Inc.)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [277320 2014-06-10] (Intel Corporation - pGFX -> Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [586752 2013-07-01] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [637912 2013-07-01] (Intel® Trusted Connect Service -> Intel(R) Corporation)
R2 jhi_service; C:\Program Files\Intel\TXE Components\DAL\jhi_service.exe [168216 2014-01-15] (Intel Corporation - Client Components Group -> Intel Corporation)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.1137\McCHSvc.exe [325408 2019-07-18] (McAfee, Inc. -> McAfee, Inc.)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [44032 2010-08-06] (Hewlett-Packard) [File not signed]
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [53760 2010-08-06] (Hewlett-Packard) [File not signed]
R2 TrueKey; C:\Program Files\McAfee\TrueKey\McAfee.TrueKey.Service.exe [274176 2018-10-10] (McAfee, Inc. -> McAfee, LLC.)
S2 TrueKeyScheduler; C:\Program Files\McAfee\TrueKey\McTkSchedulerService.exe [274176 2018-10-10] (McAfee, Inc. -> McAfee, LLC.)
R2 TrueKeyServiceHelper; C:\Program Files\McAfee\TrueKey\McAfee.TrueKey.ServiceHelper.exe [164152 2018-10-10] (McAfee, Inc. -> McAfee, LLC.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [280872 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103696 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AgereSoftModem; C:\Windows\system32\DRIVERS\AGRSM.sys [1035776 2013-06-18] (Microsoft Windows -> LSI Corp)
R2 ASMMAP; C:\Program Files\ASUS\ATK Package\ATKGFNEX\ASMMAP.sys [13880 2009-07-02] (ASUSTeK Computer Inc. -> ASUS)
S3 AsusHID; C:\Windows\System32\drivers\AsusHID.sys [68888 2014-04-08] (ASUSTeK Computer Inc. -> ASUS Corporation)
R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [35512 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [174712 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [224008 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [169408 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [59368 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [211088 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [41200 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [145048 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [95168 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [73312 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [691528 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [394856 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [176760 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [277408 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
R1 ATKWMIACPIIO; C:\Program Files\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi.sys [17720 2013-07-02] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
R3 BCMSDH43XX; C:\Windows\system32\DRIVERS\bcmdhd63.sys [304344 2018-08-06] (Broadcom Corporation -> Broadcom Corp)
S3 btwampfl; C:\Windows\system32\DRIVERS\btwampfl.sys [144600 2014-11-05] (Broadcom Corporation -> Broadcom Corporation.)
R3 BtwSerialBus; C:\Windows\system32\DRIVERS\BtwSerialBus.sys [130776 2014-11-05] (Broadcom Corporation -> Broadcom Corporation.)
R3 camera; C:\Windows\system32\DRIVERS\camera.sys [345088 2013-12-02] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
R3 CM3218x; C:\Windows\system32\DRIVERS\WUDFRd.sys [190976 2014-10-29] (Microsoft Windows -> Microsoft Corporation)
R3 CPLMACPI; C:\Windows\system32\DRIVERS\CPLMACPI.sys [16488 2013-09-06] (Capella Microsystems Inc. -> Capella Microsystems, Inc.)
S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [137632 2012-10-19] (Hewlett-Packard Company -> Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [22432 2012-10-19] (Hewlett-Packard Company -> Windows (R) Win 7 DDK provider)
S3 dot4usb; C:\Windows\system32\DRIVERS\dot4usb.sys [42912 2012-10-19] (Hewlett-Packard Company -> Microsoft Corporation)
R3 DptfDevDBPT; C:\Windows\system32\DRIVERS\DptfDevPower.sys [25552 2014-01-22] (Intel MCG PIV Tablet Validation -> Intel Corporation)
R3 DptfDevDisplay; C:\Windows\system32\DRIVERS\DptfDevDisplay.sys [28112 2014-01-22] (Intel MCG PIV Tablet Validation -> Intel Corporation)
R3 DptfDevGen; C:\Windows\system32\DRIVERS\DptfDevGen.sys [36304 2014-01-22] (Intel MCG PIV Tablet Validation -> Intel Corporation)
R3 DptfDevProc; C:\Windows\system32\DRIVERS\DptfDevProc.sys [80848 2014-01-22] (Intel MCG PIV Tablet Validation -> Intel Corporation)
R3 DptfManager; C:\Windows\system32\DRIVERS\DptfManager.sys [181712 2014-01-22] (Intel MCG PIV Tablet Validation -> Intel Corporation)
R3 GPIO; C:\Windows\System32\drivers\iaiogpioe.sys [23552 2014-03-18] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
R3 GpioVirtual; C:\Windows\System32\drivers\iaiogpiovirtual.sys [16896 2014-03-18] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
R3 HIDSwitch; C:\Windows\System32\drivers\AsHIDSwitch.sys [17720 2013-10-08] (ASUSTeK Computer Inc. -> ASUS)
R3 iaioi2c; C:\Windows\System32\drivers\iaioi2ce.sys [58368 2014-03-18] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
R3 iaiouart; C:\Windows\System32\drivers\iaiouart.sys [87552 2014-03-18] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
S0 iaStorA; C:\Windows\System32\drivers\iaStorA.sys [505192 2013-08-09] (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation)
S3 intaud_WaveExtensible; C:\Windows\system32\drivers\intelaud.sys [32152 2014-05-06] (Intel Wireless Display -> Intel Corporation)
R3 IntelSST; C:\Windows\system32\drivers\isstrtc.sys [259584 2014-04-03] (Microsoft Windows Hardware Compatibility Publisher -> Intel(R) Corporation)
R3 INVN_MotionApps; C:\Windows\system32\DRIVERS\WUDFRd.sys [190976 2014-10-29] (Microsoft Windows -> Microsoft Corporation)
R3 iwdbus; C:\Windows\System32\drivers\iwdbus.sys [23448 2014-05-06] (Intel Wireless Display -> Intel Corporation)
R0 MBI; C:\Windows\System32\drivers\MBI.sys [21456 2014-03-18] (Intel MCG PIV Tablet Validation -> Intel Corporation)
R3 MT9M114; C:\Windows\System32\drivers\MT9M114.sys [38912 2013-12-02] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
S3 NETwNs32; C:\Windows\system32\DRIVERS\Netwsn00.sys [10372096 2013-06-18] (Microsoft Windows -> Intel Corporation)
R3 PMIC; C:\Windows\System32\drivers\PMIC.sys [48128 2014-03-18] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
R3 rtii2sac; C:\Windows\system32\DRIVERS\rtii2sac.sys [169176 2014-03-14] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
R3 SensorsServiceDriver; C:\Windows\System32\drivers\WUDFRd.sys [190976 2014-10-29] (Microsoft Windows -> Microsoft Corporation)
R3 TXEI; C:\Windows\System32\drivers\TXEI.sys [75792 2014-03-18] (Intel Corporation - Client Components Group -> Intel Corporation)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [38920 2017-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [231256 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [85336 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
R3 WUDFWpdMtp; C:\Windows\System32\drivers\WUDFRd.sys [190976 2014-10-29] (Microsoft Windows -> Microsoft Corporation)
U0 msahci; system32\drivers\msahci.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-12-24 11:50 - 2019-12-24 11:52 - 000025893 _____ C:\Users\Filip\Desktop\FRST.txt
2019-12-24 11:48 - 2019-12-24 11:51 - 000000000 ____D C:\FRST
2019-12-24 11:47 - 2019-12-24 11:47 - 002000384 _____ (Farbar) C:\Users\Filip\Desktop\FRST.exe
2019-12-06 08:36 - 2019-12-09 07:07 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-12-06 07:36 - 2019-12-06 07:38 - 003447614 _____ C:\Users\Filip\Downloads\final.pdf
2019-12-05 14:38 - 2019-12-05 14:38 - 000168654 _____ C:\Users\Filip\Downloads\5.12.19.pdf
2019-11-27 11:40 - 2019-11-27 11:40 - 000118275 _____ C:\Users\Filip\Downloads\HYPNOS_stage_plot_+_input_list_2019.pdf
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-12-24 11:40 - 2016-03-30 20:31 - 000003914 _____ C:\Windows\system32\Tasks\User_Feed_Synchronization-{C59EC562-27FC-4DF2-847D-22608E0588B7}
2019-12-24 11:34 - 2016-04-26 11:21 - 000000000 __RDO C:\Users\Filip\OneDrive
2019-12-24 11:33 - 2017-01-09 10:47 - 000000000 ____D C:\Users\Filip\AppData\LocalLow\Mozilla
2019-12-23 12:13 - 2013-08-22 09:05 - 000000000 ____D C:\Windows\CbsTemp
2019-12-23 06:37 - 2018-03-13 22:39 - 000004456 _____ C:\Windows\system32\Tasks\Adobe Flash Player NPAPI Notifier
2019-12-23 06:37 - 2016-09-11 16:13 - 000004372 _____ C:\Windows\system32\Tasks\Adobe Flash Player Updater
2019-12-23 06:37 - 2013-08-22 09:17 - 000000000 ____D C:\Windows\system32\Macromed
2019-12-23 06:27 - 2016-03-30 20:42 - 000736042 _____ C:\Windows\system32\perfh005.dat
2019-12-23 06:27 - 2016-03-30 20:42 - 000149674 _____ C:\Windows\system32\perfc005.dat
2019-12-23 06:27 - 2013-12-13 21:46 - 001739092 _____ C:\Windows\system32\PerfStringBackup.INI
2019-12-23 06:27 - 2013-08-22 07:21 - 000000000 ____D C:\Windows\inf
2019-12-20 11:32 - 2018-06-06 11:15 - 000004128 _____ C:\Windows\system32\Tasks\CCleaner Update
2019-12-20 10:48 - 2019-05-27 11:52 - 000000000 ____D C:\Users\Filip\AppData\Local\AVAST Software
2019-12-09 11:05 - 2016-03-30 19:37 - 000003598 _____ C:\Windows\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-969322255-3080378673-2421515442-1001
2019-12-09 10:31 - 2019-05-27 11:35 - 000004168 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2019-12-09 07:07 - 2016-05-01 19:06 - 000001131 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2019-12-09 07:07 - 2016-05-01 19:06 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service
2019-12-06 14:34 - 2019-06-04 10:50 - 000000000 _____ C:\Windows\system32\last.dump
2019-11-26 13:35 - 2019-11-18 12:28 - 000022128 _____ C:\Users\Filip\Downloads\Týnfest_19.xlsx
==================== Files in the root of some directories ========
2016-05-01 19:05 - 2016-05-01 19:05 - 044294648 _____ () C:\Users\Filip\Firefox_Setup_46.0.exe
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
LastRegBack: 2019-11-15 12:41
==================== End of FRST.txt ========================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kontrolu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 118253
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/
ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu
Nevám, co dělám špatně, ale log se neobjevil, ani soubor na "C". Po scanu nebyla možnost "čištění", pouze přesun do karantény a následné smazání. Když jsem udělal scan po druhé, nic nebylo nalezeno.
-
Rudy
- Site Admin
- Příspěvky: 118253
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu
Už v karanténě jsou soubory neškodné. Proto byl druhý sken čistý. Dejte nové logy FRST+Addition.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 25-12-2019
Ran by Filip (25-12-2019 20:06:44)
Running from C:\Users\Filip\Desktop
Microsoft Windows 8.1 (Update) (X86) (2016-03-30 18:32:00)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-969322255-3080378673-2421515442-500 - Administrator - Disabled)
Filip (S-1-5-21-969322255-3080378673-2421515442-1001 - Administrator - Enabled) => C:\Users\Filip
Guest (S-1-5-21-969322255-3080378673-2421515442-501 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
32 Bit HP CIO Components Installer (HKLM\...\{A80FA752-C491-4ED9-ABF0-4278563160B2}) (Version: 7.1.8 - Hewlett-Packard) Hidden
Adobe Flash Player 32 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 32.0.0.303 - Adobe)
AIO_CDB_Software (HKLM\...\{2DFDE21D-AFFE-4CDD-BBD4-3B7832BEC036}) (Version: 140.0.428.000 - Hewlett-Packard) Hidden
AIO_Scan (HKLM\...\{104066F4-5897-4067-85D3-4C88B67CCF75}) (Version: 130.0.421.000 - Hewlett-Packard) Hidden
Apowersoft Online Launcher verze 1.7.0 (HKU\S-1-5-21-969322255-3080378673-2421515442-1001\...\{20BF67A8-D81A-4489-8225-FABAA0896E2D}_is1) (Version: 1.7.0 - APOWERSOFT LIMITED)
ASUS AC Reminder (HKLM\...\{B002B54C-FFE8-4331-8F9B-90CC9366362A}) (Version: 2.0.0 - ASUS)
ASUS Live Update (HKLM\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.6.8 - ASUSTeK COMPUTER INC.)
ASUS Screen Saver (HKLM\...\{0FBEEDF8-30FA-4FA3-B31F-C9C7E7E8DFA2}) (Version: 2.0.4 - ASUS)
ASUS Smart Gesture (HKLM\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 2.2.16 - ASUS)
ATK Package (HKLM\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0035 - ASUS)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 19.8.2393 - AVAST Software)
Broadcom 802.11 Network Adapter (HKLM\...\Broadcom 802.11 Network Adapter) (Version: 5.93.99.187.1 - Broadcom Corporation)
BufferChm (HKLM\...\{FA0FF682-CC70-4C57-93CD-E276F3E7537E}) (Version: 140.0.298.000 - Hewlett-Packard) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.62 - Piriform)
DocProc (HKLM\...\{9B362566-EC1B-4700-BB9C-EC661BDE2175}) (Version: 140.0.185.000 - Hewlett-Packard) Hidden
GOM Player (HKLM\...\GOM Player) (Version: 2.2.77.5240 - Gretech Corporation)
Google Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.169 - Google Inc.) Hidden
GPBaseService2 (HKLM\...\{BB3447F6-9553-4AA9-960E-0DB5310C5779}) (Version: 140.0.297.000 - Hewlett-Packard) Hidden
HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP)
HP Photosmart Officejet and Deskjet All-In-One Driver Software (HKLM\...\{6F5B70F0-EA6C-4A5B-BB16-8390BD66B251}) (Version: 14.0 - HP)
HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP)
HP Support Solutions Framework (HKLM\...\{7C3170E8-E61A-41D9-8547-8E96445EA510}) (Version: 12.13.42.1 - HP Inc.)
