Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Prosím o preventivku

Patříte mezi Vzorné návštěvníky? Pak je tato sekce pro vás.

Moderátor: Moderátoři

Pravidla fóra
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
Zamčeno
Zpráva
Autor
danatoma
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 349
Registrován: 14 úno 2008 20:05
Bydliště: Praha
Kontaktovat uživatele:

Prosím o preventivku

#1 Příspěvek od danatoma »

Dobrý den, prosím o preventivku - DĚKUJI A MOC SE OMLOUVÁM, PROTOŽE NEUMÍM ZAZIPOVAT :oops:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 04-07-2020 01
Ran by Danica (administrator) on DANICA-PC (Gigabyte Technology Co., Ltd. Z97-D3H) (08-07-2020 12:49:34)
Running from C:\Users\Danica\Desktop
Loaded Profiles: Danica
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\Avast Driver Updater\Avast Driver Updater.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <2>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Cleanup\TuneupSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Cleanup\TuneupUI.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\SecureLine\VpnNM.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <15>
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [109160 2020-07-02] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322120 2017-04-19] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9197568 2000-01-01] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [TuneupUI.exe] => C:\Program Files\Avast Software\Cleanup\TuneupUI.exe [2573480 2020-06-11] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 3.1 eXtensible Host Controller Driver\Application\iusb3mon.exe [299520 2000-01-01] (Intel(R) USB eXtensible Host Controller Drivers -> Intel Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-835433377-1433666261-3082474647-1000\...\Run: [Chromium] => "c:\users\danica\appdata\local\chromium\application\chrome.exe" --auto-launch-at-startup --profile-directory="Default" --restore-last-session (the data entry has 65 more characters).
HKU\S-1-5-21-835433377-1433666261-3082474647-1000\...\Run: [Google Update] => C:\Users\Danica\AppData\Local\Google\Update\1.3.35.452\GoogleUpdateCore.exe [217544 2020-03-21] (Google LLC -> Google LLC)
HKLM\...\Windows x64\Print Processors\Canon MP250 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPD9W.DLL [28672 2010-04-24] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MP250 series: C:\Windows\system32\CNMLM9W.DLL [336896 2010-04-24] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.116\Installer\chrmstp.exe [2020-06-25] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll [2020-05-04] (Adobe Inc. -> Adobe Systems, Inc.)
BootExecute: autocheck autochk * icarus_rvrt.exe
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {14415E68-8A42-437A-9801-E9B3F6B9CC54} - System32\Tasks\Opera scheduled Autoupdate 1548835486 => C:\Users\Danica\AppData\Local\Programs\Opera\launcher.exe
Task: {1E108472-5C7E-4E35-BF51-D1F6C0D21C55} - System32\Tasks\{003A18A4-2C9E-43EF-8650-323E6B2FCD47} => "c:\program files (x86)\google\chrome\application\chrome.exe" hxxp://www.skype.com/go/downloading?source=lig ... rror=12007
Task: {21BE8274-C6BE-402A-8817-B25DA776ADF1} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1242704 2020-02-25] (Adobe Inc. -> Adobe Systems)
Task: {21E98206-77A2-40F5-9740-4683E70E04C5} - System32\Tasks\Avast Software\Avast Cleanup Update BugReport => C:\Program Files\Avast Software\Cleanup\AvBugReport.exe [2812624 2020-06-11] (Avast Software s.r.o. -> AVAST Software)
Task: {3244A548-4B4E-4D2E-9A33-7A56D930D174} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {3C9CBA0D-4655-4180-B850-FC05C7F26A76} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3339872 2020-07-02] (Avast Software s.r.o. -> AVAST Software)
Task: {48EF672A-5961-4DD3-8609-83A1D317D21D} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_255_pepper.exe [1453112 2019-09-21] (Adobe Inc. -> Adobe)
Task: {4F4C1840-BCE7-47BF-9E3A-E2B6A4B999DE} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [816960 2017-10-11] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {541DFD31-B647-443A-8EDF-A211E2CB308C} - System32\Tasks\{E78935D2-3237-4609-B869-5091F5382265} => "c:\program files (x86)\google\chrome\application\chrome.exe" hxxp://www.skype.com/go/downloading?source=lig ... rror=12007
Task: {6D4CBB16-49EA-47EC-A029-4C94AA073B7B} - System32\Tasks\SafeZone scheduled Autoupdate 1448367229 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe
Task: {75640AB7-B611-4AAB-8C44-F28C8C12A2A1} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-06-11] (Adobe Inc. -> Adobe)
Task: {7605C7DF-A141-421B-B195-0DC0B2D73490} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_387_Plugin.exe [1459256 2020-06-11] (Adobe Inc. -> Adobe)
Task: {77DB11A3-79E1-4A44-BA20-FFA423F13490} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-08-13] (Google Inc -> Google Inc.)
Task: {85FA844B-D5F4-45C1-8A81-9000824661B6} - System32\Tasks\Avast Software\Avast Cleanup Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-tu\icarus.exe [5095064 2020-06-10] (Avast Software s.r.o. -> Avast Software)
Task: {9330AAF2-1B98-4F5D-9B75-B42F7E1950D5} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-835433377-1433666261-3082474647-1000Core => C:\Users\Danica\AppData\Local\Google\Update\GoogleUpdate.exe [154440 2016-02-02] (Google Inc -> Google Inc.)
Task: {BE7BF55D-38EA-40BB-962B-6440C64E8CC6} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-08-13] (Google Inc -> Google Inc.)
Task: {BE9E73DB-1A4A-4233-9BB6-09F9FDDA24C6} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1660520 2020-02-27] (Avast Software s.r.o. -> Avast Software)
Task: {BEDFFDE4-5F70-45F8-B870-F2F19E6F1070} - System32\Tasks\Avast SecureLine VPN Update => C:\Program Files\AVAST Software\SecureLine\VpnUpdate.exe [1390472 2019-10-23] (AVAST Software s.r.o. -> AVAST Software)
Task: {D7D403FC-3B78-45D3-B1E1-E1BE5906998A} - System32\Tasks\WinASORegistryOptimizerForDanica => C:\Program Files (x86)\WinASO\Registry Optimizer 4.0\RegOpt.exe [7456648 2012-07-21] (Winaso.com -> X.M.Y International, LLC) [File not signed]
Task: {DA7D9B12-8CB8-4164-9944-7D4559615EB6} - System32\Tasks\Program k provádění aktualizací online Adobe => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1242704 2020-02-25] (Adobe Inc. -> Adobe Systems)
Task: {DC2AC09E-3F49-4C43-BF18-BF4D3672BB4D} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-835433377-1433666261-3082474647-1000UA => C:\Users\Danica\AppData\Local\Google\Update\GoogleUpdate.exe [154440 2016-02-02] (Google Inc -> Google Inc.)
Task: {E407967E-5BD2-4711-ABB8-0515A569F799} - System32\Tasks\{EE9EE9AF-DFCB-40AB-A235-D25DBDEE1FE9} => "c:\program files (x86)\google\chrome\application\chrome.exe" hxxp://ui.skype.com/ui/0/7.7.0.102/cs/abandoninstall?source=lightinstaller&page=tsBing
Task: {FFF2C5C5-6B98-4A10-A561-B18D98F73FBF} - System32\Tasks\Avast Driver Updater Startup => C:\Program Files (x86)\Avast Driver Updater\Avast Driver Updater.exe [30244064 2020-04-14] (Avast Software s.r.o. -> AVAST Software)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Avast Driver Updater Startup.job => C:\Program Files (x86)\Avast Driver Updater\Avast Driver Updater.exe
Task: C:\Windows\Tasks\WinASORegistryOptimizerForDanica.job => C:\Program Files (x86)\WinASO\Registry Optimizer 4.0\RegOpt.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 213.46.172.36 213.46.172.37
Tcpip\..\Interfaces\{A10C2104-F2DE-4AAA-AA41-1F8916A922BE}: [DhcpNameServer] 213.46.172.36 213.46.172.37
Tcpip\..\Interfaces\{BF8E6D5A-A227-42DC-BBC2-1E48544133F3}: [DhcpNameServer] 192.168.2.1 192.168.0.1
Tcpip\..\Interfaces\{EF0F8BAB-DCB1-48C0-B574-983445226713}: [NameServer] 100.120.62.1

