Ahoj, prosím o kontrolu logu. Měl jsem v PC adware "Eaes.2track.info", který do PC natáhl zřejmě doplněk pro Chrome autorefresh, který jsem stáhl kdysi dávno a teď se jevil jako napadený. Vyskakovala mi okna s pornoweby. Po odstranění doplňku se zdá, že je problém vyřešen? Přesto tedy prosím o kontrolu logu. Moc díky
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 28-06-2020
Ran by spravce (administrator) on LUKINO (ASUSTeK COMPUTER INC. X555LD) (30-06-2020 13:03:56)
Running from C:\Users\spravce\Downloads
Loaded Profiles: spravce
Platform: Windows 10 Home Version 1903 18362.836 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avscan.exe <2>
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\ProtectedService.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(AvJoeSW Inc.) [File not signed] [File is in use] C:\Program Files (x86)\BGPKiller\BGPKiller.exe
(Broadcom Corporation -> Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(Epic Games Inc. -> Epic Games, Inc.) C:\Games\Epic Games\Launcher\Engine\Binaries\Win64\UnrealCEFSubProcess.exe
(Epic Games Inc. -> Epic Games, Inc.) C:\Games\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
(Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrA.exe
(Garmin International, Inc. -> Garmin Ltd. or its subsidiaries) C:\Program Files (x86)\Garmin\Express\express.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <13>
(Google LLC -> Google) C:\Users\spravce\AppData\Local\Google\Chrome\User Data\SwReporter\83.238.200\software_reporter_tool.exe <3>
(Hewlett Packard -> HP Inc.) C:\Program Files\HP\HP OfficeJet Pro 8710\Bin\HPNetworkCommunicatorCom.exe
(Hewlett Packard -> HP Inc.) C:\Program Files\HP\HP OfficeJet Pro 8710\Bin\ScanToPCActivationApp.exe
(Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
(Intel(R) Software -> Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe
(Intel(R) Software -> Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe <2>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1910.0.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SrTasks.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\usocoreworker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.892_none_5efe5b5a590f76dc\TiWorker.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2>
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [] => [X]
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [926896 2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [238568 2020-05-08] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-3758939372-1210436806-4221024289-1001\...\Run: [HP OfficeJet Pro 8710 (NET)] => C:\Program Files\HP\HP OfficeJet Pro 8710\Bin\ScanToPCActivationApp.exe [3770504 2018-04-06] (Hewlett Packard -> HP Inc.)
HKU\S-1-5-21-3758939372-1210436806-4221024289-1001\...\Run: [] => [X]
HKU\S-1-5-21-3758939372-1210436806-4221024289-1001\...\Run: [EpicGamesLauncher] => C:\Games\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32339344 2020-06-21] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-3758939372-1210436806-4221024289-1001\...\Run: [GarminExpress] => C:\Program Files (x86)\Garmin\Express\express.exe [31019504 2020-05-28] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries)
HKU\S-1-5-21-3758939372-1210436806-4221024289-1001\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\spravce\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe"
HKU\S-1-5-21-3758939372-1210436806-4221024289-1001\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\spravce\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe"
HKU\S-1-5-21-3758939372-1210436806-4221024289-1001\...\RunOnce: [Uninstall 20.052.0311.0011\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\spravce\AppData\Local\Microsoft\OneDrive\20.052.0311.0011\amd64"
HKU\S-1-5-21-3758939372-1210436806-4221024289-1001\...\RunOnce: [Uninstall 20.052.0311.0011] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\spravce\AppData\Local\Microsoft\OneDrive\20.052.0311.0011"
HKLM\...\Windows x64\Print Processors\HP1006PrintProc: C:\Windows\System32\spool\prtprocs\x64\HP1006PP.dll [65024 2013-04-15] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.116\Installer\chrmstp.exe [2020-06-30] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\BGPKiller.lnk [2017-10-24]
ShortcutTarget: BGPKiller.lnk -> C:\Program Files (x86)\BGPKiller\BGPKiller.exe (AvJoeSW Inc.) [File not signed] [File is in use]
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {145E323B-B384-48EA-B5F4-45A466C893F5} - System32\Tasks\Avira_Antivirus_Systray => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2759632 2020-06-05] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {1D80F71B-052C-40A9-83CD-67EAA7BFBA31} - System32\Tasks\RtHDVBg => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1411856 2015-11-10] (Realtek Semiconductor Corp -> Realtek Semiconductor)
Task: {425390D1-0968-4F33-8828-5C8255151FD9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2017-10-24] (Google Inc -> Google Inc.)
Task: {77438199-8289-4CED-93DE-3638C177CBEE} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23756168 2020-06-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {7ACA7E57-D061-477C-AC84-F503FE4ACAD1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2017-10-24] (Google Inc -> Google Inc.)
