Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Kontrola logu - zpomalený notebook

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zpráva
Autor
pitrisin
Návštěvník
Návštěvník
Příspěvky: 173
Registrován: 22 čer 2019 19:36

Kontrola logu - zpomalený notebook

#1 Příspěvek od pitrisin »

Dobrý den, už delší dobu mne trápí zpomalený notebook. Hrál jsem league of legends na 80 fps, avšak když ho teďka zapnu, tak mám max 40, ani to ne. Děkuji
Přílohy
logy frst.rar
(41.65 KiB) Staženo 89 x

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Kontrola logu - zpomalený notebook

#2 Příspěvek od Conder »

Ahoj :)

:arrow: Odporucam nepouzivat a odinstalovat vsetky programy od IObit (napr. Driver Booster, Advanced SystemCare, Uninstaller, atd.) - su to cinske smejdy, ktore mozu poskodit system.

:arrow: Stiahni AdwCleaner: https://toolslib.net/downloads/finish/1/
  • Uloz na plochu a ukonci vsetky programy
  • Spusti AdwCleaner ako spravca
  • Odsuhlas licencne podmienky
  • Klikni na Skenovat nyni (Scan now) a pockaj na dokoncenie
  • Nechaj zaskrtnute vsetky nalezy
  • Klikni na Cisteni a opravy (Clean and Repair) a potvrd restart PC teraz
  • Po restartovani PC sa otvori AdwCleaner, klikni na Zobrazit soubor protokolu
  • Otvori sa log, jeho obsah sem skopiruj
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

pitrisin
Návštěvník
Návštěvník
Příspěvky: 173
Registrován: 22 čer 2019 19:36

Re: Kontrola logu - zpomalený notebook

#3 Příspěvek od pitrisin »

Tady posílám log. Nevím proč, avšak se mi sám spouští avast secure browser.


# -------------------------------
# Malwarebytes AdwCleaner 7.3.0.0
# -------------------------------
# Build: 04-04-2019
# Database: 2019-06-28.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 06-28-2019
# Duration: 00:00:38
# OS: Windows 7 Home Premium
# Cleaned: 219
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted C:\Program Files (x86)\Common Files\AVG Secure Search
Deleted C:\Program Files (x86)\Common Files\IObit\Advanced SystemCare V8
Deleted C:\Program Files (x86)\IOBIT\Driver Booster
Deleted C:\Program Files (x86)\IObit Apps Toolbar
Deleted C:\Program Files (x86)\SSAFEWEB
Deleted C:\Program Files (x86)\Vittalia
Deleted C:\ProgramData\6B73CBDD56B3F481
Deleted C:\ProgramData\AVG Secure Search
Deleted C:\ProgramData\Ask
Deleted C:\ProgramData\IOBIT\Driver Booster
Deleted C:\ProgramData\IObit\Advanced SystemCare
Deleted C:\ProgramData\IObit\Advanced SystemCare V7
Deleted C:\ProgramData\IObit\Advanced SystemCare V8
Deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iMesh
Deleted C:\ProgramData\SSAFEWEB
Deleted C:\ProgramData\apn
Deleted C:\ProgramData\iMesh
Deleted C:\ProgramData\~Browser Manager
Deleted C:\Users\Administrator\AppData\Local\torch
Deleted C:\Users\HomeGroupUser$\AppData\Local\torch
Deleted C:\Users\Public\Documents\Downloaded Installers
Deleted C:\Users\pitrisin\AppData\LocalLow\AVG Secure Search
Deleted C:\Users\pitrisin\AppData\LocalLow\IObit\Advanced SystemCare
Deleted C:\Users\pitrisin\AppData\LocalLow\IObit\Advanced SystemCare V7
Deleted C:\Users\pitrisin\AppData\LocalLow\IObit\Advanced SystemCare V8
Deleted C:\Users\pitrisin\AppData\LocalLow\phpnuke
Deleted C:\Users\pitrisin\AppData\Local\AVG Secure Search
Deleted C:\Users\pitrisin\AppData\Local\Amigo
Deleted C:\Users\pitrisin\AppData\Local\Host Service
Deleted C:\Users\pitrisin\AppData\Local\PutLockerDownloader
Deleted C:\Users\pitrisin\AppData\Local\b1e
Deleted C:\Users\pitrisin\AppData\Local\iMesh
Deleted C:\Users\pitrisin\AppData\Local\slimware utilities inc
Deleted C:\Users\pitrisin\AppData\Local\torch
Deleted C:\Users\pitrisin\AppData\Roaming\IOBIT\Driver Booster
Deleted C:\Users\pitrisin\AppData\Roaming\IObit\Advanced SystemCare
Deleted C:\Users\pitrisin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OnlineHD.TV
Deleted C:\Users\pitrisin\AppData\Roaming\Performersoft
Deleted C:\Users\pitrisin\AppData\Roaming\b1toolbar
Deleted C:\Windows\SysWOW64\config\systemprofile\AppData\LocalLow\AVG Secure Search
Deleted C:\Windows\SysWOW64\config\systemprofile\AppData\LocalLow\Application Updater
Deleted C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\IOBIT\Driver Booster
Deleted C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\IObit\Advanced SystemCare V7
Deleted C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\IObit\Advanced SystemCare V8
Deleted C:\Windows\System32\ljkb

***** [ Files ] *****

Deleted C:\Program Files (x86)\Mozilla Firefox\avg-secure-search.xml
Deleted C:\Users\pitrisin\AppData\LocalLow\SkwConfig.bin
Deleted C:\Users\pitrisin\AppData\Roaming\Mozilla\Firefox\Profiles\in5vqcm0.default\searchplugins\bingp.xml
Deleted C:\Users\pitrisin\AppData\Roaming\regsvr32.exe_log.txt
Deleted C:\Windows\System32\drivers\swdumon.sys

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

Deleted C:\Windows\System32\Tasks\HOOLAPP FOR ANDROID
Deleted C:\Windows\System32\Tasks\HOOLAPP INIT

***** [ Registry ] *****

Deleted HKCU\SOFTWARE\1a92553fc3706c469bd5c78793b2aa21
Deleted HKCU\SOFTWARE\5c55888ae56fe948
Deleted HKCU\SOFTWARE\8e3bc91142bd8d798a10a1667ae4d2be
Deleted HKCU\Software\AVG Secure Search
Deleted HKCU\Software\AppDataLow\Software\IObit Apps
Deleted HKCU\Software\AppDataLow\{4A0F38A9-FE55-4B89-B73F-E60FDC0F72E9}
Deleted HKCU\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B}
Deleted HKCU\Software\Appscion
Deleted HKCU\Software\IObit Apps
Deleted HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser|{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Deleted HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks|{03EB0E9C-7A91-4381-A220-9B52B641CDB1}
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Activities\Search\ask.com
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\zonemap\domains\dospop.com
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\zonemap\domains\incredibar.com
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SeznamInstall
Deleted HKCU\Software\PrivitizeVPNInstallDates
Deleted HKCU\Software\Smart Driver Updater
Deleted HKCU\Software\StartSearch
Deleted HKCU\Software\iMesh
Deleted HKCU\Software\wscontb
Deleted HKLM\SOFTWARE\Classes\*\shellex\ContextMenuHandlers\Advanced SystemCare
Deleted HKLM\SOFTWARE\Classes\AppID\DiscoveryHelper.DLL
Deleted HKLM\SOFTWARE\Classes\AppID\GIFAnimator.DLL
Deleted HKLM\SOFTWARE\Classes\AppID\IMTrProgress.DLL
Deleted HKLM\SOFTWARE\Classes\AppID\IMWeb.DLL
Deleted HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Deleted HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Deleted HKLM\SOFTWARE\Classes\AppID\iMesh.exe
Deleted HKLM\SOFTWARE\Classes\Applications\iMeshV12.exe
Deleted HKLM\SOFTWARE\Classes\Applications\iMesh_V12_en_Setup.exe
Deleted HKLM\SOFTWARE\Classes\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\shellex\ContextMenuHandlers\Advanced SystemCare
Deleted HKLM\SOFTWARE\Classes\protocols\handler\viprotocol
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{B1BFDE15-F3D6-4822-94F3-2A210E5A72EE}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A5FB98D2-B700-4B46-81C5-34DF48FDE807}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D8CAC25B-97DE-4132-BC9D-29A0133B89FC}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A5FB98D2-B700-4B46-81C5-34DF48FDE807}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B1BFDE15-F3D6-4822-94F3-2A210E5A72EE}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Hoolapp For Android
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Hoolapp Init
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\RegClean Pro_UPDATES
Deleted HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\IMPlayCDAudioOnArrival
Deleted HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\IMRipCDAudioOnArrival
Deleted HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\IMShowCDAudioOnArrival
Deleted HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\IMShowVolumeOnArrival
Deleted HKLM\Software\Classes\AppID\{1FC41815-FA4C-4F8B-B143-2C045C8EA2FC}
Deleted HKLM\Software\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Deleted HKLM\Software\Classes\AppID\{21493C1F-D071-496A-9C27-450578888291}
Deleted HKLM\Software\Classes\AppID\{403A885F-CB00-40C1-BDC1-EB09053194F7}
Deleted HKLM\Software\Classes\AppID\{55C1727F-5535-4C2A-9601-8C2458608B48}
Deleted HKLM\Software\Classes\AppID\{6536801B-F50C-449B-9476-093DFD3789E3}
Deleted HKLM\Software\Classes\AppID\{C292AD0A-C11F-479B-B8DB-743E72D283B0}
Deleted HKLM\Software\Classes\FTDownloader
Deleted HKLM\Software\Classes\Installer\Features\1A594BF8F3A4D1C4DB72F3A32B6E7636
Deleted HKLM\Software\Classes\Installer\Products\1A594BF8F3A4D1C4DB72F3A32B6E7636
Deleted HKLM\Software\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Deleted HKLM\Software\Classes\Interface\{1F8EDE97-36D5-422A-B8F0-9406E2D87C60}
Deleted HKLM\Software\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Deleted HKLM\Software\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Deleted HKLM\Software\Classes\Interface\{BE89FFB3-7F9C-4A16-B475-98B195A06628}
Deleted HKLM\Software\Classes\Prod.cap
Deleted HKLM\Software\Classes\TypeLib\{07CAC314-E962-4F78-89AB-DD002F2490EE}
Deleted HKLM\Software\Classes\TypeLib\{13ABD093-D46F-40DF-A608-47E162EC799D}
Deleted HKLM\Software\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Deleted HKLM\Software\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Deleted HKLM\Software\Classes\TypeLib\{FEB62B15-CC00-4736-AAEC-BA046C9DFF73}
Deleted HKLM\Software\Microsoft\Internet Explorer\Toolbar|{03EB0E9C-7A91-4381-A220-9B52B641CDB1}
Deleted HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\Smart Driver Updater
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\A97CEC23332751B47BA4B95BAA50C9D0
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\30C16B15B255BD349A1157B8A83E2AF9
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ED1CAE30F47D14B41B5FC8FA53658044
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\1A594BF8F3A4D1C4DB72F3A32B6E7636
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\9EE58E3C298524145B73CBBED3CAC4D3
Deleted HKLM\Software\Wow6432Node\5c55888ae56fe948
Deleted HKLM\Software\Wow6432Node\AVG Secure Search
Deleted HKLM\Software\Wow6432Node\AVG Security Toolbar
Deleted HKLM\Software\Wow6432Node\Cheat Engine\OpenCandy
Deleted HKLM\Software\Wow6432Node\IObit Apps
Deleted HKLM\Software\Wow6432Node\IObit\Advanced SystemCare 7
Deleted HKLM\Software\Wow6432Node\IObit\Driver Booster
Deleted HKLM\Software\Wow6432Node\IObit\RealTimeProtector
Deleted HKLM\Software\Wow6432Node\\Classes\AppID\DiscoveryHelper.DLL
Deleted HKLM\Software\Wow6432Node\\Classes\AppID\GIFAnimator.DLL
Deleted HKLM\Software\Wow6432Node\\Classes\AppID\IMTrProgress.DLL
Deleted HKLM\Software\Wow6432Node\\Classes\AppID\IMWeb.DLL
Deleted HKLM\Software\Wow6432Node\\Classes\AppID\ScriptHelper.EXE
Deleted HKLM\Software\Wow6432Node\\Classes\AppID\ViProtocol.DLL
Deleted HKLM\Software\Wow6432Node\\Classes\AppID\iMesh.exe
Deleted HKLM\Software\Wow6432Node\\Classes\AppID\{1FC41815-FA4C-4F8B-B143-2C045C8EA2FC}
Deleted HKLM\Software\Wow6432Node\\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Deleted HKLM\Software\Wow6432Node\\Classes\AppID\{21493C1F-D071-496A-9C27-450578888291}
Deleted HKLM\Software\Wow6432Node\\Classes\AppID\{403A885F-CB00-40C1-BDC1-EB09053194F7}
Deleted HKLM\Software\Wow6432Node\\Classes\AppID\{55C1727F-5535-4C2A-9601-8C2458608B48}
Deleted HKLM\Software\Wow6432Node\\Classes\AppID\{6536801B-F50C-449B-9476-093DFD3789E3}
Deleted HKLM\Software\Wow6432Node\\Classes\AppID\{C292AD0A-C11F-479B-B8DB-743E72D283B0}
Deleted HKLM\Software\Wow6432Node\\Classes\CLSID\{408CFAD9-8F13-4747-8EC7-770A339C7237}
Deleted HKLM\Software\Wow6432Node\\Classes\CLSID\{459DD0F7-0D55-D3DC-67BC-E6BE37E9D762}
Deleted HKLM\Software\Wow6432Node\\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Deleted HKLM\Software\Wow6432Node\\Classes\CLSID\{AF175732-0D59-716D-F757-9F1492D808D9}
Deleted HKLM\Software\Wow6432Node\\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Deleted HKLM\Software\Wow6432Node\\Classes\CLSID\{D879A501-50A7-BEFC-A4C5-32DC6E0CB208}
Deleted HKLM\Software\Wow6432Node\\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{1F8EDE97-36D5-422A-B8F0-9406E2D87C60}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{BE89FFB3-7F9C-4A16-B475-98B195A06628}
Deleted HKLM\Software\Wow6432Node\\Classes\TypeLib\{07CAC314-E962-4F78-89AB-DD002F2490EE}
Deleted HKLM\Software\Wow6432Node\\Classes\TypeLib\{13ABD093-D46F-40DF-A608-47E162EC799D}
Deleted HKLM\Software\Wow6432Node\\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Deleted HKLM\Software\Wow6432Node\\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Deleted HKLM\Software\Wow6432Node\\Classes\TypeLib\{FEB62B15-CC00-4736-AAEC-BA046C9DFF73}
Deleted HKLM\Software\Wow6432Node\\Classes\protocols\handler\viprotocol
Deleted HKLM\Software\Wow6432Node\\Google\Chrome\NativeMessagingHosts\avgsh
Deleted HKLM\Software\Wow6432Node\\Google\Chrome\NativeMessagingHosts\com.ascplugin.protect
Deleted HKLM\Software\Wow6432Node\\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Deleted HKLM\Software\Wow6432Node\\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EEE6C367-6118-11DC-9C72-001320C79847}
Deleted HKLM\Software\Wow6432Node\\Microsoft\Internet Explorer\Toolbar|{03EB0E9C-7A91-4381-A220-9B52B641CDB1}
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\IMPlayCDAudioOnArrival
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\IMRipCDAudioOnArrival
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\IMShowCDAudioOnArrival
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\IMShowVolumeOnArrival
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Ext\Preapproved\{872F3C0B-4462-424C-BB9F-74C6899B9F92}
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Ext\Preapproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Ext\Preapproved\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{EE171732-BEB4-4576-887D-CB62727F01CA}
Deleted HKLM\Software\Wow6432Node\iMesh
Deleted HKLM\Software\Wow6432Node\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Deleted HKLM\Software\Wow6432Node\{4A0F38A9-FE55-4B89-B73F-E60FDC0F72E9}
Deleted HKU\.DEFAULT\SOFTWARE\5c55888ae56fe948
Deleted HKU\.DEFAULT\Software\AVG Secure Search
Deleted HKU\.DEFAULT\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B}
Deleted HKU\.DEFAULT\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-18\Software\IB Updater
Deleted HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
Deleted HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
Deleted HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\zonemap\domains\dospop.com
Deleted HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\zonemap\domains\incredibar.com
Deleted HKU\S-1-5-18\SOFTWARE\5c55888ae56fe948
Deleted HKU\S-1-5-18\Software\AVG Secure Search
Deleted HKU\S-1-5-18\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B}
Deleted HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
Deleted HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
Deleted HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\zonemap\domains\dospop.com
Deleted HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\zonemap\domains\incredibar.com
Deleted HKU\S-1-5-19\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B}
Deleted HKU\S-1-5-20\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B}

***** [ Chromium (and derivatives) ] *****

Deleted IncrediBar for Chrome™
Deleted MSN Homepage & Bing Search Engine
Deleted McAfee Security Scan+
Deleted hbcennhacfaagdopikcegfcobcadeocj
Deleted icdlfehblmklkikfigmjhbmmpmkmpooj
Deleted iibmmjhgclhlahmjniokmhleigemjpbh
Deleted jifflliplgeajjdhmkcfnngfpgbjonjg
Deleted mhkaekfpcppmmioggniknbnbdbcigpkk
Deleted mhkaekfpcppmmioggniknbnbdbcigpkk
Deleted mhkaekfpcppmmioggniknbnbdbcigpkk
Deleted ndibdjnfmopecpmkdieinmbadjfpblof
Deleted nfengeggddojhakldhlpjdlddgkkjkdd
Deleted pflphaooapbgpeakohlggbpidpppgdff
Deleted pfmopbbadnfoelckkcmjjeaaegjpjjbk
Deleted pfndaklgolladniicklehhancnlgocpp
Deleted pfndaklgolladniicklehhancnlgocpp
Deleted ?????????? ???????? Mail.Ru
Deleted ???????? ???????? Mail.Ru
Deleted ????? Mail.Ru

***** [ Chromium URLs ] *****

Deleted AVG Secure Search
Deleted http://websearch.searchsun.info/?pid=72 ... g=EN&cc=CZ

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [22473 octets] - [28/06/2019 19:55:42]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Kontrola logu - zpomalený notebook

#4 Příspěvek od Conder »

:arrow: Poprosim o obidva nove logy z FRST.
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

pitrisin
Návštěvník
Návštěvník
Příspěvky: 173
Registrován: 22 čer 2019 19:36

Re: Kontrola logu - zpomalený notebook

#5 Příspěvek od pitrisin »

Tady.
Přílohy
logy FRST.rar
(41.51 KiB) Staženo 90 x

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Kontrola logu - zpomalený notebook

#6 Příspěvek od Conder »

:arrow: Otvor poznamkovy blok (Win+R -> notepad -> enter)
  • Skopiruj nasledujuci text a vloz ho do poznamkoveho bloku:

    Kód: Vybrat vše

    Start
    CloseProcesses:
    CreateRestorePoint:
    
    PowerShell: Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum
    File: C:\Windows\System32\Drivers\ayhgxspo.sys
    
    HKU\S-1-5-21-647002321-1269518864-1427724268-1001\...\MountPoints2: {4f2f5d12-d295-11e2-8372-005056c00008} - G:\Setup.exe
    BootExecute: autocheck autochk * sdnclean64.exe
    GroupPolicy: Restriction ? <==== ATTENTION
    GroupPolicy\User: Restriction ? <==== ATTENTION
    FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
    CHR HKU\S-1-5-21-647002321-1269518864-1427724268-1001\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
    Task: {0045A3C8-1799-47EB-866B-04314B1F7E4A} - System32\Tasks\{D8B036CD-7F23-4B21-981D-32D44EF2FCB7} => C:\Windows\system32\pcalua.exe -a "C:\Users\pitrisin\Downloads\LEGO Star Wars\setup.exe" -d "C:\Users\pitrisin\Downloads\LEGO Star Wars"
    Task: {0125F593-3FF4-4B0E-950F-C8AB8EA6DA3C} - System32\Tasks\{B78BB490-B32B-4F5D-B527-7693A4E35687} => C:\Windows\system32\pcalua.exe -a C:\Users\pitrisin\Downloads\Minecraft-[1.7.2]-WAREZ-Launcher---Čti-popisek!-(20k-DLs).exe -d C:\Users\pitrisin\Downloads
    Task: {0ACF6DC7-8195-4C2F-AC8C-539EA74B2B73} - System32\Tasks\{4C36A778-05E2-4CA5-BB6E-094E6619DDC8} => C:\Windows\system32\pcalua.exe -a C:\Users\pitrisin\Desktop\SetupX.exe -d C:\Users\pitrisin\Desktop
    Task: {0DDC2373-A5EB-47B8-8955-9E5E0F3AB448} - System32\Tasks\{3763DCAD-6122-4521-899E-F0F8D8EBCA11} => C:\Windows\system32\pcalua.exe -a "C:\Users\pitrisin\Desktop\Nová složka\GTA SA\BioHazard Alert REMAKE SetUp.exe" -d "C:\Users\pitrisin\Desktop\Nová složka\GTA SA"
    Task: {16E5D1B5-22FA-4E40-95B1-863946253266} - System32\Tasks\Uninstaller_SkipUac_Administrator => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe
    Task: {180E025A-F773-45B5-BBD4-F60CA96561F8} - System32\Tasks\{F0699AAA-C43B-466C-A19F-799C37864FF7} => C:\Users\pitrisin\Desktop\call of duty 2 black ops novííí\Setup.exe
    Task: {1A7551BA-BA7C-4B52-9B79-0B198239329C} - System32\Tasks\{430F6E33-7CB7-4D16-97B8-372C7E3DE3F2} => C:\Users\pitrisin\Downloads\setup (5).exe
    Task: {1AC1CA29-51BC-4A36-8B11-BC95C384304D} - System32\Tasks\{7A806FD8-34B1-45F5-9328-1226C03A8216} => C:\Windows\system32\pcalua.exe -a "D:\Call Of Duty 1- Finest Hour\setup.exe" -d "D:\Call Of Duty 1- Finest Hour"
    Task: {1BAD9C5A-B26A-4CCB-BB37-D66F11558769} - System32\Tasks\{C3DA9E2F-1835-40E3-9755-0E439CF6E6CC} => C:\Users\pitrisin\Downloads\GTA-Vice-City--Plná-Verze-By-Gammenzl\GTA-Vice-City--pln+äÔÇÜ+őÔÇí-verze-(pln¦éÔÇ×+óÔéČ+č-funk¦éÔÇצ¦TĄn+äÔÇÜ+éTş)\GTA VC\gta-vc.exe
    Task: {23E5CD5C-DD64-47D1-99BE-E5E1926A6D1B} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-647002321-1269518864-1427724268-1001Core => C:\Users\pitrisin\AppData\Local\Facebook\Update\FacebookUpdate.exe
    Task: {240BD8CC-CD8D-4BF3-8EBB-684261B8BB18} - System32\Tasks\{E11C5407-D0D6-4058-BB43-F9BB92DDC1F6} => C:\Users\pitrisin\Desktop\Nová složka\GTA SA\samp.exe
    Task: {29E925D4-5A0D-410F-B888-C7D238867582} - System32\Tasks\{C30BC5E9-65D5-4FDA-9192-8CE7799A9AA4} => C:\Users\pitrisin\Downloads\GTA-Vice-City--Plná-Verze-By-Gammenzl\GTA-Vice-City--pln+äÔÇÜ+őÔÇí-verze-(pln¦éÔÇ×+óÔéČ+č-funk¦éÔÇצ¦TĄn+äÔÇÜ+éTş)\GTA VC\gta-vc.exe
    Task: {2A39E817-BF58-4277-B6C7-A5625EF7E232} - System32\Tasks\{3C9A4856-E35D-4841-9760-E3DE67850457} => C:\Users\pitrisin\Downloads\GTA-Vice-City--Plná-Verze-By-Gammenzl\GTA-Vice-City--pln+äÔÇÜ+őÔÇí-verze-(pln¦éÔÇ×+óÔéČ+č-funk¦éÔÇצ¦TĄn+äÔÇÜ+éTş)\GTA VC\gta-vc.exe
    Task: {2E6C141B-3194-42A8-8174-DC3CD5A3373F} - System32\Tasks\{22E70DA8-645B-450E-BDED-AD2DA87A4081} => C:\Windows\system32\pcalua.exe -a "C:\Users\pitrisin\Downloads\LEGO Star Wars\dxsetup.exe" -d "C:\Users\pitrisin\Downloads\LEGO Star Wars"
    Task: {33ACBE54-E241-4D74-835B-A013649B2C9B} - System32\Tasks\{A7D2A424-184A-46A5-AAE3-7961EF60FEBF} => C:\Users\pitrisin\Downloads\LEGO Star Wars\program files\Giant\LEGO Star Wars Game\LegoStarwars.exe
    Task: {37EAEA86-C84C-4026-BE10-EE5CF94196A1} - System32\Tasks\{C383E0E6-7565-48EE-BDF9-7C5B028CE593} => C:\Users\pitrisin\Downloads\LEGO Star Wars\program files\Giant\LEGO Star Wars Game\LegoStarwars.exe
    Task: {3D0D3440-774B-4372-BBA5-3DB92F599360} - System32\Tasks\{D123D03C-7F64-4597-88CD-3D34BA41AD68} => C:\Windows\system32\pcalua.exe -a C:\Users\pitrisin\Downloads\shoutcast-dsp-1-9-0-windows.exe -d C:\Users\pitrisin\Downloads
    Task: {4794151D-8738-49BE-870F-CC4CB59FE3E2} - System32\Tasks\{3CB05386-629E-4487-96C1-85596C510BE6} => C:\Windows\system32\pcalua.exe -a G:\DirectXSetup\dxsetup.exe -d C:\Windows\SysWOW64 -c /silent
    Task: {4C16E5AF-E544-447B-BE60-625D1AA53858} - System32\Tasks\{F8996706-9B9C-434A-9A50-3D42723495D8} => C:\Program Files (x86)\Counter-Strike Global Offensive\Launcher.exe
    Task: {4C67B5AF-FE85-404B-8BAF-95BB13B536E1} - System32\Tasks\{25B323BE-F45A-42F2-A8AA-4EE1F8E0E7B5} => C:\Users\pitrisin\Desktop\LeagueofLegends.exe
    Task: {4E5D4302-6A23-40D4-8054-EDBD6BD344D5} - System32\Tasks\{6D24FB7E-FAA6-40CF-AD4F-5360A418B52A} => C:\Windows\system32\pcalua.exe -a "C:\Users\pitrisin\Downloads\GTA-Vice-City--Plná-Verze-By-Gammenzl\GTA-Vice-City--pln+äÔÇÜ+őÔÇí-verze-(pln¦éÔÇ×+óÔéČ+č-funk¦éÔÇצ¦TĄn+äÔÇÜ+éTş)\GTA VC\gtavccz120.exe" -d "C:\Users\pitrisin\Downloads\GTA-Vice-City--Plná-Verze-By-Gammenzl\GTA-Vice-City--pln+äÔÇÜ+őÔÇí-verze-(pln¦éÔÇ×+óÔéČ+č-funk¦éÔÇ (the data entry has 24 more characters).
    Task: {5365C9CF-AE81-49EA-8FEB-F3AB0E658E49} - System32\Tasks\{92D872A0-98B1-48EE-8066-5866FEDBE8B2} => C:\Windows\system32\pcalua.exe -a G:\setup.exe -d G:\
    Task: {5B825CC4-CC7A-49CC-889C-FC96365653CE} - System32\Tasks\{4EB38346-8260-49BE-B476-46F5C2C53C86} => C:\Windows\system32\pcalua.exe -a C:\Users\pitrisin\Downloads\cz_spider-man_2\spiderman2_cz.exe -d C:\Users\pitrisin\Downloads\cz_spider-man_2
    Task: {5DBC4A5C-5D24-46B4-AD84-59F8FCCC3A7E} - System32\Tasks\{A17CAEB1-AE3C-4466-B67F-C50DCA358501} => C:\Users\pitrisin\Downloads\GTA-Vice-City--Plná-Verze-By-Gammenzl\GTA-Vice-City--pln+äÔÇÜ+őÔÇí-verze-(pln¦éÔÇ×+óÔéČ+č-funk¦éÔÇצ¦TĄn+äÔÇÜ+éTş)\GTA VC\gta-vc.exe
    Task: {5E056ED6-2B13-405C-8C05-F97A9ABC7B0B} - System32\Tasks\{7ACA9FBF-E85C-4498-BAB9-8B6236E48F5C} => C:\Users\pitrisin\Downloads\LEGO Star Wars\program files\Giant\LEGO Star Wars Game\LegoStarwars.exe
    Task: {67DA7DD7-45F6-459B-9351-394080DBFCFB} - System32\Tasks\ASC8_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare 8\Monitor.exe
    Task: {6F309B29-1EBF-4B12-936C-5DA30D980077} - System32\Tasks\{F73037D3-2433-4198-B4EC-8EBC03EC491C} => C:\Windows\system32\pcalua.exe -a "C:\Users\pitrisin\Documents\Vuze Downloads\Battlefield Bad Company 2 noDICE PC game MP + SP ^^nosTEAM^^\Battlefield Bad Company 2\BFBC2Game.exe" -d "C:\Users\pitrisin\Documents\Vuze Downloads\Battlefield Bad Company 2 noDICE PC game MP + SP ^^nosTEAM^^\Battlefield Bad Company 2"
    Task: {6FCA8568-D917-4F89-85D1-CEDF871A0634} - System32\Tasks\{36336D04-DBDA-49C1-BC26-962BB0E6C7F0} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Steam\steamapps\common\Left 4 Dead 2\bin\addoninstaller.exe" -d "C:\Program Files (x86)\Steam\steamapps\common\Left 4 Dead 2" -c /register
    Task: {74679B49-1DF0-4180-B13B-AE7EFFB4456E} - System32\Tasks\{72449749-D3DC-46C2-81E1-F5939420FC8F} => C:\Windows\system32\pcalua.exe -a "C:\Users\pitrisin\Downloads\shoutcast-dsp-1-9-0-windows (1).exe" -d C:\Users\pitrisin\Downloads
    Task: {7DBC36C2-3B87-459D-B4E6-1EC52A859935} - System32\Tasks\{8D45B8D9-8000-4BB6-8215-69131EF1FA87} => C:\Windows\system32\pcalua.exe -a C:\PROGRA~2\COMMON~1\INSTAL~1\Driver\1050\INTEL3~1\IDriver.exe -c /M{E914A24F-2412-4374-B420-86D21D6D444A}
    Task: {818C8187-6C59-4D21-8777-42001A3717A6} - System32\Tasks\{E0D3912C-E831-493C-B2C8-B819192A7043} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\TeamSpeak 3 Client\package_inst.exe" -d C:\Users\pitrisin\Downloads -c "C:\Users\pitrisin\Downloads\ClownfishVoiceChanger-v1.11.ts3_plugin"
    Task: {822D8D53-17C7-4872-B1A2-4B651D0F2119} - System32\Tasks\{49DC876F-A53C-4F79-A7EB-7612EC843549} => C:\Windows\system32\pcalua.exe -a C:\Users\pitrisin\Downloads\mctitan_pokemine.exe -d C:\Users\pitrisin\Downloads
    Task: {89231F51-426F-49EC-B461-7C61957C27A1} - System32\Tasks\{8EB5409E-7575-4F9B-AFB6-6ECE323F1116} => C:\Windows\system32\pcalua.exe -a D:\MOH_2010.part01.exe -d D:\
    Task: {8A82977F-C8A7-4FB5-BCF6-DE4E886A85B4} - System32\Tasks\ASC8_SkipUac_pitrisin => C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASC.exe
    Task: {8FD9D252-91D3-4963-8B4E-F23609FAEB0C} - System32\Tasks\{93051FFE-A6FF-4F0C-A45C-DEC8AC79B39D} => C:\Windows\system32\pcalua.exe -a "C:\Users\pitrisin\Downloads\dotNetFx35setup (1).exe" -d C:\Users\pitrisin\Downloads
    Task: {94446608-0767-4C71-8B78-2AA76125D184} - System32\Tasks\{344BBB1D-ED45-4DF8-86D5-5F6599525B97} => C:\Windows\system32\pcalua.exe -a C:\DXSETUP.exe -d C:\
    Task: {9A099EE4-D7FC-450C-9CE4-3CCD54110D6B} - System32\Tasks\{DF90E593-14D3-46C2-8913-E89AA3F74A2B} => C:\Windows\system32\pcalua.exe -a C:\Users\pitrisin\Downloads\directx_oct2006_redist.exe -d C:\Users\pitrisin\Downloads
    Task: {9D65C0BC-CB40-47A3-B68D-6E37DDD03EC8} - System32\Tasks\{B75A2567-5C7F-4F02-8F53-7F6E3E397BC3} => C:\Windows\system32\pcalua.exe -a C:\Users\pitrisin\Downloads\CUnite_Setup_XP_Vista_x32.exe -d C:\Users\pitrisin\Downloads
    Task: {9ECE5DEB-EB7B-4DFB-B816-3A7079634D3D} - System32\Tasks\{781F5D13-080F-408A-B038-9B65D839A5F0} => C:\Users\pitrisin\Downloads\LEGO Star Wars\program files\Giant\LEGO Star Wars Game\LegoStarwars.exe
    Task: {A4FA3908-F03D-4FB5-8F90-A3A0E89B04C4} - System32\Tasks\{82D0E52E-4F2E-4325-9861-CAE3F62BEF77} => C:\Users\pitrisin\Desktop\call of duty 2 black ops novííí\SKIDROW\t6zm.exe
    Task: {A77C1C38-AEFB-4CEB-B0AF-92164DA30E6C} - System32\Tasks\{CD02EDE0-E8D8-4499-85B1-FD1E32FB1A9A} => C:\Users\pitrisin\Downloads\LEGO Star Wars\program files\Giant\LEGO Star Wars Game\LegoStarwars.exe
    Task: {AB492BE3-E1CD-4384-9A13-A53E34132762} - System32\Tasks\{DE125F29-D706-4C44-8C3F-C1635B9B41C2} => C:\Users\pitrisin\Desktop\MinecraftSP.exe
    Task: {ACE87228-CDAF-42D0-9AEC-800C4064F85E} - System32\Tasks\{3612D59C-6E60-4F25-B23B-856E9F1191E4} => C:\Users\pitrisin\Downloads\LEGO Star Wars\program files\Giant\LEGO Star Wars Game\LegoStarwars.exe
    Task: {ADC90B02-0FE9-4769-8043-7928390457A4} - System32\Tasks\{1A3558B2-BBB8-4FD4-8B41-9CA859CC1B5F} => C:\Users\pitrisin\Downloads\LEGO Star Wars\program files\Giant\LEGO Star Wars Game\LegoStarwars.exe
    Task: {AF48010C-DA76-4671-90A4-292B00924CCF} - System32\Tasks\{DBD52D71-50BC-4894-AEB0-ADB602B797A0} => C:\Riot Games\League of Legends\lol.launcher.exe
    Task: {AF7BF7ED-4429-4D7F-8408-C089E13DB5A9} - System32\Tasks\{C3648F85-6EEE-45F6-B9E0-6586DE67CF9A} => C:\Users\pitrisin\Downloads\LEGO Star Wars\program files\Giant\LEGO Star Wars Game\LegoStarwars.exe
    Task: {AFCB55B5-6C7A-4D24-A2D4-A5136D2482D3} - System32\Tasks\{74EFA877-FD35-4A90-A23E-4F42139815F4} => C:\Windows\system32\pcalua.exe -a "C:\Users\pitrisin\AppData\Local\Temp\Temp2_Microsoft Office XP PRO (word, excel, powerpoint, outlook, access, frontpage, Publisher 2003).zip\SETUP.EXE" <==== ATTENTION
    Task: {B3FA42C1-7B14-44B0-8EEF-BAC010268512} - System32\Tasks\{BDBD22ED-DF79-494E-B187-373A3C26111F} => C:\Users\pitrisin\Downloads\LEGO Star Wars\program files\Giant\LEGO Star Wars Game\LegoStarwars.exe
    Task: {BC5306C8-E115-4D62-9A27-1F41FDD01023} - System32\Tasks\{4E327A63-F6AB-4AE9-87D0-991612AF44B7} => C:\Windows\system32\pcalua.exe -a F:\jre-6u20-windows-i586-iftw-rv.exe -d F:\
    Task: {C644AE26-F496-4C07-8A8A-E6AD70758698} - System32\Tasks\{E563065A-7EBD-477D-A77F-606D8F753FF6} => C:\Windows\system32\pcalua.exe -a C:\Users\pitrisin\Downloads\MorphVOX_Install-157.exe -d C:\Users\pitrisin\Downloads
    Task: {C82FC65F-DE6B-41FD-8952-87E060F6CD0F} - System32\Tasks\{830A45BC-4510-44DC-9BE2-824A93475C31} => C:\Windows\system32\pcalua.exe -a "C:\Users\pitrisin\AppData\Local\Temp\Temp1_BF2Demo.zip\Battlefield 2 Demo.exe" <==== ATTENTION
    Task: {C97853B6-2876-4965-AFCD-67202A211697} - System32\Tasks\Driver Booster SkipUAC (pitrisin) => C:\Program Files (x86)\IObit\Driver Booster\5.2.0\DriverBooster.exe
    Task: {CBC81020-E7C8-42B5-BB4A-812D22590C1F} - System32\Tasks\{B676492B-2AD1-466C-BDDE-661235444677} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\AMX Mod X\Installer.exe" -d "C:\Program Files (x86)\AMX Mod X"
    Task: {CE1DBEE2-9A47-4BC8-B239-ACCE181AC954} - System32\Tasks\SmartDefrag3_Startup => C:\Program Files (x86)\IObit\Smart Defrag 3\SmartDefrag.exe
    Task: {D16FF5BF-E95F-4F63-AEB2-133948BF509E} - System32\Tasks\{E740276B-7BD5-43FE-BA4C-BE92AAF68E67} => C:\Windows\system32\pcalua.exe -a C:\Windows\unvise32.exe -c C:\Program Files (x86)\The Logo Creator v5\uninstal.log
    Task: {D5F04279-3A38-47C8-8CDE-40EA44EB66DF} - System32\Tasks\SmartDefrag3_Update => C:\Program Files (x86)\IObit\Smart Defrag 3\AutoUpdate.exe
    Task: {D6D81C87-999C-4D6A-ADC3-BFB37AFDADC8} - System32\Tasks\{977C80A6-0527-4C02-A9D1-0BA69B87D1FF} => C:\Users\pitrisin\Desktop\MinecraftSP.exe
    Task: {DC0B1D10-5049-4DC6-AE0D-9040F43C4C47} - System32\Tasks\{26F50449-ED56-4E58-BD30-4A7E519D9BF7} => C:\Windows\system32\pcalua.exe -a C:\Users\pitrisin\Downloads\lsvp.exe -d C:\Users\pitrisin\Downloads
    Task: {DDCC8699-D281-4277-B48A-6C0DF05BAF7C} - System32\Tasks\{8D2655D6-3E70-42AE-9285-67CCA8DD303C} => C:\Users\pitrisin\Downloads\GTA-Vice-City--Plná-Verze-By-Gammenzl\GTA-Vice-City--pln+äÔÇÜ+őÔÇí-verze-(pln¦éÔÇ×+óÔéČ+č-funk¦éÔÇצ¦TĄn+äÔÇÜ+éTş)\GTA VC\gta-vc.exe
    Task: {E05EEA84-6508-4BB0-AD0D-468FC6283A03} - System32\Tasks\{5FE87E60-C3BE-4B08-A882-329D0479FE74} => C:\Windows\system32\pcalua.exe -a "C:\Users\pitrisin\Documents\Vuze Downloads\Dead Island Riptide\Call of Duty - Black Ops CZ\Call of Duty - Black Ops.part01.exe" -d "C:\Users\pitrisin\Documents\Vuze Downloads\Dead Island Riptide\Call of Duty - Black Ops CZ"
    Task: {E47F9521-1A15-4BFF-A4B8-7E9076141AF4} - System32\Tasks\{F4CFA237-0195-4E8D-B04F-A69BD722CA28} => C:\Users\pitrisin\Desktop\Nová složka\GTA SA\samp.exe
    Task: {E4DA3155-BB11-4B40-B0D7-3104903A20C9} - System32\Tasks\{C0DD88FC-B0CD-42CC-9181-CA2874C3D55A} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Common Files\Nero\Nero ProductInstaller 4\SetupX.exe" -c REMOVESERIALNUMBER="XM02-508X-MHAT-19WU-9Z3Z-0CH0-3U6E-85W5-MMHH-6647-1Z5L-7M8C-0U45-758P-0000"
    Task: {E667B530-55AB-47A7-8699-AE9CF615B083} - System32\Tasks\{C8EBC307-CCFB-4DC0-A168-726F97F6DCD0} => C:\Windows\system32\pcalua.exe -a "C:\Users\pitrisin\Desktop\lego star wars\Lego Starwars Pc Game Crack\dxsetup.exe" -d "C:\Users\pitrisin\Desktop\lego star wars\Lego Starwars Pc Game Crack"
    Task: {EA9FAA97-94C8-4933-8C5D-638643EF318A} - System32\Tasks\{AF606A1D-B624-473D-BE16-8E41D7E8715C} => C:\Windows\system32\pcalua.exe -a "C:\Users\pitrisin\Downloads\navi-gui-2012-12-22-2012-09-05-4568179 (1).exe" -d C:\Users\pitrisin\Downloads
    Task: {ED9EE53E-9822-4D98-9F4C-59EDAFF6C2E1} - System32\Tasks\{2F16B90E-BAEB-4BC8-AF2F-9FA0AD710D1D} => C:\Users\pitrisin\Downloads\GTA-Vice-City--Plná-Verze-By-Gammenzl\GTA-Vice-City--pln+äÔÇÜ+őÔÇí-verze-(pln¦éÔÇ×+óÔéČ+č-funk¦éÔÇצ¦TĄn+äÔÇÜ+éTş)\GTA VC\gta-vc.exe
    Task: {F02DDE88-87F9-4139-953A-CFC94BD752CF} - System32\Tasks\{B8A3B1D4-3E8A-4293-A67D-FE02DA14BACB} => C:\Program Files (x86)\Counter-Strike Global Offensive\Launcher.exe
    Task: {F10831CB-8FEA-498D-8D5A-9C4E07C122D3} - System32\Tasks\{548767C1-C735-4B18-B97B-A327BC650F4F} => C:\Windows\system32\pcalua.exe -a C:\Users\pitrisin\Downloads\sa-mp-0.3b-R2-install.exe -d C:\Users\pitrisin\Downloads
    Task: {F236A64E-09C2-4BA3-BAC4-3A9F8249379B} - System32\Tasks\{6CB0A648-AC65-47D0-81B2-61FFB0B3C134} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\GumboyCrazyAdventures\unins000.exe"
    Task: {F423780D-E2B5-4042-A08C-40E250BECBA4} - System32\Tasks\{2AEC5B20-A1F5-40F8-B97A-D86CE67554E2} => C:\Counter-Strike 1.6\csko.exe
    Task: {F85D96D4-7597-4F18-9038-C4BABB6B65E8} - System32\Tasks\{C4E3C83C-EA5F-4EF5-A3A7-40F7CCF99A42} => C:\Windows\system32\pcalua.exe -a F:\battlefield2demo.exe -d F:\
    Task: {F8F62EA3-3433-4532-8DE3-0AAB7F61DEC8} - System32\Tasks\{FCE9E7F2-7D0D-4656-B553-47CE7DB85E2A} => C:\Users\pitrisin\Downloads\GTA-Vice-City--Plná-Verze-By-Gammenzl\GTA-Vice-City--pln+äÔÇÜ+őÔÇí-verze-(pln¦éÔÇ×+óÔéČ+č-funk¦éÔÇצ¦TĄn+äÔÇÜ+éTş)\GTA VC\gta-vc.exe
    Task: {FD9B365B-6531-4D57-AF10-4B1D0992E7EF} - System32\Tasks\{F60C832E-FE51-416F-A770-44B58FB05161} => C:\Users\pitrisin\Desktop\LeagueofLegends.exe
    Task: C:\Windows\Tasks\SmartDefrag3_Startup.job => C:\Program Files (x86)\IObit\Smart Defrag 3\SmartDefrag.exe
    Task: C:\Windows\Tasks\SmartDefrag3_Update.job => C:\Program Files (x86)\IObit\Smart Defrag 3\AutoUpdate.exe
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = 
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 
    SearchScopes: HKLM -> DefaultScope {77AA745B-F4F8-45DA-9B14-61D2D95054C8} URL = 
    SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
    SearchScopes: HKU\.DEFAULT -> DefaultScope {77AA745B-F4F8-45DA-9B14-61D2D95054C8} URL = 
    SearchScopes: HKU\S-1-5-21-647002321-1269518864-1427724268-1001 -> DefaultScope {FFEBBF0A-C22C-4172-89FF-45215A135AC7} URL = 
    BHO: scriptproxy -> {7DB2D5A0-7241-4E79-B68D-6309F01C5231} -> No File
    BHO-x32: scriptproxy -> {7DB2D5A0-7241-4E79-B68D-6309F01C5231} -> No File
    Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -  No File
    Toolbar: HKLM-x32 - No Name - {95B7759C-8C7F-4BF1-B163-73684A933233} -  No File
    FF HKLM-x32\...\Firefox\Extensions: [{D19CA586-DD6C-4a0a-96F8-14644F340D60}] - C:\Program Files (x86)\Common Files\McAfee\SystemCore
    FF Extension: (No Name) - C:\Program Files (x86)\Common Files\McAfee\SystemCore [2014-08-28] [not signed]
    FF HKLM-x32\...\Firefox\Extensions: [avg@toolbar] - C:\ProgramData\AVG Secure Search\FireFoxExt\17.3.0.49 => not found
    FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => not found
    FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
    FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
    CMD: type "C:\Program Files (x86)\mozilla firefox\firefox.cfg"
    CHR StartupUrls: Default -> "hxxps://www.google.com/","hxxp://websearch.searchsun.info/?pid=724&r=2014/03/24&hid=10967595765519032896&lg=EN&cc=CZ"
    CHR HKLM-x32\...\Chrome\Extension: [bopakagnckmlgajfccecajhnimjiiedh] - hxxp://clients2.google.com/service/update2/crx
    CHR HKLM-x32\...\Chrome\Extension: [dkinklhnkmkhkhofcnapakaoehijaoih] - <no Path/update_url>
    CHR HKLM-x32\...\Chrome\Extension: [fgfdfcbeamjnjdejakdidpniblllnbpg] - <no Path/update_url>
    CHR HKLM-x32\...\Chrome\Extension: [jbpkiefagocgkmemidfngdkamloieekf] - <no Path/update_url>
    S4 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2960672 2016-06-14] (IObit Information Technology -> IObit)
    S4 dofilter; C:\Users\pitrisin\AppData\Local\Host Service\nssm.exe [X]
    S2 TuneUp.UtilitiesSvc; no ImagePath
    S3 EagleX64; no ImagePath
    S3 FairplayKD; no ImagePath
    S3 GGSAFERDriver; no ImagePath
    R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [21184 2014-06-04] (IObit Information Technology -> IObit)
    U3 ayhgxspo; C:\Windows\System32\Drivers\ayhgxspo.sys [0 0000-00-00] (Intel Corporation) <==== ATTENTION (zero byte File/Folder)
    S3 ATP; system32\DRIVERS\cmdatp.sys [X]
    S3 cpuz137; \??\C:\Users\pitrisin\AppData\Local\Temp\cpuz137\cpuz137_x64.sys [X] <==== ATTENTION
    S3 CV2K1; system32\DRIVERS\cv2k1.sys [X]
    S3 SWDUMon; system32\DRIVERS\SWDUMon.sys [X]
    S0 vmci; system32\DRIVERS\vmci.sys [X]
    2019-06-28 14:18 - 2019-06-28 14:18 - 000042648 _____ C:\Users\pitrisin\Downloads\logy frst.rar
    2019-06-28 20:02 - 2016-06-23 20:13 - 000000000 ____D C:\Users\pitrisin\AppData\Roaming\IObit
    2019-06-28 20:02 - 2014-04-15 12:46 - 000000000 ____D C:\Users\pitrisin\AppData\LocalLow\IObit
    2019-06-28 20:02 - 2014-04-15 12:46 - 000000000 ____D C:\ProgramData\IObit
    C:\Program Files (x86)\*.tmp
    C:\Users\pitrisin\AppData\Local\*.tmp
    2014-01-08 18:26 - 2014-01-08 18:26 - 000003730 _____ () C:\Program Files (x86)\Mozilla Firefoxavg-secure-search.xml
    2015-11-08 19:42 - 2015-11-08 19:42 - 000000000 _____ () C:\Users\pitrisin\AppData\Local\{146DF394-F2BA-4723-8B9D-275DED6372DB}
    2019-06-06 14:44 - 2019-06-06 14:44 - 000000000 _____ () C:\Users\pitrisin\AppData\Local\{336A685D-69CC-4022-82E9-49FE15E9B244}
    2016-04-17 20:39 - 2016-04-17 20:39 - 000000000 _____ () C:\Users\pitrisin\AppData\Local\{3A31DEA7-4F5F-4C98-B9DB-0A733B623903}
    2015-12-25 15:41 - 2015-12-25 15:41 - 000000000 _____ () C:\Users\pitrisin\AppData\Local\{4897EC41-D746-442F-8F1D-F957134EAAC1}
    2016-04-24 08:43 - 2016-04-24 08:43 - 000000000 _____ () C:\Users\pitrisin\AppData\Local\{88315CE1-EBB3-42D9-89AF-2AB766EFDB5E}
    2016-04-06 21:01 - 2016-04-06 21:01 - 000000000 _____ () C:\Users\pitrisin\AppData\Local\{C6D28A41-EC3C-44A1-BBDC-C6B58B1B80F9}
    2014-07-29 09:22 - 2014-07-29 09:22 - 000000000 _____ () C:\Users\pitrisin\AppData\Local\{E23F5D37-639E-4335-A40A-9F139288248E}
    2014-10-07 14:02 - 2014-10-07 14:07 - 000000000 _____ () C:\Users\pitrisin\AppData\Local\{F583ACFC-FA67-4605-BE3F-F165B7361A5B}
    2016-03-26 19:43 - 2016-03-26 19:43 - 000000000 _____ () C:\Users\pitrisin\AppData\Local\{FD974FF5-DBEF-431E-9A35-70B38CF9CADC}
    