Internet Explorer:
==================
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?ocid=iehp
HKU\S-1-5-21-835433377-1433666261-3082474647-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.seznam.cz/
SearchScopes: HKU\S-1-5-21-835433377-1433666261-3082474647-1000 -> {2E2AE52D-B746-4D5A-8D87-040FF26DA1AD} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&s ... arch_12454
SearchScopes: HKU\S-1-5-21-835433377-1433666261-3082474647-1000 -> {37FE3127-D331-432F-BA62-C6FA353ED829} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-835433377-1433666261-3082474647-1000 -> {474B5B48-C606-45D6-85BD-240F1DC1BC5D} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-835433377-1433666261-3082474647-1000 -> {4A0FE769-7C54-4C0A-B4AB-3E525FB2DCB1} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz ... arch_12454
SearchScopes: HKU\S-1-5-21-835433377-1433666261-3082474647-1000 -> {4AC592D3-7BCD-4DC1-8B44-C589D17B7A37} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid= ... arch_12454
SearchScopes: HKU\S-1-5-21-835433377-1433666261-3082474647-1000 -> {BB2D0F1E-B329-4EC6-9E6D-7AFE0321B394} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-835433377-1433666261-3082474647-1000 -> {E179443E-DC27-473B-A279-C9C8091DC7B4} URL = hxxp://search.seznam.cz/?q={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-835433377-1433666261-3082474647-1000 -> {F41CD5ED-2BB8-4D58-9A8C-3B826C405379} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-835433377-1433666261-3082474647-1000 -> {F8D14E72-77A1-4FB6-AAEE-BB4FB3AAC7CA} URL = hxxp://www.mapy.cz/?query={searchTerms}&source ... arch_12454

Edge:
======
Edge Profile: C:\Users\Danica\AppData\Local\Microsoft\Edge\User Data\Default [2020-06-26]

FireFox:
========
FF DefaultProfile: 8qyzod9n.default-1549969440949
FF ProfilePath: C:\Users\Danica\AppData\Roaming\Mozilla\Firefox\Profiles\8qyzod9n.default-1549969440949 [2019-10-12]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_387.dll [2020-06-11] (Adobe Inc. -> )
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-16] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_387.dll [2020-06-11] (Adobe Inc. -> )
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll [2015-11-18] (Adobe Systems, Inc.) [File not signed]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-16] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.10 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.7 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-05-04] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-835433377-1433666261-3082474647-1000: google.com/WidevineMediaOptimizer -> C:\Users\Danica\AppData\Roaming\IDM\bin\npwidevinemediaoptimizer.dll [2014-06-09] (Widevine Technologies -> Google Inc.)

Chrome:
=======
CHR Profile: C:\Users\Danica\AppData\Local\Google\Chrome\User Data\Default [2020-07-08]
CHR DownloadDir: C:\Users\Danica\Desktop
CHR Notifications: Default -> hxxps://cz.pinterest.com; hxxps://hotovkykosik.cz; hxxps://www.4shared.com; hxxps://www.facebook.com; hxxps://www.megaknihy.cz
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR StartupUrls: Default -> "hxxp://www.denik.cz/krimi/vysetrovani-tragedie ... ount/Index"
CHR Session Restore: Default -> is enabled.
CHR Extension: (Prezentace) - C:\Users\Danica\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
CHR Extension: (Dokumenty) - C:\Users\Danica\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Disk Google) - C:\Users\Danica\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-22]
CHR Extension: (YouTube) - C:\Users\Danica\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-11-22]
CHR Extension: (Facebook) - C:\Users\Danica\AppData\Local\Google\Chrome\User Data\Default\Extensions\boeajhmfdjldchidhphikilcgdacljfm [2015-11-24]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\Danica\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2020-07-02]
CHR Extension: (Vyhledávání Google) - C:\Users\Danica\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-22]
CHR Extension: (Tabulky) - C:\Users\Danica\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
CHR Extension: (Hodiny) - C:\Users\Danica\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdkjifoifglkpcdffkenpinlbjgephlo [2015-11-24]
CHR Extension: (Chuck Anderson) - C:\Users\Danica\AppData\Local\Google\Chrome\User Data\Default\Extensions\gegkoiakifeoejnjkbnnojkkdoegeofp [2017-07-14]
CHR Extension: (Avast Online Security) - C:\Users\Danica\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2020-06-04]
CHR Extension: (Tlačítko „Uložit“ pro Pinterest) - C:\Users\Danica\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2020-07-02]
CHR Extension: (Pinterest) - C:\Users\Danica\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdihkofamofdkgdlibcogkkogdhlakop [2019-10-25]
CHR Extension: (Blogger) - C:\Users\Danica\AppData\Local\Google\Chrome\User Data\Default\Extensions\lejliakmhcfhakneflmicaoikhbicggc [2015-11-24]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Danica\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Picasa) - C:\Users\Danica\AppData\Local\Google\Chrome\User Data\Default\Extensions\onlgmecjpnejhfeofkgbfgnmdlipdejb [2015-11-24]
CHR Extension: (Avast SecureLine VPN) - C:\Users\Danica\AppData\Local\Google\Chrome\User Data\Default\Extensions\phmegojolgpbbcnhccbfneddlooepbpd [2019-11-29]
CHR Extension: (Gmail) - C:\Users\Danica\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-17]
CHR Extension: (Chrome Media Router) - C:\Users\Danica\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-05-30]
CHR Profile: C:\Users\Danica\AppData\Local\Google\Chrome\User Data\System Profile [2019-03-26]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-06-11] (Adobe Inc. -> Adobe)
S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6514072 2020-07-02] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [356824 2020-07-02] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [1065456 2020-07-02] (Avast Software s.r.o. -> AVAST Software)
R2 CleanupPSvc; C:\Program Files\Avast Software\Cleanup\TuneupSvc.exe [12942184 2020-06-11] (Avast Software s.r.o. -> AVAST Software)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [343016 2018-09-13] (Intel Corporation -> Intel Corporation)
R2 SecureLine; C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe [6828424 2019-10-23] (AVAST Software s.r.o. -> AVAST Software)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2015-11-22] (Microsoft Windows -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [205880 2020-07-02] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [235584 2020-07-02] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [195648 2020-07-02] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [60480 2020-07-02] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42768 2020-07-02] (Avast Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [175192 2020-07-02] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [514448 2020-07-02] (Avast Software s.r.o. -> AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [38152 2019-01-27] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [109272 2020-07-02] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [84848 2020-07-02] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [851600 2020-07-02] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [466232 2020-07-02] (Avast Software s.r.o. -> AVAST Software)
S2 aswStm; C:\Windows\System32\drivers\aswStm.sys [216816 2020-07-02] (Avast Software s.r.o. -> AVAST Software)
S3 aswTap; C:\Windows\System32\DRIVERS\aswTap.sys [53904 2018-09-05] (AVAST Software s.r.o. -> The OpenVPN Project)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [323272 2020-07-02] (Avast Software s.r.o. -> AVAST Software)
S3 dg_ssudbus; C:\Windows\System32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 e1dexpress; C:\Windows\System32\DRIVERS\e1d62x64.sys [545776 2017-09-22] (Intel(R) INTELND1617 -> Intel Corporation)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [40448 2017-04-19] (Intel(R) Rapid Storage Technology -> Intel Corporation)
S3 netr28ux; C:\Windows\System32\DRIVERS\netr28ux.sys [2253112 2015-09-28] (MEDIATEK INC. -> MediaTek Inc.)
S3 PAC207; C:\Windows\System32\DRIVERS\PFC027.SYS [572416 2006-12-05] (Microsoft Windows Hardware Compatibility Publisher -> PixArt Imaging Inc.)
S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [25608 2020-07-08] (AVG Technologies CZ, s.r.o. -> SlimWare Utilities, Inc.)
S1 netfilter2; system32\drivers\netfilter2.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-07-08 12:49 - 2020-07-08 12:50 - 000024978 _____ C:\Users\Danica\Desktop\FRST.txt
2020-07-08 12:49 - 2020-07-08 12:49 - 000000000 ____D C:\FRST
2020-07-08 12:47 - 2020-07-08 12:47 - 002292224 _____ (Farbar) C:\Users\Danica\Desktop\FRST64.exe
2020-07-08 11:58 - 2020-07-08 11:58 - 000402736 _____ C:\Windows\system32\FNTCACHE.DAT
2020-07-06 13:31 - 2020-07-06 13:31 - 000007813 _____ C:\Users\Danica\Desktop\2013-05-26 13.53.51_resized – zástupce.lnk
2020-07-02 19:47 - 2020-07-02 19:47 - 000335976 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2020-07-02 19:47 - 2020-07-02 19:47 - 000216816 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2020-07-02 19:47 - 2020-07-02 19:47 - 000175192 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2020-06-25 20:40 - 2020-06-27 16:55 - 000000000 ____D C:\Users\Danica\Desktop\2020-06-25
2020-06-10 16:14 - 2020-01-30 04:30 - 000834560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2020-06-10 16:14 - 2020-01-30 04:23 - 001010688 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2020-06-09 17:25 - 2020-06-08 12:39 - 000076184 _____ (Avast Software) C:\Windows\system32\icarus_rvrt.exe