Task: {8577484D-20ED-4DB6-B479-650D39AFA960} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [40432 2020-05-28] (Garmin International, Inc. -> )
Task: {86E5B626-4930-4751-884F-75101633E6F0} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [124776 2020-06-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {A651F3C3-E828-4904-9445-3CC848934CEB} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23756168 2020-06-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {ABA53693-E29A-4ACA-AC2E-886EB5E76A68} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16174352 2015-11-10] (Realtek Semiconductor Corp -> Realtek Semiconductor)
Task: {C1C059DB-4AF7-47CF-8573-3D58CF569E8D} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [18416 2015-12-14] (ASUSTeK Computer Inc. -> AsusTek)
Task: {DA1BA795-DC39-40AB-8C16-FF413B02A059} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1411856 2015-11-10] (Realtek Semiconductor Corp -> Realtek Semiconductor)
Task: {DE9E38D9-39F2-42F7-A06C-40F18A0C9A29} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1321368 2020-06-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {F924161C-E397-49FA-8C16-D970AFB269E2} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [124776 2020-06-30] (Microsoft Corporation -> Microsoft Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{4270a596-5422-44f0-846c-e96e58b50092}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
HKU\S-1-5-21-3758939372-1210436806-4221024289-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKU\S-1-5-21-3758939372-1210436806-4221024289-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2020-01-16] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-06-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-06-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-06-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-06-09] (Microsoft Corporation -> Microsoft Corporation)
Edge:
======
DownloadDir: C:\Users\spravce\Downloads
FireFox:
========
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-07-11] (Google Inc -> Google, Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-01-16] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\spravce\AppData\Local\Google\Chrome\User Data\Default [2020-06-30]
CHR HomePage: Default -> hxxps://news.google.com/news/?hl=cs&ned=cs_cz
CHR StartupUrls: Default -> "hxxps://news.google.com/news/?hl=cs&ned=cs_cz"
CHR Extension: (Dokumenty) - C:\Users\spravce\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-24]
CHR Extension: (Disk Google) - C:\Users\spravce\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-10-24]
CHR Extension: (YouTube) - C:\Users\spravce\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-10-24]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\spravce\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2020-04-07]
CHR Extension: (Search by Image (by Google)) - C:\Users\spravce\AppData\Local\Google\Chrome\User Data\Default\Extensions\dajedkncpodkggklbegccjpmnglmnflm [2017-10-25]
CHR Extension: (Tampermonkey) - C:\Users\spravce\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2020-05-15]
CHR Extension: (Google News) - C:\Users\spravce\AppData\Local\Google\Chrome\User Data\Default\Extensions\dllkocilcinkggkchnjgegijklcililc [2019-11-17]
CHR Extension: (Kalendář Google) - C:\Users\spravce\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejjicmeblgpmajnghnpcppodonldlgfn [2017-10-25]
CHR Extension: (Video Downloader professional) - C:\Users\spravce\AppData\Local\Google\Chrome\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2020-06-30]
CHR Extension: (Dokumenty Google offline) - C:\Users\spravce\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-06-09]
CHR Extension: (PDF Mergy - Merge PDF files) - C:\Users\spravce\AppData\Local\Google\Chrome\User Data\Default\Extensions\hgecghmkcdefnknohcimkoemhaofpoha [2017-10-25]
CHR Extension: (Webcam Toy) - C:\Users\spravce\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfbgimoladefibpklnfmkpknadbklade [2018-06-18]
CHR Extension: (Mapy Google) - C:\Users\spravce\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2017-10-25]
CHR Extension: (Video Converter) - C:\Users\spravce\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcjjnhgakghmggnimjkldjmmpabhnhne [2017-10-25]
CHR Extension: (Kontrola e-mailu Google) - C:\Users\spravce\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2017-10-25]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\spravce\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-10]
CHR Extension: (Gmail) - C:\Users\spravce\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-30]
CHR Extension: (Chrome Media Router) - C:\Users\spravce\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-06-09]
CHR Profile: C:\Users\spravce\AppData\Local\Google\Chrome\User Data\System Profile [2018-08-20]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1208664 2020-06-05] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntivirProtectedService; C:\Program Files (x86)\Avira\Antivirus\ProtectedService.exe [537144 2020-06-05] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [483832 2020-06-05] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [483832 2020-06-05] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [573256 2020-06-05] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [636264 2020-05-08] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [10634632 2020-06-05] (Microsoft Corporation -> Microsoft Corporation)
R2 esifsvc; C:\WINDOWS\SysWOW64\esif_uf.exe [1394360 2015-08-12] (Intel(R) Software -> Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [373728 2016-11-30] (Intel(R) pGFX -> Intel Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462920 2017-12-04] (NVIDIA Corporation -> NVIDIA Corporation)
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [75064 2020-05-14] (Even Balance, Inc. -> )
S3 Rockstar Service; C:\Games\Launcher\RockstarService.exe [1776768 2020-06-12] (Rockstar Games, Inc. -> Rockstar Games)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4098056 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [113992 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 ATP; C:\WINDOWS\System32\drivers\AsusTP.sys [101368 2015-12-14] (ASUSTeK Computer Inc. -> ASUS Corporation)
R0 avdevprot; C:\WINDOWS\System32\DRIVERS\avdevprot.sys [78936 2019-06-17] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S0 avelam; C:\WINDOWS\System32\drivers\avelam.sys [22336 2019-03-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [208016 2020-05-26] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [199752 2020-05-05] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [46704 2019-03-13] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [89736 2019-03-13] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R0 avusbflt; C:\WINDOWS\System32\Drivers\avusbflt.sys [45472 2019-03-13] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [231936 2019-09-13] (Microsoft Corporation) [File not signed] [File is in use]