    ContextMenuHandlers1: [AVG Shredder Shell Extension] -> {4858E7D9-8E12-45a3-B6A3-1CD128C9D403} =>  -> No File
    ContextMenuHandlers1: [SmartDefragExtension] -> {189F1E63-33A7-404B-B2F6-8C76A452CC54} => C:\Windows\system32\IObitSmartDefragExtension.dll [2014-06-04] (IObit Information Technology -> IObit)
    ContextMenuHandlers1: [TuneUp Shredder Shell Extension] -> {4858E7D9-8E12-45a3-B6A3-1CD128C9D403} =>  -> No File
    ContextMenuHandlers1: [UnLockerMenu] -> {A6FF0E3A-8437-482C-8E04-4F9E15C57538} =>  -> No File
    ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} =>  -> No File
    ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} =>  -> No File
    ContextMenuHandlers6: [SmartDefragExtension] -> {189F1E63-33A7-404B-B2F6-8C76A452CC54} => C:\Windows\system32\IObitSmartDefragExtension.dll [2014-06-04] (IObit Information Technology -> IObit)
    ContextMenuHandlers6: [UnLockerMenu] -> {A6FF0E3A-8437-482C-8E04-4F9E15C57538} =>  -> No File
    AlternateDataStreams: C:\ProgramData:NT [40]
    AlternateDataStreams: C:\ProgramData:NT2 [322]
    AlternateDataStreams: C:\Windows\System32:{4B9A1497-0817-47C4-9612-D6A1C53ACF57} [26]
    AlternateDataStreams: C:\Users\All Users:NT [40]
    AlternateDataStreams: C:\Users\All Users:NT2 [322]
    AlternateDataStreams: C:\ProgramData\Application Data:NT [40]
    AlternateDataStreams: C:\ProgramData\Application Data:NT2 [322]
    AlternateDataStreams: C:\ProgramData\MTA San Andreas All:NT [40]
    AlternateDataStreams: C:\ProgramData\MTA San Andreas All:NT2 [322]
    AlternateDataStreams: C:\ProgramData\Temp:AD022376 [129]
    AlternateDataStreams: C:\Users\pitrisin\Data aplikací:NT [40]
    AlternateDataStreams: C:\Users\pitrisin\Data aplikací:NT2 [322]
    AlternateDataStreams: C:\Users\pitrisin\AppData\Roaming:NT [40]
    AlternateDataStreams: C:\Users\pitrisin\AppData\Roaming:NT2 [322]
    
    C:\Program Files\IObit
    C:\Program Files (x86)\IObit
    C:\Program Files\Common Files\IObit
    C:\ProgramData\IObit
    C:\ProgramData\ProductData
    C:\Users\pitrisin\AppData\Local\IObit
    C:\Users\pitrisin\AppData\LocalLow\IObit
    C:\Users\pitrisin\AppData\Roaming\IObit
    C:\Users\pitrisin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\*Driver Booster*
    C:\Users\pitrisin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\*Advanced SystemCare*
    C:\Users\Default\AppData\Local\IObit
    C:\Users\Default\AppData\LocalLow\IObit
    C:\Users\Default\AppData\Roaming\IObit
    C:\Users\Public\Desktop\*Driver Booster*
    C:\Users\Public\Desktop\*Advanced SystemCare*
    C:\Windows\IObit
    C:\Windows\Tasks\ImCleanDisabled
    C:\ProgramData\{13CFD044-61E4-4EAC-AD61-02536D961216}
    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 5
    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare
    
    Hosts:
    EmptyTemp:
    End
  • Uloz na plochu s nazvom fixlist.txt
  • Spusti znovu FRST a klikni na Fix
  • Po dokonceni si FRST vyziada restart PC, potvrd kliknutim na OK
  • Po restartovani PC bude na ploche subor Fixlog.txt, jeho obsah sem skopiruj
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

pitrisin
Návštěvník
Návštěvník
Příspěvky: 173
Registrován: 22 čer 2019 19:36

Re: Kontrola logu - zpomalený notebook

#7 Příspěvek od pitrisin »

Fix result of Farbar Recovery Scan Tool (x64) Version: 26-06-2019
Ran by pitrisin (29-06-2019 09:51:36) Run:1
Running from C:\Users\pitrisin\Desktop
Loaded Profiles: pitrisin (Available Profiles: pitrisin)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:

PowerShell: Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum
File: C:\Windows\System32\Drivers\ayhgxspo.sys