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-07-08 12:13 - 2009-07-14 06:45 - 000032464 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-07-08 12:13 - 2009-07-14 06:45 - 000032464 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-07-08 12:09 - 2015-11-24 14:06 - 000000000 ____D C:\ProgramData\AVAST Software
2020-07-08 12:01 - 2017-03-12 10:36 - 000000000 ____D C:\Users\Danica\AppData\Local\AVAST Software
2020-07-08 12:00 - 2018-02-11 18:54 - 000002912 _____ C:\Windows\system32\Tasks\Avast Driver Updater Startup
2020-07-08 12:00 - 2018-02-11 18:54 - 000000484 _____ C:\Windows\Tasks\Avast Driver Updater Startup.job
2020-07-08 12:00 - 2015-11-22 14:26 - 000000000 __SHD C:\Users\Danica\IntelGraphicsProfiles
2020-07-08 11:59 - 2017-10-04 15:33 - 000025608 _____ (SlimWare Utilities, Inc.) C:\Windows\system32\Drivers\SWDUMon.sys
2020-07-08 11:59 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2020-07-08 11:58 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-07-08 10:31 - 2019-10-12 20:45 - 000000530 _____ C:\Windows\Tasks\WinASORegistryOptimizerForDanica.job
2020-07-07 17:18 - 2019-11-23 14:17 - 000003646 _____ C:\Windows\system32\Tasks\Intel PTT EK Recertification
2020-07-07 17:18 - 2019-11-23 14:11 - 000003162 _____ C:\Windows\system32\Tasks\{003A18A4-2C9E-43EF-8650-323E6B2FCD47}
2020-07-07 17:18 - 2019-11-23 14:11 - 000003152 _____ C:\Windows\system32\Tasks\{EE9EE9AF-DFCB-40AB-A235-D25DBDEE1FE9}
2020-07-07 17:18 - 2019-11-23 14:10 - 000003162 _____ C:\Windows\system32\Tasks\{E78935D2-3237-4609-B869-5091F5382265}
2020-07-07 17:18 - 2019-10-12 20:45 - 000003260 _____ C:\Windows\system32\Tasks\WinASORegistryOptimizerForDanica
2020-07-07 17:18 - 2019-01-30 10:04 - 000004072 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1548835486
2020-07-07 17:18 - 2015-12-03 17:08 - 000000000 ____D C:\Windows\system32\Tasks\AVAST Software
2020-07-07 17:17 - 2019-10-08 07:40 - 000003566 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-835433377-1433666261-3082474647-1000UA
2020-07-07 17:17 - 2019-10-08 07:40 - 000003294 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-835433377-1433666261-3082474647-1000Core
2020-07-07 17:17 - 2019-10-07 23:28 - 000003388 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2020-07-07 17:17 - 2019-10-07 23:28 - 000003260 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2020-07-07 17:17 - 2018-03-13 22:00 - 000004532 _____ C:\Windows\system32\Tasks\Adobe Flash Player NPAPI Notifier
2020-07-02 19:48 - 2017-03-11 09:09 - 000003910 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2020-07-02 19:47 - 2020-04-16 09:21 - 000514448 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2020-07-02 19:47 - 2019-01-14 17:47 - 000235584 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2020-07-02 19:47 - 2019-01-06 21:08 - 000195648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2020-07-02 19:47 - 2019-01-06 21:08 - 000060480 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2020-07-02 19:47 - 2018-10-10 08:51 - 000042768 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2020-07-02 19:47 - 2017-11-09 19:04 - 000205880 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2020-07-02 19:47 - 2015-11-24 14:06 - 000851600 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2020-07-02 19:47 - 2015-11-24 14:06 - 000466232 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2020-07-02 19:47 - 2015-11-24 14:06 - 000323272 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2020-07-02 19:47 - 2015-11-24 14:06 - 000109272 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2020-07-02 19:47 - 2015-11-24 14:06 - 000084848 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2020-06-29 09:43 - 2015-11-25 20:14 - 000004478 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2020-06-29 09:43 - 2015-11-25 11:16 - 000000000 ____D C:\Users\Danica\Favorites\Documents\Moje tvorba
2020-06-29 09:43 - 2015-11-22 10:18 - 000000000 ____D C:\Users\Danica
2020-06-29 09:39 - 2016-01-17 15:23 - 000002059 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-06-25 07:57 - 2017-08-13 21:07 - 000002224 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-06-14 09:22 - 2015-11-24 15:39 - 000000000 ___RD C:\Users\Danica\Favorites\Documents\Fotografie
2020-06-14 09:13 - 2020-04-05 10:35 - 000000000 ____D C:\Users\Danica\Favorites\Documents\videa-edík,vasik
2020-06-11 08:11 - 2015-11-28 14:16 - 000842296 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe
2020-06-11 08:11 - 2015-11-28 14:16 - 000175160 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2020-06-11 08:11 - 2015-11-28 14:16 - 000004398 _____ C:\Windows\system32\Tasks\Adobe Flash Player Updater
2020-06-11 08:11 - 2015-11-28 14:16 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2020-06-11 08:11 - 2015-11-28 14:16 - 000000000 ____D C:\Windows\system32\Macromed
2020-06-10 16:09 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\system32\NDF
2020-06-10 07:57 - 2017-12-21 17:25 - 000000000 ____D C:\Program Files (x86)\AVAST Software
2020-06-09 17:27 - 2015-11-22 10:32 - 000001066 _____ C:\Users\Public\Desktop\VLC media player.lnk
2020-06-09 17:27 - 2015-11-22 10:32 - 000001066 _____ C:\ProgramData\Desktop\VLC media player.lnk
2020-06-09 17:27 - 2015-11-22 10:31 - 000000000 ____D C:\Users\Danica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-06-09 17:27 - 2015-11-22 10:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-06-09 17:27 - 2015-11-22 10:31 - 000000000 ____D C:\Program Files\WinRAR
2020-06-09 17:26 - 2017-12-21 17:25 - 000002040 _____ C:\Users\Public\Desktop\Avast Cleanup Premium.lnk
2020-06-09 17:26 - 2017-12-21 17:25 - 000002040 _____ C:\ProgramData\Desktop\Avast Cleanup Premium.lnk
2020-06-09 17:25 - 2017-12-07 00:05 - 000000000 ____D C:\Program Files\Common Files\Avast Software
2020-06-09 17:25 - 2015-11-24 14:06 - 000000000 ____D C:\Program Files\AVAST Software

==================== Files in the root of some directories ========

2019-10-01 15:48 - 2019-10-01 15:48 - 000000017 _____ () C:\Users\Danica\AppData\Local\resmon.resmoncfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2020-07-08 12:37
==================== End of FRST.txt ========================