HPPhotoGadget (HKLM\...\{CAE4213F-F797-439D-BD9E-79B71D115BE3}) (Version: 140.0.524.000 - Hewlett-Packard) Hidden
HPProductAssistant (HKLM\...\{150B6201-E9E6-4DFB-960E-CCBD53FBDDED}) (Version: 140.0.298.000 - Hewlett-Packard) Hidden
HPSSupply (HKLM\...\{AC35A885-0F8F-4857-B7DA-6E8DFB43E6B3}) (Version: 140.0.297.000 - Hewlett-Packard) Hidden
Intel(R) Dynamic Platform and Thermal Framework (HKLM\...\FFD10ECE-F715-4a86-9BD8-F6F47DA5DA1C) (Version: 7.1.0.479 - Intel Corporation)
Intel(R) Processor Graphics (HKLM\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3643 - Intel Corporation)
Intel(R) Trusted Execution Engine (HKLM\...\{176E2755-0A17-42C6-88E2-192AB2131278}) (Version: 1.0.0.1064 - Intel Corporation)
Malwarebytes version 4.0.4.49 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.0.4.49 - Malwarebytes)
MarketResearch (HKLM\...\{D360FA88-17C8-4F14-B67F-13AAF9607B12}) (Version: 140.0.299.000 - Hewlett-Packard) Hidden
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.11.1512.1 - McAfee, LLC.)
McAfee True Key (HKLM\...\TrueKey) (Version: 5.1.230.7 - McAfee, LLC)
Microsoft Office (HKLM\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Preview Redistributable (x86) - 12.0.20617 (HKLM\...\{1f407217-9aec-4146-8504-e64ac959c534}) (Version: 12.0.20617.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 71.0 (x86 cs) (HKLM\...\Mozilla Firefox 71.0 (x86 cs)) (Version: 71.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 71.0.0.7275 - Mozilla)
Network (HKLM\...\{B20B30E2-3071-4A7B-8967-3A4B3932DADF}) (Version: 140.0.306.000 - Hewlett-Packard) Hidden
OCR Software by I.R.I.S. 14.0 (HKLM\...\HPOCR) (Version: 14.0 - HP)
Realtek I2S Audio (HKLM\...\{89A448AA-3301-46AA-AFC3-34F2D7C670E8}) (Version: 6.2.9600.4087 - Realtek Semiconductor Corp.)
Scan (HKLM\...\{06A1D88C-E102-4527-AF70-29FFD7AF215A}) (Version: 140.0.253.000 - Hewlett-Packard) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 14.0 - HP)
SolutionCenter (HKLM\...\{BC5DD87B-0143-4D14-AAE6-97109614DC6B}) (Version: 140.0.299.000 - Hewlett-Packard) Hidden
Toolbox (HKLM\...\{292F0F52-B62D-4E71-921B-89A682402201}) (Version: 140.0.596.000 - Hewlett-Packard) Hidden
WebReg (HKLM\...\{8EE94FD8-5F52-4463-A340-185D16328158}) (Version: 140.0.297.017 - Hewlett-Packard) Hidden
WebStorage (HKLM\...\WebStorage) (Version: 2.2.7.557 - ASUS Cloud Corporation)
Windows Driver Package - ASUS (AsusHID) Mouse (03/17/2014 3.0.0.27) (HKLM\...\A2E56402A9DA7D645E15F917A8AD8C50FDC80753) (Version: 03/17/2014 3.0.0.27 - ASUS)
WinFlash (HKLM\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.42.0 - ASUS)
Packages:
=========
ASUS PhotoDirector -> C:\Program Files\WindowsApps\F5080380.ASUSPhotoDirector_2.1.3706.2_x86__tfv7c950n6xcr [2016-05-01] (CyberLink Corp.)
ASUS PowerDirector -> C:\Program Files\WindowsApps\F5080380.ASUSPowerDirector_1.0.3618.38952_x86__tfv7c950n6xcr [2016-05-01] (CyberLink Corp.)
ASUS WebStorage -> C:\Program Files\WindowsApps\ASUSCloudCorporation.MobileFileExplorer_1.0.24.190_x86__wk4d32h0cvhem [2016-05-01] (ASUS Cloud Corporation)
MSN Money -> C:\Program Files\WindowsApps\Microsoft.BingFinance_3.0.4.336_x86__8wekyb3d8bbwe [2016-05-01] (Microsoft Corporation) [MS Ad]
MSN News -> C:\Program Files\WindowsApps\Microsoft.BingNews_3.0.4.336_x86__8wekyb3d8bbwe [2016-05-01] (Microsoft Corporation) [MS Ad]
MSN Sports -> C:\Program Files\WindowsApps\Microsoft.BingSports_3.0.4.336_x86__8wekyb3d8bbwe [2016-05-01] (Microsoft Corporation) [MS Ad]
MSN Travel -> C:\Program Files\WindowsApps\Microsoft.BingTravel_3.0.4.336_x86__8wekyb3d8bbwe [2016-05-01] (Microsoft Corporation) [MS Ad]
Music -> C:\Program Files\WindowsApps\Microsoft.ZuneMusic_2.6.672.0_x86__8wekyb3d8bbwe [2016-05-01] (Microsoft Corporation) [MS Ad]
Skype -> C:\Program Files\WindowsApps\Microsoft.SkypeApp_3.1.0.1016_x86__kzf8qxf38zg5c [2016-05-01] (Skype) [MS Ad]
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_1.1.13.8_x86__wgeqdkkx372wm [2013-12-14] (Twitter Inc.)
Windows Phone -> C:\Program Files\WindowsApps\Microsoft.WindowsPhone_1.42.1701.1_x86__8wekyb3d8bbwe [2016-09-14] (Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellExecuteHooks: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [4171480 2013-12-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_BN] -> {CC5FC992-B0AA-47CD-9DC2-83445083CBB9} => C:\Program Files\Common Files\AWS\2.2.7.557\ASUSWSShellExt.dll [2014-11-18] (ASUS Cloud Corporation.) [File not signed]
ShellIconOverlayIdentifiers: [!AsusWSShellExt_ON] -> {618A47A2-528B-4D9A-AFC8-97D3233511E3} => C:\Program Files\Common Files\AWS\2.2.7.557\ASUSWSShellExt.dll [2014-11-18] (ASUS Cloud Corporation.) [File not signed]
ShellIconOverlayIdentifiers: [!AsusWSShellExt_UN] -> {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4E} => C:\Program Files\Common Files\AWS\2.2.7.557\ASUSWSShellExt.dll [2014-11-18] (ASUS Cloud Corporation.) [File not signed]
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [BackupContextMenuExtension] -> {b1b96b20-da1d-4a3c-92c1-7229b32f2326} => C:\Program Files\Common Files\AWS\2.2.7.557\ASUSWSContextMenu.dll [2016-03-15] (ASUS Cloud Corporation -> ASUS Cloud Corporation)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-12-25] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2014-06-10] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [igfxOSP] -> {FA507C3F-30C6-4DCA-9EE5-2656072EEC14} => C:\Windows\system32\igfxOSP.dll [2014-06-10] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-12-25] (Malwarebytes Corporation -> Malwarebytes)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2014-11-18 09:36 - 2014-11-18 09:36 - 001479680 _____ (ASUS Cloud Corporation.) [File not signed] C:\Program Files\Common Files\AWS\2.2.7.557\ASUSWSShellExt.dll
2011-08-18 00:24 - 2011-08-18 00:24 - 000696320 _____ (Hewlett-Packard Co.) [File not signed] c:\program files\hp\digital imaging\bin\hpslpsvc32.dll
2010-08-06 10:13 - 2010-08-06 10:13 - 000044032 _____ (Hewlett-Packard) [File not signed] c:\windows\system32\hpzinw12.dll
2010-08-06 10:13 - 2010-08-06 10:13 - 000053760 _____ (Hewlett-Packard) [File not signed] c:\windows\system32\hpzipm12.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2ce.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) =================
==================== Internet Explorer trusted/restricted ==========
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2013-08-22 07:13 - 2019-12-25 18:30 - 000000885 _____ C:\Windows\system32\drivers\etc\hosts
0.0.0.1 mssplus.mcafee.com
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\Driver;;;C:\Program Files\Intel\TXE Components\TCS\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\TXE Components\DAL\;C:\Program Files\Intel\TXE Components\IPT\
HKU\S-1-5-21-969322255-3080378673-2421515442-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Filip\AppData\Roaming\Mozilla\Firefox\Pozadí plochy.bmp
DNS Servers: 10.255.255.10 - 10.255.255.20
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{55F26D00-58B0-4610-B288-F605B157E9A7}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{38AD6094-E600-4148-ABFD-01497410B310}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{753B2B7F-B77C-4375-A3D6-73FBB11AF993}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{5F829EE0-ACBA-499B-8D9D-8481B8A35436}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
==================== Restore Points =========================
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (12/25/2019 06:43:38 PM) (Source: System Restore) (EventID: 8211) (User: )
Description: Naplánovaný bod obnovení nebylo možné vytvořit. Další informace: (0x80042308).
Error: (12/25/2019 06:43:38 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\Windows\system32\srtasks.exe ExecuteScheduledSPPCreation; Popis = Scheduled Checkpoint; Chyba = 0x80042308).
Error: (12/25/2019 06:41:55 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: FILIP)
Description: Aplikaci Microsoft.BingNews_8wekyb3d8bbwe!AppexNews se nepovedlo aktivovat, protože došlo k chybě: -2144927148. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.
Error: (12/25/2019 06:23:14 PM) (Source: DptfPolicyLpmService) (EventID: 1) (User: )
Description: Event-ID 1
Error: (12/25/2019 05:47:12 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: FILIP)
Description: Aplikaci Microsoft.BingNews_8wekyb3d8bbwe!AppexNews se nepovedlo aktivovat, protože došlo k chybě: -2144927148. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.
Error: (12/24/2019 11:34:00 AM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: Problém zabránil odeslání dat programu Zlepšování softwaru a služeb na základě zkušeností uživatelů společnosti Microsoft, (chyba 80070005).
Error: (12/23/2019 12:22:06 PM) (Source: VSS) (EventID: 12305) (User: )
Description: Chyba služby Stínová kopie svazků: Svazek nebo disk není připojen nebo nebyl nalezen.
Kontext chyby: CreateFileW(\\?\GLOBALROOT\Device\HarddiskVolumeShadowCopy1,0xc0000000,0x00000003,...).
Operation:
Processing PostFinalCommitSnapshots
Context:
Execution Context: System Provider
Error: (12/23/2019 06:39:28 AM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: Problém zabránil odeslání dat programu Zlepšování softwaru a služeb na základě zkušeností uživatelů společnosti Microsoft, (chyba 80070005).
System errors:
=============
Error: (12/25/2019 06:43:32 PM) (Source: volsnap) (EventID: 36) (User: )
Description: Stínové kopie svazku C: byly přerušeny, protože z důvodu limitu stanoveného uživatelem se nepodařilo zvětšit úložiště stínové kopie.
Error: (12/25/2019 06:29:46 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Interactive Services Detection byla ukončena s následující chybou:
Nesprávná funkce.
Error: (12/25/2019 06:22:00 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba McAfee True Key Scheduler neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (12/25/2019 06:22:00 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby McAfee True Key Scheduler bylo dosaženo časového limitu (30000 ms).
Error: (12/25/2019 06:21:15 PM) (Source: Microsoft-Windows-Directory-Services-SAM) (EventID: 16953) (User: NT AUTHORITY)
Description: Nepodařilo se zavést knihovnu DLL oznámení o heslech "C:\Program Files\McAfee\TrueKey\McAfeeTrueKeyPasswordFilter" kvůli chybě 126. Ověřte, zda cesta ke knihovně DLL oznámení definovaná v registru (HKLM\System\CurrentControlSet\Control\Lsa\Notification Packages) odkazuje na správnou absolutní cestu (<jednotka>:\<cesta>\<název_souboru>.<přípona>). Pokud je cesta ke knihovně DLL správná, ověřte, zda jsou ve stejném adresáři umístěny všechny podpůrné soubory a zda má systémový účet přístup pro čtení k cestě knihovny DLL i všem podpůrným souborům. O další podporu můžete požádat poskytovatele knihovny DLL oznámení. Podrobnější informace najdete na adrese http://go.microsoft.com/fwlink/?LinkId=245898.
Error: (12/25/2019 06:21:15 PM) (Source: Microsoft-Windows-Directory-Services-SAM) (EventID: 16953) (User: NT AUTHORITY)
Description: Nepodařilo se zavést knihovnu DLL oznámení o heslech "C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter" kvůli chybě 126. Ověřte, zda cesta ke knihovně DLL oznámení definovaná v registru (HKLM\System\CurrentControlSet\Control\Lsa\Notification Packages) odkazuje na správnou absolutní cestu (<jednotka>:\<cesta>\<název_souboru>.<přípona>). Pokud je cesta ke knihovně DLL správná, ověřte, zda jsou ve stejném adresáři umístěny všechny podpůrné soubory a zda má systémový účet přístup pro čtení k cestě knihovny DLL i všem podpůrným souborům. O další podporu můžete požádat poskytovatele knihovny DLL oznámení. Podrobnější informace najdete na adrese http://go.microsoft.com/fwlink/?LinkId=245898.
Error: (12/25/2019 05:42:21 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Software Protection neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (12/25/2019 05:42:21 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Software Protection bylo dosaženo časového limitu (30000 ms).