HKU\S-1-5-21-647002321-1269518864-1427724268-1001\...\MountPoints2: {4f2f5d12-d295-11e2-8372-005056c00008} - G:\Setup.exe
BootExecute: autocheck autochk * sdnclean64.exe
GroupPolicy: Restriction ? <==== ATTENTION
GroupPolicy\User: Restriction ? <==== ATTENTION
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKU\S-1-5-21-647002321-1269518864-1427724268-1001\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {0045A3C8-1799-47EB-866B-04314B1F7E4A} - System32\Tasks\{D8B036CD-7F23-4B21-981D-32D44EF2FCB7} => C:\Windows\system32\pcalua.exe -a "C:\Users\pitrisin\Downloads\LEGO Star Wars\setup.exe" -d "C:\Users\pitrisin\Downloads\LEGO Star Wars"
Task: {0125F593-3FF4-4B0E-950F-C8AB8EA6DA3C} - System32\Tasks\{B78BB490-B32B-4F5D-B527-7693A4E35687} => C:\Windows\system32\pcalua.exe -a C:\Users\pitrisin\Downloads\Minecraft-[1.7.2]-WAREZ-Launcher---�ti-popisek!-(20k-DLs).exe -d C:\Users\pitrisin\Downloads
Task: {0ACF6DC7-8195-4C2F-AC8C-539EA74B2B73} - System32\Tasks\{4C36A778-05E2-4CA5-BB6E-094E6619DDC8} => C:\Windows\system32\pcalua.exe -a C:\Users\pitrisin\Desktop\SetupX.exe -d C:\Users\pitrisin\Desktop
Task: {0DDC2373-A5EB-47B8-8955-9E5E0F3AB448} - System32\Tasks\{3763DCAD-6122-4521-899E-F0F8D8EBCA11} => C:\Windows\system32\pcalua.exe -a "C:\Users\pitrisin\Desktop\Nov� slo�ka\GTA SA\BioHazard Alert REMAKE SetUp.exe" -d "C:\Users\pitrisin\Desktop\Nov� slo�ka\GTA SA"
Task: {16E5D1B5-22FA-4E40-95B1-863946253266} - System32\Tasks\Uninstaller_SkipUac_Administrator => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe
Task: {180E025A-F773-45B5-BBD4-F60CA96561F8} - System32\Tasks\{F0699AAA-C43B-466C-A19F-799C37864FF7} => C:\Users\pitrisin\Desktop\call of duty 2 black ops nov���\Setup.exe
Task: {1A7551BA-BA7C-4B52-9B79-0B198239329C} - System32\Tasks\{430F6E33-7CB7-4D16-97B8-372C7E3DE3F2} => C:\Users\pitrisin\Downloads\setup (5).exe
Task: {1AC1CA29-51BC-4A36-8B11-BC95C384304D} - System32\Tasks\{7A806FD8-34B1-45F5-9328-1226C03A8216} => C:\Windows\system32\pcalua.exe -a "D:\Call Of Duty 1- Finest Hour\setup.exe" -d "D:\Call Of Duty 1- Finest Hour"
Task: {1BAD9C5A-B26A-4CCB-BB37-D66F11558769} - System32\Tasks\{C3DA9E2F-1835-40E3-9755-0E439CF6E6CC} => C:\Users\pitrisin\Downloads\GTA-Vice-City--Pln�-Verze-By-Gammenzl\GTA-Vice-City--pln+����+����-verze-(pln�����+����+�-funk����צ�T�n+����+�T�)\GTA VC\gta-vc.exe
Task: {23E5CD5C-DD64-47D1-99BE-E5E1926A6D1B} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-647002321-1269518864-1427724268-1001Core => C:\Users\pitrisin\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: {240BD8CC-CD8D-4BF3-8EBB-684261B8BB18} - System32\Tasks\{E11C5407-D0D6-4058-BB43-F9BB92DDC1F6} => C:\Users\pitrisin\Desktop\Nov� slo�ka\GTA SA\samp.exe
Task: {29E925D4-5A0D-410F-B888-C7D238867582} - System32\Tasks\{C30BC5E9-65D5-4FDA-9192-8CE7799A9AA4} => C:\Users\pitrisin\Downloads\GTA-Vice-City--Pln�-Verze-By-Gammenzl\GTA-Vice-City--pln+����+����-verze-(pln�����+����+�-funk����צ�T�n+����+�T�)\GTA VC\gta-vc.exe
Task: {2A39E817-BF58-4277-B6C7-A5625EF7E232} - System32\Tasks\{3C9A4856-E35D-4841-9760-E3DE67850457} => C:\Users\pitrisin\Downloads\GTA-Vice-City--Pln�-Verze-By-Gammenzl\GTA-Vice-City--pln+����+����-verze-(pln�����+����+�-funk����צ�T�n+����+�T�)\GTA VC\gta-vc.exe
Task: {2E6C141B-3194-42A8-8174-DC3CD5A3373F} - System32\Tasks\{22E70DA8-645B-450E-BDED-AD2DA87A4081} => C:\Windows\system32\pcalua.exe -a "C:\Users\pitrisin\Downloads\LEGO Star Wars\dxsetup.exe" -d "C:\Users\pitrisin\Downloads\LEGO Star Wars"
Task: {33ACBE54-E241-4D74-835B-A013649B2C9B} - System32\Tasks\{A7D2A424-184A-46A5-AAE3-7961EF60FEBF} => C:\Users\pitrisin\Downloads\LEGO Star Wars\program files\Giant\LEGO Star Wars Game\LegoStarwars.exe
Task: {37EAEA86-C84C-4026-BE10-EE5CF94196A1} - System32\Tasks\{C383E0E6-7565-48EE-BDF9-7C5B028CE593} => C:\Users\pitrisin\Downloads\LEGO Star Wars\program files\Giant\LEGO Star Wars Game\LegoStarwars.exe
Task: {3D0D3440-774B-4372-BBA5-3DB92F599360} - System32\Tasks\{D123D03C-7F64-4597-88CD-3D34BA41AD68} => C:\Windows\system32\pcalua.exe -a C:\Users\pitrisin\Downloads\shoutcast-dsp-1-9-0-windows.exe -d C:\Users\pitrisin\Downloads
Task: {4794151D-8738-49BE-870F-CC4CB59FE3E2} - System32\Tasks\{3CB05386-629E-4487-96C1-85596C510BE6} => C:\Windows\system32\pcalua.exe -a G:\DirectXSetup\dxsetup.exe -d C:\Windows\SysWOW64 -c /silent
Task: {4C16E5AF-E544-447B-BE60-625D1AA53858} - System32\Tasks\{F8996706-9B9C-434A-9A50-3D42723495D8} => C:\Program Files (x86)\Counter-Strike Global Offensive\Launcher.exe
Task: {4C67B5AF-FE85-404B-8BAF-95BB13B536E1} - System32\Tasks\{25B323BE-F45A-42F2-A8AA-4EE1F8E0E7B5} => C:\Users\pitrisin\Desktop\LeagueofLegends.exe
Task: {4E5D4302-6A23-40D4-8054-EDBD6BD344D5} - System32\Tasks\{6D24FB7E-FAA6-40CF-AD4F-5360A418B52A} => C:\Windows\system32\pcalua.exe -a "C:\Users\pitrisin\Downloads\GTA-Vice-City--Pln�-Verze-By-Gammenzl\GTA-Vice-City--pln+����+����-verze-(pln�����+����+�-funk����צ�T�n+����+�T�)\GTA VC\gtavccz120.exe" -d "C:\Users\pitrisin\Downloads\GTA-Vice-City--Pln�-Verze-By-Gammenzl\GTA-Vice-City--pln+����+����-verze-(pln�����+����+�-funk���� (the data entry has 24 more characters).
Task: {5365C9CF-AE81-49EA-8FEB-F3AB0E658E49} - System32\Tasks\{92D872A0-98B1-48EE-8066-5866FEDBE8B2} => C:\Windows\system32\pcalua.exe -a G:\setup.exe -d G:\
Task: {5B825CC4-CC7A-49CC-889C-FC96365653CE} - System32\Tasks\{4EB38346-8260-49BE-B476-46F5C2C53C86} => C:\Windows\system32\pcalua.exe -a C:\Users\pitrisin\Downloads\cz_spider-man_2\spiderman2_cz.exe -d C:\Users\pitrisin\Downloads\cz_spider-man_2
Task: {5DBC4A5C-5D24-46B4-AD84-59F8FCCC3A7E} - System32\Tasks\{A17CAEB1-AE3C-4466-B67F-C50DCA358501} => C:\Users\pitrisin\Downloads\GTA-Vice-City--Pln�-Verze-By-Gammenzl\GTA-Vice-City--pln+����+����-verze-(pln�����+����+�-funk����צ�T�n+����+�T�)\GTA VC\gta-vc.exe
Task: {5E056ED6-2B13-405C-8C05-F97A9ABC7B0B} - System32\Tasks\{7ACA9FBF-E85C-4498-BAB9-8B6236E48F5C} => C:\Users\pitrisin\Downloads\LEGO Star Wars\program files\Giant\LEGO Star Wars Game\LegoStarwars.exe
Task: {67DA7DD7-45F6-459B-9351-394080DBFCFB} - System32\Tasks\ASC8_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare 8\Monitor.exe
Task: {6F309B29-1EBF-4B12-936C-5DA30D980077} - System32\Tasks\{F73037D3-2433-4198-B4EC-8EBC03EC491C} => C:\Windows\system32\pcalua.exe -a "C:\Users\pitrisin\Documents\Vuze Downloads\Battlefield Bad Company 2 noDICE PC game MP + SP ^^nosTEAM^^\Battlefield Bad Company 2\BFBC2Game.exe" -d "C:\Users\pitrisin\Documents\Vuze Downloads\Battlefield Bad Company 2 noDICE PC game MP + SP ^^nosTEAM^^\Battlefield Bad Company 2"
Task: {6FCA8568-D917-4F89-85D1-CEDF871A0634} - System32\Tasks\{36336D04-DBDA-49C1-BC26-962BB0E6C7F0} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Steam\steamapps\common\Left 4 Dead 2\bin\addoninstaller.exe" -d "C:\Program Files (x86)\Steam\steamapps\common\Left 4 Dead 2" -c /register
Task: {74679B49-1DF0-4180-B13B-AE7EFFB4456E} - System32\Tasks\{72449749-D3DC-46C2-81E1-F5939420FC8F} => C:\Windows\system32\pcalua.exe -a "C:\Users\pitrisin\Downloads\shoutcast-dsp-1-9-0-windows (1).exe" -d C:\Users\pitrisin\Downloads
Task: {7DBC36C2-3B87-459D-B4E6-1EC52A859935} - System32\Tasks\{8D45B8D9-8000-4BB6-8215-69131EF1FA87} => C:\Windows\system32\pcalua.exe -a C:\PROGRA~2\COMMON~1\INSTAL~1\Driver\1050\INTEL3~1\IDriver.exe -c /M{E914A24F-2412-4374-B420-86D21D6D444A}
Task: {818C8187-6C59-4D21-8777-42001A3717A6} - System32\Tasks\{E0D3912C-E831-493C-B2C8-B819192A7043} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\TeamSpeak 3 Client\package_inst.exe" -d C:\Users\pitrisin\Downloads -c "C:\Users\pitrisin\Downloads\ClownfishVoiceChanger-v1.11.ts3_plugin"
Task: {822D8D53-17C7-4872-B1A2-4B651D0F2119} - System32\Tasks\{49DC876F-A53C-4F79-A7EB-7612EC843549} => C:\Windows\system32\pcalua.exe -a C:\Users\pitrisin\Downloads\mctitan_pokemine.exe -d C:\Users\pitrisin\Downloads
Task: {89231F51-426F-49EC-B461-7C61957C27A1} - System32\Tasks\{8EB5409E-7575-4F9B-AFB6-6ECE323F1116} => C:\Windows\system32\pcalua.exe -a D:\MOH_2010.part01.exe -d D:\
Task: {8A82977F-C8A7-4FB5-BCF6-DE4E886A85B4} - System32\Tasks\ASC8_SkipUac_pitrisin => C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASC.exe
Task: {8FD9D252-91D3-4963-8B4E-F23609FAEB0C} - System32\Tasks\{93051FFE-A6FF-4F0C-A45C-DEC8AC79B39D} => C:\Windows\system32\pcalua.exe -a "C:\Users\pitrisin\Downloads\dotNetFx35setup (1).exe" -d C:\Users\pitrisin\Downloads
Task: {94446608-0767-4C71-8B78-2AA76125D184} - System32\Tasks\{344BBB1D-ED45-4DF8-86D5-5F6599525B97} => C:\Windows\system32\pcalua.exe -a C:\DXSETUP.exe -d C:\
Task: {9A099EE4-D7FC-450C-9CE4-3CCD54110D6B} - System32\Tasks\{DF90E593-14D3-46C2-8913-E89AA3F74A2B} => C:\Windows\system32\pcalua.exe -a C:\Users\pitrisin\Downloads\directx_oct2006_redist.exe -d C:\Users\pitrisin\Downloads
Task: {9D65C0BC-CB40-47A3-B68D-6E37DDD03EC8} - System32\Tasks\{B75A2567-5C7F-4F02-8F53-7F6E3E397BC3} => C:\Windows\system32\pcalua.exe -a C:\Users\pitrisin\Downloads\CUnite_Setup_XP_Vista_x32.exe -d C:\Users\pitrisin\Downloads
Task: {9ECE5DEB-EB7B-4DFB-B816-3A7079634D3D} - System32\Tasks\{781F5D13-080F-408A-B038-9B65D839A5F0} => C:\Users\pitrisin\Downloads\LEGO Star Wars\program files\Giant\LEGO Star Wars Game\LegoStarwars.exe
Task: {A4FA3908-F03D-4FB5-8F90-A3A0E89B04C4} - System32\Tasks\{82D0E52E-4F2E-4325-9861-CAE3F62BEF77} => C:\Users\pitrisin\Desktop\call of duty 2 black ops nov���\SKIDROW\t6zm.exe
Task: {A77C1C38-AEFB-4CEB-B0AF-92164DA30E6C} - System32\Tasks\{CD02EDE0-E8D8-4499-85B1-FD1E32FB1A9A} => C:\Users\pitrisin\Downloads\LEGO Star Wars\program files\Giant\LEGO Star Wars Game\LegoStarwars.exe
Task: {AB492BE3-E1CD-4384-9A13-A53E34132762} - System32\Tasks\{DE125F29-D706-4C44-8C3F-C1635B9B41C2} => C:\Users\pitrisin\Desktop\MinecraftSP.exe
Task: {ACE87228-CDAF-42D0-9AEC-800C4064F85E} - System32\Tasks\{3612D59C-6E60-4F25-B23B-856E9F1191E4} => C:\Users\pitrisin\Downloads\LEGO Star Wars\program files\Giant\LEGO Star Wars Game\LegoStarwars.exe
Task: {ADC90B02-0FE9-4769-8043-7928390457A4} - System32\Tasks\{1A3558B2-BBB8-4FD4-8B41-9CA859CC1B5F} => C:\Users\pitrisin\Downloads\LEGO Star Wars\program files\Giant\LEGO Star Wars Game\LegoStarwars.exe
Task: {AF48010C-DA76-4671-90A4-292B00924CCF} - System32\Tasks\{DBD52D71-50BC-4894-AEB0-ADB602B797A0} => C:\Riot Games\League of Legends\lol.launcher.exe
Task: {AF7BF7ED-4429-4D7F-8408-C089E13DB5A9} - System32\Tasks\{C3648F85-6EEE-45F6-B9E0-6586DE67CF9A} => C:\Users\pitrisin\Downloads\LEGO Star Wars\program files\Giant\LEGO Star Wars Game\LegoStarwars.exe
Task: {AFCB55B5-6C7A-4D24-A2D4-A5136D2482D3} - System32\Tasks\{74EFA877-FD35-4A90-A23E-4F42139815F4} => C:\Windows\system32\pcalua.exe -a "C:\Users\pitrisin\AppData\Local\Temp\Temp2_Microsoft Office XP PRO (word, excel, powerpoint, outlook, access, frontpage, Publisher 2003).zip\SETUP.EXE" <==== ATTENTION
Task: {B3FA42C1-7B14-44B0-8EEF-BAC010268512} - System32\Tasks\{BDBD22ED-DF79-494E-B187-373A3C26111F} => C:\Users\pitrisin\Downloads\LEGO Star Wars\program files\Giant\LEGO Star Wars Game\LegoStarwars.exe
Task: {BC5306C8-E115-4D62-9A27-1F41FDD01023} - System32\Tasks\{4E327A63-F6AB-4AE9-87D0-991612AF44B7} => C:\Windows\system32\pcalua.exe -a F:\jre-6u20-windows-i586-iftw-rv.exe -d F:\
Task: {C644AE26-F496-4C07-8A8A-E6AD70758698} - System32\Tasks\{E563065A-7EBD-477D-A77F-606D8F753FF6} => C:\Windows\system32\pcalua.exe -a C:\Users\pitrisin\Downloads\MorphVOX_Install-157.exe -d C:\Users\pitrisin\Downloads
Task: {C82FC65F-DE6B-41FD-8952-87E060F6CD0F} - System32\Tasks\{830A45BC-4510-44DC-9BE2-824A93475C31} => C:\Windows\system32\pcalua.exe -a "C:\Users\pitrisin\AppData\Local\Temp\Temp1_BF2Demo.zip\Battlefield 2 Demo.exe" <==== ATTENTION
Task: {C97853B6-2876-4965-AFCD-67202A211697} - System32\Tasks\Driver Booster SkipUAC (pitrisin) => C:\Program Files (x86)\IObit\Driver Booster\5.2.0\DriverBooster.exe
Task: {CBC81020-E7C8-42B5-BB4A-812D22590C1F} - System32\Tasks\{B676492B-2AD1-466C-BDDE-661235444677} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\AMX Mod X\Installer.exe" -d "C:\Program Files (x86)\AMX Mod X"
Task: {CE1DBEE2-9A47-4BC8-B239-ACCE181AC954} - System32\Tasks\SmartDefrag3_Startup => C:\Program Files (x86)\IObit\Smart Defrag 3\SmartDefrag.exe
Task: {D16FF5BF-E95F-4F63-AEB2-133948BF509E} - System32\Tasks\{E740276B-7BD5-43FE-BA4C-BE92AAF68E67} => C:\Windows\system32\pcalua.exe -a C:\Windows\unvise32.exe -c C:\Program Files (x86)\The Logo Creator v5\uninstal.log
Task: {D5F04279-3A38-47C8-8CDE-40EA44EB66DF} - System32\Tasks\SmartDefrag3_Update => C:\Program Files (x86)\IObit\Smart Defrag 3\AutoUpdate.exe
Task: {D6D81C87-999C-4D6A-ADC3-BFB37AFDADC8} - System32\Tasks\{977C80A6-0527-4C02-A9D1-0BA69B87D1FF} => C:\Users\pitrisin\Desktop\MinecraftSP.exe
Task: {DC0B1D10-5049-4DC6-AE0D-9040F43C4C47} - System32\Tasks\{26F50449-ED56-4E58-BD30-4A7E519D9BF7} => C:\Windows\system32\pcalua.exe -a C:\Users\pitrisin\Downloads\lsvp.exe -d C:\Users\pitrisin\Downloads
Task: {DDCC8699-D281-4277-B48A-6C0DF05BAF7C} - System32\Tasks\{8D2655D6-3E70-42AE-9285-67CCA8DD303C} => C:\Users\pitrisin\Downloads\GTA-Vice-City--Pln�-Verze-By-Gammenzl\GTA-Vice-City--pln+����+����-verze-(pln�����+����+�-funk����צ�T�n+����+�T�)\GTA VC\gta-vc.exe
Task: {E05EEA84-6508-4BB0-AD0D-468FC6283A03} - System32\Tasks\{5FE87E60-C3BE-4B08-A882-329D0479FE74} => C:\Windows\system32\pcalua.exe -a "C:\Users\pitrisin\Documents\Vuze Downloads\Dead Island Riptide\Call of Duty - Black Ops CZ\Call of Duty - Black Ops.part01.exe" -d "C:\Users\pitrisin\Documents\Vuze Downloads\Dead Island Riptide\Call of Duty - Black Ops CZ"
Task: {E47F9521-1A15-4BFF-A4B8-7E9076141AF4} - System32\Tasks\{F4CFA237-0195-4E8D-B04F-A69BD722CA28} => C:\Users\pitrisin\Desktop\Nov� slo�ka\GTA SA\samp.exe
Task: {E4DA3155-BB11-4B40-B0D7-3104903A20C9} - System32\Tasks\{C0DD88FC-B0CD-42CC-9181-CA2874C3D55A} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Common Files\Nero\Nero ProductInstaller 4\SetupX.exe" -c REMOVESERIALNUMBER="XM02-508X-MHAT-19WU-9Z3Z-0CH0-3U6E-85W5-MMHH-6647-1Z5L-7M8C-0U45-758P-0000"
Task: {E667B530-55AB-47A7-8699-AE9CF615B083} - System32\Tasks\{C8EBC307-CCFB-4DC0-A168-726F97F6DCD0} => C:\Windows\system32\pcalua.exe -a "C:\Users\pitrisin\Desktop\lego star wars\Lego Starwars Pc Game Crack\dxsetup.exe" -d "C:\Users\pitrisin\Desktop\lego star wars\Lego Starwars Pc Game Crack"
Task: {EA9FAA97-94C8-4933-8C5D-638643EF318A} - System32\Tasks\{AF606A1D-B624-473D-BE16-8E41D7E8715C} => C:\Windows\system32\pcalua.exe -a "C:\Users\pitrisin\Downloads\navi-gui-2012-12-22-2012-09-05-4568179 (1).exe" -d C:\Users\pitrisin\Downloads
Task: {ED9EE53E-9822-4D98-9F4C-59EDAFF6C2E1} - System32\Tasks\{2F16B90E-BAEB-4BC8-AF2F-9FA0AD710D1D} => C:\Users\pitrisin\Downloads\GTA-Vice-City--Pln�-Verze-By-Gammenzl\GTA-Vice-City--pln+����+����-verze-(pln�����+����+�-funk����צ�T�n+����+�T�)\GTA VC\gta-vc.exe
Task: {F02DDE88-87F9-4139-953A-CFC94BD752CF} - System32\Tasks\{B8A3B1D4-3E8A-4293-A67D-FE02DA14BACB} => C:\Program Files (x86)\Counter-Strike Global Offensive\Launcher.exe
Task: {F10831CB-8FEA-498D-8D5A-9C4E07C122D3} - System32\Tasks\{548767C1-C735-4B18-B97B-A327BC650F4F} => C:\Windows\system32\pcalua.exe -a C:\Users\pitrisin\Downloads\sa-mp-0.3b-R2-install.exe -d C:\Users\pitrisin\Downloads
Task: {F236A64E-09C2-4BA3-BAC4-3A9F8249379B} - System32\Tasks\{6CB0A648-AC65-47D0-81B2-61FFB0B3C134} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\GumboyCrazyAdventures\unins000.exe"
Task: {F423780D-E2B5-4042-A08C-40E250BECBA4} - System32\Tasks\{2AEC5B20-A1F5-40F8-B97A-D86CE67554E2} => C:\Counter-Strike 1.6\csko.exe
Task: {F85D96D4-7597-4F18-9038-C4BABB6B65E8} - System32\Tasks\{C4E3C83C-EA5F-4EF5-A3A7-40F7CCF99A42} => C:\Windows\system32\pcalua.exe -a F:\battlefield2demo.exe -d F:\
Task: {F8F62EA3-3433-4532-8DE3-0AAB7F61DEC8} - System32\Tasks\{FCE9E7F2-7D0D-4656-B553-47CE7DB85E2A} => C:\Users\pitrisin\Downloads\GTA-Vice-City--Pln�-Verze-By-Gammenzl\GTA-Vice-City--pln+����+����-verze-(pln�����+����+�-funk����צ�T�n+����+�T�)\GTA VC\gta-vc.exe
Task: {FD9B365B-6531-4D57-AF10-4B1D0992E7EF} - System32\Tasks\{F60C832E-FE51-416F-A770-44B58FB05161} => C:\Users\pitrisin\Desktop\LeagueofLegends.exe
Task: C:\Windows\Tasks\SmartDefrag3_Startup.job => C:\Program Files (x86)\IObit\Smart Defrag 3\SmartDefrag.exe
Task: C:\Windows\Tasks\SmartDefrag3_Update.job => C:\Program Files (x86)\IObit\Smart Defrag 3\AutoUpdate.exe
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
SearchScopes: HKLM -> DefaultScope {77AA745B-F4F8-45DA-9B14-61D2D95054C8} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\.DEFAULT -> DefaultScope {77AA745B-F4F8-45DA-9B14-61D2D95054C8} URL =
SearchScopes: HKU\S-1-5-21-647002321-1269518864-1427724268-1001 -> DefaultScope {FFEBBF0A-C22C-4172-89FF-45215A135AC7} URL =
BHO: scriptproxy -> {7DB2D5A0-7241-4E79-B68D-6309F01C5231} -> No File
BHO-x32: scriptproxy -> {7DB2D5A0-7241-4E79-B68D-6309F01C5231} -> No File
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM-x32 - No Name - {95B7759C-8C7F-4BF1-B163-73684A933233} - No File
FF HKLM-x32\...\Firefox\Extensions: [{D19CA586-DD6C-4a0a-96F8-14644F340D60}] - C:\Program Files (x86)\Common Files\McAfee\SystemCore
FF Extension: (No Name) - C:\Program Files (x86)\Common Files\McAfee\SystemCore [2014-08-28] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [avg@toolbar] - C:\ProgramData\AVG Secure Search\FireFoxExt\17.3.0.49 => not found
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => not found
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
CMD: type "C:\Program Files (x86)\mozilla firefox\firefox.cfg"
CHR StartupUrls: Default -> "hxxps://www.google.com/","hxxp://websearch.sear ... g=EN&cc=CZ"
CHR HKLM-x32\...\Chrome\Extension: [bopakagnckmlgajfccecajhnimjiiedh] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [dkinklhnkmkhkhofcnapakaoehijaoih] - <no Path/update_url>
CHR HKLM-x32\...\Chrome\Extension: [fgfdfcbeamjnjdejakdidpniblllnbpg] - <no Path/update_url>
CHR HKLM-x32\...\Chrome\Extension: [jbpkiefagocgkmemidfngdkamloieekf] - <no Path/update_url>
S4 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2960672 2016-06-14] (IObit Information Technology -> IObit)
S4 dofilter; C:\Users\pitrisin\AppData\Local\Host Service\nssm.exe [X]
S2 TuneUp.UtilitiesSvc; no ImagePath
S3 EagleX64; no ImagePath
S3 FairplayKD; no ImagePath
S3 GGSAFERDriver; no ImagePath
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [21184 2014-06-04] (IObit Information Technology -> IObit)
U3 ayhgxspo; C:\Windows\System32\Drivers\ayhgxspo.sys [0 0000-00-00] (Intel Corporation) <==== ATTENTION (zero byte File/Folder)
S3 ATP; system32\DRIVERS\cmdatp.sys [X]
S3 cpuz137; \??\C:\Users\pitrisin\AppData\Local\Temp\cpuz137\cpuz137_x64.sys [X] <==== ATTENTION
S3 CV2K1; system32\DRIVERS\cv2k1.sys [X]
S3 SWDUMon; system32\DRIVERS\SWDUMon.sys [X]
S0 vmci; system32\DRIVERS\vmci.sys [X]
2019-06-28 14:18 - 2019-06-28 14:18 - 000042648 _____ C:\Users\pitrisin\Downloads\logy frst.rar
2019-06-28 20:02 - 2016-06-23 20:13 - 000000000 ____D C:\Users\pitrisin\AppData\Roaming\IObit
2019-06-28 20:02 - 2014-04-15 12:46 - 000000000 ____D C:\Users\pitrisin\AppData\LocalLow\IObit
2019-06-28 20:02 - 2014-04-15 12:46 - 000000000 ____D C:\ProgramData\IObit
C:\Program Files (x86)\*.tmp
C:\Users\pitrisin\AppData\Local\*.tmp
2014-01-08 18:26 - 2014-01-08 18:26 - 000003730 _____ () C:\Program Files (x86)\Mozilla Firefoxavg-secure-search.xml
2015-11-08 19:42 - 2015-11-08 19:42 - 000000000 _____ () C:\Users\pitrisin\AppData\Local\{146DF394-F2BA-4723-8B9D-275DED6372DB}
2019-06-06 14:44 - 2019-06-06 14:44 - 000000000 _____ () C:\Users\pitrisin\AppData\Local\{336A685D-69CC-4022-82E9-49FE15E9B244}
2016-04-17 20:39 - 2016-04-17 20:39 - 000000000 _____ () C:\Users\pitrisin\AppData\Local\{3A31DEA7-4F5F-4C98-B9DB-0A733B623903}
2015-12-25 15:41 - 2015-12-25 15:41 - 000000000 _____ () C:\Users\pitrisin\AppData\Local\{4897EC41-D746-442F-8F1D-F957134EAAC1}
2016-04-24 08:43 - 2016-04-24 08:43 - 000000000 _____ () C:\Users\pitrisin\AppData\Local\{88315CE1-EBB3-42D9-89AF-2AB766EFDB5E}
2016-04-06 21:01 - 2016-04-06 21:01 - 000000000 _____ () C:\Users\pitrisin\AppData\Local\{C6D28A41-EC3C-44A1-BBDC-C6B58B1B80F9}
2014-07-29 09:22 - 2014-07-29 09:22 - 000000000 _____ () C:\Users\pitrisin\AppData\Local\{E23F5D37-639E-4335-A40A-9F139288248E}
2014-10-07 14:02 - 2014-10-07 14:07 - 000000000 _____ () C:\Users\pitrisin\AppData\Local\{F583ACFC-FA67-4605-BE3F-F165B7361A5B}
2016-03-26 19:43 - 2016-03-26 19:43 - 000000000 _____ () C:\Users\pitrisin\AppData\Local\{FD974FF5-DBEF-431E-9A35-70B38CF9CADC}