Additional scan result of Farbar Recovery Scan Tool (x64) Version: 04-07-2020 01
Ran by Danica (08-07-2020 12:50:28)
Running from C:\Users\Danica\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2015-11-22 08:18:55)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-835433377-1433666261-3082474647-500 - Administrator - Disabled)
Danica (S-1-5-21-835433377-1433666261-3082474647-1000 - Administrator - Enabled) => C:\Users\Danica
Guest (S-1-5-21-835433377-1433666261-3082474647-501 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Disabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Disabled - Up to date) {5078598A-1FA2-C888-AA5F-A9C66537DB12}
FW: Avast Antivirus (Disabled) {D322394B-73F7-C65E-BBB0-3B81E063D6D4}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 20.009.20067 - Adobe Systems Incorporated)
Adobe Flash Player 32 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 32.0.0.270 - Adobe)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.387 - Adobe)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.255 - Adobe)
Adobe Shockwave Player 12.2 (HKLM-x32\...\{315BE77E-D725-477D-9C71-63F78844363C}) (Version: 12.2.2.172 - Adobe Systems, Inc)
Ashampoo Burning Studio 2015 v.1.15.0 (HKLM-x32\...\{91B33C97-21E3-DF34-9630-2EE80DDE1648}_is1) (Version: 1.15.0 - Ashampoo GmbH & Co. KG)
Avast Cleanup Premium (HKLM\...\Avast Cleanup) (Version: 20.1.8996.304 - Avast Software)
Avast Driver Updater (HKLM-x32\...\{CEF7BA79-8A1C-4D04-BD38-2A30BD134681}) (Version: 2.5.9 - AVAST Software) Hidden
Avast Driver Updater (HKLM-x32\...\Avast Driver Updater) (Version: 2.5.9 - AVAST Software)
Avast Premium Security (HKLM-x32\...\Avast Antivirus) (Version: 20.5.2415 - Avast Software)
Avast SecureLine (HKLM\...\{2CD3C92F-EDC5-4B02-9B0A-9C1D37C58EF5}_is1) (Version: 5.2.429 - AVAST Software)
Canon MP250 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP250_series) (Version: - )
EVEREST Ultimate Edition v5.50 (HKLM-x32\...\EVEREST Ultimate Edition_is1) (Version: 5.50 - Lavalys, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 83.0.4103.116 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
i-Look 110 (HKLM-x32\...\{99F351B0-E2CD-43E2-935F-256F1CF1348B}) (Version: 1.0.4.15 - KYE)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1054 - Intel Corporation)
Intel(R) Network Connections 18.8.136.0 (HKLM\...\PROSetDX) (Version: 18.8.136.0 - Intel)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.14.5057 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.8.16.1063 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.47.866.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{246c6cc0-9810-4728-9a29-28474de2eec5}) (Version: 1.47.866.0 - Intel Corporation) Hidden
Intel(R) USB 3.0\3.1 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 5.0.4.43 - Intel Corporation)
Intel® Chipset Device Software (HKLM-x32\...\{5a6a5d15-d5af-417c-b08f-f7e5eb1f98af}) (Version: 10.0.26 - Intel(R) Corporation) Hidden
K-Lite Codec Pack 11.6.6 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 11.6.6 - )
LibreOffice 6.2.1.2 (HKLM\...\{28B8E75D-44A5-4057-8369-5951A15BAF08}) (Version: 6.2.1.2 - The Document Foundation)
Microsoft .NET Framework 4.8 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 x64 ENU (HKLM\...\{8424B163-D1E0-48B7-88A2-C7A61767B3D7}) (Version: 4.0.8482.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Nature Illusion Studio (HKLM-x32\...\Nature Illusion Studio) (Version: 3.41 - Nufsoft)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8040 - Realtek Semiconductor Corp.)
SafeZone Stable 4.58.2552.909 (HKLM-x32\...\SafeZone 4.58.2552.909) (Version: 4.58.2552.909 - Avast Software) Hidden
Sqirlz Water Reflections (HKLM-x32\...\Sqirlz Water Reflections) (Version: 2.6 - xiberpix)
Total Commander (Remove or Repair) (HKLM-x32\...\Totalcmd) (Version: 8.01 - Ghisler Software GmbH)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.10 - VideoLAN)
WebMate (HKLM-x32\...\{40B6D0B4-301A-4020-869F-2E3936E02299}) (Version: 2.2.0.4 - KYE)
Widevine Media Optimizer IE 6.0.0 (HKU\S-1-5-21-835433377-1433666261-3082474647-1000\...\optimizer_ie) (Version: 6.0.0.12757 - Widevine Technologies)
WinASO Registry Optimizer 4.0.5 (HKLM-x32\...\WinASO Registry Optimizer 4.0.5_is1) (Version: - X.M.Y International LLC)
WinRAR 5.90 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.90.0 - win.rar GmbH)
Zoner GIF Animator 5 (HKLM-x32\...\{2EE90F26-20B3-4423-81DE-E57E5D2E4FEF}) (Version: 5.0.3000.2 - ZONER software)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-835433377-1433666261-3082474647-1000_Classes\CLSID\{46406D82-6EC0-47CC-8A75-1F33C6DEDBBE}\InprocServer32 -> C:\Users\Danica\AppData\Local\Google\Update\1.3.35.442\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-835433377-1433666261-3082474647-1000_Classes\CLSID\{540C17A8-04F2-4B66-95D7-B2FEF9A19B54}\InprocServer32 -> C:\Users\Danica\AppData\Local\Google\Update\1.3.35.422\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-835433377-1433666261-3082474647-1000_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation -> Intel Corporation)
CustomCLSID: HKU\S-1-5-21-835433377-1433666261-3082474647-1000_Classes\CLSID\{84EB3779-151B-4C71-AEF0-A0FEE9481401}\InprocServer32 -> C:\Users\Danica\AppData\Local\Google\Update\1.3.35.342\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-835433377-1433666261-3082474647-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Danica\AppData\Local\Google\Update\1.3.35.452\psuser_64.dll (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-835433377-1433666261-3082474647-1000_Classes\CLSID\{E9E7529D-7F09-410B-AF2A-CC154473B19C}\InprocServer32 -> C:\Users\Danica\AppData\Local\Google\Update\1.3.35.452\psuser_64.dll (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-835433377-1433666261-3082474647-1000_Classes\CLSID\{EF076C91-DC9E-43E3-84ED-3D219E065A4F}\InprocServer32 -> C:\Users\Danica\AppData\Local\Google\Update\1.3.35.302\psuser_64.dll => No File
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-07-02] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-07-02] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-07-02] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-07-02] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2018-09-13] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-07-02] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]
ShortcutWithArgument: C:\Users\Danica\AppData\Local\Google\Chrome\User Data\Spouštěč aplikací Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --show-app-list
ShortcutWithArgument: C:\Users\Danica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome\Spouštěč aplikací Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --show-app-list
ShortcutWithArgument: C:\Users\Danica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Pinterest.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=hdihkofamofdkgdlibcogkkogdhlakop
ShortcutWithArgument: C:\Users\Danica\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\5046ca2656e8714f\Chromium.lnk -> C:\Users\Danica\AppData\Local\chromium\Application\chrome.exe (The Chromium Authors) -> --profile-directory=Default