Windows Defender:
===================================
Date: 2019-05-13 12:08:09.731
Description:
Prohledávání Windows Defender zjistilo chybu pri pokusu o aktualizaci podpisu.
Nová verze podpisu:
Predchozí verze podpisu: 1.293.1283.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Predchozí verze modulu: 1.1.15900.4
Kód chyby: 0x80072efe
Popis chyby :The connection with the server was terminated abnormally
Date: 2019-04-17 13:49:23.811
Description:
Prohledávání Windows Defender zjistilo chybu pri pokusu o aktualizaci podpisu.
Nová verze podpisu:
Predchozí verze podpisu: 119.0.0.0
Zdroj aktualizace: Centrum spolecnosti Microsoft pro ochranu pred škodlivým softwarem
Typ podpisu: Systém kontroly síte
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Predchozí verze modulu: 2.1.14600.4
Kód chyby: 0x80072ee7
Popis chyby :The server name or address could not be resolved
Date: 2019-04-17 13:49:18.654
Description:
Prohledávání Windows Defender zjistilo chybu pri pokusu o aktualizaci podpisu.
Nová verze podpisu:
Predchozí verze podpisu: 1.291.2121.0
Zdroj aktualizace: Centrum spolecnosti Microsoft pro ochranu pred škodlivým softwarem
Typ podpisu: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Predchozí verze modulu: 1.1.15800.1
Kód chyby: 0x80072ee2
Popis chyby :The operation timed out
Date: 2019-04-17 13:49:18.654
Description:
Prohledávání Windows Defender zjistilo chybu pri pokusu o aktualizaci podpisu.
Nová verze podpisu:
Predchozí verze podpisu: 1.291.2121.0
Zdroj aktualizace: Centrum spolecnosti Microsoft pro ochranu pred škodlivým softwarem
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Predchozí verze modulu: 1.1.15800.1
Kód chyby: 0x80072ee2
Popis chyby :The operation timed out
Date: 2019-04-17 13:38:59.796
Description:
Prohledávání Windows Defender zjistilo chybu pri pokusu o aktualizaci podpisu.
Nová verze podpisu:
Predchozí verze podpisu: 1.291.2032.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Predchozí verze modulu: 1.1.15800.1
Kód chyby: 0x80240016
Popis chyby :An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support.
CodeIntegrity:
===================================
Date: 2019-04-23 15:10:48.133
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-03-27 11:03:56.335
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-02-19 04:51:12.304
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-01-31 12:39:09.248
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-01-16 03:24:16.836
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-01-10 11:11:05.319
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2018-11-28 08:59:27.264
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2018-11-20 04:30:21.522
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. T100TA.313 08/13/2014
Motherboard: ASUSTeK COMPUTER INC. T100TA
Processor: Intel(R) Atom(TM) CPU Z3740 @ 1.33GHz
Percentage of memory in use: 54%
Total physical RAM: 1933.15 MB
Available physical RAM: 887.61 MB
Total Virtual: 3991.16 MB
Available Virtual: 2578.43 MB
==================== Drives ================================
Drive c: (OS) (Fixed) (Total:28.22 GB) (Free:1.58 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (Data1) (Fixed) (Total:465.76 GB) (Free:461.83 GB) NTFS
\\?\Volume{d62c6061-95e2-4f59-8ac9-7fa03192058f}\ (Recovery) (Fixed) (Total:0.68 GB) (Free:0.39 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 29.1 GB) (Disk ID: 0F449B5E)
Partition: GPT.
==========================================================
Disk: 1 (Size: 465.8 GB) (Disk ID: 4F39B478)
Partition: GPT.
==================== End of Addition.txt =======================
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 25-12-2019
Ran by Filip (administrator) on FILIP (ASUSTeK COMPUTER INC. T100TA) (25-12-2019 20:05:00)
Running from C:\Users\Filip\Desktop
Loaded Profiles: Filip (Available Profiles: Filip)
Platform: Microsoft Windows 8.1 (Update) (X86) Language: Angličtina (Spojené království)
Default browser: FF
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ASUS Cloud Corporation -> ASUS Cloud Corporation) C:\Program Files\ASUS\WebStorage\2.2.7.557\AsusWSPanel.exe
(ASUS Cloud Corporation) [File not signed] C:\Program Files\ASUS\WebStorage\2.0.3.226\AsusWSWinService.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer INC.) C:\Program Files\ASUS\ASUS AC Reminder\ACReminderSrv.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files\ASUS\ATK Package\ATK Hotkey\AsHidSrv.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer INC.) C:\ProgramData\AsTouchPanel\AsPatchTouchPanel.exe
(ASUSTeK Computer Inc. -> AsusTek) C:\Program Files\ASUS\ASUS Smart Gesture\AsTPCenter\x86\AsusTPCenter.exe
(ASUSTeK Computer Inc. -> AsusTek) C:\Program Files\ASUS\ASUS Smart Gesture\AsTPCenter\x86\AsusTPHelper.exe
(ASUSTeK Computer Inc. -> AsusTek) C:\Program Files\ASUS\ASUS Smart Gesture\AsTPCenter\x86\AsusTPLoader.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(HP Inc. -> HP Inc.) C:\Program Files\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Intel Corporation - Client Components Group -> Intel Corporation) C:\Program Files\Intel\TXE Components\DAL\jhi_service.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxTray.exe
(Intel MCG PIV Tablet Validation -> Intel Corporation) C:\Windows\System32\DptfParticipantProcessorService.exe
(Intel MCG PIV Tablet Validation -> Intel Corporation) C:\Windows\System32\DptfPolicyCriticalService.exe
(Intel MCG PIV Tablet Validation -> Intel Corporation) C:\Windows\System32\DptfPolicyLpmService.exe
(Intel MCG PIV Tablet Validation -> Intel Corporation) C:\Windows\System32\DptfPolicyLpmServiceHelper.exe
(Intel(R) Corporation) [File not signed] C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(McAfee, Inc. -> McAfee, LLC.) C:\Program Files\McAfee\TrueKey\McAfee.TrueKey.Service.exe
(McAfee, Inc. -> McAfee, LLC.) C:\Program Files\McAfee\TrueKey\McAfee.TrueKey.ServiceHelper.exe
(McAfee, LLC -> McAfee, LLC.) C:\Program Files\McAfee Security Scan\3.11.1512\SSScheduler.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Piriform Software Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Realtek Semiconductor) [File not signed] C:\Program Files\Realtek\Audio\AP\RtkNGUI.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [ASUSPRP] => C:\Program Files\ASUS\APRP\APRP.EXE [3216032 2013-12-13] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) [File not signed]
HKLM\...\Run: [WebStorage] => C:\Program Files\ASUS\WebStorage\2.2.7.557\ASUSWSLoader.exe [63272 2016-03-15] (ASUS Cloud Corporation -> )
HKLM\...\Run: [RtkNGUI] => C:\Program Files\Realtek\Audio\AP\RtkNGUI.exe [2912256 2014-01-17] (Realtek Semiconductor) [File not signed]
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Run: [DptfPolicyLpmServiceHelper] => C:\Windows\system32\DptfPolicyLpmServiceHelper.exe [81360 2014-01-22] (Intel MCG PIV Tablet Validation -> Intel Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [232840 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
HKU\S-1-5-21-969322255-3080378673-2421515442-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-16] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-969322255-3080378673-2421515442-1001\...\MountPoints2: {453a4696-475b-11e8-975e-40167e925b5f} - "E:\Lenovo_Suite.exe"
HKU\S-1-5-21-969322255-3080378673-2421515442-1001\...\MountPoints2: {99c782c5-9154-11e7-9743-40167e925b5f} - "E:\Lenovo_Suite.exe"
HKU\S-1-5-21-969322255-3080378673-2421515442-1001\...\MountPoints2: {ec1a3365-ed02-11e7-9751-40167e925b5f} - "E:\Lenovo_Suite.exe"
HKU\S-1-5-21-969322255-3080378673-2421515442-1001\...\MountPoints2: {ee8baaf3-d6a3-11e8-9770-40167e925b5f} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-969322255-3080378673-2421515442-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Bubbles.scr [778752 2014-10-29] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{B7724AE5-1135-4889-8A5F-CA98BE6CA1ED}] -> C:\Program Files\McAfee\TrueKey\McAfee.TrueKey.CredentialProvider.dll [2018-10-10] (McAfee, Inc. -> McAfee, LLC.)
Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter "C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter" "C:\Program Files\McAfee\TrueKey\McAfeeTrueKeyPasswordFilter"
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2019-12-25]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.1512\SSScheduler.exe (McAfee, LLC -> McAfee, LLC.)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {092D8C00-9CA3-4278-92DB-B22EE642D313} - System32\Tasks\ASUS AC Reminder => C:\Program Files\ASUS\ASUS AC Reminder\ACReminderSrv.exe [378992 2013-12-23] (ASUSTeK Computer Inc. -> ASUSTek Computer INC.)
Task: {0DFDA773-1251-4292-8855-3628B5DB546F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater – Install HPSA => C:\Program Files\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [655736 2019-07-31] (HP Inc. -> HP Inc.)
Task: {15A801D6-7ACF-40A8-B4D0-503126B25E89} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [655736 2019-07-31] (HP Inc. -> HP Inc.)
Task: {1C4F6141-DA5C-4944-AEEB-D18320E0D4E7} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [145272 2019-10-31] (HP Inc. -> HP Inc.)
Task: {298FD637-CF69-4793-8608-5428B8443F03} - System32\Tasks\ASUS Patch for Touch Panel => C:\ProgramData\AsTouchPanel\AsPatchTouchPanel.exe [144512 2013-01-09] (ASUSTeK Computer Inc. -> ASUSTek Computer INC.)
Task: {39245206-2A84-497D-B53B-F8C9BA5DEB19} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-16] (Piriform Software Ltd -> Piriform Ltd)
Task: {414BED96-D502-45DA-B9CA-ADC830E0D69D} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [109880 2014-01-14] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {46502E1A-4329-4A5B-BDCD-A86B4E6419AA} - System32\Tasks\Update Checker => C:\Program Files\ASUS\ASUS Live Update\UpdateChecker.exe [143672 2019-04-02] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
Task: {58C330F1-51C0-4A56-A210-E216A11AB025} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3250056 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
Task: {6C43B0E0-B189-4EF4-8377-470D492B4378} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\system32\Macromed\Flash\FlashUtil32_32_0_0_303_Plugin.exe [1457720 2019-12-23] (Adobe Inc. -> Adobe)
Task: {91C3A2E7-3799-4FF8-AEB7-395DDBE8C806} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files\ASUS\ASUS Smart Gesture\AsTPCenter\x86\AsusTPLauncher.exe [17208 2014-04-08] (ASUSTeK Computer Inc. -> AsusTek)
Task: {B5A79897-F5A9-4B83-83BE-7B58F3C1F3E0} - System32\Tasks\McAfee Remediation (Prepare) => C:\Program Files\Common Files\AV\McAfee VirusScan\upgrade.exe [3692792 2018-09-11] (McAfee, Inc. -> McAfee, Inc.)
Task: {C3588880-1698-4B69-8B38-913407506CD9} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-12-23] (Adobe Inc. -> Adobe)
Task: {E05914FB-7609-425F-B420-F814B91A3CC9} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-16] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {E415BDCB-3436-4AE7-9682-FB8D8E584533} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1542536 2019-09-23] (AVAST Software s.r.o. -> AVAST Software)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: 0.0.0.1 mssplus.mcafee.com
Tcpip\Parameters: [DhcpNameServer] 10.255.255.10 10.255.255.20
Tcpip\..\Interfaces\{CE7AB9EE-CFDE-4479-BE22-7AC8A9D07756}: [DhcpNameServer] 10.255.255.10 10.255.255.20
Internet Explorer:
==================
HKU\S-1-5-21-969322255-3080378673-2421515442-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.centrum.cz/
HKU\S-1-5-21-969322255-3080378673-2421515442-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus13.msn.com/?pc=ASJB
SearchScopes: HKU\S-1-5-21-969322255-3080378673-2421515442-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-969322255-3080378673-2421515442-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\McAfee\TrueKey\MSIE\truekey_ie.dll [2018-04-23] (McAfee, Inc. -> Intel Security)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-18] (Microsoft Corporation -> Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
Toolbar: HKLM - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\McAfee\TrueKey\MSIE\truekey_ie.dll [2018-04-23] (McAfee, Inc. -> Intel Security)
FireFox:
========
FF DefaultProfile: prbb2jq9.default
FF ProfilePath: C:\Users\Filip\AppData\Roaming\Mozilla\Firefox\Profiles\prbb2jq9.default [2019-12-25]
FF Homepage: Mozilla\Firefox\Profiles\prbb2jq9.default -> hxxps://www.centrum.cz/
FF Session Restore: Mozilla\Firefox\Profiles\prbb2jq9.default -> is enabled.
FF Extension: (Pomocník GIVT.cz) - C:\Users\Filip\AppData\Roaming\Mozilla\Firefox\Profiles\prbb2jq9.default\Extensions\@givt-toolbar-cz.xpi [2019-03-21]
FF Extension: (Avast Online Security) - C:\Users\Filip\AppData\Roaming\Mozilla\Firefox\Profiles\prbb2jq9.default\Extensions\wrc@avast.com.xpi [2019-12-20]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_32_0_0_303.dll [2019-12-23] (Adobe Inc. -> )
FF Plugin: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files\Intel\TXE Components\IPT\npIntelWebAPIIPT.dll [2013-07-12] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files\Intel\TXE Components\IPT\npIntelWebAPIUpdater.dll [2013-07-12] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AsHidService; C:\Program Files\ASUS\ATK Package\ATK Hotkey\AsHidSrv.exe [103224 2013-09-09] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
R2 ASLDRService; C:\Program Files\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe [115512 2014-03-26] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
R2 Asus WebStorage Windows Service; C:\Program Files\ASUS\WebStorage\2.0.3.226\AsusWSWinService.exe [71680 2013-08-16] (ASUS Cloud Corporation) [File not signed]
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [5106064 2019-12-20] (AVAST Software s.r.o. -> AVAST Software)
R2 ATKGFNEXSrv; C:\Program Files\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [96896 2011-11-21] (ASUSTeK Computer Inc. -> ASUS)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [859096 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
S2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [1677016 2014-11-05] (Broadcom Corporation -> Broadcom Corporation.)
