Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Prosím o kontrolu logu

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
Beli33
Návštěvník
Návštěvník
Příspěvky: 43
Registrován: 23 lis 2015 13:56

Prosím o kontrolu logu

#1 Příspěvek od Beli33 »

Dobrý den, mohl bych poprosit o kontrolu logu z FRST?


Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 06-10-2021
Ran by rodinka (administrator) on LAPTOP-QMGB7D3T (LENOVO 80EC) (09-10-2021 08:25:50)
Running from C:\Users\rodinka\Downloads
Loaded Profiles: rodinka
Platform: Windows 10 Home Version 1909 18363.1316 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files (x86)\HORNET AIM Gaming Mouse SW DRIVER\hid.exe
() [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\a4\AdaptiveSleepService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Windows\SysWOW64\SASrv.exe
(Conexant Systems, Inc.) [File not signed] C:\Windows\SysWOW64\UIUSrv.exe
(CyberLink Corp. -> CyberLink Corp.) C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMasterImportAgent.exe
(CyberLink Corp. -> CyberLink Corp.) C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMasterWorker.exe
(CyberLink Corp. -> CyberLink Corp.) C:\Program Files (x86)\Lenovo\PowerDVD12\PDVD12Serv.exe
(CyberLink Corp. -> CyberLink) C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDIntelligent.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Fortemedia Inc -> ) C:\Program Files\CONEXANT\ForteConfig\fmapp.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler64.exe
(LENOVO -> ) C:\Program Files\Lenovo\LenovoUtility\utility.exe
(Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.8.23.0\Lenovo.Vantage.AddinHost.Amd64.exe <2>
(Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.8.23.0\Lenovo.Vantage.AddinHost.exe <3>
(Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.8.23.0\LenovoVantageService.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.CompanionApp.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.SettingsApp.exe <2>
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.CompanionApp.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe <2>
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.SettingsApp.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(LENOVO -> Lenovo) C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe
(LENOVO -> Lenovo) C:\Program Files (x86)\Lenovo\GDCAgentSetupRed\GDCAgent.exe
(McAfee, Inc. -> McAfee LLC.) C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\McAfee\CSP\3.0.127.0\McCSPServiceHost.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHOST.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe <2>
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\McAfee\ModuleCore\ProtectedModuleHost.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\McAfee\PEF\CORE\PEFService.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\McAfee\platform\McUICnt.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\McAfee\VSCore_18_6\mcapexe.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\mcafee\MfeAV\MfeAVSvc.exe
(McAfee, Inc. -> McAfee, LLC) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
(McAfee, Inc. -> McAfee, LLC) C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe
(McAfee, Inc. -> McAfee, LLC) C:\Windows\System32\mfevtps.exe <2>
(McAfee, LLC -> McAfee, LLC) C:\Program Files\mcafee\WebAdvisor\servicehost.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\mcafee\WebAdvisor\uihost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\rodinka\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.MSPaint_6.2105.4017.0_x64__8wekyb3d8bbwe\PaintStudio.View.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MpCopyAccelerator.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\NisSrv.exe
(Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Windows\System32\AdminService.exe
(Realtek Semiconductor Corp -> Realtek semiconductor) C:\Windows\RTFTrack.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3763424 2016-05-03] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.)
HKLM\...\Run: [ForteConfig] => C:\Program Files\Conexant\ForteConfig\fmapp.exe [49056 2010-10-26] (Fortemedia Inc -> )
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [919768 2014-11-20] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [RtsFT] => C:\WINDOWS\RTFTrack.exe [5052120 2015-06-01] (Realtek Semiconductor Corp -> Realtek semiconductor)
HKLM\...\Run: [LenovoUtility] => C:\Program Files\Lenovo\LenovoUtility\utility.exe [791848 2016-05-27] (LENOVO -> )