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32680 2019-08-07] (ASUSTek Computer Inc. -> ASUS)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvam.inf_amd64_1aae4f19e68d0780\nvlddmkm.sys [17003280 2017-12-12] (NVIDIA Corporation -> NVIDIA Corporation)
S2 SecDrv; C:\WINDOWS\SysWOW64\drivers\SECDRV.SYS [163644 2020-05-14] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [File not signed] [File is in use]
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46472 2019-03-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [333784 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [62432 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-06-30 13:03 - 2020-06-30 13:13 - 000022633 _____ C:\Users\spravce\Downloads\FRST.txt
2020-06-30 13:01 - 2020-06-30 13:09 - 000000000 ____D C:\FRST
2020-06-30 12:59 - 2020-06-30 12:59 - 002291712 _____ (Farbar) C:\Users\spravce\Downloads\FRST64.exe
2020-06-30 12:21 - 2020-05-15 06:29 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-06-30 12:21 - 2020-05-15 06:10 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-06-30 12:09 - 2020-06-30 12:15 - 000000000 ____D C:\Users\spravce\Desktop\Záznamy z onboard kamery
2020-06-09 19:49 - 2020-06-09 19:49 - 000599996 _____ C:\Users\spravce\Downloads\Hometicket-41202707.pdf
2020-06-05 15:12 - 2020-06-05 15:12 - 000000000 ____D C:\Users\spravce\Downloads\GPUCache
2020-06-05 15:08 - 2020-06-05 15:13 - 000000000 ____D C:\Users\spravce\AppData\Local\Garmin
2020-06-05 15:08 - 2020-06-05 15:13 - 000000000 ____D C:\ProgramData\Garmin
2020-06-05 15:08 - 2020-06-05 15:08 - 000000000 ____D C:\Users\spravce\AppData\Local\Garmin_Ltd._or_its_subsid
2020-06-05 15:07 - 2020-06-05 15:08 - 000000000 ____D C:\Program Files (x86)\Garmin
2020-06-05 15:07 - 2020-06-05 15:07 - 000003624 _____ C:\WINDOWS\system32\Tasks\GarminUpdaterTask
2020-06-05 15:07 - 2020-06-05 15:07 - 000001963 _____ C:\Users\Public\Desktop\Garmin Express.lnk
2020-06-05 15:07 - 2020-06-05 15:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garmin
2020-06-05 14:59 - 2020-06-05 15:00 - 117684280 _____ (Garmin Ltd or its subsidiaries) C:\Users\spravce\Downloads\GarminExpress.exe
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-06-30 13:18 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-06-30 12:44 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF
2020-06-30 12:41 - 2019-09-04 15:22 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-06-30 12:23 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-06-30 12:16 - 2017-10-24 11:26 - 000000000 ____D C:\Users\spravce\AppData\Roaming\vlc
2020-06-30 12:00 - 2019-09-04 15:53 - 000003366 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3758939372-1210436806-4221024289-1001
2020-06-30 12:00 - 2017-10-25 21:56 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2020-06-30 11:59 - 2017-10-24 11:25 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-06-30 11:57 - 2017-09-29 03:12 - 000000000 ___RD C:\Users\spravce\OneDrive
2020-06-30 11:56 - 2019-09-04 15:32 - 000002371 _____ C:\Users\spravce\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-06-30 11:52 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-06-05 15:21 - 2020-05-16 12:28 - 000000000 ____D C:\Program Files\Rockstar Games
2020-06-05 15:21 - 2020-05-16 12:28 - 000000000 ____D C:\Program Files (x86)\Rockstar Games
2020-06-05 15:20 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-06-05 15:19 - 2017-09-29 03:09 - 000000000 ____D C:\Users\spravce\AppData\Local\Packages
2020-06-05 15:08 - 2017-10-24 11:17 - 000000000 ____D C:\Program Files\DIFX
2020-06-05 15:08 - 2017-10-24 09:01 - 000000000 ____D C:\ProgramData\Package Cache
2020-06-05 15:01 - 2017-10-24 09:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2020-06-02 21:27 - 2019-06-20 16:26 - 000000000 ____D C:\Program Files\UNP
==================== Files in the root of some directories ========
2017-10-24 11:28 - 2016-11-08 20:00 - 000247934 _____ () C:\Program Files\cd.ico
2020-05-16 12:53 - 2020-05-16 12:53 - 042886902 _____ () C:\Users\spravce\AppData\Roaming\gta5_patch.bin
2020-05-16 12:53 - 2020-05-16 12:53 - 000332800 _____ () C:\Users\spravce\AppData\Roaming\patcher.dll
2019-05-12 17:18 - 2019-05-12 17:18 - 000001540 _____ () C:\Users\spravce\AppData\Local\recently-used.xbel
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 28-06-2020
Ran by spravce (30-06-2020 13:30:08)
Running from C:\Users\spravce\Downloads
Windows 10 Home Version 1903 18362.836 (X64) (2019-09-04 13:54:31)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-3758939372-1210436806-4221024289-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3758939372-1210436806-4221024289-503 - Limited - Disabled)
Guest (S-1-5-21-3758939372-1210436806-4221024289-501 - Limited - Disabled)
spravce (S-1-5-21-3758939372-1210436806-4221024289-1001 - Administrator - Enabled) => C:\Users\spravce
WDAGUtilityAccount (S-1-5-21-3758939372-1210436806-4221024289-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avira Antivirus (Enabled - Up to date) {88AE6B46-DC3C-455A-A21B-085F285A3546}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Antivirus (Enabled - Out of date) {33CF8AA2-FA06-4AD4-98AB-332D53DD7FFB}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Reader XI - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.00 - Adobe Systems Incorporated)
Aktualizace NVIDIA 10.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 10.4.0 - NVIDIA Corporation)
ANT Drivers Installer x64 (HKLM\...\{A59A86A7-8E8F-4A86-819D-373B9D5C9E42}) (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden
ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 4.0.9 - ASUS)
Audacity 2.2.1 (HKLM-x32\...\Audacity_is1) (Version: 2.2.1 - Audacity Team)
Avira (HKLM-x32\...\{4BC31208-EC3B-453B-8819-6B81AE3EC153}) (Version: 1.2.146.25871 - Avira Operations GmbH & Co. KG) Hidden
Avira (HKLM-x32\...\{caade1ea-26aa-4e8f-a4f0-59cf0c0e91a5}) (Version: 1.2.146.25871 - Avira Operations GmbH & Co. KG)
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.2006.1895 - Avira Operations GmbH & Co. KG)
Balíček ovladače systému Windows - ASUS (ATP) Mouse (10/21/2015 1.0.0.262) (HKLM\...\F84E8769D448654402782673214DE63760BE04A7) (Version: 10/21/2015 1.0.0.262 - ASUS)
Balíček ovladače systému Windows - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.)
Balíček ovladače systému Windows - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software)
BGPKiller version 0.9.6.0 (HKLM-x32\...\{51F2319F-76B2-4A3F-BD1D-81CB18395981}_is1) (Version: 0.9.6.0 - AvJoeSW Inc.)