S3 cphs; C:\Windows\system32\IntelCpHeciSvc.exe [278344 2014-06-10] (Intel Corporation - pGFX -> Intel Corporation)
R2 DptfParticipantProcessorService; C:\Windows\system32\DptfParticipantProcessorService.exe [83920 2014-01-22] (Intel MCG PIV Tablet Validation -> Intel Corporation)
R2 DptfPolicyCriticalService; C:\Windows\system32\DptfPolicyCriticalService.exe [96720 2014-01-22] (Intel MCG PIV Tablet Validation -> Intel Corporation)
R2 DptfPolicyLpmService; C:\Windows\system32\DptfPolicyLpmService.exe [90576 2014-01-22] (Intel MCG PIV Tablet Validation -> Intel Corporation)
R2 HPSLPSVC; C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL [696320 2011-08-18] (Hewlett-Packard Co.) [File not signed]
R2 HPSupportSolutionsFrameworkService; C:\Program Files\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [360312 2019-10-14] (HP Inc. -> HP Inc.)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [277320 2014-06-10] (Intel Corporation - pGFX -> Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [586752 2013-07-01] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [637912 2013-07-01] (Intel® Trusted Connect Service -> Intel(R) Corporation)
R2 jhi_service; C:\Program Files\Intel\TXE Components\DAL\jhi_service.exe [168216 2014-01-15] (Intel Corporation - Client Components Group -> Intel Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [5570712 2019-12-25] (Malwarebytes Inc -> Malwarebytes)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.1512\McCHSvc.exe [326952 2019-11-13] (McAfee, LLC -> McAfee, LLC.)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [44032 2010-08-06] (Hewlett-Packard) [File not signed]
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [53760 2010-08-06] (Hewlett-Packard) [File not signed]
R2 TrueKey; C:\Program Files\McAfee\TrueKey\McAfee.TrueKey.Service.exe [274176 2018-10-10] (McAfee, Inc. -> McAfee, LLC.)
S2 TrueKeyScheduler; C:\Program Files\McAfee\TrueKey\McTkSchedulerService.exe [274176 2018-10-10] (McAfee, Inc. -> McAfee, LLC.)
R2 TrueKeyServiceHelper; C:\Program Files\McAfee\TrueKey\McAfee.TrueKey.ServiceHelper.exe [164152 2018-10-10] (McAfee, Inc. -> McAfee, LLC.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [280872 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103696 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AgereSoftModem; C:\Windows\system32\DRIVERS\AGRSM.sys [1035776 2013-06-18] (Microsoft Windows -> LSI Corp)
R2 ASMMAP; C:\Program Files\ASUS\ATK Package\ATKGFNEX\ASMMAP.sys [13880 2009-07-02] (ASUSTeK Computer Inc. -> ASUS)
R3 AsusHID; C:\Windows\System32\drivers\AsusHID.sys [68888 2014-04-08] (ASUSTeK Computer Inc. -> ASUS Corporation)
R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [35512 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [174712 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [224008 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [169408 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [59368 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [211088 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [41200 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [145048 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [95168 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [73312 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [691528 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [394856 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [176760 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [277408 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
R1 ATKWMIACPIIO; C:\Program Files\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi.sys [17720 2013-07-02] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
R3 BCMSDH43XX; C:\Windows\system32\DRIVERS\bcmdhd63.sys [304344 2018-08-06] (Broadcom Corporation -> Broadcom Corp)
S3 btwampfl; C:\Windows\system32\DRIVERS\btwampfl.sys [144600 2014-11-05] (Broadcom Corporation -> Broadcom Corporation.)
R3 BtwSerialBus; C:\Windows\system32\DRIVERS\BtwSerialBus.sys [130776 2014-11-05] (Broadcom Corporation -> Broadcom Corporation.)
R3 camera; C:\Windows\system32\DRIVERS\camera.sys [345088 2013-12-02] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
R3 CM3218x; C:\Windows\system32\DRIVERS\WUDFRd.sys [190976 2014-10-29] (Microsoft Windows -> Microsoft Corporation)
R3 CPLMACPI; C:\Windows\system32\DRIVERS\CPLMACPI.sys [16488 2013-09-06] (Capella Microsystems Inc. -> Capella Microsystems, Inc.)
S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [137632 2012-10-19] (Hewlett-Packard Company -> Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [22432 2012-10-19] (Hewlett-Packard Company -> Windows (R) Win 7 DDK provider)
S3 dot4usb; C:\Windows\system32\DRIVERS\dot4usb.sys [42912 2012-10-19] (Hewlett-Packard Company -> Microsoft Corporation)
R3 DptfDevDBPT; C:\Windows\system32\DRIVERS\DptfDevPower.sys [25552 2014-01-22] (Intel MCG PIV Tablet Validation -> Intel Corporation)
R3 DptfDevDisplay; C:\Windows\system32\DRIVERS\DptfDevDisplay.sys [28112 2014-01-22] (Intel MCG PIV Tablet Validation -> Intel Corporation)
R3 DptfDevGen; C:\Windows\system32\DRIVERS\DptfDevGen.sys [36304 2014-01-22] (Intel MCG PIV Tablet Validation -> Intel Corporation)
R3 DptfDevProc; C:\Windows\system32\DRIVERS\DptfDevProc.sys [80848 2014-01-22] (Intel MCG PIV Tablet Validation -> Intel Corporation)
R3 DptfManager; C:\Windows\system32\DRIVERS\DptfManager.sys [181712 2014-01-22] (Intel MCG PIV Tablet Validation -> Intel Corporation)
R3 GPIO; C:\Windows\System32\drivers\iaiogpioe.sys [23552 2014-03-18] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
R3 GpioVirtual; C:\Windows\System32\drivers\iaiogpiovirtual.sys [16896 2014-03-18] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
R3 HIDSwitch; C:\Windows\System32\drivers\AsHIDSwitch.sys [17720 2013-10-08] (ASUSTeK Computer Inc. -> ASUS)
R3 iaioi2c; C:\Windows\System32\drivers\iaioi2ce.sys [58368 2014-03-18] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
R3 iaiouart; C:\Windows\System32\drivers\iaiouart.sys [87552 2014-03-18] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
S0 iaStorA; C:\Windows\System32\drivers\iaStorA.sys [505192 2013-08-09] (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation)
S3 intaud_WaveExtensible; C:\Windows\system32\drivers\intelaud.sys [32152 2014-05-06] (Intel Wireless Display -> Intel Corporation)
R3 IntelSST; C:\Windows\system32\drivers\isstrtc.sys [259584 2014-04-03] (Microsoft Windows Hardware Compatibility Publisher -> Intel(R) Corporation)
R3 INVN_MotionApps; C:\Windows\system32\DRIVERS\WUDFRd.sys [190976 2014-10-29] (Microsoft Windows -> Microsoft Corporation)
R3 iwdbus; C:\Windows\System32\drivers\iwdbus.sys [23448 2014-05-06] (Intel Wireless Display -> Intel Corporation)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [183048 2019-12-25] (Malwarebytes Inc -> Malwarebytes)
R0 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [243800 2019-12-25] (Malwarebytes Inc -> Malwarebytes)
R0 MBI; C:\Windows\System32\drivers\MBI.sys [21456 2014-03-18] (Intel MCG PIV Tablet Validation -> Intel Corporation)
R3 MT9M114; C:\Windows\System32\drivers\MT9M114.sys [38912 2013-12-02] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
S3 NETwNs32; C:\Windows\system32\DRIVERS\Netwsn00.sys [10372096 2013-06-18] (Microsoft Windows -> Intel Corporation)
R3 PMIC; C:\Windows\System32\drivers\PMIC.sys [48128 2014-03-18] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
R3 rtii2sac; C:\Windows\system32\DRIVERS\rtii2sac.sys [169176 2014-03-14] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
R3 SensorsServiceDriver; C:\Windows\System32\drivers\WUDFRd.sys [190976 2014-10-29] (Microsoft Windows -> Microsoft Corporation)
R3 TXEI; C:\Windows\System32\drivers\TXEI.sys [75792 2014-03-18] (Intel Corporation - Client Components Group -> Intel Corporation)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [38920 2017-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [231256 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [85336 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
R3 WUDFWpdMtp; C:\Windows\System32\drivers\WUDFRd.sys [190976 2014-10-29] (Microsoft Windows -> Microsoft Corporation)
U0 msahci; system32\drivers\msahci.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-12-25 20:05 - 2019-12-25 20:05 - 000025352 _____ C:\Users\Filip\Desktop\FRST.txt
2019-12-25 20:04 - 2019-12-25 20:04 - 000000000 ____D C:\Users\Filip\Desktop\FRST-OlderVersion
2019-12-25 18:30 - 2019-12-25 18:31 - 000000000 ____D C:\ProgramData\McAfee Security Scan
2019-12-25 18:30 - 2019-12-25 18:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
2019-12-25 18:22 - 2019-12-25 18:22 - 000183048 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2019-12-25 18:04 - 2019-12-25 18:04 - 000000000 ____D C:\Users\Filip\AppData\Local\cache
2019-12-25 18:03 - 2019-12-25 18:03 - 000001966 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2019-12-25 18:03 - 2019-12-25 18:03 - 000001966 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2019-12-25 18:03 - 2019-12-25 18:03 - 000000000 ____D C:\Users\Filip\AppData\Local\mbamtray
2019-12-25 18:03 - 2019-12-25 18:03 - 000000000 ____D C:\Users\Filip\AppData\Local\mbam
2019-12-25 18:03 - 2019-12-25 18:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2019-12-25 18:02 - 2019-12-25 18:02 - 000243800 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2019-12-25 18:02 - 2019-12-25 18:01 - 000129056 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae.sys
2019-12-25 18:01 - 2019-12-25 18:01 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-12-25 17:59 - 2019-12-25 17:59 - 000000000 ____D C:\Program Files\Malwarebytes
2019-12-25 17:58 - 2019-12-25 17:58 - 001883976 _____ (Malwarebytes) C:\Users\Filip\Desktop\MBSetup.exe
2019-12-24 11:48 - 2019-12-25 20:05 - 000000000 ____D C:\FRST
2019-12-24 11:47 - 2019-12-25 20:04 - 002000384 _____ (Farbar) C:\Users\Filip\Desktop\FRST.exe
2019-12-23 12:20 - 2019-11-28 06:56 - 001118584 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2019-12-23 12:20 - 2019-11-28 05:46 - 003417088 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2019-12-23 12:20 - 2019-11-21 03:16 - 000496640 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2019-12-23 12:20 - 2019-11-19 09:17 - 020290048 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2019-12-23 12:20 - 2019-11-19 08:49 - 000662528 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2019-12-23 12:20 - 2019-11-19 08:28 - 000880640 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2019-12-23 12:20 - 2019-11-19 08:26 - 004112384 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2019-12-23 12:20 - 2019-11-19 08:23 - 000696320 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2019-12-23 12:20 - 2019-11-19 08:20 - 013838336 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2019-12-23 12:20 - 2019-11-19 08:05 - 004387840 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2019-12-23 12:20 - 2019-11-19 08:01 - 001331712 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2019-12-23 12:20 - 2019-11-19 08:00 - 000710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2019-12-23 12:20 - 2019-11-15 16:40 - 001492992 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2019-12-23 12:20 - 2019-11-13 06:52 - 000113664 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2019-12-23 12:20 - 2019-11-13 06:52 - 000078336 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2019-12-23 12:20 - 2019-11-11 23:33 - 000627200 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelinesvc.exe
2019-12-23 12:20 - 2019-11-09 09:46 - 000333744 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2019-12-23 12:20 - 2019-11-09 02:23 - 002979840 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2019-12-23 12:20 - 2019-11-05 04:36 - 000137096 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2019-12-23 12:20 - 2019-11-05 01:03 - 000611432 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2019-12-23 12:20 - 2019-10-27 00:17 - 001465344 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2019-12-06 08:36 - 2019-12-25 18:20 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-12-06 07:36 - 2019-12-06 07:38 - 003447614 _____ C:\Users\Filip\Downloads\final.pdf
2019-12-05 14:38 - 2019-12-05 14:38 - 000168654 _____ C:\Users\Filip\Downloads\5.12.19.pdf
2019-11-27 11:40 - 2019-11-27 11:40 - 000118275 _____ C:\Users\Filip\Downloads\HYPNOS_stage_plot_+_input_list_2019.pdf
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-12-25 20:03 - 2017-01-09 10:47 - 000000000 ____D C:\Users\Filip\AppData\LocalLow\Mozilla
2019-12-25 18:41 - 2016-03-30 19:37 - 000003598 _____ C:\Windows\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-969322255-3080378673-2421515442-1001
2019-12-25 18:30 - 2018-03-09 09:08 - 000002072 _____ C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
2019-12-25 18:30 - 2018-03-09 09:08 - 000002072 _____ C:\ProgramData\Desktop\McAfee Security Scan Plus.lnk
2019-12-25 18:30 - 2016-09-11 16:13 - 000000000 ____D C:\Program Files\McAfee Security Scan
2019-12-25 18:26 - 2016-03-30 20:42 - 000736042 _____ C:\Windows\system32\perfh005.dat
2019-12-25 18:26 - 2016-03-30 20:42 - 000149674 _____ C:\Windows\system32\perfc005.dat
2019-12-25 18:26 - 2013-12-13 21:46 - 001739092 _____ C:\Windows\system32\PerfStringBackup.INI
2019-12-25 18:26 - 2013-08-22 07:21 - 000000000 ____D C:\Windows\inf
2019-12-25 18:23 - 2016-04-26 11:21 - 000000000 __RDO C:\Users\Filip\OneDrive
2019-12-25 18:21 - 2013-08-22 08:23 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-12-25 18:21 - 2013-08-22 08:22 - 000411360 _____ C:\Windows\system32\FNTCACHE.DAT
2019-12-25 18:20 - 2016-05-01 19:06 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service
2019-12-25 18:19 - 2013-08-22 07:13 - 000524288 ___SH C:\Windows\system32\config\BBI
2019-12-25 17:44 - 2016-03-30 20:31 - 000003914 _____ C:\Windows\system32\Tasks\User_Feed_Synchronization-{C59EC562-27FC-4DF2-847D-22608E0588B7}
2019-12-25 16:52 - 2018-06-06 11:15 - 000004128 _____ C:\Windows\system32\Tasks\CCleaner Update
2019-12-25 15:34 - 2019-05-27 11:35 - 000004168 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2019-12-25 05:39 - 2013-08-22 09:05 - 000000000 ____D C:\Windows\CbsTemp
2019-12-23 06:37 - 2018-03-13 22:39 - 000004456 _____ C:\Windows\system32\Tasks\Adobe Flash Player NPAPI Notifier
2019-12-23 06:37 - 2016-09-11 16:13 - 000004372 _____ C:\Windows\system32\Tasks\Adobe Flash Player Updater
2019-12-23 06:37 - 2013-08-22 09:17 - 000000000 ____D C:\Windows\system32\Macromed
2019-12-20 10:48 - 2019-05-27 11:52 - 000000000 ____D C:\Users\Filip\AppData\Local\AVAST Software
2019-12-09 07:07 - 2016-05-01 19:06 - 000001131 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2019-12-06 14:34 - 2019-06-04 10:50 - 000000000 _____ C:\Windows\system32\last.dump
2019-11-26 13:35 - 2019-11-18 12:28 - 000022128 _____ C:\Users\Filip\Downloads\Týnfest_19.xlsx
==================== Files in the root of some directories ========
2016-05-01 19:05 - 2016-05-01 19:05 - 044294648 _____ () C:\Users\Filip\Firefox_Setup_46.0.exe
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
LastRegBack: 2019-12-25 18:43
==================== End of FRST.txt ========================
Ran by Filip (25-12-2019 20:06:44)
Running from C:\Users\Filip\Desktop
Microsoft Windows 8.1 (Update) (X86) (2016-03-30 18:32:00)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-969322255-3080378673-2421515442-500 - Administrator - Disabled)
Filip (S-1-5-21-969322255-3080378673-2421515442-1001 - Administrator - Enabled) => C:\Users\Filip
Guest (S-1-5-21-969322255-3080378673-2421515442-501 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
32 Bit HP CIO Components Installer (HKLM\...\{A80FA752-C491-4ED9-ABF0-4278563160B2}) (Version: 7.1.8 - Hewlett-Packard) Hidden
Adobe Flash Player 32 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 32.0.0.303 - Adobe)
AIO_CDB_Software (HKLM\...\{2DFDE21D-AFFE-4CDD-BBD4-3B7832BEC036}) (Version: 140.0.428.000 - Hewlett-Packard) Hidden
AIO_Scan (HKLM\...\{104066F4-5897-4067-85D3-4C88B67CCF75}) (Version: 130.0.421.000 - Hewlett-Packard) Hidden
Apowersoft Online Launcher verze 1.7.0 (HKU\S-1-5-21-969322255-3080378673-2421515442-1001\...\{20BF67A8-D81A-4489-8225-FABAA0896E2D}_is1) (Version: 1.7.0 - APOWERSOFT LIMITED)
ASUS AC Reminder (HKLM\...\{B002B54C-FFE8-4331-8F9B-90CC9366362A}) (Version: 2.0.0 - ASUS)
ASUS Live Update (HKLM\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.6.8 - ASUSTeK COMPUTER INC.)