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-05-06] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412736 2021-07-14] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [StartCN] => C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe [6613896 2016-06-24] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1830616 2014-04-10] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] => C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe [110008 2015-07-21] (CyberLink Corp. -> CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\Lenovo\Power2Go\VirtualDrive.exe [492472 2015-07-21] (CyberLink Corp. -> CyberLink Corp.)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [File not signed]
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1069296 2018-03-27] (Seznam.cz, a.s. -> )
HKLM-x32\...\Run: [HORNET AIM Gaming Mouse SW] => C:\Program Files (x86)\HORNET AIM Gaming Mouse SW DRIVER\hid.exe [1108480 2018-07-24] () [File not signed]
HKU\S-1-5-21-1495867973-1527442187-4092699003-1001\...\Run: [cz.seznam.software.autoupdate] => "C:\Users\rodinka\AppData\Roaming\Seznam.cz\szninstall.exe" -c
HKU\S-1-5-21-1495867973-1527442187-4092699003-1001\...\Run: [cz.seznam.software.szndesktop] => "C:\Users\rodinka\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
HKU\S-1-5-21-1495867973-1527442187-4092699003-1001\...\Run: [PhotoMasterImportAgent] => C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMasterImportAgent.exe [675608 2016-09-22] (CyberLink Corp. -> CyberLink Corp.)
HKU\S-1-5-21-1495867973-1527442187-4092699003-1001\...\Run: [MicrosoftEdgeAutoLaunch_174CE85B4F537D2EB5301625412AF84A] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5
HKU\S-1-5-21-1495867973-1527442187-4092699003-1001\...\MountPoints2: {84674db0-57a4-11ea-af6b-507b9df65ead} - "F:\SETUP.EXE"
HKU\S-1-5-21-1495867973-1527442187-4092699003-1001\...\MountPoints2: {a21192d6-4ea3-11eb-af9a-74dfbf3d8f00} - "G:\Lenovo_Suite.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\94.0.4606.81\Installer\chrmstp.exe [2021-10-08] (Google LLC -> Google LLC)
Startup: C:\Users\rodinka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Poslat do aplikace OneNote.lnk [2019-05-27]
ShortcutTarget: Poslat do aplikace OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {07727556-FC27-43A8-9484-D4449B482C73} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21857672 2021-09-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {087F759E-9E39-4F3C-9ACB-A1C351F9CED8} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\9b41248e-549b-4566-8b25-4e1a322f68ab => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81896 2021-08-12] (Lenovo -> Lenovo Group Ltd.)
"C:\Windows\System32\Tasks\McAfee\McAfee Idle Detection Task" was unlocked. <==== ATTENTION
Task: {14D0420C-F4EE-4303-8544-D81412647E35} - System32\Tasks\McAfee\McAfee Idle Detection Task => {ABCDCA3B-DE6B-5A7C-B132-6D7CBA63E5C5} C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe [1019584 2018-07-20] (McAfee, Inc. -> McAfee, Inc.)
Task: {1CC2A64B-AF96-4646-BE17-EB953A08C9DF} - System32\Tasks\McAfee Remediation (Prepare) => C:\Program Files\Common Files\AV\McAfee VirusScan\upgrade.exe [4696128 2021-08-30] (McAfee, LLC -> McAfee, LLC)
Task: {1E82618B-5CFE-4217-A75D-CBAE16E3C25A} - System32\Tasks\Lenovo\Experience Improvement => C:\Program Files\Lenovo\ExperienceImprovement\LenovoExperienceImprovement.exe [287688 2018-09-06] (LENOVO -> Lenovo)
Task: {23C26E8A-D805-4A23-82BF-3BC3B6EF63E9} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\cb1558fb-3d22-48d7-9f1f-d846620e34b2 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81896 2021-08-12] (Lenovo -> Lenovo Group Ltd.)
Task: {24AEE2B2-5994-48A1-B4B3-25D37D7A686F} - System32\Tasks\Lenovo\REACHit Agent Startup => C:\Program Files (x86)\Lenovo\REACHit\webAgent.exe [552912 2015-02-09] (LENOVO -> Lenovo)
Task: {2BF4CEDA-50CF-4867-BB06-4DC336FD8342} - System32\Tasks\Lenovo\Vantage\Schedule\VantageTelemetryAddinTask => C:\Program Files (x86)\Lenovo\VantageService\3.6.15.0\ScheduleEventAction.exe
Task: {2EB8A1ED-AC1D-447F-86EF-D21BFDC56F2B} - System32\Tasks\Lenovo\SHUpdate => C:\Program Files (x86)\Lenovo\SHAREit\ShareitUpdater.exe [808392 2015-09-25] (LENOVO -> )
Task: {2EEA9EFC-2ECB-4483-BB09-48AADDA46A1D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-10-09] (Google Inc -> Google Inc.)
Task: {3D4D21D5-30EC-4EAB-8D99-553823277820} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [113536 2021-09-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {4A802411-1B96-499E-B25C-81B674495600} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MpCmdRun.exe [851472 2021-09-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {5776F8BE-5FE2-4680-B2F2-3B839A3C6E2C} - System32\Tasks\McAfeeLogon => C:\Program Files\Common Files\McAfee\platform\McUICnt.exe [744784 2018-07-13] (McAfee, Inc. -> McAfee, Inc.)
Task: {607F53E5-CE2A-400C-AD70-3650D654F708} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [62440 2021-08-12] (Lenovo -> Lenovo Group Ltd.)