ContextMenuHandlers1: [AVG Shredder Shell Extension] -> {4858E7D9-8E12-45a3-B6A3-1CD128C9D403} => -> No File
ContextMenuHandlers1: [SmartDefragExtension] -> {189F1E63-33A7-404B-B2F6-8C76A452CC54} => C:\Windows\system32\IObitSmartDefragExtension.dll [2014-06-04] (IObit Information Technology -> IObit)
ContextMenuHandlers1: [TuneUp Shredder Shell Extension] -> {4858E7D9-8E12-45a3-B6A3-1CD128C9D403} => -> No File
ContextMenuHandlers1: [UnLockerMenu] -> {A6FF0E3A-8437-482C-8E04-4F9E15C57538} => -> No File
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => -> No File
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => -> No File
ContextMenuHandlers6: [SmartDefragExtension] -> {189F1E63-33A7-404B-B2F6-8C76A452CC54} => C:\Windows\system32\IObitSmartDefragExtension.dll [2014-06-04] (IObit Information Technology -> IObit)
ContextMenuHandlers6: [UnLockerMenu] -> {A6FF0E3A-8437-482C-8E04-4F9E15C57538} => -> No File
AlternateDataStreams: C:\ProgramData:NT [40]
AlternateDataStreams: C:\ProgramData:NT2 [322]
AlternateDataStreams: C:\Windows\System32:{4B9A1497-0817-47C4-9612-D6A1C53ACF57} [26]
AlternateDataStreams: C:\Users\All Users:NT [40]
AlternateDataStreams: C:\Users\All Users:NT2 [322]
AlternateDataStreams: C:\ProgramData\Application Data:NT [40]
AlternateDataStreams: C:\ProgramData\Application Data:NT2 [322]
AlternateDataStreams: C:\ProgramData\MTA San Andreas All:NT [40]
AlternateDataStreams: C:\ProgramData\MTA San Andreas All:NT2 [322]
AlternateDataStreams: C:\ProgramData\Temp:AD022376 [129]
AlternateDataStreams: C:\Users\pitrisin\Data aplikac�:NT [40]
AlternateDataStreams: C:\Users\pitrisin\Data aplikac�:NT2 [322]
AlternateDataStreams: C:\Users\pitrisin\AppData\Roaming:NT [40]
AlternateDataStreams: C:\Users\pitrisin\AppData\Roaming:NT2 [322]

C:\Program Files\IObit
C:\Program Files (x86)\IObit
C:\Program Files\Common Files\IObit
C:\ProgramData\IObit
C:\ProgramData\ProductData
C:\Users\pitrisin\AppData\Local\IObit
C:\Users\pitrisin\AppData\LocalLow\IObit
C:\Users\pitrisin\AppData\Roaming\IObit
C:\Users\pitrisin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\*Driver Booster*
C:\Users\pitrisin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\*Advanced SystemCare*
C:\Users\Default\AppData\Local\IObit
C:\Users\Default\AppData\LocalLow\IObit
C:\Users\Default\AppData\Roaming\IObit
C:\Users\Public\Desktop\*Driver Booster*
C:\Users\Public\Desktop\*Advanced SystemCare*
C:\Windows\IObit
C:\Windows\Tasks\ImCleanDisabled
C:\ProgramData\{13CFD044-61E4-4EAC-AD61-02536D961216}
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 5
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare

Hosts:
EmptyTemp:
End
*****************

Processes closed successfully.
Restore point was successfully created.

========= Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum =========



Count : 85017
Average :
Sum : 149084106599
Maximum :
Minimum :
Property : Length


========= End of Powershell: =========


========================= File: C:\Windows\System32\Drivers\ayhgxspo.sys ========================

"C:\Windows\System32\Drivers\ayhgxspo.sys" => not found
====== End of File: ======