ASUS Screen Saver (HKLM\...\{0FBEEDF8-30FA-4FA3-B31F-C9C7E7E8DFA2}) (Version: 2.0.4 - ASUS)
ASUS Smart Gesture (HKLM\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 2.2.16 - ASUS)
ATK Package (HKLM\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0035 - ASUS)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 19.8.2393 - AVAST Software)
Broadcom 802.11 Network Adapter (HKLM\...\Broadcom 802.11 Network Adapter) (Version: 5.93.99.187.1 - Broadcom Corporation)
BufferChm (HKLM\...\{FA0FF682-CC70-4C57-93CD-E276F3E7537E}) (Version: 140.0.298.000 - Hewlett-Packard) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.62 - Piriform)
DocProc (HKLM\...\{9B362566-EC1B-4700-BB9C-EC661BDE2175}) (Version: 140.0.185.000 - Hewlett-Packard) Hidden
GOM Player (HKLM\...\GOM Player) (Version: 2.2.77.5240 - Gretech Corporation)
Google Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.169 - Google Inc.) Hidden
GPBaseService2 (HKLM\...\{BB3447F6-9553-4AA9-960E-0DB5310C5779}) (Version: 140.0.297.000 - Hewlett-Packard) Hidden
HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP)
HP Photosmart Officejet and Deskjet All-In-One Driver Software (HKLM\...\{6F5B70F0-EA6C-4A5B-BB16-8390BD66B251}) (Version: 14.0 - HP)
HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP)
HP Support Solutions Framework (HKLM\...\{7C3170E8-E61A-41D9-8547-8E96445EA510}) (Version: 12.13.42.1 - HP Inc.)
HPPhotoGadget (HKLM\...\{CAE4213F-F797-439D-BD9E-79B71D115BE3}) (Version: 140.0.524.000 - Hewlett-Packard) Hidden
HPProductAssistant (HKLM\...\{150B6201-E9E6-4DFB-960E-CCBD53FBDDED}) (Version: 140.0.298.000 - Hewlett-Packard) Hidden
HPSSupply (HKLM\...\{AC35A885-0F8F-4857-B7DA-6E8DFB43E6B3}) (Version: 140.0.297.000 - Hewlett-Packard) Hidden
Intel(R) Dynamic Platform and Thermal Framework (HKLM\...\FFD10ECE-F715-4a86-9BD8-F6F47DA5DA1C) (Version: 7.1.0.479 - Intel Corporation)
Intel(R) Processor Graphics (HKLM\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3643 - Intel Corporation)
Intel(R) Trusted Execution Engine (HKLM\...\{176E2755-0A17-42C6-88E2-192AB2131278}) (Version: 1.0.0.1064 - Intel Corporation)
Malwarebytes version 4.0.4.49 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.0.4.49 - Malwarebytes)
MarketResearch (HKLM\...\{D360FA88-17C8-4F14-B67F-13AAF9607B12}) (Version: 140.0.299.000 - Hewlett-Packard) Hidden
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.11.1512.1 - McAfee, LLC.)
McAfee True Key (HKLM\...\TrueKey) (Version: 5.1.230.7 - McAfee, LLC)
Microsoft Office (HKLM\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Preview Redistributable (x86) - 12.0.20617 (HKLM\...\{1f407217-9aec-4146-8504-e64ac959c534}) (Version: 12.0.20617.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 71.0 (x86 cs) (HKLM\...\Mozilla Firefox 71.0 (x86 cs)) (Version: 71.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 71.0.0.7275 - Mozilla)
Network (HKLM\...\{B20B30E2-3071-4A7B-8967-3A4B3932DADF}) (Version: 140.0.306.000 - Hewlett-Packard) Hidden
OCR Software by I.R.I.S. 14.0 (HKLM\...\HPOCR) (Version: 14.0 - HP)
Realtek I2S Audio (HKLM\...\{89A448AA-3301-46AA-AFC3-34F2D7C670E8}) (Version: 6.2.9600.4087 - Realtek Semiconductor Corp.)
Scan (HKLM\...\{06A1D88C-E102-4527-AF70-29FFD7AF215A}) (Version: 140.0.253.000 - Hewlett-Packard) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 14.0 - HP)
SolutionCenter (HKLM\...\{BC5DD87B-0143-4D14-AAE6-97109614DC6B}) (Version: 140.0.299.000 - Hewlett-Packard) Hidden
Toolbox (HKLM\...\{292F0F52-B62D-4E71-921B-89A682402201}) (Version: 140.0.596.000 - Hewlett-Packard) Hidden
WebReg (HKLM\...\{8EE94FD8-5F52-4463-A340-185D16328158}) (Version: 140.0.297.017 - Hewlett-Packard) Hidden
WebStorage (HKLM\...\WebStorage) (Version: 2.2.7.557 - ASUS Cloud Corporation)
Windows Driver Package - ASUS (AsusHID) Mouse (03/17/2014 3.0.0.27) (HKLM\...\A2E56402A9DA7D645E15F917A8AD8C50FDC80753) (Version: 03/17/2014 3.0.0.27 - ASUS)
WinFlash (HKLM\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.42.0 - ASUS)
Packages:
=========
ASUS PhotoDirector -> C:\Program Files\WindowsApps\F5080380.ASUSPhotoDirector_2.1.3706.2_x86__tfv7c950n6xcr [2016-05-01] (CyberLink Corp.)
ASUS PowerDirector -> C:\Program Files\WindowsApps\F5080380.ASUSPowerDirector_1.0.3618.38952_x86__tfv7c950n6xcr [2016-05-01] (CyberLink Corp.)
ASUS WebStorage -> C:\Program Files\WindowsApps\ASUSCloudCorporation.MobileFileExplorer_1.0.24.190_x86__wk4d32h0cvhem [2016-05-01] (ASUS Cloud Corporation)
MSN Money -> C:\Program Files\WindowsApps\Microsoft.BingFinance_3.0.4.336_x86__8wekyb3d8bbwe [2016-05-01] (Microsoft Corporation) [MS Ad]
MSN News -> C:\Program Files\WindowsApps\Microsoft.BingNews_3.0.4.336_x86__8wekyb3d8bbwe [2016-05-01] (Microsoft Corporation) [MS Ad]
MSN Sports -> C:\Program Files\WindowsApps\Microsoft.BingSports_3.0.4.336_x86__8wekyb3d8bbwe [2016-05-01] (Microsoft Corporation) [MS Ad]
MSN Travel -> C:\Program Files\WindowsApps\Microsoft.BingTravel_3.0.4.336_x86__8wekyb3d8bbwe [2016-05-01] (Microsoft Corporation) [MS Ad]
Music -> C:\Program Files\WindowsApps\Microsoft.ZuneMusic_2.6.672.0_x86__8wekyb3d8bbwe [2016-05-01] (Microsoft Corporation) [MS Ad]
Skype -> C:\Program Files\WindowsApps\Microsoft.SkypeApp_3.1.0.1016_x86__kzf8qxf38zg5c [2016-05-01] (Skype) [MS Ad]
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_1.1.13.8_x86__wgeqdkkx372wm [2013-12-14] (Twitter Inc.)
Windows Phone -> C:\Program Files\WindowsApps\Microsoft.WindowsPhone_1.42.1701.1_x86__8wekyb3d8bbwe [2016-09-14] (Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellExecuteHooks: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [4171480 2013-12-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_BN] -> {CC5FC992-B0AA-47CD-9DC2-83445083CBB9} => C:\Program Files\Common Files\AWS\2.2.7.557\ASUSWSShellExt.dll [2014-11-18] (ASUS Cloud Corporation.) [File not signed]
ShellIconOverlayIdentifiers: [!AsusWSShellExt_ON] -> {618A47A2-528B-4D9A-AFC8-97D3233511E3} => C:\Program Files\Common Files\AWS\2.2.7.557\ASUSWSShellExt.dll [2014-11-18] (ASUS Cloud Corporation.) [File not signed]
ShellIconOverlayIdentifiers: [!AsusWSShellExt_UN] -> {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4E} => C:\Program Files\Common Files\AWS\2.2.7.557\ASUSWSShellExt.dll [2014-11-18] (ASUS Cloud Corporation.) [File not signed]
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [BackupContextMenuExtension] -> {b1b96b20-da1d-4a3c-92c1-7229b32f2326} => C:\Program Files\Common Files\AWS\2.2.7.557\ASUSWSContextMenu.dll [2016-03-15] (ASUS Cloud Corporation -> ASUS Cloud Corporation)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-12-25] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2014-06-10] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [igfxOSP] -> {FA507C3F-30C6-4DCA-9EE5-2656072EEC14} => C:\Windows\system32\igfxOSP.dll [2014-06-10] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-12-25] (Malwarebytes Corporation -> Malwarebytes)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2014-11-18 09:36 - 2014-11-18 09:36 - 001479680 _____ (ASUS Cloud Corporation.) [File not signed] C:\Program Files\Common Files\AWS\2.2.7.557\ASUSWSShellExt.dll
2011-08-18 00:24 - 2011-08-18 00:24 - 000696320 _____ (Hewlett-Packard Co.) [File not signed] c:\program files\hp\digital imaging\bin\hpslpsvc32.dll
2010-08-06 10:13 - 2010-08-06 10:13 - 000044032 _____ (Hewlett-Packard) [File not signed] c:\windows\system32\hpzinw12.dll
2010-08-06 10:13 - 2010-08-06 10:13 - 000053760 _____ (Hewlett-Packard) [File not signed] c:\windows\system32\hpzipm12.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2ce.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) =================
==================== Internet Explorer trusted/restricted ==========
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2013-08-22 07:13 - 2019-12-25 18:30 - 000000885 _____ C:\Windows\system32\drivers\etc\hosts
0.0.0.1 mssplus.mcafee.com
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\Driver;;;C:\Program Files\Intel\TXE Components\TCS\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\TXE Components\DAL\;C:\Program Files\Intel\TXE Components\IPT\
HKU\S-1-5-21-969322255-3080378673-2421515442-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Filip\AppData\Roaming\Mozilla\Firefox\Pozadí plochy.bmp
DNS Servers: 10.255.255.10 - 10.255.255.20
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{55F26D00-58B0-4610-B288-F605B157E9A7}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{38AD6094-E600-4148-ABFD-01497410B310}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{753B2B7F-B77C-4375-A3D6-73FBB11AF993}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{5F829EE0-ACBA-499B-8D9D-8481B8A35436}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
==================== Restore Points =========================
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (12/25/2019 06:43:38 PM) (Source: System Restore) (EventID: 8211) (User: )
Description: Naplánovaný bod obnovení nebylo možné vytvořit. Další informace: (0x80042308).