Task: {6306E9B3-7927-41DB-A259-89D038510D4C} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [113536 2021-09-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {6E4306EC-B4DC-4025-ABAE-B75DCD23A9F1} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {70A802E3-0D38-461C-BF11-147EF5791BF1} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\3ea4df57-98b5-4e72-8b2f-07694ef04df1 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81896 2021-08-12] (Lenovo -> Lenovo Group Ltd.)
Task: {890A2256-4A23-4D2B-860A-6549014E1917} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412736 2021-07-14] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {8ED47C87-E46E-4F10-80F9-2C3D0B922A7F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MpCmdRun.exe [851472 2021-09-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {90993EC6-2F05-4A76-8405-43956DDEC18F} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent => {ABCECA3B-EA5A-496B-A021-5C6BAB365E5C} C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe [1019584 2018-07-20] (McAfee, Inc. -> McAfee, Inc.)
Task: {9AFDE363-8E88-48B1-98AE-7250F72A2E93} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-10-09] (Google Inc -> Google Inc.)
Task: {9C74AA71-907A-47C8-B995-BAA6DC5A03CC} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {A49B189D-EBAB-421E-A8F4-BA6D9C65C6CE} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21857672 2021-09-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {A9EAD7CD-68BC-4761-A1C1-FE1F0187EA86} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe [16832 2015-07-07] (LENOVO -> Lenovo)
Task: {B90D235A-97E3-4865-A592-95ED8D46BB49} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => %systemroot%\system32\sc.exe start LenovoVantageService
Task: {BF9D780F-EAA5-4F8A-8BE2-83676A9C3591} - System32\Tasks\McAfee\DAD.Execute.Updates => C:\Program Files\Common Files\McAfee\DynamicAppDownloader\1.6.106\DADUpdater.exe [4114288 2021-08-12] (McAfee, LLC -> McAfee, LLC)
Task: {C1BD81B5-85AC-4062-891B-7251D72C05E2} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\df658006-5459-4313-9e21-249c74f90eb4 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81896 2021-08-12] (Lenovo -> Lenovo Group Ltd.)
Task: {C1DEC46D-D45C-407E-83B4-994E456126ED} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe [144456 2021-07-15] (Lenovo -> Lenovo Group Ltd.)
Task: {C223FCAA-EC36-48B4-A7EA-00EE7858A1ED} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => "%windir%\system32\sc.exe" START ImControllerService
Task: {C35E152E-C919-4B3A-BDF7-BEF5E91DC808} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\7354c66d-09e7-46ae-b021-dbb58597840b => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81896 2021-08-12] (Lenovo -> Lenovo Group Ltd.)
Task: {CF2B29E8-E8FF-4B5A-AB18-461014D3DE9F} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [680888 2021-09-29] (Mozilla Corporation -> Mozilla Foundation)
Task: {CF6A2FBD-0162-4384-829E-480CAEA75B38} - System32\Tasks\PDVDServ12 Task => C:\Program Files (x86)\Lenovo\PowerDVD12\PDVD12Serv.exe [85432 2015-05-28] (CyberLink Corp. -> CyberLink Corp.)
Task: {D5F4DE4C-14FB-48E8-84EC-391D67E75DDD} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\3.8.23.0\ScheduleEventAction.exe [26664 2021-07-21] (Lenovo -> Lenovo Group Ltd.)
Task: {DAE2E86B-00C8-4608-92CC-512AA11A5FE3} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MpCmdRun.exe [851472 2021-09-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {DC5B84DB-4DBD-4ABE-BDBA-75A4BF1ECE18} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1155480 2021-09-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {E3D57AD4-3060-45F6-A435-8C229B63C773} - System32\Tasks\Lenovo\REACHit Agent Update => C:\Program Files (x86)\Lenovo\REACHit\webAgent.exe [552912 2015-02-09] (LENOVO -> Lenovo)
Task: {E49B0959-60F6-4F45-8272-418E0A685CAC} - System32\Tasks\Lenovo\SHPrompt => C:\Program Files (x86)\Lenovo\SHAREit\ShareitPrompt.exe [829384 2015-09-25] (LENOVO -> )
Task: {E84128C0-046C-4921-BF03-339E0215954C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {E8FB388D-37C8-474F-BC7B-E1D098A421C8} - System32\Tasks\Microsoft\Windows\Setup\EOSNotify => C:\WINDOWS\system32\EOSNotify.exe
Task: {EDEF78A7-81BF-41FF-8B51-BFFE444A627E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MpCmdRun.exe [851472 2021-09-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {FBF7A34D-9AA0-442F-B797-A5171ED40A74} - System32\Tasks\CyberLink\Photo Master Gadget startup => C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMasterWorker.exe [745240 2016-09-22] (CyberLink Corp. -> CyberLink Corp.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.1.138
Tcpip\..\Interfaces\{273cb90f-ac2a-49b7-b2d2-1d7d3a6645e1}: [DhcpNameServer] 10.0.1.138
Tcpip\..\Interfaces\{7566bb79-3742-4a83-96aa-6efc65bbfb50}: [DhcpNameServer] 10.0.0.138