HKU\S-1-5-21-647002321-1269518864-1427724268-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{4f2f5d12-d295-11e2-8372-005056c00008} => removed successfully
HKLM\Software\Classes\CLSID\{4f2f5d12-d295-11e2-8372-005056c00008} => not found
HKLM\System\CurrentControlSet\Control\Session Manager\\BootExecute => value restored successfully
C:\Windows\system32\GroupPolicy\Machine => moved successfully
C:\Windows\system32\GroupPolicy\GPT.ini => moved successfully
C:\Windows\SysWOW64\GroupPolicy\GPT.ini => moved successfully
C:\Windows\system32\GroupPolicy\User => moved successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
HKU\S-1-5-21-647002321-1269518864-1427724268-1001\SOFTWARE\Policies\Google => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0045A3C8-1799-47EB-866B-04314B1F7E4A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0045A3C8-1799-47EB-866B-04314B1F7E4A}" => removed successfully
C:\Windows\System32\Tasks\{D8B036CD-7F23-4B21-981D-32D44EF2FCB7} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{D8B036CD-7F23-4B21-981D-32D44EF2FCB7}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0125F593-3FF4-4B0E-950F-C8AB8EA6DA3C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0125F593-3FF4-4B0E-950F-C8AB8EA6DA3C}" => removed successfully
C:\Windows\System32\Tasks\{B78BB490-B32B-4F5D-B527-7693A4E35687} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{B78BB490-B32B-4F5D-B527-7693A4E35687}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0ACF6DC7-8195-4C2F-AC8C-539EA74B2B73}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0ACF6DC7-8195-4C2F-AC8C-539EA74B2B73}" => removed successfully
C:\Windows\System32\Tasks\{4C36A778-05E2-4CA5-BB6E-094E6619DDC8} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{4C36A778-05E2-4CA5-BB6E-094E6619DDC8}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0DDC2373-A5EB-47B8-8955-9E5E0F3AB448}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0DDC2373-A5EB-47B8-8955-9E5E0F3AB448}" => removed successfully
C:\Windows\System32\Tasks\{3763DCAD-6122-4521-899E-F0F8D8EBCA11} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{3763DCAD-6122-4521-899E-F0F8D8EBCA11}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{16E5D1B5-22FA-4E40-95B1-863946253266}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{16E5D1B5-22FA-4E40-95B1-863946253266}" => removed successfully
C:\Windows\System32\Tasks\Uninstaller_SkipUac_Administrator => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Uninstaller_SkipUac_Administrator" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{180E025A-F773-45B5-BBD4-F60CA96561F8}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{180E025A-F773-45B5-BBD4-F60CA96561F8}" => removed successfully
C:\Windows\System32\Tasks\{F0699AAA-C43B-466C-A19F-799C37864FF7} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{F0699AAA-C43B-466C-A19F-799C37864FF7}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1A7551BA-BA7C-4B52-9B79-0B198239329C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1A7551BA-BA7C-4B52-9B79-0B198239329C}" => removed successfully
C:\Windows\System32\Tasks\{430F6E33-7CB7-4D16-97B8-372C7E3DE3F2} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{430F6E33-7CB7-4D16-97B8-372C7E3DE3F2}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1AC1CA29-51BC-4A36-8B11-BC95C384304D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1AC1CA29-51BC-4A36-8B11-BC95C384304D}" => removed successfully
C:\Windows\System32\Tasks\{7A806FD8-34B1-45F5-9328-1226C03A8216} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{7A806FD8-34B1-45F5-9328-1226C03A8216}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1BAD9C5A-B26A-4CCB-BB37-D66F11558769}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1BAD9C5A-B26A-4CCB-BB37-D66F11558769}" => removed successfully
C:\Windows\System32\Tasks\{C3DA9E2F-1835-40E3-9755-0E439CF6E6CC} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{C3DA9E2F-1835-40E3-9755-0E439CF6E6CC}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{23E5CD5C-DD64-47D1-99BE-E5E1926A6D1B}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{23E5CD5C-DD64-47D1-99BE-E5E1926A6D1B}" => removed successfully
C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-647002321-1269518864-1427724268-1001Core => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\FacebookUpdateTaskUserS-1-5-21-647002321-1269518864-1427724268-1001Core" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{240BD8CC-CD8D-4BF3-8EBB-684261B8BB18}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{240BD8CC-CD8D-4BF3-8EBB-684261B8BB18}" => removed successfully
C:\Windows\System32\Tasks\{E11C5407-D0D6-4058-BB43-F9BB92DDC1F6} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{E11C5407-D0D6-4058-BB43-F9BB92DDC1F6}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{29E925D4-5A0D-410F-B888-C7D238867582}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{29E925D4-5A0D-410F-B888-C7D238867582}" => removed successfully
C:\Windows\System32\Tasks\{C30BC5E9-65D5-4FDA-9192-8CE7799A9AA4} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{C30BC5E9-65D5-4FDA-9192-8CE7799A9AA4}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2A39E817-BF58-4277-B6C7-A5625EF7E232}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2A39E817-BF58-4277-B6C7-A5625EF7E232}" => removed successfully
C:\Windows\System32\Tasks\{3C9A4856-E35D-4841-9760-E3DE67850457} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{3C9A4856-E35D-4841-9760-E3DE67850457}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2E6C141B-3194-42A8-8174-DC3CD5A3373F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2E6C141B-3194-42A8-8174-DC3CD5A3373F}" => removed successfully
C:\Windows\System32\Tasks\{22E70DA8-645B-450E-BDED-AD2DA87A4081} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{22E70DA8-645B-450E-BDED-AD2DA87A4081}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{33ACBE54-E241-4D74-835B-A013649B2C9B}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{33ACBE54-E241-4D74-835B-A013649B2C9B}" => removed successfully
C:\Windows\System32\Tasks\{A7D2A424-184A-46A5-AAE3-7961EF60FEBF} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{A7D2A424-184A-46A5-AAE3-7961EF60FEBF}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{37EAEA86-C84C-4026-BE10-EE5CF94196A1}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{37EAEA86-C84C-4026-BE10-EE5CF94196A1}" => removed successfully
C:\Windows\System32\Tasks\{C383E0E6-7565-48EE-BDF9-7C5B028CE593} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{C383E0E6-7565-48EE-BDF9-7C5B028CE593}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3D0D3440-774B-4372-BBA5-3DB92F599360}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3D0D3440-774B-4372-BBA5-3DB92F599360}" => removed successfully
C:\Windows\System32\Tasks\{D123D03C-7F64-4597-88CD-3D34BA41AD68} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{D123D03C-7F64-4597-88CD-3D34BA41AD68}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4794151D-8738-49BE-870F-CC4CB59FE3E2}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4794151D-8738-49BE-870F-CC4CB59FE3E2}" => removed successfully
C:\Windows\System32\Tasks\{3CB05386-629E-4487-96C1-85596C510BE6} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{3CB05386-629E-4487-96C1-85596C510BE6}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4C16E5AF-E544-447B-BE60-625D1AA53858}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4C16E5AF-E544-447B-BE60-625D1AA53858}" => removed successfully
C:\Windows\System32\Tasks\{F8996706-9B9C-434A-9A50-3D42723495D8} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{F8996706-9B9C-434A-9A50-3D42723495D8}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4C67B5AF-FE85-404B-8BAF-95BB13B536E1}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4C67B5AF-FE85-404B-8BAF-95BB13B536E1}" => removed successfully
C:\Windows\System32\Tasks\{25B323BE-F45A-42F2-A8AA-4EE1F8E0E7B5} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{25B323BE-F45A-42F2-A8AA-4EE1F8E0E7B5}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4E5D4302-6A23-40D4-8054-EDBD6BD344D5}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4E5D4302-6A23-40D4-8054-EDBD6BD344D5}" => removed successfully
C:\Windows\System32\Tasks\{6D24FB7E-FAA6-40CF-AD4F-5360A418B52A} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{6D24FB7E-FAA6-40CF-AD4F-5360A418B52A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5365C9CF-AE81-49EA-8FEB-F3AB0E658E49}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5365C9CF-AE81-49EA-8FEB-F3AB0E658E49}" => removed successfully
C:\Windows\System32\Tasks\{92D872A0-98B1-48EE-8066-5866FEDBE8B2} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{92D872A0-98B1-48EE-8066-5866FEDBE8B2}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5B825CC4-CC7A-49CC-889C-FC96365653CE}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5B825CC4-CC7A-49CC-889C-FC96365653CE}" => removed successfully
C:\Windows\System32\Tasks\{4EB38346-8260-49BE-B476-46F5C2C53C86} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{4EB38346-8260-49BE-B476-46F5C2C53C86}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5DBC4A5C-5D24-46B4-AD84-59F8FCCC3A7E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5DBC4A5C-5D24-46B4-AD84-59F8FCCC3A7E}" => removed successfully
C:\Windows\System32\Tasks\{A17CAEB1-AE3C-4466-B67F-C50DCA358501} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{A17CAEB1-AE3C-4466-B67F-C50DCA358501}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5E056ED6-2B13-405C-8C05-F97A9ABC7B0B}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5E056ED6-2B13-405C-8C05-F97A9ABC7B0B}" => removed successfully
C:\Windows\System32\Tasks\{7ACA9FBF-E85C-4498-BAB9-8B6236E48F5C} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{7ACA9FBF-E85C-4498-BAB9-8B6236E48F5C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{67DA7DD7-45F6-459B-9351-394080DBFCFB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{67DA7DD7-45F6-459B-9351-394080DBFCFB}" => removed successfully
C:\Windows\System32\Tasks\ASC8_PerformanceMonitor => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ASC8_PerformanceMonitor" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6F309B29-1EBF-4B12-936C-5DA30D980077}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6F309B29-1EBF-4B12-936C-5DA30D980077}" => removed successfully
C:\Windows\System32\Tasks\{F73037D3-2433-4198-B4EC-8EBC03EC491C} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{F73037D3-2433-4198-B4EC-8EBC03EC491C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6FCA8568-D917-4F89-85D1-CEDF871A0634}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6FCA8568-D917-4F89-85D1-CEDF871A0634}" => removed successfully
C:\Windows\System32\Tasks\{36336D04-DBDA-49C1-BC26-962BB0E6C7F0} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{36336D04-DBDA-49C1-BC26-962BB0E6C7F0}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{74679B49-1DF0-4180-B13B-AE7EFFB4456E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{74679B49-1DF0-4180-B13B-AE7EFFB4456E}" => removed successfully
C:\Windows\System32\Tasks\{72449749-D3DC-46C2-81E1-F5939420FC8F} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{72449749-D3DC-46C2-81E1-F5939420FC8F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7DBC36C2-3B87-459D-B4E6-1EC52A859935}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7DBC36C2-3B87-459D-B4E6-1EC52A859935}" => removed successfully
C:\Windows\System32\Tasks\{8D45B8D9-8000-4BB6-8215-69131EF1FA87} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{8D45B8D9-8000-4BB6-8215-69131EF1FA87}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{818C8187-6C59-4D21-8777-42001A3717A6}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{818C8187-6C59-4D21-8777-42001A3717A6}" => removed successfully
C:\Windows\System32\Tasks\{E0D3912C-E831-493C-B2C8-B819192A7043} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{E0D3912C-E831-493C-B2C8-B819192A7043}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{822D8D53-17C7-4872-B1A2-4B651D0F2119}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{822D8D53-17C7-4872-B1A2-4B651D0F2119}" => removed successfully
C:\Windows\System32\Tasks\{49DC876F-A53C-4F79-A7EB-7612EC843549} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{49DC876F-A53C-4F79-A7EB-7612EC843549}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{89231F51-426F-49EC-B461-7C61957C27A1}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{89231F51-426F-49EC-B461-7C61957C27A1}" => removed successfully
C:\Windows\System32\Tasks\{8EB5409E-7575-4F9B-AFB6-6ECE323F1116} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{8EB5409E-7575-4F9B-AFB6-6ECE323F1116}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8A82977F-C8A7-4FB5-BCF6-DE4E886A85B4}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8A82977F-C8A7-4FB5-BCF6-DE4E886A85B4}" => removed successfully
C:\Windows\System32\Tasks\ASC8_SkipUac_pitrisin => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ASC8_SkipUac_pitrisin" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8FD9D252-91D3-4963-8B4E-F23609FAEB0C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8FD9D252-91D3-4963-8B4E-F23609FAEB0C}" => removed successfully
C:\Windows\System32\Tasks\{93051FFE-A6FF-4F0C-A45C-DEC8AC79B39D} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{93051FFE-A6FF-4F0C-A45C-DEC8AC79B39D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{94446608-0767-4C71-8B78-2AA76125D184}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{94446608-0767-4C71-8B78-2AA76125D184}" => removed successfully
C:\Windows\System32\Tasks\{344BBB1D-ED45-4DF8-86D5-5F6599525B97} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{344BBB1D-ED45-4DF8-86D5-5F6599525B97}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{9A099EE4-D7FC-450C-9CE4-3CCD54110D6B}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9A099EE4-D7FC-450C-9CE4-3CCD54110D6B}" => removed successfully
C:\Windows\System32\Tasks\{DF90E593-14D3-46C2-8913-E89AA3F74A2B} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{DF90E593-14D3-46C2-8913-E89AA3F74A2B}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{9D65C0BC-CB40-47A3-B68D-6E37DDD03EC8}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9D65C0BC-CB40-47A3-B68D-6E37DDD03EC8}" => removed successfully
C:\Windows\System32\Tasks\{B75A2567-5C7F-4F02-8F53-7F6E3E397BC3} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{B75A2567-5C7F-4F02-8F53-7F6E3E397BC3}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{9ECE5DEB-EB7B-4DFB-B816-3A7079634D3D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9ECE5DEB-EB7B-4DFB-B816-3A7079634D3D}" => removed successfully
C:\Windows\System32\Tasks\{781F5D13-080F-408A-B038-9B65D839A5F0} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{781F5D13-080F-408A-B038-9B65D839A5F0}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A4FA3908-F03D-4FB5-8F90-A3A0E89B04C4}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A4FA3908-F03D-4FB5-8F90-A3A0E89B04C4}" => removed successfully
C:\Windows\System32\Tasks\{82D0E52E-4F2E-4325-9861-CAE3F62BEF77} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{82D0E52E-4F2E-4325-9861-CAE3F62BEF77}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A77C1C38-AEFB-4CEB-B0AF-92164DA30E6C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A77C1C38-AEFB-4CEB-B0AF-92164DA30E6C}" => removed successfully
C:\Windows\System32\Tasks\{CD02EDE0-E8D8-4499-85B1-FD1E32FB1A9A} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{CD02EDE0-E8D8-4499-85B1-FD1E32FB1A9A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{AB492BE3-E1CD-4384-9A13-A53E34132762}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AB492BE3-E1CD-4384-9A13-A53E34132762}" => removed successfully
C:\Windows\System32\Tasks\{DE125F29-D706-4C44-8C3F-C1635B9B41C2} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{DE125F29-D706-4C44-8C3F-C1635B9B41C2}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{ACE87228-CDAF-42D0-9AEC-800C4064F85E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{ACE87228-CDAF-42D0-9AEC-800C4064F85E}" => removed successfully
C:\Windows\System32\Tasks\{3612D59C-6E60-4F25-B23B-856E9F1191E4} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{3612D59C-6E60-4F25-B23B-856E9F1191E4}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{ADC90B02-0FE9-4769-8043-7928390457A4}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{ADC90B02-0FE9-4769-8043-7928390457A4}" => removed successfully
C:\Windows\System32\Tasks\{1A3558B2-BBB8-4FD4-8B41-9CA859CC1B5F} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{1A3558B2-BBB8-4FD4-8B41-9CA859CC1B5F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{AF48010C-DA76-4671-90A4-292B00924CCF}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AF48010C-DA76-4671-90A4-292B00924CCF}" => removed successfully
C:\Windows\System32\Tasks\{DBD52D71-50BC-4894-AEB0-ADB602B797A0} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{DBD52D71-50BC-4894-AEB0-ADB602B797A0}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{AF7BF7ED-4429-4D7F-8408-C089E13DB5A9}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AF7BF7ED-4429-4D7F-8408-C089E13DB5A9}" => removed successfully
C:\Windows\System32\Tasks\{C3648F85-6EEE-45F6-B9E0-6586DE67CF9A} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{C3648F85-6EEE-45F6-B9E0-6586DE67CF9A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{AFCB55B5-6C7A-4D24-A2D4-A5136D2482D3}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AFCB55B5-6C7A-4D24-A2D4-A5136D2482D3}" => removed successfully
C:\Windows\System32\Tasks\{74EFA877-FD35-4A90-A23E-4F42139815F4} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{74EFA877-FD35-4A90-A23E-4F42139815F4}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B3FA42C1-7B14-44B0-8EEF-BAC010268512}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B3FA42C1-7B14-44B0-8EEF-BAC010268512}" => removed successfully
C:\Windows\System32\Tasks\{BDBD22ED-DF79-494E-B187-373A3C26111F} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{BDBD22ED-DF79-494E-B187-373A3C26111F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{BC5306C8-E115-4D62-9A27-1F41FDD01023}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BC5306C8-E115-4D62-9A27-1F41FDD01023}" => removed successfully
C:\Windows\System32\Tasks\{4E327A63-F6AB-4AE9-87D0-991612AF44B7} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{4E327A63-F6AB-4AE9-87D0-991612AF44B7}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C644AE26-F496-4C07-8A8A-E6AD70758698}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C644AE26-F496-4C07-8A8A-E6AD70758698}" => removed successfully
C:\Windows\System32\Tasks\{E563065A-7EBD-477D-A77F-606D8F753FF6} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{E563065A-7EBD-477D-A77F-606D8F753FF6}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C82FC65F-DE6B-41FD-8952-87E060F6CD0F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C82FC65F-DE6B-41FD-8952-87E060F6CD0F}" => removed successfully
C:\Windows\System32\Tasks\{830A45BC-4510-44DC-9BE2-824A93475C31} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{830A45BC-4510-44DC-9BE2-824A93475C31}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C97853B6-2876-4965-AFCD-67202A211697}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C97853B6-2876-4965-AFCD-67202A211697}" => removed successfully
C:\Windows\System32\Tasks\Driver Booster SkipUAC (pitrisin) => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Driver Booster SkipUAC (pitrisin)" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CBC81020-E7C8-42B5-BB4A-812D22590C1F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CBC81020-E7C8-42B5-BB4A-812D22590C1F}" => removed successfully
C:\Windows\System32\Tasks\{B676492B-2AD1-466C-BDDE-661235444677} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{B676492B-2AD1-466C-BDDE-661235444677}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{CE1DBEE2-9A47-4BC8-B239-ACCE181AC954}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CE1DBEE2-9A47-4BC8-B239-ACCE181AC954}" => removed successfully
C:\Windows\System32\Tasks\SmartDefrag3_Startup => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SmartDefrag3_Startup" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D16FF5BF-E95F-4F63-AEB2-133948BF509E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D16FF5BF-E95F-4F63-AEB2-133948BF509E}" => removed successfully
C:\Windows\System32\Tasks\{E740276B-7BD5-43FE-BA4C-BE92AAF68E67} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{E740276B-7BD5-43FE-BA4C-BE92AAF68E67}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{D5F04279-3A38-47C8-8CDE-40EA44EB66DF}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D5F04279-3A38-47C8-8CDE-40EA44EB66DF}" => removed successfully
C:\Windows\System32\Tasks\SmartDefrag3_Update => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SmartDefrag3_Update" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D6D81C87-999C-4D6A-ADC3-BFB37AFDADC8}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D6D81C87-999C-4D6A-ADC3-BFB37AFDADC8}" => removed successfully
C:\Windows\System32\Tasks\{977C80A6-0527-4C02-A9D1-0BA69B87D1FF} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{977C80A6-0527-4C02-A9D1-0BA69B87D1FF}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DC0B1D10-5049-4DC6-AE0D-9040F43C4C47}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DC0B1D10-5049-4DC6-AE0D-9040F43C4C47}" => removed successfully
C:\Windows\System32\Tasks\{26F50449-ED56-4E58-BD30-4A7E519D9BF7} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{26F50449-ED56-4E58-BD30-4A7E519D9BF7}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DDCC8699-D281-4277-B48A-6C0DF05BAF7C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DDCC8699-D281-4277-B48A-6C0DF05BAF7C}" => removed successfully
C:\Windows\System32\Tasks\{8D2655D6-3E70-42AE-9285-67CCA8DD303C} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{8D2655D6-3E70-42AE-9285-67CCA8DD303C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E05EEA84-6508-4BB0-AD0D-468FC6283A03}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E05EEA84-6508-4BB0-AD0D-468FC6283A03}" => removed successfully
C:\Windows\System32\Tasks\{5FE87E60-C3BE-4B08-A882-329D0479FE74} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{5FE87E60-C3BE-4B08-A882-329D0479FE74}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E47F9521-1A15-4BFF-A4B8-7E9076141AF4}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E47F9521-1A15-4BFF-A4B8-7E9076141AF4}" => removed successfully
C:\Windows\System32\Tasks\{F4CFA237-0195-4E8D-B04F-A69BD722CA28} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{F4CFA237-0195-4E8D-B04F-A69BD722CA28}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E4DA3155-BB11-4B40-B0D7-3104903A20C9}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E4DA3155-BB11-4B40-B0D7-3104903A20C9}" => removed successfully
C:\Windows\System32\Tasks\{C0DD88FC-B0CD-42CC-9181-CA2874C3D55A} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{C0DD88FC-B0CD-42CC-9181-CA2874C3D55A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E667B530-55AB-47A7-8699-AE9CF615B083}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E667B530-55AB-47A7-8699-AE9CF615B083}" => removed successfully
C:\Windows\System32\Tasks\{C8EBC307-CCFB-4DC0-A168-726F97F6DCD0} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{C8EBC307-CCFB-4DC0-A168-726F97F6DCD0}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{EA9FAA97-94C8-4933-8C5D-638643EF318A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EA9FAA97-94C8-4933-8C5D-638643EF318A}" => removed successfully
C:\Windows\System32\Tasks\{AF606A1D-B624-473D-BE16-8E41D7E8715C} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{AF606A1D-B624-473D-BE16-8E41D7E8715C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{ED9EE53E-9822-4D98-9F4C-59EDAFF6C2E1}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{ED9EE53E-9822-4D98-9F4C-59EDAFF6C2E1}" => removed successfully
C:\Windows\System32\Tasks\{2F16B90E-BAEB-4BC8-AF2F-9FA0AD710D1D} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{2F16B90E-BAEB-4BC8-AF2F-9FA0AD710D1D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F02DDE88-87F9-4139-953A-CFC94BD752CF}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F02DDE88-87F9-4139-953A-CFC94BD752CF}" => removed successfully
C:\Windows\System32\Tasks\{B8A3B1D4-3E8A-4293-A67D-FE02DA14BACB} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{B8A3B1D4-3E8A-4293-A67D-FE02DA14BACB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F10831CB-8FEA-498D-8D5A-9C4E07C122D3}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F10831CB-8FEA-498D-8D5A-9C4E07C122D3}" => removed successfully
C:\Windows\System32\Tasks\{548767C1-C735-4B18-B97B-A327BC650F4F} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{548767C1-C735-4B18-B97B-A327BC650F4F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F236A64E-09C2-4BA3-BAC4-3A9F8249379B}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F236A64E-09C2-4BA3-BAC4-3A9F8249379B}" => removed successfully
C:\Windows\System32\Tasks\{6CB0A648-AC65-47D0-81B2-61FFB0B3C134} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{6CB0A648-AC65-47D0-81B2-61FFB0B3C134}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F423780D-E2B5-4042-A08C-40E250BECBA4}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F423780D-E2B5-4042-A08C-40E250BECBA4}" => removed successfully
C:\Windows\System32\Tasks\{2AEC5B20-A1F5-40F8-B97A-D86CE67554E2} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{2AEC5B20-A1F5-40F8-B97A-D86CE67554E2}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F85D96D4-7597-4F18-9038-C4BABB6B65E8}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F85D96D4-7597-4F18-9038-C4BABB6B65E8}" => removed successfully
C:\Windows\System32\Tasks\{C4E3C83C-EA5F-4EF5-A3A7-40F7CCF99A42} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{C4E3C83C-EA5F-4EF5-A3A7-40F7CCF99A42}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F8F62EA3-3433-4532-8DE3-0AAB7F61DEC8}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F8F62EA3-3433-4532-8DE3-0AAB7F61DEC8}" => removed successfully
C:\Windows\System32\Tasks\{FCE9E7F2-7D0D-4656-B553-47CE7DB85E2A} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{FCE9E7F2-7D0D-4656-B553-47CE7DB85E2A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FD9B365B-6531-4D57-AF10-4B1D0992E7EF}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FD9B365B-6531-4D57-AF10-4B1D0992E7EF}" => removed successfully
C:\Windows\System32\Tasks\{F60C832E-FE51-416F-A770-44B58FB05161} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{F60C832E-FE51-416F-A770-44B58FB05161}" => removed successfully
C:\Windows\Tasks\SmartDefrag3_Startup.job => moved successfully
C:\Windows\Tasks\SmartDefrag3_Update.job => moved successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Search_URL => value restored successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => not found
"HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
"HKU\S-1-5-21-647002321-1269518864-1427724268-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7DB2D5A0-7241-4E79-B68D-6309F01C5231} => removed successfully
HKLM\Software\Classes\CLSID\{7DB2D5A0-7241-4E79-B68D-6309F01C5231} => removed successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7DB2D5A0-7241-4E79-B68D-6309F01C5231} => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{7DB2D5A0-7241-4E79-B68D-6309F01C5231} => removed successfully
"HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}" => removed successfully
HKLM\Software\Classes\CLSID\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} => removed successfully
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{95B7759C-8C7F-4BF1-B163-73684A933233}" => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233} => not found
"HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\{D19CA586-DD6C-4a0a-96F8-14644F340D60}" => removed successfully
C:\Program Files (x86)\Common Files\McAfee\SystemCore => moved successfully
"HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\avg@toolbar" => removed successfully
"HKLM\Software\Wow6432Node\Mozilla\Thunderbird\Extensions\\msktbird@mcafee.com" => removed successfully
HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE => removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE => removed successfully