Error: (12/25/2019 06:43:38 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\Windows\system32\srtasks.exe ExecuteScheduledSPPCreation; Popis = Scheduled Checkpoint; Chyba = 0x80042308).
Error: (12/25/2019 06:41:55 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: FILIP)
Description: Aplikaci Microsoft.BingNews_8wekyb3d8bbwe!AppexNews se nepovedlo aktivovat, protože došlo k chybě: -2144927148. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.
Error: (12/25/2019 06:23:14 PM) (Source: DptfPolicyLpmService) (EventID: 1) (User: )
Description: Event-ID 1
Error: (12/25/2019 05:47:12 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: FILIP)
Description: Aplikaci Microsoft.BingNews_8wekyb3d8bbwe!AppexNews se nepovedlo aktivovat, protože došlo k chybě: -2144927148. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.
Error: (12/24/2019 11:34:00 AM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: Problém zabránil odeslání dat programu Zlepšování softwaru a služeb na základě zkušeností uživatelů společnosti Microsoft, (chyba 80070005).
Error: (12/23/2019 12:22:06 PM) (Source: VSS) (EventID: 12305) (User: )
Description: Chyba služby Stínová kopie svazků: Svazek nebo disk není připojen nebo nebyl nalezen.
Kontext chyby: CreateFileW(\\?\GLOBALROOT\Device\HarddiskVolumeShadowCopy1,0xc0000000,0x00000003,...).
Operation:
Processing PostFinalCommitSnapshots
Context:
Execution Context: System Provider
Error: (12/23/2019 06:39:28 AM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: Problém zabránil odeslání dat programu Zlepšování softwaru a služeb na základě zkušeností uživatelů společnosti Microsoft, (chyba 80070005).
System errors:
=============
Error: (12/25/2019 06:43:32 PM) (Source: volsnap) (EventID: 36) (User: )
Description: Stínové kopie svazku C: byly přerušeny, protože z důvodu limitu stanoveného uživatelem se nepodařilo zvětšit úložiště stínové kopie.
Error: (12/25/2019 06:29:46 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Interactive Services Detection byla ukončena s následující chybou:
Nesprávná funkce.
Error: (12/25/2019 06:22:00 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba McAfee True Key Scheduler neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (12/25/2019 06:22:00 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby McAfee True Key Scheduler bylo dosaženo časového limitu (30000 ms).
Error: (12/25/2019 06:21:15 PM) (Source: Microsoft-Windows-Directory-Services-SAM) (EventID: 16953) (User: NT AUTHORITY)
Description: Nepodařilo se zavést knihovnu DLL oznámení o heslech "C:\Program Files\McAfee\TrueKey\McAfeeTrueKeyPasswordFilter" kvůli chybě 126. Ověřte, zda cesta ke knihovně DLL oznámení definovaná v registru (HKLM\System\CurrentControlSet\Control\Lsa\Notification Packages) odkazuje na správnou absolutní cestu (<jednotka>:\<cesta>\<název_souboru>.<přípona>). Pokud je cesta ke knihovně DLL správná, ověřte, zda jsou ve stejném adresáři umístěny všechny podpůrné soubory a zda má systémový účet přístup pro čtení k cestě knihovny DLL i všem podpůrným souborům. O další podporu můžete požádat poskytovatele knihovny DLL oznámení. Podrobnější informace najdete na adrese http://go.microsoft.com/fwlink/?LinkId=245898.
Error: (12/25/2019 06:21:15 PM) (Source: Microsoft-Windows-Directory-Services-SAM) (EventID: 16953) (User: NT AUTHORITY)
Description: Nepodařilo se zavést knihovnu DLL oznámení o heslech "C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter" kvůli chybě 126. Ověřte, zda cesta ke knihovně DLL oznámení definovaná v registru (HKLM\System\CurrentControlSet\Control\Lsa\Notification Packages) odkazuje na správnou absolutní cestu (<jednotka>:\<cesta>\<název_souboru>.<přípona>). Pokud je cesta ke knihovně DLL správná, ověřte, zda jsou ve stejném adresáři umístěny všechny podpůrné soubory a zda má systémový účet přístup pro čtení k cestě knihovny DLL i všem podpůrným souborům. O další podporu můžete požádat poskytovatele knihovny DLL oznámení. Podrobnější informace najdete na adrese http://go.microsoft.com/fwlink/?LinkId=245898.
Error: (12/25/2019 05:42:21 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Software Protection neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (12/25/2019 05:42:21 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Software Protection bylo dosaženo časového limitu (30000 ms).
Windows Defender:
===================================
Date: 2019-05-13 12:08:09.731
Description:
Prohledávání Windows Defender zjistilo chybu pri pokusu o aktualizaci podpisu.
Nová verze podpisu:
Predchozí verze podpisu: 1.293.1283.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Predchozí verze modulu: 1.1.15900.4
Kód chyby: 0x80072efe
Popis chyby :The connection with the server was terminated abnormally
Date: 2019-04-17 13:49:23.811
Description:
Prohledávání Windows Defender zjistilo chybu pri pokusu o aktualizaci podpisu.
Nová verze podpisu:
Predchozí verze podpisu: 119.0.0.0
Zdroj aktualizace: Centrum spolecnosti Microsoft pro ochranu pred škodlivým softwarem
Typ podpisu: Systém kontroly síte
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Predchozí verze modulu: 2.1.14600.4
Kód chyby: 0x80072ee7
Popis chyby :The server name or address could not be resolved
Date: 2019-04-17 13:49:18.654
Description:
Prohledávání Windows Defender zjistilo chybu pri pokusu o aktualizaci podpisu.
Nová verze podpisu:
Predchozí verze podpisu: 1.291.2121.0
Zdroj aktualizace: Centrum spolecnosti Microsoft pro ochranu pred škodlivým softwarem
Typ podpisu: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Predchozí verze modulu: 1.1.15800.1
Kód chyby: 0x80072ee2
Popis chyby :The operation timed out
Date: 2019-04-17 13:49:18.654
Description:
Prohledávání Windows Defender zjistilo chybu pri pokusu o aktualizaci podpisu.
Nová verze podpisu:
Predchozí verze podpisu: 1.291.2121.0
Zdroj aktualizace: Centrum spolecnosti Microsoft pro ochranu pred škodlivým softwarem
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Predchozí verze modulu: 1.1.15800.1
Kód chyby: 0x80072ee2
Popis chyby :The operation timed out
Date: 2019-04-17 13:38:59.796
Description:
Prohledávání Windows Defender zjistilo chybu pri pokusu o aktualizaci podpisu.
Nová verze podpisu:
Predchozí verze podpisu: 1.291.2032.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Predchozí verze modulu: 1.1.15800.1
Kód chyby: 0x80240016
Popis chyby :An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support.
CodeIntegrity:
===================================
Date: 2019-04-23 15:10:48.133
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-03-27 11:03:56.335
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-02-19 04:51:12.304
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-01-31 12:39:09.248
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-01-16 03:24:16.836
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-01-10 11:11:05.319
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2018-11-28 08:59:27.264
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2018-11-20 04:30:21.522
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. T100TA.313 08/13/2014
Motherboard: ASUSTeK COMPUTER INC. T100TA
Processor: Intel(R) Atom(TM) CPU Z3740 @ 1.33GHz
Percentage of memory in use: 54%
Total physical RAM: 1933.15 MB
Available physical RAM: 887.61 MB
Total Virtual: 3991.16 MB
Available Virtual: 2578.43 MB
==================== Drives ================================
Drive c: (OS) (Fixed) (Total:28.22 GB) (Free:1.58 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (Data1) (Fixed) (Total:465.76 GB) (Free:461.83 GB) NTFS
\\?\Volume{d62c6061-95e2-4f59-8ac9-7fa03192058f}\ (Recovery) (Fixed) (Total:0.68 GB) (Free:0.39 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 29.1 GB) (Disk ID: 0F449B5E)
Partition: GPT.
==========================================================
Disk: 1 (Size: 465.8 GB) (Disk ID: 4F39B478)
Partition: GPT.
==================== End of Addition.txt =======================
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 25-12-2019
Ran by Filip (administrator) on FILIP (ASUSTeK COMPUTER INC. T100TA) (25-12-2019 20:05:00)
Running from C:\Users\Filip\Desktop
Loaded Profiles: Filip (Available Profiles: Filip)
Platform: Microsoft Windows 8.1 (Update) (X86) Language: Angličtina (Spojené království)
Default browser: FF
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ASUS Cloud Corporation -> ASUS Cloud Corporation) C:\Program Files\ASUS\WebStorage\2.2.7.557\AsusWSPanel.exe
(ASUS Cloud Corporation) [File not signed] C:\Program Files\ASUS\WebStorage\2.0.3.226\AsusWSWinService.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer INC.) C:\Program Files\ASUS\ASUS AC Reminder\ACReminderSrv.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files\ASUS\ATK Package\ATK Hotkey\AsHidSrv.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer INC.) C:\ProgramData\AsTouchPanel\AsPatchTouchPanel.exe
(ASUSTeK Computer Inc. -> AsusTek) C:\Program Files\ASUS\ASUS Smart Gesture\AsTPCenter\x86\AsusTPCenter.exe
(ASUSTeK Computer Inc. -> AsusTek) C:\Program Files\ASUS\ASUS Smart Gesture\AsTPCenter\x86\AsusTPHelper.exe
(ASUSTeK Computer Inc. -> AsusTek) C:\Program Files\ASUS\ASUS Smart Gesture\AsTPCenter\x86\AsusTPLoader.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(HP Inc. -> HP Inc.) C:\Program Files\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Intel Corporation - Client Components Group -> Intel Corporation) C:\Program Files\Intel\TXE Components\DAL\jhi_service.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxTray.exe
(Intel MCG PIV Tablet Validation -> Intel Corporation) C:\Windows\System32\DptfParticipantProcessorService.exe
(Intel MCG PIV Tablet Validation -> Intel Corporation) C:\Windows\System32\DptfPolicyCriticalService.exe
(Intel MCG PIV Tablet Validation -> Intel Corporation) C:\Windows\System32\DptfPolicyLpmService.exe
(Intel MCG PIV Tablet Validation -> Intel Corporation) C:\Windows\System32\DptfPolicyLpmServiceHelper.exe
(Intel(R) Corporation) [File not signed] C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(McAfee, Inc. -> McAfee, LLC.) C:\Program Files\McAfee\TrueKey\McAfee.TrueKey.Service.exe
(McAfee, Inc. -> McAfee, LLC.) C:\Program Files\McAfee\TrueKey\McAfee.TrueKey.ServiceHelper.exe
(McAfee, LLC -> McAfee, LLC.) C:\Program Files\McAfee Security Scan\3.11.1512\SSScheduler.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Piriform Software Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Realtek Semiconductor) [File not signed] C:\Program Files\Realtek\Audio\AP\RtkNGUI.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [ASUSPRP] => C:\Program Files\ASUS\APRP\APRP.EXE [3216032 2013-12-13] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) [File not signed]
HKLM\...\Run: [WebStorage] => C:\Program Files\ASUS\WebStorage\2.2.7.557\ASUSWSLoader.exe [63272 2016-03-15] (ASUS Cloud Corporation -> )
HKLM\...\Run: [RtkNGUI] => C:\Program Files\Realtek\Audio\AP\RtkNGUI.exe [2912256 2014-01-17] (Realtek Semiconductor) [File not signed]
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Run: [DptfPolicyLpmServiceHelper] => C:\Windows\system32\DptfPolicyLpmServiceHelper.exe [81360 2014-01-22] (Intel MCG PIV Tablet Validation -> Intel Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [232840 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
HKU\S-1-5-21-969322255-3080378673-2421515442-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-16] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-969322255-3080378673-2421515442-1001\...\MountPoints2: {453a4696-475b-11e8-975e-40167e925b5f} - "E:\Lenovo_Suite.exe"
HKU\S-1-5-21-969322255-3080378673-2421515442-1001\...\MountPoints2: {99c782c5-9154-11e7-9743-40167e925b5f} - "E:\Lenovo_Suite.exe"
HKU\S-1-5-21-969322255-3080378673-2421515442-1001\...\MountPoints2: {ec1a3365-ed02-11e7-9751-40167e925b5f} - "E:\Lenovo_Suite.exe"
HKU\S-1-5-21-969322255-3080378673-2421515442-1001\...\MountPoints2: {ee8baaf3-d6a3-11e8-9770-40167e925b5f} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-969322255-3080378673-2421515442-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Bubbles.scr [778752 2014-10-29] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{B7724AE5-1135-4889-8A5F-CA98BE6CA1ED}] -> C:\Program Files\McAfee\TrueKey\McAfee.TrueKey.CredentialProvider.dll [2018-10-10] (McAfee, Inc. -> McAfee, LLC.)
Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter "C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter" "C:\Program Files\McAfee\TrueKey\McAfeeTrueKeyPasswordFilter"
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2019-12-25]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.1512\SSScheduler.exe (McAfee, LLC -> McAfee, LLC.)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {092D8C00-9CA3-4278-92DB-B22EE642D313} - System32\Tasks\ASUS AC Reminder => C:\Program Files\ASUS\ASUS AC Reminder\ACReminderSrv.exe [378992 2013-12-23] (ASUSTeK Computer Inc. -> ASUSTek Computer INC.)
Task: {0DFDA773-1251-4292-8855-3628B5DB546F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater – Install HPSA => C:\Program Files\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [655736 2019-07-31] (HP Inc. -> HP Inc.)