Broadcom 802.11 Network Adapter (HKLM\...\Broadcom 802.11 Network Adapter) (Version: 7.35.333.0 - Broadcom Corporation)
Elevated Installer (HKLM-x32\...\{DD86F55A-7C3E-49F6-924F-D48C195F756F}) (Version: 7.0.0.0 - Garmin Ltd or its subsidiaries) Hidden
Epic Games Launcher (HKLM-x32\...\{1D4EB18B-0FEE-444E-B4D1-6F2CFBC363E6}) (Version: 1.1.267.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Gadwin PrintScreen (64-Bit) (HKLM\...\{C4E9434D-9FA7-4D27-9805-D767A8A38904}) (Version: 5.4.0.0 - Gadwin Systems)
Garmin Express (HKLM-x32\...\{16f6fdd0-1548-45ac-b4a0-d0799d53e489}) (Version: 7.0.0.0 - Garmin Ltd or its subsidiaries)
Garmin Express (HKLM-x32\...\{6971AACA-704C-4F5C-A407-7D3BE6217BCE}) (Version: 7.0.0.0 - Garmin Ltd or its subsidiaries) Hidden
GIMP 2.8.22 (HKLM\...\GIMP-2_is1) (Version: 2.8.22 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 83.0.4103.116 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
HP Dropbox Plugin (HKLM-x32\...\{0078F518-B5B5-4857-8939-199E752A4190}) (Version: 36.0.41.58587 - HP)
HP Google Drive Plugin (HKLM-x32\...\{F260117F-45E4-483E-B10F-C80224558C4D}) (Version: 36.0.41.58587 - HP)
HP OfficeJet Pro 8710 Nápověda (HKLM-x32\...\{3181BC27-9533-4B13-A498-9BA7D4857C47}) (Version: 38.0.0 - HP)
I.R.I.S. OCR (HKLM-x32\...\{08AE1F44-18C4-4079-B8FF-8A9E6F1E4892}) (Version: 12.3.7.0 - HP)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4549 - Intel Corporation)
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - )
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Mafia 2 (HKLM-x32\...\Mafia 2_is1) (Version: - )
Microsoft 365 - cs-cz (HKLM\...\O365HomePremRetail - cs-cz) (Version: 16.0.12827.20336 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3758939372-1210436806-4221024289-1001\...\OneDriveSetup.exe) (Version: 20.084.0426.0007 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.22.27821 (HKLM-x32\...\{6361b579-2795-4886-b2a8-53d5239b6452}) (Version: 14.22.27821.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.23.27820 (HKLM-x32\...\{45231ab4-69fd-486a-859d-7a59fcd11013}) (Version: 14.23.27820.0 - Microsoft Corporation)
NVIDIA PhysX (HKLM-x32\...\{B455E95A-B804-439F-B533-336B1635AE97}) (Version: 9.14.0702 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.12827.20160 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.12827.20160 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.12827.20336 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.12827.20160 - Microsoft Corporation) Hidden
Ovládací panel NVIDIA 388.57 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 388.57 - NVIDIA Corporation) Hidden
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9.140.239 - Google, Inc.)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.987 - Even Balance, Inc.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.14393.31233 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7571 - Realtek Semiconductor Corp.)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.24.258 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.5.6 - Rockstar Games)
Skype verze 8.58 (HKLM-x32\...\Skype_is1) (Version: 8.58 - Skype Technologies S.A.)
Total Commander 64+32-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.10 - Ghisler Software GmbH)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{F14FB68A-9188-4036-AD0D-D054BC9C9291}) (Version: 2.59.0.0 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.8 - VideoLAN)
Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden
Wargaming.net Game Center (HKU\S-1-5-21-3758939372-1210436806-4221024289-1001\...\Wargaming.net Game Center) (Version: 20.1.0.9514 - Wargaming.net)
World of Tanks EU (HKU\S-1-5-21-3758939372-1210436806-4221024289-1001\...\WOT.EU.PRODUCTION) (Version: - Wargaming.net)
Základní software zařízení HP OfficeJet Pro 8710 (HKLM\...\{1873CB56-A5CB-4F32-ABAF-D1EED21BB5DF}) (Version: 40.12.1161.1896 - HP Inc.)
Packages:
=========
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_115.1.152.0_x64__v10z8vjag6ke6 [2020-06-05] (HP Inc.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-17] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-17] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.5012.0_x64__8wekyb3d8bbwe [2020-05-15] (Microsoft Studios) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-04-07] (Microsoft Corporation) [MS Ad]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ContextMenuHandlers1: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2020-06-05] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-11-30] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-12-04] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2020-06-05] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2020-05-15 11:33 - 2020-05-15 11:34 - 098275328 _____ () [File not signed] [File is in use] C:\Games\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libcef.dll
2020-05-15 11:34 - 2020-05-15 11:34 - 000092672 _____ () [File not signed] [File is in use] C:\Games\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libEGL.dll
2020-05-15 11:34 - 2020-05-15 11:34 - 003922432 _____ () [File not signed] [File is in use] C:\Games\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libGLESv2.dll
2019-09-09 08:13 - 2019-09-09 08:13 - 001364992 _____ () [File not signed] [File is in use] C:\Program Files (x86)\Garmin\Express\CefSharp.Core.dll
2020-05-28 15:06 - 2020-05-28 15:06 - 000073216 _____ () [File not signed] [File is in use] C:\Program Files (x86)\Garmin\Express\FixBootSector.dll
2017-05-08 10:35 - 2017-05-08 10:35 - 000325632 _____ () [File not signed] [File is in use] C:\Program Files (x86)\Garmin\Express\GpsImgWrapper.dll
2019-07-27 09:57 - 2019-07-27 09:57 - 096071680 _____ () [File not signed] [File is in use] C:\Program Files (x86)\Garmin\Express\libcef.dll
2020-05-28 15:06 - 2020-05-28 15:06 - 001976832 _____ (Apache Software Foundation) [File not signed] [File is in use] C:\Program Files (x86)\Garmin\Express\XercesLib.dll
2020-05-28 15:08 - 2020-05-28 15:08 - 000234496 _____ (Dynastream Innovations Inc.) [File not signed] [File is in use] C:\Program Files (x86)\Garmin\Express\ANT_WrappedLib.dll
2020-05-28 15:06 - 2020-05-28 15:06 - 002711552 _____ (Garmin International) [File not signed] [File is in use] C:\Program Files (x86)\Garmin\Express\legacyio.dll
2017-05-08 10:35 - 2017-05-08 10:35 - 000343552 _____ (Garmin International, Inc.) [File not signed] [File is in use] C:\Program Files (x86)\Garmin\Express\IMG_GPSMAP.dll
2020-05-28 15:06 - 2020-05-28 15:06 - 000425472 _____ (Garmin) [File not signed] [File is in use] C:\Program Files (x86)\Garmin\Express\XMLdll.dll
2020-05-28 15:07 - 2020-05-28 15:07 - 000090112 _____ (Silicon Laboratories, Inc.) [File not signed] [File is in use] C:\Program Files (x86)\Garmin\Express\DSI_SiUSBXp_3_1.DLL
2020-05-15 11:33 - 2020-05-15 11:33 - 000547840 _____ (The Chromium Authors) [File not signed] [File is in use] C:\Games\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\chrome_elf.dll
2019-07-27 09:57 - 2019-07-27 09:57 - 000762368 _____ (The Chromium Authors) [File not signed] [File is in use] C:\Program Files (x86)\Garmin\Express\chrome_elf.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer trusted/restricted ==========