========= type "C:\Program Files (x86)\mozilla firefox\firefox.cfg" =========


========= End of CMD: =========

"Chrome StartupUrls" => removed successfully
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\bopakagnckmlgajfccecajhnimjiiedh => removed successfully
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\dkinklhnkmkhkhofcnapakaoehijaoih => removed successfully
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\fgfdfcbeamjnjdejakdidpniblllnbpg => removed successfully
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\jbpkiefagocgkmemidfngdkamloieekf => removed successfully
HKLM\System\CurrentControlSet\Services\LiveUpdateSvc => removed successfully
LiveUpdateSvc => service removed successfully
HKLM\System\CurrentControlSet\Services\dofilter => removed successfully
dofilter => service removed successfully
HKLM\System\CurrentControlSet\Services\TuneUp.UtilitiesSvc => removed successfully
TuneUp.UtilitiesSvc => service removed successfully
HKLM\System\CurrentControlSet\Services\EagleX64 => removed successfully
EagleX64 => service removed successfully
HKLM\System\CurrentControlSet\Services\FairplayKD => removed successfully
FairplayKD => service removed successfully
HKLM\System\CurrentControlSet\Services\GGSAFERDriver => removed successfully
GGSAFERDriver => service removed successfully
SmartDefragDriver => Service stopped successfully.
HKLM\System\CurrentControlSet\Services\SmartDefragDriver => removed successfully
SmartDefragDriver => service removed successfully
ayhgxspo => service not found.
HKLM\System\CurrentControlSet\Services\ATP => removed successfully
ATP => service removed successfully
HKLM\System\CurrentControlSet\Services\cpuz137 => removed successfully
cpuz137 => service removed successfully
HKLM\System\CurrentControlSet\Services\CV2K1 => removed successfully
CV2K1 => service removed successfully
HKLM\System\CurrentControlSet\Services\SWDUMon => removed successfully
SWDUMon => service removed successfully
HKLM\System\CurrentControlSet\Services\vmci => removed successfully
vmci => service removed successfully
C:\Users\pitrisin\Downloads\logy frst.rar => moved successfully
C:\Users\pitrisin\AppData\Roaming\IObit => moved successfully
C:\Users\pitrisin\AppData\LocalLow\IObit => moved successfully
C:\ProgramData\IObit => moved successfully

=========== "C:\Program Files (x86)\*.tmp" ==========

C:\Program Files (x86)\GUT3D3F.tmp => moved successfully
C:\Program Files (x86)\GUTAE97.tmp => moved successfully

========= End -> "C:\Program Files (x86)\*.tmp" ========


=========== "C:\Users\pitrisin\AppData\Local\*.tmp" ==========

C:\Users\pitrisin\AppData\Local\BITB9B8.tmp => moved successfully

========= End -> "C:\Users\pitrisin\AppData\Local\*.tmp" ========

C:\Program Files (x86)\Mozilla Firefoxavg-secure-search.xml => moved successfully
C:\Users\pitrisin\AppData\Local\{146DF394-F2BA-4723-8B9D-275DED6372DB} => moved successfully
C:\Users\pitrisin\AppData\Local\{336A685D-69CC-4022-82E9-49FE15E9B244} => moved successfully
C:\Users\pitrisin\AppData\Local\{3A31DEA7-4F5F-4C98-B9DB-0A733B623903} => moved successfully
C:\Users\pitrisin\AppData\Local\{4897EC41-D746-442F-8F1D-F957134EAAC1} => moved successfully
C:\Users\pitrisin\AppData\Local\{88315CE1-EBB3-42D9-89AF-2AB766EFDB5E} => moved successfully
C:\Users\pitrisin\AppData\Local\{C6D28A41-EC3C-44A1-BBDC-C6B58B1B80F9} => moved successfully
C:\Users\pitrisin\AppData\Local\{E23F5D37-639E-4335-A40A-9F139288248E} => moved successfully
C:\Users\pitrisin\AppData\Local\{F583ACFC-FA67-4605-BE3F-F165B7361A5B} => moved successfully
C:\Users\pitrisin\AppData\Local\{FD974FF5-DBEF-431E-9A35-70B38CF9CADC} => moved successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\AVG Shredder Shell Extension => removed successfully
HKLM\Software\Classes\CLSID\{4858E7D9-8E12-45a3-B6A3-1CD128C9D403} => not found
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\SmartDefragExtension => removed successfully
HKLM\Software\Classes\CLSID\{189F1E63-33A7-404B-B2F6-8C76A452CC54} => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\TuneUp Shredder Shell Extension => removed successfully
HKLM\Software\Classes\CLSID\{4858E7D9-8E12-45a3-B6A3-1CD128C9D403} => not found
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\UnLockerMenu => removed successfully
HKLM\Software\Classes\CLSID\{A6FF0E3A-8437-482C-8E04-4F9E15C57538} => not found
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\PowerISO => removed successfully
HKLM\Software\Classes\CLSID\{967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => not found
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\PowerISO => removed successfully
HKLM\Software\Classes\CLSID\{967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => not found
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\SmartDefragExtension => removed successfully
HKLM\Software\Classes\CLSID\{189F1E63-33A7-404B-B2F6-8C76A452CC54} => not found
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\UnLockerMenu => removed successfully
HKLM\Software\Classes\CLSID\{A6FF0E3A-8437-482C-8E04-4F9E15C57538} => not found
C:\ProgramData => ":NT" ADS could not remove.
C:\ProgramData => ":NT2" ADS could not remove.
C:\Windows\System32 => ":{4B9A1497-0817-47C4-9612-D6A1C53ACF57}" ADS removed successfully
C:\Users\All Users => ":NT" ADS could not remove.
C:\Users\All Users => ":NT2" ADS could not remove.
C:\ProgramData\Application Data => ":NT" ADS could not remove.
C:\ProgramData\Application Data => ":NT2" ADS could not remove.
C:\ProgramData\MTA San Andreas All => ":NT" ADS removed successfully
C:\ProgramData\MTA San Andreas All => ":NT2" ADS removed successfully
C:\ProgramData\Temp => ":AD022376" ADS removed successfully
"C:\Users\pitrisin\Data aplikac�" => ":NT" ADS not found.
"C:\Users\pitrisin\Data aplikac�" => ":NT2" ADS not found.
C:\Users\pitrisin\AppData\Roaming => ":NT" ADS removed successfully
C:\Users\pitrisin\AppData\Roaming => ":NT2" ADS removed successfully
"C:\Program Files\IObit" => not found
C:\Program Files (x86)\IObit => moved successfully
"C:\Program Files\Common Files\IObit" => not found
"C:\ProgramData\IObit" => not found
C:\ProgramData\ProductData => moved successfully
"C:\Users\pitrisin\AppData\Local\IObit" => not found
"C:\Users\pitrisin\AppData\LocalLow\IObit" => not found
"C:\Users\pitrisin\AppData\Roaming\IObit" => not found

=========== "C:\Users\pitrisin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\*Driver Booster*" ==========

not found

========= End -> "C:\Users\pitrisin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\*Driver Booster*" ========


=========== "C:\Users\pitrisin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\*Advanced SystemCare*" ==========

not found

========= End -> "C:\Users\pitrisin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\*Advanced SystemCare*" ========

"C:\Users\Default\AppData\Local\IObit" => not found
"C:\Users\Default\AppData\LocalLow\IObit" => not found
C:\Users\Default\AppData\Roaming\IObit => moved successfully

=========== "C:\Users\Public\Desktop\*Driver Booster*" ==========

not found

========= End -> "C:\Users\Public\Desktop\*Driver Booster*" ========


=========== "C:\Users\Public\Desktop\*Advanced SystemCare*" ==========

not found

========= End -> "C:\Users\Public\Desktop\*Advanced SystemCare*" ========

C:\Windows\IObit => moved successfully
C:\Windows\Tasks\ImCleanDisabled => moved successfully
"C:\ProgramData\{13CFD044-61E4-4EAC-AD61-02536D961216}" => not found
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 5" => not found
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare" => not found
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 3973508 B
Java, Flash, Steam htmlcache => 479461179 B
Windows/system/drivers => 2836265 B
Edge => 0 B
Chrome => 67907262 B
Firefox => 4004388 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 104785638 B
systemprofile32 => 28711621 B
LocalService => 65716 B
NetworkService => 2270513 B
UpdatusUser => 0 B
pitrisin => 3084262 B

RecycleBin => 0 B
EmptyTemp: => 672.8 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 09:59:27 ====

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Kontrola logu - zpomalený notebook

#8 Příspěvek od Conder »

:arrow: Plocha ma vyse 100 GB, co je prilis vela. Presun vsetky subory a zlozky z plochy do dokumentov a na ploche nechaj iba odkazy/zastupcov. Prilis velka velkost plochy moze sposobit spomalenie systemu.

:arrow: Poprosim o obidva nove logy z FRST.
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

pitrisin
Návštěvník
Návštěvník
Příspěvky: 173
Registrován: 22 čer 2019 19:36

Re: Kontrola logu - zpomalený notebook

#9 Příspěvek od pitrisin »

Tady
Přílohy
frstlogy.rar
(33.74 KiB) Staženo 75 x

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Kontrola logu - zpomalený notebook

#10 Příspěvek od Conder »

:arrow: Ako to vyzera s PC?

:arrow: Program "Spybot - Search & Destroy" mozes odinstalovat, kedze tento program je uz zastaraly a v PC je uz nainstalovany Avast.

:arrow: V prehliadaci Firefox sa nachadza addon "McAfee Security Scan Plus", ktory odporucam tiez odstranit.

:arrow: Nasledne poprosim o obidva nove logy z FRST.
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

pitrisin
Návštěvník
Návštěvník
Příspěvky: 173
Registrován: 22 čer 2019 19:36

Re: Kontrola logu - zpomalený notebook

#11 Příspěvek od pitrisin »

Trošičku to pomohlo, méně už se to seká.
Přílohy
frstloogy.rar
(33.49 KiB) Staženo 85 x

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Kontrola logu - zpomalený notebook

#12 Příspěvek od Conder »

:arrow: Otvor poznamkovy blok (Win+R -> notepad -> enter)
  • Skopiruj nasledujuci text a vloz ho do poznamkoveho bloku:

    Kód: Vybrat vše

    Start
    CloseProcesses:
    CreateRestorePoint:
    
    PowerShell: Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum
    
    FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
    Task: {1515F129-92B5-4A03-A169-FE0FBEF7FDE2} - System32\Tasks\{FD27CC21-3E44-4016-9BC2-3265F192AC20} => C:\Program Files (x86)\NickOnline\Avatar - Legends of the Arena\AvatarMP.exe
    Task: {2E596D46-1459-4EE6-A5AF-EBBBA59A92D4} - System32\Tasks\{5F13E60C-6077-4C6F-9EA0-53221256012E} => C:\Program Files (x86)\Skype\Phone\Skype.exe
    Task: {3BD1BD8A-C5A9-4064-99C0-37D8EA3A81FF} - System32\Tasks\{75F82991-0F6D-472F-88A2-F1C2272A17E1} => C:\Program Files (x86)\Skype\Phone\Skype.exe
    Task: {5A93A38D-EEA8-460A-BAF6-1AA592A750AE} - System32\Tasks\{E97FDDA0-1F05-41C9-906C-070A0A465C89} => C:\Program Files (x86)\Skype\Phone\Skype.exe
    Task: {5E8A7115-9DDA-467C-91D3-41C7AA6E7E0C} - System32\Tasks\{AC512438-DD45-4ABE-9856-E51E7A66B7DF} => C:\Users\pitrisin\Desktop\MinecraftSP.exe
    Task: {630E9A48-2821-40CA-84D1-CC21A095B8BA} - System32\Tasks\{BF32ACC0-2837-4349-AFA6-3EE9E87B7D38} => C:\Program Files (x86)\Skype\Phone\Skype.exe
    Task: {97066C39-9EDB-4657-B4CD-FE70DF04D0E6} - System32\Tasks\{5E63B201-7B56-473B-B830-FA74C74E4ED1} => C:\Program Files (x86)\Dead Island Riptide\DeadIslandGame_x86_rwdi.exe
    Task: {98B95FA4-4F43-4AA4-9931-FB1E47838080} - System32\Tasks\{D9AA2E91-AD68-4505-8F72-D4756606C0AE} => C:\Riot Games\League of Legends\lol.launcher.exe
    Task: {BB50A98D-1D24-4132-A32D-4ADB75900194} - System32\Tasks\{BDFC4ED5-7207-46FE-B34B-A9E26232126C} => C:\Program Files (x86)\Counter-Strike Global Offensive\Launcher.exe
    Task: {C6BF8844-BB3D-4D72-89EF-47E0A98F899E} - System32\Tasks\{8CC2151C-8F89-4EAD-9FA3-F0D80E5892EB} => C:\Program Files (x86)\NickOnline\Avatar - Legends of the Arena\AvatarMP.exe
    Task: {D5EE9C6E-8BD0-47B9-AB21-58B2C71BB252} - System32\Tasks\{81A176C6-21E8-4137-B4E0-ED5B426C8B30} => "c:\users\pitrisin\appdata\local\google\chrome\application\chrome.exe" hxxp://ui.skype.com/ui/0/6.1.0.129.272/cs/abandoninstall?page=tsProgressBar
    Task: {DBEAB53A-BF91-42B9-89A1-9CD177AA9AA2} - System32\Tasks\{2295D59E-9ECD-4153-B530-4EF2884C7145} => "c:\users\pitrisin\appdata\local\google\chrome\application\chrome.exe" hxxp://ui.skype.com/ui/0/5.10.0.116/cs/abandoninstall?source=lightinstaller&page=tsMain
    Task: {E1B839DD-491C-4928-BBDE-13FB551A2636} - System32\Tasks\{08EE65DB-2A6C-4AE6-89C4-C4EE3D5F4174} => C:\Program Files (x86)\Counter-Strike Global Offensive\Launcher.exe
    Task: {EAAC207C-3AFD-424A-8CB3-46B01312C019} - System32\Tasks\{1436F4F9-BBC3-4BBF-B473-1852E5979FAE} => C:\Program Files (x86)\Skype\Phone\Skype.exe
    FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\17.3.0\\npsitesafety.dll [No File]
    FF Plugin-x32: @t.garena.com/garenatalk -> C:\Program Files (x86)\Garena Plus\bbtalk\plugins\npPlugin\npGarenaTalkPlugin.dll [No File]
    FF Plugin HKU\S-1-5-21-647002321-1269518864-1427724268-1001: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\pitrisin\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [No File]
    FF Plugin HKU\S-1-5-21-647002321-1269518864-1427724268-1001: @tools.google.com/Google Update;version=3 -> C:\Users\pitrisin\AppData\Local\Google\Update\1.3.30.3\npGoogleUpdate3.dll [No File]
    FF Plugin HKU\S-1-5-21-647002321-1269518864-1427724268-1001: @tools.google.com/Google Update;version=9 -> C:\Users\pitrisin\AppData\Local\Google\Update\1.3.30.3\npGoogleUpdate3.dll [No File]
    FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\firefox.cfg [2013-12-13] <==== ATTENTION
    CHR HomePage: Default -> msn.com
    CHR StartupUrls: Default -> "hxxps://www.google.com/","hxxp://websearch.searchsun.info/?pid=724&r=2014/03/24&hid=10967595765519032896&lg=EN&cc=CZ"
    U3 a6z5t86j; C:\Windows\System32\Drivers\a6z5t86j.sys [0 0000-00-00] (Advanced Micro Devices) <==== ATTENTION (zero byte File/Folder)
    2019-07-01 07:59 - 2019-07-01 07:59 - 000000000 ____D C:\Users\pitrisin\Desktop\FRST-OlderVersion
    2019-07-01 22:19 - 2017-04-28 15:59 - 000000000 ____D C:\ProgramData\Spybot - Search & Destroy
    2019-07-01 22:19 - 2017-04-28 15:59 - 000000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
    
    AS: Spybot - Search and Destroy (Disabled - Out of date) {A16C3F68-9280-E053-1818-342707FECF4D}
    AlternateDataStreams: C:\ProgramData:NT [40]
    AlternateDataStreams: C:\ProgramData:NT2 [322]
    AlternateDataStreams: C:\Users\All Users:NT [40]
    AlternateDataStreams: C:\Users\All Users:NT2 [322]
    AlternateDataStreams: C:\ProgramData\Application Data:NT [40]
    AlternateDataStreams: C:\ProgramData\Application Data:NT2 [322]
    HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
    MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk => C:\Windows\pss\McAfee Security Scan Plus.lnk.CommonStartup
    MSCONFIG\startupreg: SDTray => "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
    MSCONFIG\startupreg: Spybot-S&D Cleaning => "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe" /autoclean
    MSCONFIG\startupreg: SpybotPostWindows10UpgradeReInstall => "C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe"
    