Task: {15A801D6-7ACF-40A8-B4D0-503126B25E89} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [655736 2019-07-31] (HP Inc. -> HP Inc.)
Task: {1C4F6141-DA5C-4944-AEEB-D18320E0D4E7} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [145272 2019-10-31] (HP Inc. -> HP Inc.)
Task: {298FD637-CF69-4793-8608-5428B8443F03} - System32\Tasks\ASUS Patch for Touch Panel => C:\ProgramData\AsTouchPanel\AsPatchTouchPanel.exe [144512 2013-01-09] (ASUSTeK Computer Inc. -> ASUSTek Computer INC.)
Task: {39245206-2A84-497D-B53B-F8C9BA5DEB19} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-16] (Piriform Software Ltd -> Piriform Ltd)
Task: {414BED96-D502-45DA-B9CA-ADC830E0D69D} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [109880 2014-01-14] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {46502E1A-4329-4A5B-BDCD-A86B4E6419AA} - System32\Tasks\Update Checker => C:\Program Files\ASUS\ASUS Live Update\UpdateChecker.exe [143672 2019-04-02] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
Task: {58C330F1-51C0-4A56-A210-E216A11AB025} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3250056 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
Task: {6C43B0E0-B189-4EF4-8377-470D492B4378} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\system32\Macromed\Flash\FlashUtil32_32_0_0_303_Plugin.exe [1457720 2019-12-23] (Adobe Inc. -> Adobe)
Task: {91C3A2E7-3799-4FF8-AEB7-395DDBE8C806} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files\ASUS\ASUS Smart Gesture\AsTPCenter\x86\AsusTPLauncher.exe [17208 2014-04-08] (ASUSTeK Computer Inc. -> AsusTek)
Task: {B5A79897-F5A9-4B83-83BE-7B58F3C1F3E0} - System32\Tasks\McAfee Remediation (Prepare) => C:\Program Files\Common Files\AV\McAfee VirusScan\upgrade.exe [3692792 2018-09-11] (McAfee, Inc. -> McAfee, Inc.)
Task: {C3588880-1698-4B69-8B38-913407506CD9} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-12-23] (Adobe Inc. -> Adobe)
Task: {E05914FB-7609-425F-B420-F814B91A3CC9} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-16] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {E415BDCB-3436-4AE7-9682-FB8D8E584533} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1542536 2019-09-23] (AVAST Software s.r.o. -> AVAST Software)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: 0.0.0.1 mssplus.mcafee.com
Tcpip\Parameters: [DhcpNameServer] 10.255.255.10 10.255.255.20
Tcpip\..\Interfaces\{CE7AB9EE-CFDE-4479-BE22-7AC8A9D07756}: [DhcpNameServer] 10.255.255.10 10.255.255.20
Internet Explorer:
==================
HKU\S-1-5-21-969322255-3080378673-2421515442-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.centrum.cz/
HKU\S-1-5-21-969322255-3080378673-2421515442-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus13.msn.com/?pc=ASJB
SearchScopes: HKU\S-1-5-21-969322255-3080378673-2421515442-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-969322255-3080378673-2421515442-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\McAfee\TrueKey\MSIE\truekey_ie.dll [2018-04-23] (McAfee, Inc. -> Intel Security)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-18] (Microsoft Corporation -> Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
Toolbar: HKLM - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\McAfee\TrueKey\MSIE\truekey_ie.dll [2018-04-23] (McAfee, Inc. -> Intel Security)
FireFox:
========
FF DefaultProfile: prbb2jq9.default
FF ProfilePath: C:\Users\Filip\AppData\Roaming\Mozilla\Firefox\Profiles\prbb2jq9.default [2019-12-25]
FF Homepage: Mozilla\Firefox\Profiles\prbb2jq9.default -> hxxps://www.centrum.cz/
FF Session Restore: Mozilla\Firefox\Profiles\prbb2jq9.default -> is enabled.
FF Extension: (Pomocník GIVT.cz) - C:\Users\Filip\AppData\Roaming\Mozilla\Firefox\Profiles\prbb2jq9.default\Extensions\@givt-toolbar-cz.xpi [2019-03-21]
FF Extension: (Avast Online Security) - C:\Users\Filip\AppData\Roaming\Mozilla\Firefox\Profiles\prbb2jq9.default\Extensions\wrc@avast.com.xpi [2019-12-20]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_32_0_0_303.dll [2019-12-23] (Adobe Inc. -> )
FF Plugin: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files\Intel\TXE Components\IPT\npIntelWebAPIIPT.dll [2013-07-12] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files\Intel\TXE Components\IPT\npIntelWebAPIUpdater.dll [2013-07-12] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AsHidService; C:\Program Files\ASUS\ATK Package\ATK Hotkey\AsHidSrv.exe [103224 2013-09-09] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
R2 ASLDRService; C:\Program Files\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe [115512 2014-03-26] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
R2 Asus WebStorage Windows Service; C:\Program Files\ASUS\WebStorage\2.0.3.226\AsusWSWinService.exe [71680 2013-08-16] (ASUS Cloud Corporation) [File not signed]
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [5106064 2019-12-20] (AVAST Software s.r.o. -> AVAST Software)
R2 ATKGFNEXSrv; C:\Program Files\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [96896 2011-11-21] (ASUSTeK Computer Inc. -> ASUS)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [859096 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
S2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [1677016 2014-11-05] (Broadcom Corporation -> Broadcom Corporation.)
S3 cphs; C:\Windows\system32\IntelCpHeciSvc.exe [278344 2014-06-10] (Intel Corporation - pGFX -> Intel Corporation)
R2 DptfParticipantProcessorService; C:\Windows\system32\DptfParticipantProcessorService.exe [83920 2014-01-22] (Intel MCG PIV Tablet Validation -> Intel Corporation)
R2 DptfPolicyCriticalService; C:\Windows\system32\DptfPolicyCriticalService.exe [96720 2014-01-22] (Intel MCG PIV Tablet Validation -> Intel Corporation)
R2 DptfPolicyLpmService; C:\Windows\system32\DptfPolicyLpmService.exe [90576 2014-01-22] (Intel MCG PIV Tablet Validation -> Intel Corporation)
R2 HPSLPSVC; C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL [696320 2011-08-18] (Hewlett-Packard Co.) [File not signed]
R2 HPSupportSolutionsFrameworkService; C:\Program Files\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [360312 2019-10-14] (HP Inc. -> HP Inc.)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [277320 2014-06-10] (Intel Corporation - pGFX -> Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [586752 2013-07-01] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [637912 2013-07-01] (Intel® Trusted Connect Service -> Intel(R) Corporation)
R2 jhi_service; C:\Program Files\Intel\TXE Components\DAL\jhi_service.exe [168216 2014-01-15] (Intel Corporation - Client Components Group -> Intel Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [5570712 2019-12-25] (Malwarebytes Inc -> Malwarebytes)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.1512\McCHSvc.exe [326952 2019-11-13] (McAfee, LLC -> McAfee, LLC.)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [44032 2010-08-06] (Hewlett-Packard) [File not signed]
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [53760 2010-08-06] (Hewlett-Packard) [File not signed]
R2 TrueKey; C:\Program Files\McAfee\TrueKey\McAfee.TrueKey.Service.exe [274176 2018-10-10] (McAfee, Inc. -> McAfee, LLC.)
S2 TrueKeyScheduler; C:\Program Files\McAfee\TrueKey\McTkSchedulerService.exe [274176 2018-10-10] (McAfee, Inc. -> McAfee, LLC.)
R2 TrueKeyServiceHelper; C:\Program Files\McAfee\TrueKey\McAfee.TrueKey.ServiceHelper.exe [164152 2018-10-10] (McAfee, Inc. -> McAfee, LLC.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [280872 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103696 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AgereSoftModem; C:\Windows\system32\DRIVERS\AGRSM.sys [1035776 2013-06-18] (Microsoft Windows -> LSI Corp)
R2 ASMMAP; C:\Program Files\ASUS\ATK Package\ATKGFNEX\ASMMAP.sys [13880 2009-07-02] (ASUSTeK Computer Inc. -> ASUS)
R3 AsusHID; C:\Windows\System32\drivers\AsusHID.sys [68888 2014-04-08] (ASUSTeK Computer Inc. -> ASUS Corporation)
R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [35512 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [174712 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [224008 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [169408 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [59368 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [211088 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [41200 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [145048 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [95168 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [73312 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [691528 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [394856 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [176760 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [277408 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
R1 ATKWMIACPIIO; C:\Program Files\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi.sys [17720 2013-07-02] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
R3 BCMSDH43XX; C:\Windows\system32\DRIVERS\bcmdhd63.sys [304344 2018-08-06] (Broadcom Corporation -> Broadcom Corp)
S3 btwampfl; C:\Windows\system32\DRIVERS\btwampfl.sys [144600 2014-11-05] (Broadcom Corporation -> Broadcom Corporation.)
R3 BtwSerialBus; C:\Windows\system32\DRIVERS\BtwSerialBus.sys [130776 2014-11-05] (Broadcom Corporation -> Broadcom Corporation.)
R3 camera; C:\Windows\system32\DRIVERS\camera.sys [345088 2013-12-02] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
R3 CM3218x; C:\Windows\system32\DRIVERS\WUDFRd.sys [190976 2014-10-29] (Microsoft Windows -> Microsoft Corporation)
R3 CPLMACPI; C:\Windows\system32\DRIVERS\CPLMACPI.sys [16488 2013-09-06] (Capella Microsystems Inc. -> Capella Microsystems, Inc.)
S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [137632 2012-10-19] (Hewlett-Packard Company -> Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [22432 2012-10-19] (Hewlett-Packard Company -> Windows (R) Win 7 DDK provider)
S3 dot4usb; C:\Windows\system32\DRIVERS\dot4usb.sys [42912 2012-10-19] (Hewlett-Packard Company -> Microsoft Corporation)
R3 DptfDevDBPT; C:\Windows\system32\DRIVERS\DptfDevPower.sys [25552 2014-01-22] (Intel MCG PIV Tablet Validation -> Intel Corporation)
R3 DptfDevDisplay; C:\Windows\system32\DRIVERS\DptfDevDisplay.sys [28112 2014-01-22] (Intel MCG PIV Tablet Validation -> Intel Corporation)
R3 DptfDevGen; C:\Windows\system32\DRIVERS\DptfDevGen.sys [36304 2014-01-22] (Intel MCG PIV Tablet Validation -> Intel Corporation)
R3 DptfDevProc; C:\Windows\system32\DRIVERS\DptfDevProc.sys [80848 2014-01-22] (Intel MCG PIV Tablet Validation -> Intel Corporation)
R3 DptfManager; C:\Windows\system32\DRIVERS\DptfManager.sys [181712 2014-01-22] (Intel MCG PIV Tablet Validation -> Intel Corporation)
R3 GPIO; C:\Windows\System32\drivers\iaiogpioe.sys [23552 2014-03-18] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
R3 GpioVirtual; C:\Windows\System32\drivers\iaiogpiovirtual.sys [16896 2014-03-18] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
R3 HIDSwitch; C:\Windows\System32\drivers\AsHIDSwitch.sys [17720 2013-10-08] (ASUSTeK Computer Inc. -> ASUS)
R3 iaioi2c; C:\Windows\System32\drivers\iaioi2ce.sys [58368 2014-03-18] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
R3 iaiouart; C:\Windows\System32\drivers\iaiouart.sys [87552 2014-03-18] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
S0 iaStorA; C:\Windows\System32\drivers\iaStorA.sys [505192 2013-08-09] (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation)
S3 intaud_WaveExtensible; C:\Windows\system32\drivers\intelaud.sys [32152 2014-05-06] (Intel Wireless Display -> Intel Corporation)
R3 IntelSST; C:\Windows\system32\drivers\isstrtc.sys [259584 2014-04-03] (Microsoft Windows Hardware Compatibility Publisher -> Intel(R) Corporation)
R3 INVN_MotionApps; C:\Windows\system32\DRIVERS\WUDFRd.sys [190976 2014-10-29] (Microsoft Windows -> Microsoft Corporation)
R3 iwdbus; C:\Windows\System32\drivers\iwdbus.sys [23448 2014-05-06] (Intel Wireless Display -> Intel Corporation)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [183048 2019-12-25] (Malwarebytes Inc -> Malwarebytes)
R0 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [243800 2019-12-25] (Malwarebytes Inc -> Malwarebytes)
R0 MBI; C:\Windows\System32\drivers\MBI.sys [21456 2014-03-18] (Intel MCG PIV Tablet Validation -> Intel Corporation)
R3 MT9M114; C:\Windows\System32\drivers\MT9M114.sys [38912 2013-12-02] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
S3 NETwNs32; C:\Windows\system32\DRIVERS\Netwsn00.sys [10372096 2013-06-18] (Microsoft Windows -> Intel Corporation)
R3 PMIC; C:\Windows\System32\drivers\PMIC.sys [48128 2014-03-18] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
R3 rtii2sac; C:\Windows\system32\DRIVERS\rtii2sac.sys [169176 2014-03-14] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
R3 SensorsServiceDriver; C:\Windows\System32\drivers\WUDFRd.sys [190976 2014-10-29] (Microsoft Windows -> Microsoft Corporation)
R3 TXEI; C:\Windows\System32\drivers\TXEI.sys [75792 2014-03-18] (Intel Corporation - Client Components Group -> Intel Corporation)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [38920 2017-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [231256 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [85336 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
R3 WUDFWpdMtp; C:\Windows\System32\drivers\WUDFRd.sys [190976 2014-10-29] (Microsoft Windows -> Microsoft Corporation)
U0 msahci; system32\drivers\msahci.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-12-25 20:05 - 2019-12-25 20:05 - 000025352 _____ C:\Users\Filip\Desktop\FRST.txt