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2017-09-29 15:46 - 2017-09-29 15:44 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter;;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-3758939372-1210436806-4221024289-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\spravce\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img0.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKU\S-1-5-21-3758939372-1210436806-4221024289-1001\...\StartupApproved\Run: => "Skype"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{B77F8224-0392-433B-95FF-1A724D28FCA8}] => (Allow) C:\Games\World_of_Tanks\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [{DF9EDCEA-14F5-43DB-93B0-0DE667F37C7B}] => (Allow) C:\Games\World_of_Tanks\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [{48909C48-33FB-4F24-875D-3A6601F541DC}] => (Allow) C:\Games\World_of_Tanks\WoTLauncher.exe (Wargaming PCL -> Wargaming.net)
FirewallRules: [{913067C4-BF18-49BE-86E6-B7D8370A7A56}] => (Allow) C:\Games\World_of_Tanks\WoTLauncher.exe (Wargaming PCL -> Wargaming.net)
FirewallRules: [{4637F7BB-BC6D-4CBD-94D6-8B297120D326}] => (Allow) C:\Program Files\HP\HP OfficeJet Pro 8710\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{D31953BD-E062-47C2-9330-B464C92C9A60}] => (Allow) LPort=5357
FirewallRules: [{3108FFB6-261F-4F6D-AC0A-5368CD84F422}] => (Allow) C:\Program Files\HP\HP OfficeJet Pro 8710\Bin\DeviceSetup.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{267C126E-D36A-4BCD-B1EF-51E4EF243D49}] => (Allow) C:\Program Files\HP\HP OfficeJet Pro 8710\bin\FaxPrinterUtility.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{9DCDF3FB-0C6F-452B-8311-384D728B1920}] => (Allow) C:\Program Files\HP\HP OfficeJet Pro 8710\bin\SendAFax.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{FD8760BC-EA8B-4400-ABBE-EC05E544D6EF}] => (Allow) C:\Program Files\HP\HP OfficeJet Pro 8710\bin\DigitalWizards.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{8BBA87FD-999A-4E7E-A901-21C61F8ACA17}] => (Allow) C:\Program Files\HP\HP OfficeJet Pro 8710\bin\FaxApplications.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{4C85D75A-A8B9-4D97-8410-FFE5E5EAF257}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS77CD\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{0D4903A5-7E4E-4551-8F2E-11CB327D4790}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS77CD\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{93FAB2B1-0468-40F5-9880-111B3FF7C477}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS2FAA\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{D70E53DE-6E2D-4F1B-AC25-337E69234BA4}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS2FAA\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{6F2DA385-1CEE-423F-8CE9-5A4033441F29}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS71F9\HP.EasyStart.exe => No File
FirewallRules: [{E7A85BA2-4FF4-4F25-A378-894461C18D13}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe => No File
FirewallRules: [{C91F8E32-51F4-41AE-B12F-792006773721}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS7A38\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{96118C16-330B-482E-A627-719C71E11C05}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS7A38\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{643FF54C-4337-4155-ACBB-B1BE134C3FA9}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS01FD\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{E637545C-5856-4DC4-9E5C-6B7EBF614C99}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS01FD\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{C6579FD1-2FB3-4F3E-92E3-964C051FACAE}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS3790\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{3F61C2FA-404E-4ADB-99FA-DA6D252501BB}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS3790\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{54C4A7CA-2FAE-4160-9733-DA427EDB1605}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS3925\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{9B4AD9A3-0A0E-4FAF-B9E5-3441B89C67A5}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS3925\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{4BDC9508-BB86-465D-B4AA-7C12F04ACAC7}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS4D92\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{9ED0EE82-EAEB-4F81-87FD-BCC21405A706}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS4D92\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{BF2C8FC3-BD94-4215-99A0-F3B653BE88DD}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS6800\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{BF6666FA-22E7-43AF-80E5-C3462D6D8E9C}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS6800\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{2D3B9F25-C15D-4A36-AA64-0DDBA32F4B4D}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS68BA\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{679E87A2-D8AD-40B5-8A47-6A368B46C446}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS68BA\HPDiagnosticCoreUI.exe => No File
FirewallRules: [TCP Query User{EE0A5F06-0BB9-48D1-A698-86BE587F3B6D}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{6D82AF31-88CB-4EF3-9547-85809E2CD687}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [TCP Query User{19139F85-7F31-42B3-A9B9-98934DFFF98B}C:\games\world_of_tanks\win32\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\win32\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{8DDBA085-4910-47E3-AF93-3BF78C7E7DAE}C:\games\world_of_tanks\win32\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\win32\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [{E65AA6EB-8C58-45D8-830F-77718C4E9C3B}] => (Block) C:\games\world_of_tanks\win32\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [{FC8B894F-ADBF-4ACE-A536-362836C8895B}] => (Block) C:\games\world_of_tanks\win32\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [{C4E2191F-9B2C-48FD-80E0-34A942E97E75}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E3119117-054E-479F-806A-0850D27C5652}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{3EC25B61-061D-4113-8BB5-AC730302416B}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{58CFB314-B674-4FC4-9315-017235735972}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{5C3FCBF3-6B15-4A4E-B9FE-2FB5B274ADD9}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{5A7CB082-97BE-4480-97C2-2844E9415A58}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{B6B4B028-A760-4D34-87E8-91DE9DA7F17C}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [TCP Query User{27FADF14-2152-4C1D-A127-B15392A09F86}C:\games\gtav\gta5.exe] => (Allow) C:\games\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{7E9681D7-A7CC-4263-8499-8C540FE530B7}C:\games\gtav\gta5.exe] => (Allow) C:\games\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{D7CC1CEF-80FF-4FE3-8DFB-D0B18D238793}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Restore Points =========================
29-05-2020 16:06:01 Naplánovaný kontrolní bod
05-06-2020 15:10:42 Windows Update
12-06-2020 15:06:31 Windows Update
30-06-2020 12:18:19 Windows Update
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (06/30/2020 12:56:04 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (5320,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
Error: (06/30/2020 12:25:57 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (9984,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
Error: (06/30/2020 12:18:54 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Audacity\audacity.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.836_none_e6c4b943130f18ed.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.836_none_2e71f01a278b41f3.manifest.