    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
    C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
    C:\Windows\System32\Tasks\Safer-Networking
    C:\ProgramData\Spybot - Search & Destroy
    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
    C:\Windows\system32\sdnclean64.exe
    C:\Program Files (x86)\Spybot - Search & Destroy 2
    C:\Program Files\Common Files\AV\Spybot - Search and Destroy
    
    Hosts:
    EmptyTemp:
    End
  • Uloz na plochu s nazvom fixlist.txt
  • Spusti znovu FRST a klikni na Fix
  • Po dokonceni si FRST vyziada restart PC, potvrd kliknutim na OK
  • Po restartovani PC bude na ploche subor Fixlog.txt, jeho obsah sem skopiruj
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

pitrisin
Návštěvník
Návštěvník
Příspěvky: 173
Registrován: 22 čer 2019 19:36

Re: Kontrola logu - zpomalený notebook

#13 Příspěvek od pitrisin »

Po restartování jsem spustil google a samo se mi automaticky přidalo rozšíření (MSN Homepage Bing Search Engine)




Fix result of Farbar Recovery Scan Tool (x64) Version: 30-06-2019
Ran by pitrisin (02-07-2019 22:19:07) Run:2
Running from C:\Users\pitrisin\Desktop
Loaded Profiles: pitrisin (Available Profiles: pitrisin)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:

PowerShell: Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum

FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {1515F129-92B5-4A03-A169-FE0FBEF7FDE2} - System32\Tasks\{FD27CC21-3E44-4016-9BC2-3265F192AC20} => C:\Program Files (x86)\NickOnline\Avatar - Legends of the Arena\AvatarMP.exe
Task: {2E596D46-1459-4EE6-A5AF-EBBBA59A92D4} - System32\Tasks\{5F13E60C-6077-4C6F-9EA0-53221256012E} => C:\Program Files (x86)\Skype\Phone\Skype.exe
Task: {3BD1BD8A-C5A9-4064-99C0-37D8EA3A81FF} - System32\Tasks\{75F82991-0F6D-472F-88A2-F1C2272A17E1} => C:\Program Files (x86)\Skype\Phone\Skype.exe
Task: {5A93A38D-EEA8-460A-BAF6-1AA592A750AE} - System32\Tasks\{E97FDDA0-1F05-41C9-906C-070A0A465C89} => C:\Program Files (x86)\Skype\Phone\Skype.exe
Task: {5E8A7115-9DDA-467C-91D3-41C7AA6E7E0C} - System32\Tasks\{AC512438-DD45-4ABE-9856-E51E7A66B7DF} => C:\Users\pitrisin\Desktop\MinecraftSP.exe
Task: {630E9A48-2821-40CA-84D1-CC21A095B8BA} - System32\Tasks\{BF32ACC0-2837-4349-AFA6-3EE9E87B7D38} => C:\Program Files (x86)\Skype\Phone\Skype.exe
Task: {97066C39-9EDB-4657-B4CD-FE70DF04D0E6} - System32\Tasks\{5E63B201-7B56-473B-B830-FA74C74E4ED1} => C:\Program Files (x86)\Dead Island Riptide\DeadIslandGame_x86_rwdi.exe
Task: {98B95FA4-4F43-4AA4-9931-FB1E47838080} - System32\Tasks\{D9AA2E91-AD68-4505-8F72-D4756606C0AE} => C:\Riot Games\League of Legends\lol.launcher.exe
Task: {BB50A98D-1D24-4132-A32D-4ADB75900194} - System32\Tasks\{BDFC4ED5-7207-46FE-B34B-A9E26232126C} => C:\Program Files (x86)\Counter-Strike Global Offensive\Launcher.exe
Task: {C6BF8844-BB3D-4D72-89EF-47E0A98F899E} - System32\Tasks\{8CC2151C-8F89-4EAD-9FA3-F0D80E5892EB} => C:\Program Files (x86)\NickOnline\Avatar - Legends of the Arena\AvatarMP.exe
Task: {D5EE9C6E-8BD0-47B9-AB21-58B2C71BB252} - System32\Tasks\{81A176C6-21E8-4137-B4E0-ED5B426C8B30} => "c:\users\pitrisin\appdata\local\google\chrome\application\chrome.exe" hxxp://ui.skype.com/ui/0/6.1.0.129.272/cs/abandoninstall?page=tsProgressBar
Task: {DBEAB53A-BF91-42B9-89A1-9CD177AA9AA2} - System32\Tasks\{2295D59E-9ECD-4153-B530-4EF2884C7145} => "c:\users\pitrisin\appdata\local\google\chrome\application\chrome.exe" hxxp://ui.skype.com/ui/0/5.10.0.116/cs/abandoninstall?source=lightinstaller&page=tsMain
Task: {E1B839DD-491C-4928-BBDE-13FB551A2636} - System32\Tasks\{08EE65DB-2A6C-4AE6-89C4-C4EE3D5F4174} => C:\Program Files (x86)\Counter-Strike Global Offensive\Launcher.exe
Task: {EAAC207C-3AFD-424A-8CB3-46B01312C019} - System32\Tasks\{1436F4F9-BBC3-4BBF-B473-1852E5979FAE} => C:\Program Files (x86)\Skype\Phone\Skype.exe
FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\17.3.0\\npsitesafety.dll [No File]
FF Plugin-x32: @t.garena.com/garenatalk -> C:\Program Files (x86)\Garena Plus\bbtalk\plugins\npPlugin\npGarenaTalkPlugin.dll [No File]
FF Plugin HKU\S-1-5-21-647002321-1269518864-1427724268-1001: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\pitrisin\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [No File]
FF Plugin HKU\S-1-5-21-647002321-1269518864-1427724268-1001: @tools.google.com/Google Update;version=3 -> C:\Users\pitrisin\AppData\Local\Google\Update\1.3.30.3\npGoogleUpdate3.dll [No File]
FF Plugin HKU\S-1-5-21-647002321-1269518864-1427724268-1001: @tools.google.com/Google Update;version=9 -> C:\Users\pitrisin\AppData\Local\Google\Update\1.3.30.3\npGoogleUpdate3.dll [No File]
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\firefox.cfg [2013-12-13] <==== ATTENTION
CHR HomePage: Default -> msn.com
CHR StartupUrls: Default -> "hxxps://www.google.com/","hxxp://websearch.sear ... g=EN&cc=CZ"
U3 a6z5t86j; C:\Windows\System32\Drivers\a6z5t86j.sys [0 0000-00-00] (Advanced Micro Devices) <==== ATTENTION (zero byte File/Folder)
2019-07-01 07:59 - 2019-07-01 07:59 - 000000000 ____D C:\Users\pitrisin\Desktop\FRST-OlderVersion
2019-07-01 22:19 - 2017-04-28 15:59 - 000000000 ____D C:\ProgramData\Spybot - Search & Destroy
2019-07-01 22:19 - 2017-04-28 15:59 - 000000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2

AS: Spybot - Search and Destroy (Disabled - Out of date) {A16C3F68-9280-E053-1818-342707FECF4D}
AlternateDataStreams: C:\ProgramData:NT [40]
AlternateDataStreams: C:\ProgramData:NT2 [322]
AlternateDataStreams: C:\Users\All Users:NT [40]
AlternateDataStreams: C:\Users\All Users:NT2 [322]
AlternateDataStreams: C:\ProgramData\Application Data:NT [40]
AlternateDataStreams: C:\ProgramData\Application Data:NT2 [322]
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk => C:\Windows\pss\McAfee Security Scan Plus.lnk.CommonStartup
MSCONFIG\startupreg: SDTray => "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
MSCONFIG\startupreg: Spybot-S&D Cleaning => "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe" /autoclean
MSCONFIG\startupreg: SpybotPostWindows10UpgradeReInstall => "C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe"

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
C:\Windows\System32\Tasks\Safer-Networking
C:\ProgramData\Spybot - Search & Destroy
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
C:\Windows\system32\sdnclean64.exe
C:\Program Files (x86)\Spybot - Search & Destroy 2
C:\Program Files\Common Files\AV\Spybot - Search and Destroy

Hosts:
EmptyTemp:
End
*****************

Processes closed successfully.
Restore point was successfully created.

========= Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum =========



Count : 10
Average :
Sum : 5087171
Maximum :
Minimum :
Property : Length


========= End of Powershell: =========

HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1515F129-92B5-4A03-A169-FE0FBEF7FDE2}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1515F129-92B5-4A03-A169-FE0FBEF7FDE2}" => removed successfully
C:\Windows\System32\Tasks\{FD27CC21-3E44-4016-9BC2-3265F192AC20} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{FD27CC21-3E44-4016-9BC2-3265F192AC20}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2E596D46-1459-4EE6-A5AF-EBBBA59A92D4}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2E596D46-1459-4EE6-A5AF-EBBBA59A92D4}" => removed successfully
C:\Windows\System32\Tasks\{5F13E60C-6077-4C6F-9EA0-53221256012E} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{5F13E60C-6077-4C6F-9EA0-53221256012E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3BD1BD8A-C5A9-4064-99C0-37D8EA3A81FF}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3BD1BD8A-C5A9-4064-99C0-37D8EA3A81FF}" => removed successfully
C:\Windows\System32\Tasks\{75F82991-0F6D-472F-88A2-F1C2272A17E1} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{75F82991-0F6D-472F-88A2-F1C2272A17E1}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5A93A38D-EEA8-460A-BAF6-1AA592A750AE}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5A93A38D-EEA8-460A-BAF6-1AA592A750AE}" => removed successfully
C:\Windows\System32\Tasks\{E97FDDA0-1F05-41C9-906C-070A0A465C89} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{E97FDDA0-1F05-41C9-906C-070A0A465C89}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5E8A7115-9DDA-467C-91D3-41C7AA6E7E0C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5E8A7115-9DDA-467C-91D3-41C7AA6E7E0C}" => removed successfully
C:\Windows\System32\Tasks\{AC512438-DD45-4ABE-9856-E51E7A66B7DF} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{AC512438-DD45-4ABE-9856-E51E7A66B7DF}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{630E9A48-2821-40CA-84D1-CC21A095B8BA}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{630E9A48-2821-40CA-84D1-CC21A095B8BA}" => removed successfully
C:\Windows\System32\Tasks\{BF32ACC0-2837-4349-AFA6-3EE9E87B7D38} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{BF32ACC0-2837-4349-AFA6-3EE9E87B7D38}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{97066C39-9EDB-4657-B4CD-FE70DF04D0E6}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{97066C39-9EDB-4657-B4CD-FE70DF04D0E6}" => removed successfully
C:\Windows\System32\Tasks\{5E63B201-7B56-473B-B830-FA74C74E4ED1} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{5E63B201-7B56-473B-B830-FA74C74E4ED1}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{98B95FA4-4F43-4AA4-9931-FB1E47838080}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{98B95FA4-4F43-4AA4-9931-FB1E47838080}" => removed successfully
C:\Windows\System32\Tasks\{D9AA2E91-AD68-4505-8F72-D4756606C0AE} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{D9AA2E91-AD68-4505-8F72-D4756606C0AE}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{BB50A98D-1D24-4132-A32D-4ADB75900194}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BB50A98D-1D24-4132-A32D-4ADB75900194}" => removed successfully
C:\Windows\System32\Tasks\{BDFC4ED5-7207-46FE-B34B-A9E26232126C} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{BDFC4ED5-7207-46FE-B34B-A9E26232126C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C6BF8844-BB3D-4D72-89EF-47E0A98F899E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C6BF8844-BB3D-4D72-89EF-47E0A98F899E}" => removed successfully
C:\Windows\System32\Tasks\{8CC2151C-8F89-4EAD-9FA3-F0D80E5892EB} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{8CC2151C-8F89-4EAD-9FA3-F0D80E5892EB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D5EE9C6E-8BD0-47B9-AB21-58B2C71BB252}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D5EE9C6E-8BD0-47B9-AB21-58B2C71BB252}" => removed successfully
C:\Windows\System32\Tasks\{81A176C6-21E8-4137-B4E0-ED5B426C8B30} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{81A176C6-21E8-4137-B4E0-ED5B426C8B30}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DBEAB53A-BF91-42B9-89A1-9CD177AA9AA2}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DBEAB53A-BF91-42B9-89A1-9CD177AA9AA2}" => removed successfully
C:\Windows\System32\Tasks\{2295D59E-9ECD-4153-B530-4EF2884C7145} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{2295D59E-9ECD-4153-B530-4EF2884C7145}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E1B839DD-491C-4928-BBDE-13FB551A2636}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E1B839DD-491C-4928-BBDE-13FB551A2636}" => removed successfully
C:\Windows\System32\Tasks\{08EE65DB-2A6C-4AE6-89C4-C4EE3D5F4174} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{08EE65DB-2A6C-4AE6-89C4-C4EE3D5F4174}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{EAAC207C-3AFD-424A-8CB3-46B01312C019}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EAAC207C-3AFD-424A-8CB3-46B01312C019}" => removed successfully
C:\Windows\System32\Tasks\{1436F4F9-BBC3-4BBF-B473-1852E5979FAE} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{1436F4F9-BBC3-4BBF-B473-1852E5979FAE}" => removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin => removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@t.garena.com/garenatalk => removed successfully
HKU\S-1-5-21-647002321-1269518864-1427724268-1001\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin => removed successfully
"C:\Users\pitrisin\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll" => not found
HKU\S-1-5-21-647002321-1269518864-1427724268-1001\Software\MozillaPlugins\@tools.google.com/Google Update;version=3 => removed successfully
"C:\Users\pitrisin\AppData\Local\Google\Update\1.3.30.3\npGoogleUpdate3.dll" => not found
HKU\S-1-5-21-647002321-1269518864-1427724268-1001\Software\MozillaPlugins\@tools.google.com/Google Update;version=9 => removed successfully
"C:\Users\pitrisin\AppData\Local\Google\Update\1.3.30.3\npGoogleUpdate3.dll" => not found
C:\Program Files (x86)\mozilla firefox\firefox.cfg => moved successfully
"Chrome HomePage" => removed successfully
"Chrome StartupUrls" => removed successfully
a6z5t86j => service not found.
C:\Users\pitrisin\Desktop\FRST-OlderVersion => moved successfully
C:\ProgramData\Spybot - Search & Destroy => moved successfully
C:\Program Files (x86)\Spybot - Search & Destroy 2 => moved successfully
"AS: Spybot - Search and Destroy (Disabled - Out of date) {A16C3F68-9280-E053-1818-342707FECF4D}" => not found
C:\ProgramData => ":NT" ADS could not remove.
C:\ProgramData => ":NT2" ADS could not remove.
C:\Users\All Users => ":NT" ADS could not remove.
C:\Users\All Users => ":NT2" ADS could not remove.
C:\ProgramData\Application Data => ":NT" ADS could not remove.
C:\ProgramData\Application Data => ":NT2" ADS could not remove.
HKLM\System\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => removed successfully
HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk => removed successfully
C:\Windows\pss\McAfee Security Scan Plus.lnk.CommonStartup => moved successfully
HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SDTray => removed successfully
HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Spybot-S&D Cleaning => removed successfully
HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SpybotPostWindows10UpgradeReInstall => removed successfully
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk" => not found
"C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk" => not found
C:\Windows\System32\Tasks\Safer-Networking => moved successfully
"C:\ProgramData\Spybot - Search & Destroy" => not found
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2" => not found
"C:\Windows\system32\sdnclean64.exe" => not found
"C:\Program Files (x86)\Spybot - Search & Destroy 2" => not found
C:\Program Files\Common Files\AV\Spybot - Search and Destroy => moved successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 4025951 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 14434 B
Edge => 0 B
Chrome => 10072695 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 128 B
systemprofile32 => 128 B
LocalService => 0 B
NetworkService => 0 B
UpdatusUser => 0 B
pitrisin => 5513206 B

RecycleBin => 0 B
EmptyTemp: => 26.7 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 22:21:05 ====

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Kontrola logu - zpomalený notebook

#14 Příspěvek od Conder »

:arrow: Otvor poznamkovy blok (Win+R -> notepad -> enter)
  • Skopiruj nasledujuci text a vloz ho do poznamkoveho bloku:

    Kód: Vybrat vše

    Start
    CloseProcesses:
    CreateRestorePoint:
    
    CHR HomePage: Default -> 
    CHR StartupUrls: Default -> 
    CHR HKU\S-1-5-21-647002321-1269518864-1427724268-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - hxxps://clients2.google.com/service/update2/crx
    MSCONFIG\startupreg: BingSvc => C:\Users\pitrisin\AppData\Local\Microsoft\BingSvc\BingSvc.exe
    
    Hosts:
    EmptyTemp:
    End
  • Uloz na plochu s nazvom fixlist.txt
  • Spusti znovu FRST a klikni na Fix
  • Po dokonceni si FRST vyziada restart PC, potvrd kliknutim na OK
  • Po restartovani PC bude na ploche subor Fixlog.txt, jeho obsah sem skopiruj
:arrow: Nasledne napis, ci sa to Chrome rozsirenie MSN Homepage Bing Search Engine este vyskytuje.
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

pitrisin
Návštěvník
Návštěvník
Příspěvky: 173
Registrován: 22 čer 2019 19:36

Re: Kontrola logu - zpomalený notebook

#15 Příspěvek od pitrisin »

Vymazáno. Jen se mi furt automaticky spouští avast browser

Fix result of Farbar Recovery Scan Tool (x64) Version: 30-06-2019
Ran by pitrisin (03-07-2019 17:03:41) Run:3
Running from C:\Users\pitrisin\Desktop
Loaded Profiles: pitrisin (Available Profiles: pitrisin)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:

CHR HomePage: Default ->
CHR StartupUrls: Default ->
CHR HKU\S-1-5-21-647002321-1269518864-1427724268-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - hxxps://clients2.google.com/service/update2/crx
MSCONFIG\startupreg: BingSvc => C:\Users\pitrisin\AppData\Local\Microsoft\BingSvc\BingSvc.exe

Hosts:
EmptyTemp:
End
*****************

Processes closed successfully.
Restore point was successfully created.
"Chrome HomePage" => removed successfully
"Chrome StartupUrls" => removed successfully
HKU\S-1-5-21-647002321-1269518864-1427724268-1001\SOFTWARE\Google\Chrome\Extensions\fcfenmboojpjinhpgggodefccipikbpd => removed successfully
HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\BingSvc => removed successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 4026185 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 547027 B
Edge => 0 B
Chrome => 7654957 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 0 B
UpdatusUser => 0 B
pitrisin => 118122 B

RecycleBin => 0 B
EmptyTemp: => 19.8 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 17:05:42 ====

Odpovědět