==================== Loaded Modules (Whitelisted) =============

2020-07-02 19:47 - 2020-07-02 19:47 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2020-07-02 19:47 - 2020-07-02 19:47 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2020-07-02 19:47 - 2020-07-02 19:47 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2020-07-02 19:47 - 2020-07-02 19:47 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2020-07-02 19:47 - 2020-07-02 19:47 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2020-07-02 19:47 - 2020-07-02 19:47 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2020-07-02 19:47 - 2020-07-02 19:47 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2020-07-02 19:47 - 2020-07-02 19:47 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2020-07-02 19:47 - 2020-07-02 19:47 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2020-07-02 19:47 - 2020-07-02 19:47 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2020-07-02 19:47 - 2020-07-02 19:47 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2020-07-02 19:47 - 2020-07-02 19:47 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\ucrtbase.DLL
2020-07-02 19:47 - 2020-07-02 19:47 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\VCRUNTIME140.dll
2019-01-19 10:39 - 2018-09-05 22:32 - 002095104 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\AVAST Software\SecureLine\libcrypto-1_1.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2011-10-14 16:53 - 2019-10-13 22:36 - 000000035 _____ C:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\UCRT\;C:\Program Files\Intel\UCRT\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT
HKU\S-1-5-21-835433377-1433666261-3082474647-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Danica\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 213.46.172.36 - 213.46.172.37
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{3871DEFB-3256-41E5-9E2F-6464122C8120}] => (Allow) C:\Windows\System32\migwiz\migwiz.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{0E048752-553C-47DE-8491-2F377493FF42}] => (Allow) C:\Windows\System32\migwiz\migwiz.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{ADA3CE02-14BA-4B05-8BFE-69ADB4F9931C}] => (Allow) LPort=7000
FirewallRules: [{C20991B6-BD4A-4AE3-AE45-1A26C8701E33}] => (Allow) LPort=7000
FirewallRules: [{E62D9686-0A04-4A5B-B742-FD1CFBE66943}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe => No File
FirewallRules: [{E97530E0-2BE9-4BBB-BD93-D9D8AFD0158F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe => No File
FirewallRules: [{31428591-8838-438D-8443-649CC74D1266}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe => No File
FirewallRules: [{DC772462-E3C7-4E32-AB36-CDD5D77A7918}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe => No File
FirewallRules: [{CA050061-9434-43C5-AEF1-D75DD5B7CA93}] => (Allow) C:\Program Files (x86)\AVAST Software\Avast Cleanup\TUNEUpdate.exe => No File
FirewallRules: [{8CDEF3FA-CE41-41BE-A7CF-FFAD245635C3}] => (Allow) C:\Program Files (x86)\AVAST Software\Avast Cleanup\TUNEUpdate.exe => No File
FirewallRules: [{F653E07E-7590-4138-BD4E-8FB015251B2D}] => (Allow) C:\Program Files\AVAST Software\SecureLine\VpnUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
FirewallRules: [{3CBDB3CA-0062-4B4F-8D27-D6E803555A0E}] => (Allow) C:\Program Files\AVAST Software\SecureLine\VpnUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
FirewallRules: [{A72A82AB-F099-432C-938D-79DFD50567AA}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

05-07-2020 19:00:12 Windows Zálohování

==================== Faulty Device Manager Devices ============

Name: Microsoft 6to4 Adapter
Description: Microsoft 6to4 Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: netfilter2
Description: netfilter2
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: netfilter2
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Microsoft ISATAP Adapter
Description: Microsoft ISATAP Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: Microsoft ISATAP Adapter #2
Description: Microsoft ISATAP Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: avast! SecureLine TAP Adapter v3
Description: avast! SecureLine TAP Adapter v3
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: aswTap
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: ========================

Application errors:
==================
Error: (07/08/2020 12:00:28 PM) (Source: ESENT) (EventID: 455) (User: )
Description: taskhost (1912) WebCacheLocal: Při otevírání souboru protokolu C:\Users\Danica\AppData\Local\Microsoft\Windows\WebCache\V01.log došlo k chybě -1811 (0xfffff8ed).

Error: (07/08/2020 11:59:38 AM) (Source: Windows Search Service) (EventID: 7010) (User: )
Description: Index nebyl inicializován.

Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)

Error: (07/08/2020 11:59:38 AM) (Source: Windows Search Service) (EventID: 3058) (User: )
Description: Aplikace nebyla inicializována.

Kontext: aplikace Windows

Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)

Error: (07/08/2020 11:59:38 AM) (Source: Windows Search Service) (EventID: 3028) (User: )
Description: Objekt indexování nebyl inicializován.

Kontext: aplikace Windows, katalog SystemIndex

Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)

Error: (07/08/2020 11:59:38 AM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Modul plug-in v <Search.TripoliIndexer> nebyl inicializován.

Kontext: aplikace Windows, katalog SystemIndex

Podrobnosti:
Prvek nebyl nalezen. (HRESULT : 0x80070490) (0x80070490)

Error: (07/08/2020 11:59:36 AM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Modul plug-in v <Search.JetPropStore> nebyl inicializován.

Kontext: aplikace Windows, katalog SystemIndex

Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)

Error: (07/08/2020 11:59:36 AM) (Source: Windows Search Service) (EventID: 9002) (User: )
Description: Služba Windows Search nenačetla informace o úložišti vlastností.

Kontext: aplikace Windows, katalog SystemIndex

Podrobnosti:
Databáze indexu obsahu je poškozená. (HRESULT : 0xc0041800) (0xc0041800)

Error: (07/08/2020 11:59:36 AM) (Source: Windows Search Service) (EventID: 7042) (User: )
Description: Služba Windows Search byla zastavena, protože došlo k problému s indexovacím modulem The catalog is corrupt.

Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)


System errors:
=============
Error: (07/08/2020 12:00:29 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Windows Search neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (07/08/2020 12:00:29 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Windows Search bylo dosaženo časového limitu (30000 ms).

Error: (07/08/2020 12:00:12 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Windows Search neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (07/08/2020 12:00:12 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Windows Search bylo dosaženo časového limitu (30000 ms).

Error: (07/08/2020 12:00:12 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Windows Search neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (07/08/2020 12:00:12 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Windows Search bylo dosaženo časového limitu (30000 ms).

Error: (07/08/2020 12:00:12 PM) (Source: DCOM) (EventID: 10005) (User: )
Description: Služba DCOM zjistila chybu %%1053 = Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas. při pokusu o spuštění služby WSearch s argumenty za účelem spuštění serveru:
{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}

Error: (07/08/2020 11:59:59 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Search byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.


Windows Defender:
===================================
Date: 2016-01-15 18:53:23.072
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání:{C3E4969D-95AC-45BB-9AC1-1A0DBE8D68B5}
Typ prohledávání:Antispywarový program
Parametry prohledávání:Rychlé prohledávání
Uživatel:Danica-PC\Danica

CodeIntegrity:
===================================

Date: 2015-11-22 10:21:52.112
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\RltkAPO64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-11-22 10:21:52.081
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\RltkAPO64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-11-22 10:21:48.660
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\RltkAPO64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-11-22 10:21:48.645
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\RltkAPO64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-11-22 10:19:19.157
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\RltkAPO64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-11-22 10:19:19.126
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\RltkAPO64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-11-22 10:19:16.933
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\RltkAPO64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-11-22 10:19:16.902
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\RltkAPO64.dll because the set of per-page image hashes could not be found on the system.

==================== Memory info ===========================

BIOS: American Megatrends Inc. F9 09/18/2015
Motherboard: Gigabyte Technology Co., Ltd. Z97-D3H-CF
Processor: Intel(R) Core(TM) i5-4460 CPU @ 3.20GHz
Percentage of memory in use: 56%
Total physical RAM: 7580.21 MB
Available physical RAM: 3298.14 MB
Total Virtual: 15158.56 MB
Available Virtual: 10887.83 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:575.6 GB) (Free:517.3 GB) NTFS
Drive e: (Záloha ) (Fixed) (Total:355.69 GB) (Free:173.73 GB) NTFS


==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 32DA4823)

Partition: GPT.