Error: (06/30/2020 12:13:32 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Audacity\audacity.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.836_none_e6c4b943130f18ed.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.836_none_2e71f01a278b41f3.manifest.
Error: (06/30/2020 12:12:31 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Audacity\audacity.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.836_none_e6c4b943130f18ed.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.836_none_2e71f01a278b41f3.manifest.
Error: (06/30/2020 12:08:20 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Audacity\audacity.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.836_none_e6c4b943130f18ed.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.836_none_2e71f01a278b41f3.manifest.
Error: (06/30/2020 12:07:57 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Audacity\audacity.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.836_none_e6c4b943130f18ed.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.836_none_2e71f01a278b41f3.manifest.
Error: (06/30/2020 12:07:00 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Audacity\audacity.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.836_none_e6c4b943130f18ed.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.836_none_2e71f01a278b41f3.manifest.
System errors:
=============
Error: (06/30/2020 12:16:10 PM) (Source: disk) (EventID: 11) (User: )
Description: Ovladač zjistil chybu řadiče na \Device\Harddisk1\DR2.
Error: (06/30/2020 12:16:09 PM) (Source: disk) (EventID: 11) (User: )
Description: Ovladač zjistil chybu řadiče na \Device\Harddisk1\DR2.
Error: (06/30/2020 12:16:08 PM) (Source: disk) (EventID: 11) (User: )
Description: Ovladač zjistil chybu řadiče na \Device\Harddisk1\DR2.
Error: (06/02/2020 09:21:25 PM) (Source: DCOM) (EventID: 10010) (User: LUKINO)
Description: Server microsoft.windowscommunicationsapps_16005.12624.20368.0_x64__8wekyb3d8bbwe!microsoft.windowslive.calendar.AppXwkn9j84yh1kvnt49k5r8h6y1ecsv09hs.mca se v daném časovém limitu neregistroval u služby DCOM.
Error: (05/27/2020 06:48:51 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Aktualizovat službu Orchestrator přestala během spouštění reagovat.
Error: (05/27/2020 06:42:54 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba SecDrv neuspěla při spuštění v důsledku následující chyby:
Načtení tohoto ovladače je blokováno.
Error: (05/27/2020 06:42:54 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\WINDOWS\SysWow64\drivers\SECDRV.SYS
Error: (05/27/2020 06:41:46 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby ClickToRunSvc bylo dosaženo časového limitu (30000 ms).
Windows Defender:
===================================
Date: 2020-05-27 18:37:35.928
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.313.2646.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16900.4
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.
Date: 2020-05-27 18:37:35.927
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.313.2646.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16900.4
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.
Date: 2020-05-27 18:37:35.927
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.313.2646.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16900.4
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.
Date: 2020-05-27 18:37:35.914
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.313.2646.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16900.4
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.
Date: 2020-05-27 18:37:35.914
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.313.2646.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16900.4
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.
CodeIntegrity:
===================================
Date: 2020-06-30 11:50:54.884
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Avira\Antivirus\AviraSecurityCenterAgent.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Avira\Antivirus\libcurl.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2020-06-21 21:25:29.336
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Avira\Antivirus\AviraSecurityCenterAgent.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Avira\Antivirus\libcurl.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2020-05-27 18:37:15.571
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Avira\Antivirus\AviraSecurityCenterAgent.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Avira\Antivirus\libcurl.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2020-05-13 17:33:21.313
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Avira\Antivirus\AviraSecurityCenterAgent.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Avira\Antivirus\libcurl.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2020-05-05 20:02:39.002
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Avira\Antivirus\AviraSecurityCenterAgent.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Avira\Antivirus\libcurl.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2020-04-30 14:25:05.941
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Avira\Antivirus\AviraSecurityCenterAgent.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Avira\Antivirus\libcurl.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2020-04-07 14:38:59.923
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Avira\Antivirus\AviraSecurityCenterAgent.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Avira\Antivirus\libcurl.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2020-04-01 18:05:04.273
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Avira\Antivirus\AviraSecurityCenterAgent.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Avira\Antivirus\libcurl.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. X555LD.402 10/29/2015
Motherboard: ASUSTeK COMPUTER INC. X555LD
Processor: Intel(R) Core(TM) i3-4030U CPU @ 1.90GHz
Percentage of memory in use: 51%
Total physical RAM: 8075.33 MB
Available physical RAM: 3938.49 MB
Total Virtual: 11784.74 MB
Available Virtual: 6343.74 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:930.35 GB) (Free:407.17 GB) NTFS
\\?\Volume{38f653e7-31a8-4b97-a33f-456f61dee964}\ (Obnovení) (Fixed) (Total:0.49 GB) (Free:0.47 GB) NTFS
\\?\Volume{c18bf46f-8c5e-4ccc-b70d-4b6306d3e6ed}\ () (Fixed) (Total:0.55 GB) (Free:0.08 GB) NTFS
\\?\Volume{eea52380-417d-409a-b90f-5cb3c96546d9}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: B08E0335)
Partition: GPT.
==================== End of Addition.txt =======================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kontrolu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 118251
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu
Zdravím!
Otevřte poznámkový blok a zkopírujte do něj:
Otevřte poznámkový blok a zkopírujte do něj:
Uložte do C:\Users\spravce\Downloads jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CloseProcesses:
HKLM\...\Run: [] => [X]
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-3758939372-1210436806-4221024289-1001\...\Run: [] => [X]
Task: {425390D1-0968-4F33-8828-5C8255151FD9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2017-10-24] (Google Inc -> Google Inc.)
Task: {7ACA7E57-D061-477C-AC84-F503FE4ACAD1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2017-10-24] (Google Inc -> Google Inc.)