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\rodinka\AppData\Local\Microsoft\Edge\User Data\Default [2021-10-09]
Edge Notifications: Default -> hxxps://allatra-science.org

FireFox:
========
FF DefaultProfile: zlg5vz8y.default
FF ProfilePath: C:\Users\rodinka\AppData\Roaming\Mozilla\Firefox\Profiles\zlg5vz8y.default [2021-08-28]
FF ProfilePath: C:\Users\rodinka\AppData\Roaming\Mozilla\Firefox\Profiles\niqhmi3l.default-release [2021-10-09]
FF HKLM\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSKHKLM => not found
FF HKLM-x32\...\Firefox\Extensions: [{ea614400-e918-4741-9a97-7a972ff7c30b}] - C:\Program Files (x86)\Seznam.cz\firefox
FF Extension: (Seznam instalator) - C:\Program Files (x86)\Seznam.cz\firefox [2019-05-27] [Legacy] [not signed]
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF Extension: (McAfee Anti-Spam Thunderbird Extension) - C:\Program Files\McAfee\MSK [2018-10-23] [Legacy] [not signed]
FF HKU\S-1-5-21-1495867973-1527442187-4092699003-1001\...\Firefox\Extensions: [{ea614400-e918-4741-9a97-7a972ff7c30b}] - C:\Program Files (x86)\Seznam.cz\firefox
FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2018-10-04] (McAfee, Inc. -> )
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL [2018-10-04] (McAfee, Inc. -> )
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-07-18] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-05-29] (Microsoft Corporation -> Microsoft Corporation)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\rodinka\AppData\Local\Google\Chrome\User Data\Default [2021-10-09]
CHR HomePage: Default -> hxxp://www.google.cz/
CHR Extension: (Prezentace) - C:\Users\rodinka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-10-09]
CHR Extension: (Dokumenty) - C:\Users\rodinka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-10-09]
CHR Extension: (Seznam doplněk - Email) - C:\Users\rodinka\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2020-04-06]
CHR Extension: (YouTube) - C:\Users\rodinka\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-10-09]
CHR Extension: (Seznam.cz) - C:\Users\rodinka\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkncgicdohgfdncecojfiapgebmlnaoc [2020-04-22]
CHR Extension: (Tabulky) - C:\Users\rodinka\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-10-09]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\rodinka\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2021-10-07]
CHR Extension: (Dokumenty Google offline) - C:\Users\rodinka\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-10-03]
CHR Extension: (Pinterest) - C:\Users\rodinka\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdihkofamofdkgdlibcogkkogdhlakop [2021-04-02]
CHR Extension: (Awesome Music Search) - C:\Users\rodinka\AppData\Local\Google\Chrome\User Data\Default\Extensions\llghpgbjbahdjbdemlognkcemgigdcpa [2020-01-21]
CHR Extension: (Google) - C:\Users\rodinka\AppData\Local\Google\Chrome\User Data\Default\Extensions\looaljojekdfinejeghkncgnkakbcecj [2020-04-22]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\rodinka\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30]
CHR Profile: C:\Users\rodinka\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-05-25]
CHR Profile: C:\Users\rodinka\AppData\Local\Google\Chrome\User Data\System Profile [2021-05-25]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKU\S-1-5-21-1495867973-1527442187-4092699003-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bgjpfhpjcgdppjbgnpnjllokbmcdllig]
CHR HKU\S-1-5-21-1495867973-1527442187-4092699003-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdaptiveSleepService; C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe [138752 2016-06-24] () [File not signed]
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3779840 2021-07-14] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3547904 2021-07-14] (Adobe Inc. -> Adobe Systems, Incorporated)
S2 amdacpusrsvc; C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe [121856 2015-08-07] (Advanced Micro Devices) [File not signed]
R2 CCSDK; C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe [650680 2015-07-29] (LENOVO -> Lenovo)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9179528 2021-09-10] (Microsoft Corporation -> Microsoft Corporation)
S3 ClientAnalyticsService; C:\Program Files\Common Files\McAfee\ClientAnalytics\Legacy\McClientAnalytics.exe [1508656 2018-05-31] (McAfee, Inc. -> McAfee, Inc.)