==================== End of Addition.txt =======================
Děkuji!
Danica Tomášková

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosím o preventivku

#2 Příspěvek od Rudy »

Zdravím!
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

danatoma
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 349
Registrován: 14 úno 2008 20:05
Bydliště: Praha
Kontaktovat uživatele:

Re: Prosím o preventivku

#3 Příspěvek od danatoma »

# -------------------------------
# Malwarebytes AdwCleaner 8.0.6.0
# -------------------------------
# Build: 06-24-2020
# Database: 2020-06-15.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 07-08-2020
# Duration: 00:00:02
# OS: Windows 7 Home Premium
# Cleaned: 3
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted C:\Users\Public\Documents\Downloaded Installers

***** [ Files ] *****

Deleted C:\Windows\System32\drivers\swdumon.sys

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKLM\Software\Wow6432Node\SlimWare Utilities Inc

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [1555 octets] - [08/07/2020 20:47:52]
AdwCleaner[S01].txt - [1616 octets] - [08/07/2020 20:49:48]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C01].txt ##########
Děkuji!
Danica Tomášková

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosím o preventivku

#4 Příspěvek od Rudy »

Dejte nové logy FRST+Addition.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

danatoma
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 349
Registrován: 14 úno 2008 20:05
Bydliště: Praha
Kontaktovat uživatele:

Re: Prosím o preventivku

#5 Příspěvek od danatoma »

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 08-07-2020 01
Ran by Danica (08-07-2020 22:11:24)
Running from C:\Users\Danica\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2015-11-22 08:18:55)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-835433377-1433666261-3082474647-500 - Administrator - Disabled)
Danica (S-1-5-21-835433377-1433666261-3082474647-1000 - Administrator - Enabled) => C:\Users\Danica
Guest (S-1-5-21-835433377-1433666261-3082474647-501 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Disabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Disabled - Up to date) {5078598A-1FA2-C888-AA5F-A9C66537DB12}
FW: Avast Antivirus (Disabled) {D322394B-73F7-C65E-BBB0-3B81E063D6D4}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 20.009.20067 - Adobe Systems Incorporated)
Adobe Flash Player 32 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 32.0.0.270 - Adobe)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.387 - Adobe)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.255 - Adobe)
Adobe Shockwave Player 12.2 (HKLM-x32\...\{315BE77E-D725-477D-9C71-63F78844363C}) (Version: 12.2.2.172 - Adobe Systems, Inc)
Ashampoo Burning Studio 2015 v.1.15.0 (HKLM-x32\...\{91B33C97-21E3-DF34-9630-2EE80DDE1648}_is1) (Version: 1.15.0 - Ashampoo GmbH & Co. KG)
Avast Cleanup Premium (HKLM\...\Avast Cleanup) (Version: 20.1.8996.304 - Avast Software)
Avast Driver Updater (HKLM-x32\...\{CEF7BA79-8A1C-4D04-BD38-2A30BD134681}) (Version: 2.5.9 - AVAST Software) Hidden
Avast Driver Updater (HKLM-x32\...\Avast Driver Updater) (Version: 2.5.9 - AVAST Software)
Avast Premium Security (HKLM-x32\...\Avast Antivirus) (Version: 20.5.2415 - Avast Software)
Avast SecureLine (HKLM\...\{2CD3C92F-EDC5-4B02-9B0A-9C1D37C58EF5}_is1) (Version: 5.2.429 - AVAST Software)
Canon MP250 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP250_series) (Version: - )
EVEREST Ultimate Edition v5.50 (HKLM-x32\...\EVEREST Ultimate Edition_is1) (Version: 5.50 - Lavalys, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 83.0.4103.116 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
i-Look 110 (HKLM-x32\...\{99F351B0-E2CD-43E2-935F-256F1CF1348B}) (Version: 1.0.4.15 - KYE)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1054 - Intel Corporation)
Intel(R) Network Connections 18.8.136.0 (HKLM\...\PROSetDX) (Version: 18.8.136.0 - Intel)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.14.5057 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.8.16.1063 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.47.866.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{246c6cc0-9810-4728-9a29-28474de2eec5}) (Version: 1.47.866.0 - Intel Corporation) Hidden
Intel(R) USB 3.0\3.1 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 5.0.4.43 - Intel Corporation)
Intel® Chipset Device Software (HKLM-x32\...\{5a6a5d15-d5af-417c-b08f-f7e5eb1f98af}) (Version: 10.0.26 - Intel(R) Corporation) Hidden
K-Lite Codec Pack 11.6.6 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 11.6.6 - )
LibreOffice 6.2.1.2 (HKLM\...\{28B8E75D-44A5-4057-8369-5951A15BAF08}) (Version: 6.2.1.2 - The Document Foundation)
Microsoft .NET Framework 4.8 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 x64 ENU (HKLM\...\{8424B163-D1E0-48B7-88A2-C7A61767B3D7}) (Version: 4.0.8482.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Nature Illusion Studio (HKLM-x32\...\Nature Illusion Studio) (Version: 3.41 - Nufsoft)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8040 - Realtek Semiconductor Corp.)
SafeZone Stable 4.58.2552.909 (HKLM-x32\...\SafeZone 4.58.2552.909) (Version: 4.58.2552.909 - Avast Software) Hidden
Sqirlz Water Reflections (HKLM-x32\...\Sqirlz Water Reflections) (Version: 2.6 - xiberpix)
Total Commander (Remove or Repair) (HKLM-x32\...\Totalcmd) (Version: 8.01 - Ghisler Software GmbH)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.10 - VideoLAN)
WebMate (HKLM-x32\...\{40B6D0B4-301A-4020-869F-2E3936E02299}) (Version: 2.2.0.4 - KYE)
Widevine Media Optimizer IE 6.0.0 (HKU\S-1-5-21-835433377-1433666261-3082474647-1000\...\optimizer_ie) (Version: 6.0.0.12757 - Widevine Technologies)
WinASO Registry Optimizer 4.0.5 (HKLM-x32\...\WinASO Registry Optimizer 4.0.5_is1) (Version: - X.M.Y International LLC)
WinRAR 5.90 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.90.0 - win.rar GmbH)
Zoner GIF Animator 5 (HKLM-x32\...\{2EE90F26-20B3-4423-81DE-E57E5D2E4FEF}) (Version: 5.0.3000.2 - ZONER software)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-835433377-1433666261-3082474647-1000_Classes\CLSID\{46406D82-6EC0-47CC-8A75-1F33C6DEDBBE}\InprocServer32 -> C:\Users\Danica\AppData\Local\Google\Update\1.3.35.442\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-835433377-1433666261-3082474647-1000_Classes\CLSID\{540C17A8-04F2-4B66-95D7-B2FEF9A19B54}\InprocServer32 -> C:\Users\Danica\AppData\Local\Google\Update\1.3.35.422\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-835433377-1433666261-3082474647-1000_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation -> Intel Corporation)
CustomCLSID: HKU\S-1-5-21-835433377-1433666261-3082474647-1000_Classes\CLSID\{84EB3779-151B-4C71-AEF0-A0FEE9481401}\InprocServer32 -> C:\Users\Danica\AppData\Local\Google\Update\1.3.35.342\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-835433377-1433666261-3082474647-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Danica\AppData\Local\Google\Update\1.3.35.452\psuser_64.dll (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-835433377-1433666261-3082474647-1000_Classes\CLSID\{E9E7529D-7F09-410B-AF2A-CC154473B19C}\InprocServer32 -> C:\Users\Danica\AppData\Local\Google\Update\1.3.35.452\psuser_64.dll (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-835433377-1433666261-3082474647-1000_Classes\CLSID\{EF076C91-DC9E-43E3-84ED-3D219E065A4F}\InprocServer32 -> C:\Users\Danica\AppData\Local\Google\Update\1.3.35.302\psuser_64.dll => No File
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-07-02] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-07-02] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-07-02] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-07-02] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2018-09-13] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-07-02] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]
ShortcutWithArgument: C:\Users\Danica\AppData\Local\Google\Chrome\User Data\Spouštěč aplikací Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --show-app-list
ShortcutWithArgument: C:\Users\Danica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome\Spouštěč aplikací Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --show-app-list
ShortcutWithArgument: C:\Users\Danica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Pinterest.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=hdihkofamofdkgdlibcogkkogdhlakop
ShortcutWithArgument: C:\Users\Danica\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\5046ca2656e8714f\Chromium.lnk -> C:\Users\Danica\AppData\Local\chromium\Application\chrome.exe (The Chromium Authors) -> --profile-directory=Default