SearchScopes: HKU\S-1-5-21-3758939372-1210436806-4221024289-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
FirewallRules: [{4C85D75A-A8B9-4D97-8410-FFE5E5EAF257}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS77CD\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{0D4903A5-7E4E-4551-8F2E-11CB327D4790}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS77CD\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{93FAB2B1-0468-40F5-9880-111B3FF7C477}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS2FAA\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{D70E53DE-6E2D-4F1B-AC25-337E69234BA4}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS2FAA\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{6F2DA385-1CEE-423F-8CE9-5A4033441F29}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS71F9\HP.EasyStart.exe => No File
FirewallRules: [{E7A85BA2-4FF4-4F25-A378-894461C18D13}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe => No File
FirewallRules: [{C91F8E32-51F4-41AE-B12F-792006773721}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS7A38\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{96118C16-330B-482E-A627-719C71E11C05}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS7A38\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{643FF54C-4337-4155-ACBB-B1BE134C3FA9}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS01FD\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{E637545C-5856-4DC4-9E5C-6B7EBF614C99}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS01FD\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{C6579FD1-2FB3-4F3E-92E3-964C051FACAE}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS3790\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{3F61C2FA-404E-4ADB-99FA-DA6D252501BB}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS3790\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{54C4A7CA-2FAE-4160-9733-DA427EDB1605}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS3925\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{9B4AD9A3-0A0E-4FAF-B9E5-3441B89C67A5}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS3925\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{4BDC9508-BB86-465D-B4AA-7C12F04ACAC7}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS4D92\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{9ED0EE82-EAEB-4F81-87FD-BCC21405A706}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS4D92\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{BF2C8FC3-BD94-4215-99A0-F3B653BE88DD}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS6800\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{BF6666FA-22E7-43AF-80E5-C3462D6D8E9C}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS6800\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{2D3B9F25-C15D-4A36-AA64-0DDBA32F4B4D}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS68BA\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{679E87A2-D8AD-40B5-8A47-6A368B46C446}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS68BA\HPDiagnosticCoreUI.exe => No File
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu
Fix result of Farbar Recovery Scan Tool (x64) Version: 30-06-2020
Ran by spravce (02-07-2020 09:05:21) Run:1
Running from C:\Users\spravce\Downloads
Loaded Profiles: spravce
Boot Mode: Normal
==============================================
fixlist content:
*****************
CloseProcesses:
HKLM\...\Run: [] => [X]
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-3758939372-1210436806-4221024289-1001\...\Run: [] => [X]
Task: {425390D1-0968-4F33-8828-5C8255151FD9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2017-10-24] (Google Inc -> Google Inc.)
Task: {7ACA7E57-D061-477C-AC84-F503FE4ACAD1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2017-10-24] (Google Inc -> Google Inc.)
SearchScopes: HKU\S-1-5-21-3758939372-1210436806-4221024289-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
FirewallRules: [{4C85D75A-A8B9-4D97-8410-FFE5E5EAF257}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS77CD\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{0D4903A5-7E4E-4551-8F2E-11CB327D4790}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS77CD\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{93FAB2B1-0468-40F5-9880-111B3FF7C477}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS2FAA\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{D70E53DE-6E2D-4F1B-AC25-337E69234BA4}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS2FAA\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{6F2DA385-1CEE-423F-8CE9-5A4033441F29}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS71F9\HP.EasyStart.exe => No File
FirewallRules: [{E7A85BA2-4FF4-4F25-A378-894461C18D13}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe => No File
FirewallRules: [{C91F8E32-51F4-41AE-B12F-792006773721}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS7A38\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{96118C16-330B-482E-A627-719C71E11C05}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS7A38\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{643FF54C-4337-4155-ACBB-B1BE134C3FA9}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS01FD\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{E637545C-5856-4DC4-9E5C-6B7EBF614C99}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS01FD\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{C6579FD1-2FB3-4F3E-92E3-964C051FACAE}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS3790\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{3F61C2FA-404E-4ADB-99FA-DA6D252501BB}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS3790\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{54C4A7CA-2FAE-4160-9733-DA427EDB1605}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS3925\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{9B4AD9A3-0A0E-4FAF-B9E5-3441B89C67A5}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS3925\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{4BDC9508-BB86-465D-B4AA-7C12F04ACAC7}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS4D92\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{9ED0EE82-EAEB-4F81-87FD-BCC21405A706}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS4D92\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{BF2C8FC3-BD94-4215-99A0-F3B653BE88DD}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS6800\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{BF6666FA-22E7-43AF-80E5-C3462D6D8E9C}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS6800\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{2D3B9F25-C15D-4A36-AA64-0DDBA32F4B4D}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS68BA\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{679E87A2-D8AD-40B5-8A47-6A368B46C446}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS68BA\HPDiagnosticCoreUI.exe => No File
EmptyTemp:
End
*****************
Processes closed successfully.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\" => removed successfully
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\" => removed successfully
"HKU\S-1-5-21-3758939372-1210436806-4221024289-1001\Software\Microsoft\Windows\CurrentVersion\Run\\" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{425390D1-0968-4F33-8828-5C8255151FD9}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{425390D1-0968-4F33-8828-5C8255151FD9}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{7ACA7E57-D061-477C-AC84-F503FE4ACAD1}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7ACA7E57-D061-477C-AC84-F503FE4ACAD1}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKU\S-1-5-21-3758939372-1210436806-4221024289-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4C85D75A-A8B9-4D97-8410-FFE5E5EAF257}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0D4903A5-7E4E-4551-8F2E-11CB327D4790}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{93FAB2B1-0468-40F5-9880-111B3FF7C477}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D70E53DE-6E2D-4F1B-AC25-337E69234BA4}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6F2DA385-1CEE-423F-8CE9-5A4033441F29}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E7A85BA2-4FF4-4F25-A378-894461C18D13}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C91F8E32-51F4-41AE-B12F-792006773721}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{96118C16-330B-482E-A627-719C71E11C05}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{643FF54C-4337-4155-ACBB-B1BE134C3FA9}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E637545C-5856-4DC4-9E5C-6B7EBF614C99}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C6579FD1-2FB3-4F3E-92E3-964C051FACAE}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3F61C2FA-404E-4ADB-99FA-DA6D252501BB}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{54C4A7CA-2FAE-4160-9733-DA427EDB1605}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{9B4AD9A3-0A0E-4FAF-B9E5-3441B89C67A5}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4BDC9508-BB86-465D-B4AA-7C12F04ACAC7}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{9ED0EE82-EAEB-4F81-87FD-BCC21405A706}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{BF2C8FC3-BD94-4215-99A0-F3B653BE88DD}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{BF6666FA-22E7-43AF-80E5-C3462D6D8E9C}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2D3B9F25-C15D-4A36-AA64-0DDBA32F4B4D}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{679E87A2-D8AD-40B5-8A47-6A368B46C446}" => removed successfully
=========== EmptyTemp: ==========
BITS transfer queue => 10248192 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 263982809 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 6089030 B
Edge => 1928018 B
Chrome => 705214337 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 153402 B
NetworkService => 165448 B
spravce => 3819158330 B
RecycleBin => 2274 B
EmptyTemp: => 4.5 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 09:11:08 ====
Ran by spravce (02-07-2020 09:05:21) Run:1
Running from C:\Users\spravce\Downloads
Loaded Profiles: spravce
Boot Mode: Normal
==============================================
fixlist content:
*****************
CloseProcesses:
HKLM\...\Run: [] => [X]
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-3758939372-1210436806-4221024289-1001\...\Run: [] => [X]
Task: {425390D1-0968-4F33-8828-5C8255151FD9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2017-10-24] (Google Inc -> Google Inc.)