R2 GDCAgent; C:\Program Files (x86)\Lenovo\GDCAgentSetupRed\GDCAgent.exe [1155512 2015-07-30] (LENOVO -> Lenovo)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81896 2021-08-12] (Lenovo -> Lenovo Group Ltd.)
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\3.8.23.0\LenovoVantageService.exe [31248 2021-07-21] (Lenovo -> Lenovo Group Ltd.)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [973040 2021-10-09] (McAfee, LLC -> McAfee, LLC)
R2 McAPExe; C:\Program Files\Common Files\McAfee\VSCore_18_6\McApExe.exe [729320 2018-10-04] (McAfee, Inc. -> McAfee, Inc.)
S3 McAWFwk; C:\Program Files\Common Files\McAfee\ActWiz\McAWFwk.exe [338208 2015-03-20] (McAfee, Inc. -> McAfee, Inc.)
R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\3.0.127.0\\McCSPServiceHost.exe [2159464 2018-06-29] (McAfee, Inc. -> McAfee, Inc.)
S4 McOobeSv2; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [695240 2018-07-13] (McAfee, Inc. -> McAfee, Inc.)
S3 McSecDashboardService; C:\Program Files\McAfeeDashboard\McSecDashboardService.exe [1257520 2021-05-03] (McAfee, LLC -> McAfee, LLC)
S3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe [366968 2018-08-22] (McAfee, Inc. -> McAfee, LLC)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [539512 2018-08-22] (McAfee, Inc. -> McAfee, LLC)
R3 mfevtp; C:\Windows\system32\mfevtps.exe [490360 2018-08-22] (McAfee, Inc. -> McAfee, LLC)
R2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1690976 2018-07-27] (McAfee, Inc. -> McAfee, Inc.)
R2 PEFService; C:\Program Files\Common Files\McAfee\PEF\CORE\PEFService.exe [1316024 2018-07-25] (McAfee, Inc. -> McAfee, Inc.)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [File not signed]
R2 UIUService; C:\WINDOWS\SysWOW64\UIUSrv.exe [105984 2019-12-03] (Conexant Systems, Inc.) [File not signed]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\NisSrv.exe [2772856 2021-09-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MsMpEng.exe [136640 2021-09-10] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [77336 2018-10-03] (McAfee, Inc. -> McAfee, LLC)
S3 HipShieldK; C:\WINDOWS\System32\drivers\HipShieldK.sys [235784 2018-10-02] (McAfee, Inc. -> McAfee, Inc.)
R3 mfeaack; C:\WINDOWS\System32\drivers\mfeaack.sys [506384 2018-10-03] (McAfee, Inc. -> McAfee, LLC)
R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [367664 2018-10-03] (McAfee, Inc. -> McAfee, LLC)
S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [85104 2018-10-03] (Microsoft Windows Early Launch Anti-malware Publisher -> McAfee, LLC)
R3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [533520 2018-10-03] (McAfee, Inc. -> McAfee, LLC)
R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [967696 2018-10-03] (McAfee, Inc. -> McAfee, LLC)
R3 mfencbdc; C:\WINDOWS\System32\DRIVERS\mfencbdc.sys [555824 2018-10-02] (McAfee, Inc. -> McAfee LLC.)
S3 mfencrk; C:\WINDOWS\System32\DRIVERS\mfencrk.sys [108848 2018-10-02] (McAfee, Inc. -> McAfee LLC.)
R3 mfeplk; C:\WINDOWS\System32\drivers\mfeplk.sys [115728 2018-10-03] (McAfee, Inc. -> McAfee, LLC)
R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [252952 2018-10-03] (McAfee, Inc. -> McAfee, LLC)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2021-09-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [433384 2021-09-10] (Microsoft Windows -> Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [151184 2016-07-15] (NGO -> MBB)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86264 2021-09-10] (Microsoft Windows -> Microsoft Corporation)
S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-13] (CyberLink -> "CyberLink)
S2 amdacpksd; \??\C:\WINDOWS\system32\drivers\amdacpksd.sys [X]
S3 MpKsld76d7842; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{F30C7013-0280-4F11-89B2-6E844A91D10C}\MpKslDrv.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-10-09 08:25 - 2021-10-09 08:27 - 000032038 _____ C:\Users\rodinka\Downloads\FRST.txt
2021-10-09 08:25 - 2021-10-09 08:26 - 000000000 ____D C:\FRST
2021-10-09 08:23 - 2021-10-09 08:23 - 002308096 _____ (Farbar) C:\Users\rodinka\Downloads\FRST64.exe
2021-10-08 17:35 - 2021-10-08 17:37 - 001143404 _____ C:\WINDOWS\Minidump\100821-44609-01.dmp
2021-10-08 17:35 - 2021-10-08 17:35 - 998443362 _____ C:\WINDOWS\MEMORY.DMP
2021-10-08 17:35 - 2021-10-08 17:35 - 000000000 ____D C:\WINDOWS\Panther
2021-10-06 15:27 - 2021-10-06 15:27 - 000000000 ____D C:\Program Files\McAfeeDashboard
2021-09-30 15:18 - 2021-09-30 15:18 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-09-29 10:09 - 2021-10-09 08:22 - 000000000 ____D C:\Program Files\Mozilla Firefox