2019-12-25 20:04 - 2019-12-25 20:04 - 000000000 ____D C:\Users\Filip\Desktop\FRST-OlderVersion
2019-12-25 18:30 - 2019-12-25 18:31 - 000000000 ____D C:\ProgramData\McAfee Security Scan
2019-12-25 18:30 - 2019-12-25 18:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
2019-12-25 18:22 - 2019-12-25 18:22 - 000183048 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2019-12-25 18:04 - 2019-12-25 18:04 - 000000000 ____D C:\Users\Filip\AppData\Local\cache
2019-12-25 18:03 - 2019-12-25 18:03 - 000001966 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2019-12-25 18:03 - 2019-12-25 18:03 - 000001966 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2019-12-25 18:03 - 2019-12-25 18:03 - 000000000 ____D C:\Users\Filip\AppData\Local\mbamtray
2019-12-25 18:03 - 2019-12-25 18:03 - 000000000 ____D C:\Users\Filip\AppData\Local\mbam
2019-12-25 18:03 - 2019-12-25 18:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2019-12-25 18:02 - 2019-12-25 18:02 - 000243800 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2019-12-25 18:02 - 2019-12-25 18:01 - 000129056 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae.sys
2019-12-25 18:01 - 2019-12-25 18:01 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-12-25 17:59 - 2019-12-25 17:59 - 000000000 ____D C:\Program Files\Malwarebytes
2019-12-25 17:58 - 2019-12-25 17:58 - 001883976 _____ (Malwarebytes) C:\Users\Filip\Desktop\MBSetup.exe
2019-12-24 11:48 - 2019-12-25 20:05 - 000000000 ____D C:\FRST
2019-12-24 11:47 - 2019-12-25 20:04 - 002000384 _____ (Farbar) C:\Users\Filip\Desktop\FRST.exe
2019-12-23 12:20 - 2019-11-28 06:56 - 001118584 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2019-12-23 12:20 - 2019-11-28 05:46 - 003417088 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2019-12-23 12:20 - 2019-11-21 03:16 - 000496640 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2019-12-23 12:20 - 2019-11-19 09:17 - 020290048 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2019-12-23 12:20 - 2019-11-19 08:49 - 000662528 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2019-12-23 12:20 - 2019-11-19 08:28 - 000880640 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2019-12-23 12:20 - 2019-11-19 08:26 - 004112384 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2019-12-23 12:20 - 2019-11-19 08:23 - 000696320 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2019-12-23 12:20 - 2019-11-19 08:20 - 013838336 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2019-12-23 12:20 - 2019-11-19 08:05 - 004387840 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2019-12-23 12:20 - 2019-11-19 08:01 - 001331712 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2019-12-23 12:20 - 2019-11-19 08:00 - 000710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2019-12-23 12:20 - 2019-11-15 16:40 - 001492992 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2019-12-23 12:20 - 2019-11-13 06:52 - 000113664 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2019-12-23 12:20 - 2019-11-13 06:52 - 000078336 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2019-12-23 12:20 - 2019-11-11 23:33 - 000627200 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelinesvc.exe
2019-12-23 12:20 - 2019-11-09 09:46 - 000333744 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2019-12-23 12:20 - 2019-11-09 02:23 - 002979840 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2019-12-23 12:20 - 2019-11-05 04:36 - 000137096 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2019-12-23 12:20 - 2019-11-05 01:03 - 000611432 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2019-12-23 12:20 - 2019-10-27 00:17 - 001465344 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2019-12-06 08:36 - 2019-12-25 18:20 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-12-06 07:36 - 2019-12-06 07:38 - 003447614 _____ C:\Users\Filip\Downloads\final.pdf
2019-12-05 14:38 - 2019-12-05 14:38 - 000168654 _____ C:\Users\Filip\Downloads\5.12.19.pdf
2019-11-27 11:40 - 2019-11-27 11:40 - 000118275 _____ C:\Users\Filip\Downloads\HYPNOS_stage_plot_+_input_list_2019.pdf
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-12-25 20:03 - 2017-01-09 10:47 - 000000000 ____D C:\Users\Filip\AppData\LocalLow\Mozilla
2019-12-25 18:41 - 2016-03-30 19:37 - 000003598 _____ C:\Windows\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-969322255-3080378673-2421515442-1001
2019-12-25 18:30 - 2018-03-09 09:08 - 000002072 _____ C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
2019-12-25 18:30 - 2018-03-09 09:08 - 000002072 _____ C:\ProgramData\Desktop\McAfee Security Scan Plus.lnk
2019-12-25 18:30 - 2016-09-11 16:13 - 000000000 ____D C:\Program Files\McAfee Security Scan
2019-12-25 18:26 - 2016-03-30 20:42 - 000736042 _____ C:\Windows\system32\perfh005.dat
2019-12-25 18:26 - 2016-03-30 20:42 - 000149674 _____ C:\Windows\system32\perfc005.dat
2019-12-25 18:26 - 2013-12-13 21:46 - 001739092 _____ C:\Windows\system32\PerfStringBackup.INI
2019-12-25 18:26 - 2013-08-22 07:21 - 000000000 ____D C:\Windows\inf
2019-12-25 18:23 - 2016-04-26 11:21 - 000000000 __RDO C:\Users\Filip\OneDrive
2019-12-25 18:21 - 2013-08-22 08:23 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-12-25 18:21 - 2013-08-22 08:22 - 000411360 _____ C:\Windows\system32\FNTCACHE.DAT
2019-12-25 18:20 - 2016-05-01 19:06 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service
2019-12-25 18:19 - 2013-08-22 07:13 - 000524288 ___SH C:\Windows\system32\config\BBI
2019-12-25 17:44 - 2016-03-30 20:31 - 000003914 _____ C:\Windows\system32\Tasks\User_Feed_Synchronization-{C59EC562-27FC-4DF2-847D-22608E0588B7}
2019-12-25 16:52 - 2018-06-06 11:15 - 000004128 _____ C:\Windows\system32\Tasks\CCleaner Update
2019-12-25 15:34 - 2019-05-27 11:35 - 000004168 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2019-12-25 05:39 - 2013-08-22 09:05 - 000000000 ____D C:\Windows\CbsTemp
2019-12-23 06:37 - 2018-03-13 22:39 - 000004456 _____ C:\Windows\system32\Tasks\Adobe Flash Player NPAPI Notifier
2019-12-23 06:37 - 2016-09-11 16:13 - 000004372 _____ C:\Windows\system32\Tasks\Adobe Flash Player Updater
2019-12-23 06:37 - 2013-08-22 09:17 - 000000000 ____D C:\Windows\system32\Macromed
2019-12-20 10:48 - 2019-05-27 11:52 - 000000000 ____D C:\Users\Filip\AppData\Local\AVAST Software
2019-12-09 07:07 - 2016-05-01 19:06 - 000001131 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2019-12-06 14:34 - 2019-06-04 10:50 - 000000000 _____ C:\Windows\system32\last.dump
2019-11-26 13:35 - 2019-11-18 12:28 - 000022128 _____ C:\Users\Filip\Downloads\Týnfest_19.xlsx
==================== Files in the root of some directories ========
2016-05-01 19:05 - 2016-05-01 19:05 - 044294648 _____ () C:\Users\Filip\Firefox_Setup_46.0.exe
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
LastRegBack: 2019-12-25 18:43
==================== End of FRST.txt ========================
-
Rudy
- Site Admin
- Příspěvky: 118253
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu
Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CloseProcesses:
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
HKU\S-1-5-21-969322255-3080378673-2421515442-1001\...\MountPoints2: {453a4696-475b-11e8-975e-40167e925b5f} - "E:\Lenovo_Suite.exe"
HKU\S-1-5-21-969322255-3080378673-2421515442-1001\...\MountPoints2: {99c782c5-9154-11e7-9743-40167e925b5f} - "E:\Lenovo_Suite.exe"
HKU\S-1-5-21-969322255-3080378673-2421515442-1001\...\MountPoints2: {ec1a3365-ed02-11e7-9751-40167e925b5f} - "E:\Lenovo_Suite.exe"
HKU\S-1-5-21-969322255-3080378673-2421515442-1001\...\MountPoints2: {ee8baaf3-d6a3-11e8-9770-40167e925b5f} - "E:\HiSuiteDownLoader.exe"
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
SearchScopes: HKU\S-1-5-21-969322255-3080378673-2421515442-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-969322255-3080378673-2421515442-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu
Fix result of Farbar Recovery Scan Tool (x86) Version: 25-12-2019
Ran by Filip (25-12-2019 21:15:10) Run:1
Running from C:\Users\Filip\Desktop
Loaded Profiles: Filip (Available Profiles: Filip)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
HKU\S-1-5-21-969322255-3080378673-2421515442-1001\...\MountPoints2: {453a4696-475b-11e8-975e-40167e925b5f} - "E:\Lenovo_Suite.exe"
HKU\S-1-5-21-969322255-3080378673-2421515442-1001\...\MountPoints2: {99c782c5-9154-11e7-9743-40167e925b5f} - "E:\Lenovo_Suite.exe"
HKU\S-1-5-21-969322255-3080378673-2421515442-1001\...\MountPoints2: {ec1a3365-ed02-11e7-9751-40167e925b5f} - "E:\Lenovo_Suite.exe"
HKU\S-1-5-21-969322255-3080378673-2421515442-1001\...\MountPoints2: {ee8baaf3-d6a3-11e8-9770-40167e925b5f} - "E:\HiSuiteDownLoader.exe"
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
SearchScopes: HKU\S-1-5-21-969322255-3080378673-2421515442-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-969322255-3080378673-2421515442-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
EmptyTemp:
End
*****************
Processes closed successfully.
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully.
HKU\S-1-5-21-969322255-3080378673-2421515442-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{453a4696-475b-11e8-975e-40167e925b5f} => removed successfully.
HKU\S-1-5-21-969322255-3080378673-2421515442-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{99c782c5-9154-11e7-9743-40167e925b5f} => removed successfully.
HKU\S-1-5-21-969322255-3080378673-2421515442-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ec1a3365-ed02-11e7-9751-40167e925b5f} => removed successfully.
HKU\S-1-5-21-969322255-3080378673-2421515442-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ee8baaf3-d6a3-11e8-9770-40167e925b5f} => removed successfully.
HKLM\SOFTWARE\Policies\Mozilla => removed successfully.
"HKU\S-1-5-21-969322255-3080378673-2421515442-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully.
HKU\S-1-5-21-969322255-3080378673-2421515442-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => removed successfully.
=========== EmptyTemp: ==========
BITS transfer queue => 8388608 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 8666118 B
Java, Flash, Steam htmlcache => 1193 B
Windows/system/drivers => 56534493 B
Edge => 0 B
Chrome => 0 B
Firefox => 131902114 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 2066834 B
LocalService => 2067662 B
NetworkService => 9899214 B
Filip => 19511422 B
RecycleBin => 55260 B
EmptyTemp: => 228 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 21:15:45 ====
Ran by Filip (25-12-2019 21:15:10) Run:1
Running from C:\Users\Filip\Desktop
Loaded Profiles: Filip (Available Profiles: Filip)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
HKU\S-1-5-21-969322255-3080378673-2421515442-1001\...\MountPoints2: {453a4696-475b-11e8-975e-40167e925b5f} - "E:\Lenovo_Suite.exe"
HKU\S-1-5-21-969322255-3080378673-2421515442-1001\...\MountPoints2: {99c782c5-9154-11e7-9743-40167e925b5f} - "E:\Lenovo_Suite.exe"
HKU\S-1-5-21-969322255-3080378673-2421515442-1001\...\MountPoints2: {ec1a3365-ed02-11e7-9751-40167e925b5f} - "E:\Lenovo_Suite.exe"
HKU\S-1-5-21-969322255-3080378673-2421515442-1001\...\MountPoints2: {ee8baaf3-d6a3-11e8-9770-40167e925b5f} - "E:\HiSuiteDownLoader.exe"
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
SearchScopes: HKU\S-1-5-21-969322255-3080378673-2421515442-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-969322255-3080378673-2421515442-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
EmptyTemp:
End
*****************
Processes closed successfully.
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully.
HKU\S-1-5-21-969322255-3080378673-2421515442-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{453a4696-475b-11e8-975e-40167e925b5f} => removed successfully.
HKU\S-1-5-21-969322255-3080378673-2421515442-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{99c782c5-9154-11e7-9743-40167e925b5f} => removed successfully.
HKU\S-1-5-21-969322255-3080378673-2421515442-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ec1a3365-ed02-11e7-9751-40167e925b5f} => removed successfully.
HKU\S-1-5-21-969322255-3080378673-2421515442-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ee8baaf3-d6a3-11e8-9770-40167e925b5f} => removed successfully.
HKLM\SOFTWARE\Policies\Mozilla => removed successfully.
"HKU\S-1-5-21-969322255-3080378673-2421515442-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully.
HKU\S-1-5-21-969322255-3080378673-2421515442-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => removed successfully.
=========== EmptyTemp: ==========
BITS transfer queue => 8388608 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 8666118 B
Java, Flash, Steam htmlcache => 1193 B
Windows/system/drivers => 56534493 B
Edge => 0 B
Chrome => 0 B
Firefox => 131902114 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 2066834 B
LocalService => 2067662 B
NetworkService => 9899214 B
Filip => 19511422 B
RecycleBin => 55260 B
EmptyTemp: => 228 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 21:15:45 ====
Re: Prosím o kontrolu
... jinak počítač teď frčí, jako kdyby závodil. Před tím byl, jako těhotnej mravenec s hodně těžkým nákupem
-
Rudy
- Site Admin
- Příspěvky: 118253
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu
No, měl by. Vše bylo smazáno. 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu
Nastřádalo se tam za dlouho. Používám ho jenom v práci, musel jsem ho vzít domu, abych se tomu mohl věnovat 
Díky moc!
Díky moc!
-
Rudy
- Site Admin
- Příspěvky: 118253
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu
Rádo se stalo a PF2020!
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?