Task: {7ACA7E57-D061-477C-AC84-F503FE4ACAD1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2017-10-24] (Google Inc -> Google Inc.)
SearchScopes: HKU\S-1-5-21-3758939372-1210436806-4221024289-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
FirewallRules: [{4C85D75A-A8B9-4D97-8410-FFE5E5EAF257}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS77CD\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{0D4903A5-7E4E-4551-8F2E-11CB327D4790}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS77CD\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{93FAB2B1-0468-40F5-9880-111B3FF7C477}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS2FAA\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{D70E53DE-6E2D-4F1B-AC25-337E69234BA4}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS2FAA\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{6F2DA385-1CEE-423F-8CE9-5A4033441F29}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS71F9\HP.EasyStart.exe => No File
FirewallRules: [{E7A85BA2-4FF4-4F25-A378-894461C18D13}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe => No File
FirewallRules: [{C91F8E32-51F4-41AE-B12F-792006773721}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS7A38\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{96118C16-330B-482E-A627-719C71E11C05}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS7A38\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{643FF54C-4337-4155-ACBB-B1BE134C3FA9}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS01FD\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{E637545C-5856-4DC4-9E5C-6B7EBF614C99}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS01FD\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{C6579FD1-2FB3-4F3E-92E3-964C051FACAE}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS3790\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{3F61C2FA-404E-4ADB-99FA-DA6D252501BB}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS3790\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{54C4A7CA-2FAE-4160-9733-DA427EDB1605}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS3925\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{9B4AD9A3-0A0E-4FAF-B9E5-3441B89C67A5}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS3925\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{4BDC9508-BB86-465D-B4AA-7C12F04ACAC7}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS4D92\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{9ED0EE82-EAEB-4F81-87FD-BCC21405A706}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS4D92\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{BF2C8FC3-BD94-4215-99A0-F3B653BE88DD}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS6800\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{BF6666FA-22E7-43AF-80E5-C3462D6D8E9C}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS6800\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{2D3B9F25-C15D-4A36-AA64-0DDBA32F4B4D}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS68BA\HPDiagnosticCoreUI.exe => No File
FirewallRules: [{679E87A2-D8AD-40B5-8A47-6A368B46C446}] => (Allow) C:\Users\spravce\AppData\Local\Temp\7zS68BA\HPDiagnosticCoreUI.exe => No File
EmptyTemp:
End
*****************
Processes closed successfully.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\" => removed successfully
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\" => removed successfully
"HKU\S-1-5-21-3758939372-1210436806-4221024289-1001\Software\Microsoft\Windows\CurrentVersion\Run\\" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{425390D1-0968-4F33-8828-5C8255151FD9}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{425390D1-0968-4F33-8828-5C8255151FD9}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{7ACA7E57-D061-477C-AC84-F503FE4ACAD1}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7ACA7E57-D061-477C-AC84-F503FE4ACAD1}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKU\S-1-5-21-3758939372-1210436806-4221024289-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4C85D75A-A8B9-4D97-8410-FFE5E5EAF257}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0D4903A5-7E4E-4551-8F2E-11CB327D4790}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{93FAB2B1-0468-40F5-9880-111B3FF7C477}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D70E53DE-6E2D-4F1B-AC25-337E69234BA4}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6F2DA385-1CEE-423F-8CE9-5A4033441F29}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E7A85BA2-4FF4-4F25-A378-894461C18D13}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C91F8E32-51F4-41AE-B12F-792006773721}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{96118C16-330B-482E-A627-719C71E11C05}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{643FF54C-4337-4155-ACBB-B1BE134C3FA9}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E637545C-5856-4DC4-9E5C-6B7EBF614C99}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C6579FD1-2FB3-4F3E-92E3-964C051FACAE}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3F61C2FA-404E-4ADB-99FA-DA6D252501BB}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{54C4A7CA-2FAE-4160-9733-DA427EDB1605}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{9B4AD9A3-0A0E-4FAF-B9E5-3441B89C67A5}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4BDC9508-BB86-465D-B4AA-7C12F04ACAC7}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{9ED0EE82-EAEB-4F81-87FD-BCC21405A706}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{BF2C8FC3-BD94-4215-99A0-F3B653BE88DD}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{BF6666FA-22E7-43AF-80E5-C3462D6D8E9C}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2D3B9F25-C15D-4A36-AA64-0DDBA32F4B4D}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{679E87A2-D8AD-40B5-8A47-6A368B46C446}" => removed successfully
=========== EmptyTemp: ==========
BITS transfer queue => 10248192 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 263982809 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 6089030 B
Edge => 1928018 B
Chrome => 705214337 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 153402 B
NetworkService => 165448 B
spravce => 3819158330 B
RecycleBin => 2274 B
EmptyTemp: => 4.5 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 09:11:08 ====
-
Rudy
- Site Admin
- Příspěvky: 118251
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu
Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu
Automatická okna již nevyskakují. Možná je ntb i trošku svižnější 
Moc děkuji!
Moc děkuji!
-
Rudy
- Site Admin
- Příspěvky: 118251
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu
Měl by být. Rádo se stalo!
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?