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-10-09 08:24 - 2020-02-05 21:43 - 000000000 ____D C:\Users\rodinka\AppData\Local\D3DSCache
2021-10-09 08:23 - 2021-08-28 20:45 - 000000000 ____D C:\Users\rodinka\AppData\LocalLow\Mozilla
2021-10-09 08:22 - 2021-08-28 20:45 - 000000000 ____D C:\ProgramData\Mozilla
2021-10-09 08:19 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-10-09 08:11 - 2019-10-07 14:49 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2021-10-09 08:11 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-10-09 08:06 - 2018-10-14 07:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2021-10-09 08:06 - 2018-10-09 18:58 - 000000000 ____D C:\Program Files (x86)\Google
2021-10-08 17:40 - 2019-12-03 16:41 - 000000000 ____D C:\Users\rodinka
2021-10-08 17:39 - 2019-12-06 09:26 - 000000000 ____D C:\WINDOWS\Minidump
2021-10-08 17:39 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-10-08 17:35 - 2019-12-03 17:03 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-10-08 17:35 - 2019-12-03 16:28 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-10-08 16:54 - 2019-12-03 17:03 - 000004216 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{E9E6A714-9BF2-44D5-8A65-42483B05DEAD}
2021-10-08 07:52 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2021-10-08 07:50 - 2018-10-09 18:59 - 000002308 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-10-08 07:50 - 2018-10-09 18:59 - 000002267 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-10-06 16:46 - 2016-05-27 10:26 - 000000000 ____D C:\Program Files (x86)\McAfee
2021-10-06 16:45 - 2019-03-19 06:37 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-10-06 16:45 - 2017-12-19 05:03 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2021-10-06 16:11 - 2018-09-06 14:38 - 000000000 ____D C:\Users\rodinka\AppData\Local\Packages
2021-10-05 17:07 - 2018-12-17 01:12 - 000000000 ____D C:\ProgramData\tmp
2021-10-05 16:33 - 2019-12-03 17:03 - 000003710 _____ C:\WINDOWS\system32\Tasks\McAfee Remediation (Prepare)
2021-10-05 09:53 - 2021-08-28 20:45 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-10-05 09:53 - 2019-03-19 06:37 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2021-10-03 14:51 - 2020-10-12 16:10 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-10-03 14:51 - 2020-10-12 16:10 - 000002281 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-10-03 14:35 - 2020-10-12 16:09 - 000003584 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-10-03 14:35 - 2020-10-12 16:09 - 000003460 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-09-30 20:42 - 2019-12-03 17:03 - 000003474 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-09-30 20:42 - 2019-12-03 17:03 - 000003350 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-09-30 15:17 - 2021-08-28 20:45 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-09-27 20:52 - 2019-12-03 17:03 - 000003384 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1495867973-1527442187-4092699003-1001
2021-09-27 20:52 - 2019-12-03 16:41 - 000002394 _____ C:\Users\rodinka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-09-26 18:30 - 2020-11-11 21:10 - 000002385 _____ C:\Users\rodinka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk
2021-09-26 18:30 - 2020-11-11 21:10 - 000002377 _____ C:\Users\rodinka\Desktop\Microsoft Teams.lnk
2021-09-19 11:49 - 2016-05-27 10:20 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2021-09-10 07:53 - 2018-10-14 08:52 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd

==================== Files in the root of some directories ========

2018-09-15 16:31 - 2018-09-15 16:31 - 005072280 _____ (Microsoft Corporation) C:\Users\rodinka\Setup.X86.cs-CZ_O365HomePremRetail_00bc7df5-80ef-4342-92c6-cab7a30728c2_TX_DB_.exe
2019-11-05 13:16 - 2019-11-05 13:23 - 000004608 _____ () C:\Users\rodinka\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2018-11-29 20:34 - 2018-11-29 20:34 - 000000000 _____ () C:\Users\rodinka\AppData\Local\oobelibMkey.log

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15196
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Prosím o kontrolu logu

#2 Příspěvek od JaRon »

ahoj,
citat:
Tvorba fixlistu pro FRST
•Spustte poznamkovy blok (Start-spustit-notepad)
•Zkopirujte skript >>

Kód: Vybrat vše

Start
HKU\S-1-5-21-1495867973-1527442187-4092699003-1001\...\Run: [cz.seznam.software.autoupdate] => "C:\Users\rodinka\AppData\Roaming\Seznam.cz\szninstall.exe" -c
HKU\S-1-5-21-1495867973-1527442187-4092699003-1001\...\Run: [cz.seznam.software.szndesktop] => "C:\Users\rodinka\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1069296 2018-03-27] (Seznam.cz, a.s. -> )
HKU\S-1-5-21-1495867973-1527442187-4092699003-1001\...\MountPoints2: {84674db0-57a4-11ea-af6b-507b9df65ead} - "F:\SETUP.EXE"
HKU\S-1-5-21-1495867973-1527442187-4092699003-1001\...\MountPoints2: {a21192d6-4ea3-11eb-af9a-74dfbf3d8f00} - "G:\Lenovo_Suite.exe"
S2 amdacpksd; \??\C:\WINDOWS\system32\drivers\amdacpksd.sys [X]
S3 MpKsld76d7842; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{F30C7013-0280-4F11-89B2-6E844A91D10C}\MpKslDrv.sys [X]