==================== Loaded Modules (Whitelisted) =============

2020-07-02 19:47 - 2020-07-02 19:47 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2020-07-02 19:47 - 2020-07-02 19:47 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2020-07-02 19:47 - 2020-07-02 19:47 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2020-07-02 19:47 - 2020-07-02 19:47 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2020-07-02 19:47 - 2020-07-02 19:47 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2020-07-02 19:47 - 2020-07-02 19:47 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2020-07-02 19:47 - 2020-07-02 19:47 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2020-07-02 19:47 - 2020-07-02 19:47 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2020-07-02 19:47 - 2020-07-02 19:47 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2020-07-02 19:47 - 2020-07-02 19:47 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2020-07-02 19:47 - 2020-07-02 19:47 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2020-07-02 19:47 - 2020-07-02 19:47 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\ucrtbase.DLL
2020-07-02 19:47 - 2020-07-02 19:47 - 000000000 ____L (Microsoft Corporation) C:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\VCRUNTIME140.dll
2019-01-19 10:39 - 2018-09-05 22:32 - 002095104 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\AVAST Software\SecureLine\libcrypto-1_1.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2011-10-14 16:53 - 2019-10-13 22:36 - 000000035 _____ C:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\UCRT\;C:\Program Files\Intel\UCRT\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT
HKU\S-1-5-21-835433377-1433666261-3082474647-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Danica\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 213.46.172.36 - 213.46.172.37
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{3871DEFB-3256-41E5-9E2F-6464122C8120}] => (Allow) C:\Windows\System32\migwiz\migwiz.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{0E048752-553C-47DE-8491-2F377493FF42}] => (Allow) C:\Windows\System32\migwiz\migwiz.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{ADA3CE02-14BA-4B05-8BFE-69ADB4F9931C}] => (Allow) LPort=7000
FirewallRules: [{C20991B6-BD4A-4AE3-AE45-1A26C8701E33}] => (Allow) LPort=7000
FirewallRules: [{E62D9686-0A04-4A5B-B742-FD1CFBE66943}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe => No File
FirewallRules: [{E97530E0-2BE9-4BBB-BD93-D9D8AFD0158F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe => No File
FirewallRules: [{31428591-8838-438D-8443-649CC74D1266}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe => No File
FirewallRules: [{DC772462-E3C7-4E32-AB36-CDD5D77A7918}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe => No File
FirewallRules: [{CA050061-9434-43C5-AEF1-D75DD5B7CA93}] => (Allow) C:\Program Files (x86)\AVAST Software\Avast Cleanup\TUNEUpdate.exe => No File
FirewallRules: [{8CDEF3FA-CE41-41BE-A7CF-FFAD245635C3}] => (Allow) C:\Program Files (x86)\AVAST Software\Avast Cleanup\TUNEUpdate.exe => No File
FirewallRules: [{F653E07E-7590-4138-BD4E-8FB015251B2D}] => (Allow) C:\Program Files\AVAST Software\SecureLine\VpnUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
FirewallRules: [{3CBDB3CA-0062-4B4F-8D27-D6E803555A0E}] => (Allow) C:\Program Files\AVAST Software\SecureLine\VpnUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
FirewallRules: [{A72A82AB-F099-432C-938D-79DFD50567AA}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

05-07-2020 19:00:12 Windows Zálohování

==================== Faulty Device Manager Devices ============

Name: Microsoft 6to4 Adapter
Description: Microsoft 6to4 Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: netfilter2
Description: netfilter2
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: netfilter2
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Microsoft ISATAP Adapter
Description: Microsoft ISATAP Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: Microsoft ISATAP Adapter #2
Description: Microsoft ISATAP Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: avast! SecureLine TAP Adapter v3
Description: avast! SecureLine TAP Adapter v3
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: aswTap
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: ========================

Application errors:
==================
Error: (07/08/2020 08:57:21 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (07/08/2020 08:51:41 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (07/08/2020 12:00:28 PM) (Source: ESENT) (EventID: 455) (User: )
Description: taskhost (1912) WebCacheLocal: Při otevírání souboru protokolu C:\Users\Danica\AppData\Local\Microsoft\Windows\WebCache\V01.log došlo k chybě -1811 (0xfffff8ed).

Error: (07/08/2020 11:59:38 AM) (Source: Windows Search Service) (EventID: 7010) (User: )
Description: Index nebyl inicializován.

Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)

Error: (07/08/2020 11:59:38 AM) (Source: Windows Search Service) (EventID: 3058) (User: )
Description: Aplikace nebyla inicializována.

Kontext: aplikace Windows

Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)

Error: (07/08/2020 11:59:38 AM) (Source: Windows Search Service) (EventID: 3028) (User: )
Description: Objekt indexování nebyl inicializován.

Kontext: aplikace Windows, katalog SystemIndex

Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)

Error: (07/08/2020 11:59:38 AM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Modul plug-in v <Search.TripoliIndexer> nebyl inicializován.

Kontext: aplikace Windows, katalog SystemIndex

Podrobnosti:
Prvek nebyl nalezen. (HRESULT : 0x80070490) (0x80070490)

Error: (07/08/2020 11:59:36 AM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Modul plug-in v <Search.JetPropStore> nebyl inicializován.

Kontext: aplikace Windows, katalog SystemIndex

Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)


System errors:
=============
Error: (07/08/2020 08:58:03 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Zavedení následujícího ovladače pro spouštění počítače nebo systému se nezdařilo:
netfilter2

Error: (07/08/2020 08:52:10 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Zavedení následujícího ovladače pro spouštění počítače nebo systému se nezdařilo:
netfilter2

Error: (07/08/2020 08:50:15 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba Windows Media Player Network Sharing byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.

Error: (07/08/2020 08:50:13 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Presentation Foundation Font Cache 3.0.0.0 byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 0 milisekund: Restartovat službu.

Error: (07/08/2020 08:50:13 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) PROSet Monitoring Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (07/08/2020 08:50:13 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) HD Graphics Control Panel Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (07/08/2020 12:00:29 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Windows Search neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (07/08/2020 12:00:29 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Windows Search bylo dosaženo časového limitu (30000 ms).


Windows Defender:
===================================
Date: 2016-01-15 18:53:23.072
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání:{C3E4969D-95AC-45BB-9AC1-1A0DBE8D68B5}
Typ prohledávání:Antispywarový program
Parametry prohledávání:Rychlé prohledávání
Uživatel:Danica-PC\Danica

CodeIntegrity:
===================================

Date: 2015-11-22 10:21:52.112
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\RltkAPO64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-11-22 10:21:52.081
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\RltkAPO64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-11-22 10:21:48.660
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\RltkAPO64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-11-22 10:21:48.645
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\RltkAPO64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-11-22 10:19:19.157
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\RltkAPO64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-11-22 10:19:19.126
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\RltkAPO64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-11-22 10:19:16.933
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\RltkAPO64.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-11-22 10:19:16.902
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\RltkAPO64.dll because the set of per-page image hashes could not be found on the system.

==================== Memory info ===========================

BIOS: American Megatrends Inc. F9 09/18/2015
Motherboard: Gigabyte Technology Co., Ltd. Z97-D3H-CF
Processor: Intel(R) Core(TM) i5-4460 CPU @ 3.20GHz
Percentage of memory in use: 60%
Total physical RAM: 7580.21 MB
Available physical RAM: 3006.48 MB
Total Virtual: 15158.56 MB
Available Virtual: 10334.86 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:575.6 GB) (Free:516.57 GB) NTFS
Drive e: (Záloha ) (Fixed) (Total:355.69 GB) (Free:173.73 GB) NTFS


==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 32DA4823)

Partition: GPT.