EmptyTemp:
Reboot:
End
•Ulozte vytvoreny TXT jako fixlist.txt
•Presunte vytvoreny fixlist vedle FRST

:arrow: Spustte znovu FRST.exe
•Kliknete na Fix
•Probehne oprava a vytvori log Fixlog.txt

:arrow: Restart PC a dejte mi sem fixlog.txt
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum
https://platba.viry.cz/payment/

Beli33
Návštěvník
Návštěvník
Příspěvky: 43
Registrován: 23 lis 2015 13:56

Re: Prosím o kontrolu logu

#3 Příspěvek od Beli33 »

Fix result of Farbar Recovery Scan Tool (x64) Version: 16-10-2021
Ran by rodinka (18-10-2021 18:42:57) Run:1
Running from C:\Users\rodinka\Desktop
Loaded Profiles: rodinka
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
HKU\S-1-5-21-1495867973-1527442187-4092699003-1001\...\Run: [cz.seznam.software.autoupdate] => "C:\Users\rodinka\AppData\Roaming\Seznam.cz\szninstall.exe" -c
HKU\S-1-5-21-1495867973-1527442187-4092699003-1001\...\Run: [cz.seznam.software.szndesktop] => "C:\Users\rodinka\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1069296 2018-03-27] (Seznam.cz, a.s. -> )
HKU\S-1-5-21-1495867973-1527442187-4092699003-1001\...\MountPoints2: {84674db0-57a4-11ea-af6b-507b9df65ead} - "F:\SETUP.EXE"
HKU\S-1-5-21-1495867973-1527442187-4092699003-1001\...\MountPoints2: {a21192d6-4ea3-11eb-af9a-74dfbf3d8f00} - "G:\Lenovo_Suite.exe"
S2 amdacpksd; \??\C:\WINDOWS\system32\drivers\amdacpksd.sys [X]
S3 MpKsld76d7842; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{F30C7013-0280-4F11-89B2-6E844A91D10C}\MpKslDrv.sys [X]



EmptyTemp:
Reboot:
End
*****************

"HKU\S-1-5-21-1495867973-1527442187-4092699003-1001\Software\Microsoft\Windows\CurrentVersion\Run\\cz.seznam.software.autoupdate" => removed successfully
"HKU\S-1-5-21-1495867973-1527442187-4092699003-1001\Software\Microsoft\Windows\CurrentVersion\Run\\cz.seznam.software.szndesktop" => removed successfully
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\seznam-listicka-distribuce" => removed successfully
HKU\S-1-5-21-1495867973-1527442187-4092699003-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{84674db0-57a4-11ea-af6b-507b9df65ead} => removed successfully
HKU\S-1-5-21-1495867973-1527442187-4092699003-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a21192d6-4ea3-11eb-af9a-74dfbf3d8f00} => removed successfully
HKLM\System\CurrentControlSet\Services\amdacpksd => removed successfully
amdacpksd => service removed successfully
MpKsld76d7842 => service not found.

=========== EmptyTemp: ==========

BITS transfer queue => 1310720 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 20112336 B
Java, Flash, Steam htmlcache => 1746 B
Windows/system/drivers => 11882632 B
Edge => 11725672 B
Chrome => 67798267 B
Firefox => 127068667 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 13312 B
ProgramData => 13312 B
Public => 13312 B
systemprofile => 638118673 B
systemprofile32 => 638118673 B
LocalService => 638186499 B
NetworkService => 837056023 B
rodinka => 903138530 B

RecycleBin => 0 B
EmptyTemp: => 3.6 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 18:56:16 ====

Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15196
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Prosím o kontrolu logu

#4 Příspěvek od JaRon »

Po AV stranke je to OK
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum
https://platba.viry.cz/payment/

Odpovědět