==================== End of Addition.txt =======================




Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 08-07-2020 01
Ran by Danica (administrator) on DANICA-PC (Gigabyte Technology Co., Ltd. Z97-D3H) (08-07-2020 22:10:32)
Running from C:\Users\Danica\Desktop
Loaded Profiles: Danica
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\Avast Driver Updater\Avast Driver Updater.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <2>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Cleanup\TuneupSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <26>
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [109160 2020-07-02] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322120 2017-04-19] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9197568 2000-01-01] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [TuneupUI.exe] => C:\Program Files\Avast Software\Cleanup\TuneupUI.exe [2573480 2020-06-11] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 3.1 eXtensible Host Controller Driver\Application\iusb3mon.exe [299520 2000-01-01] (Intel(R) USB eXtensible Host Controller Drivers -> Intel Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-835433377-1433666261-3082474647-1000\...\Run: [Chromium] => "c:\users\danica\appdata\local\chromium\application\chrome.exe" --auto-launch-at-startup --profile-directory="Default" --restore-last-session (the data entry has 65 more characters).
HKU\S-1-5-21-835433377-1433666261-3082474647-1000\...\Run: [Google Update] => C:\Users\Danica\AppData\Local\Google\Update\1.3.35.452\GoogleUpdateCore.exe [217544 2020-03-21] (Google LLC -> Google LLC)
HKLM\...\Windows x64\Print Processors\Canon MP250 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPD9W.DLL [28672 2010-04-24] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MP250 series: C:\Windows\system32\CNMLM9W.DLL [336896 2010-04-24] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.116\Installer\chrmstp.exe [2020-06-25] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll [2020-05-04] (Adobe Inc. -> Adobe Systems, Inc.)
BootExecute: autocheck autochk * icarus_rvrt.exe
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {14415E68-8A42-437A-9801-E9B3F6B9CC54} - System32\Tasks\Opera scheduled Autoupdate 1548835486 => C:\Users\Danica\AppData\Local\Programs\Opera\launcher.exe
Task: {1E108472-5C7E-4E35-BF51-D1F6C0D21C55} - System32\Tasks\{003A18A4-2C9E-43EF-8650-323E6B2FCD47} => "c:\program files (x86)\google\chrome\application\chrome.exe" hxxp://www.skype.com/go/downloading?source=lig ... rror=12007
Task: {21BE8274-C6BE-402A-8817-B25DA776ADF1} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1242704 2020-02-25] (Adobe Inc. -> Adobe Systems)
Task: {21E98206-77A2-40F5-9740-4683E70E04C5} - System32\Tasks\Avast Software\Avast Cleanup Update BugReport => C:\Program Files\Avast Software\Cleanup\AvBugReport.exe [2812624 2020-06-11] (Avast Software s.r.o. -> AVAST Software)
Task: {3244A548-4B4E-4D2E-9A33-7A56D930D174} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {3C9CBA0D-4655-4180-B850-FC05C7F26A76} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3339872 2020-07-02] (Avast Software s.r.o. -> AVAST Software)
Task: {48EF672A-5961-4DD3-8609-83A1D317D21D} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_255_pepper.exe [1453112 2019-09-21] (Adobe Inc. -> Adobe)
Task: {4F4C1840-BCE7-47BF-9E3A-E2B6A4B999DE} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [816960 2017-10-11] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {541DFD31-B647-443A-8EDF-A211E2CB308C} - System32\Tasks\{E78935D2-3237-4609-B869-5091F5382265} => "c:\program files (x86)\google\chrome\application\chrome.exe" hxxp://www.skype.com/go/downloading?source=lig ... rror=12007
Task: {6D4CBB16-49EA-47EC-A029-4C94AA073B7B} - System32\Tasks\SafeZone scheduled Autoupdate 1448367229 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe
Task: {75640AB7-B611-4AAB-8C44-F28C8C12A2A1} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-06-11] (Adobe Inc. -> Adobe)
Task: {7605C7DF-A141-421B-B195-0DC0B2D73490} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_387_Plugin.exe [1459256 2020-06-11] (Adobe Inc. -> Adobe)
Task: {77DB11A3-79E1-4A44-BA20-FFA423F13490} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-08-13] (Google Inc -> Google Inc.)
Task: {7CC02B23-087F-4E8E-8978-4CE11028E05A} - System32\Tasks\AdwCleaner_onReboot => C:\Users\Danica\Desktop\adwcleaner_8.0.6.exe [8420016 2020-07-08] (Malwarebytes Inc -> Malwarebytes)
Task: {85FA844B-D5F4-45C1-8A81-9000824661B6} - System32\Tasks\Avast Software\Avast Cleanup Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-tu\icarus.exe [5095064 2020-06-10] (Avast Software s.r.o. -> Avast Software)
Task: {9330AAF2-1B98-4F5D-9B75-B42F7E1950D5} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-835433377-1433666261-3082474647-1000Core => C:\Users\Danica\AppData\Local\Google\Update\GoogleUpdate.exe [154440 2016-02-02] (Google Inc -> Google Inc.)
Task: {BE7BF55D-38EA-40BB-962B-6440C64E8CC6} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-08-13] (Google Inc -> Google Inc.)
Task: {BE9E73DB-1A4A-4233-9BB6-09F9FDDA24C6} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1660520 2020-02-27] (Avast Software s.r.o. -> Avast Software)
Task: {BEDFFDE4-5F70-45F8-B870-F2F19E6F1070} - System32\Tasks\Avast SecureLine VPN Update => C:\Program Files\AVAST Software\SecureLine\VpnUpdate.exe [1390472 2019-10-23] (AVAST Software s.r.o. -> AVAST Software)
Task: {D7D403FC-3B78-45D3-B1E1-E1BE5906998A} - System32\Tasks\WinASORegistryOptimizerForDanica => C:\Program Files (x86)\WinASO\Registry Optimizer 4.0\RegOpt.exe [7456648 2012-07-21] (Winaso.com -> X.M.Y International, LLC) [File not signed]
Task: {DA7D9B12-8CB8-4164-9944-7D4559615EB6} - System32\Tasks\Program k provádění aktualizací online Adobe => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1242704 2020-02-25] (Adobe Inc. -> Adobe Systems)
Task: {DC2AC09E-3F49-4C43-BF18-BF4D3672BB4D} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-835433377-1433666261-3082474647-1000UA => C:\Users\Danica\AppData\Local\Google\Update\GoogleUpdate.exe [154440 2016-02-02] (Google Inc -> Google Inc.)
Task: {E407967E-5BD2-4711-ABB8-0515A569F799} - System32\Tasks\{EE9EE9AF-DFCB-40AB-A235-D25DBDEE1FE9} => "c:\program files (x86)\google\chrome\application\chrome.exe" hxxp://ui.skype.com/ui/0/7.7.0.102/cs/abandoninstall?source=lightinstaller&page=tsBing
Task: {FFF2C5C5-6B98-4A10-A561-B18D98F73FBF} - System32\Tasks\Avast Driver Updater Startup => C:\Program Files (x86)\Avast Driver Updater\Avast Driver Updater.exe [30244064 2020-04-14] (Avast Software s.r.o. -> AVAST Software)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Avast Driver Updater Startup.job => C:\Program Files (x86)\Avast Driver Updater\Avast Driver Updater.exe
Task: C:\Windows\Tasks\WinASORegistryOptimizerForDanica.job => C:\Program Files (x86)\WinASO\Registry Optimizer 4.0\RegOpt.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 213.46.172.36 213.46.172.37
Tcpip\..\Interfaces\{A10C2104-F2DE-4AAA-AA41-1F8916A922BE}: [DhcpNameServer] 213.46.172.36 213.46.172.37
Tcpip\..\Interfaces\{BF8E6D5A-A227-42DC-BBC2-1E48544133F3}: [DhcpNameServer] 192.168.2.1 192.168.0.1
Tcpip\..\Interfaces\{EF0F8BAB-DCB1-48C0-B574-983445226713}: [NameServer] 100.120.62.1

Internet Explorer:
==================
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?ocid=iehp
HKU\S-1-5-21-835433377-1433666261-3082474647-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.seznam.cz/
SearchScopes: HKU\S-1-5-21-835433377-1433666261-3082474647-1000 -> {2E2AE52D-B746-4D5A-8D87-040FF26DA1AD} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&s ... arch_12454
SearchScopes: HKU\S-1-5-21-835433377-1433666261-3082474647-1000 -> {37FE3127-D331-432F-BA62-C6FA353ED829} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-835433377-1433666261-3082474647-1000 -> {474B5B48-C606-45D6-85BD-240F1DC1BC5D} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-835433377-1433666261-3082474647-1000 -> {4A0FE769-7C54-4C0A-B4AB-3E525FB2DCB1} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz ... arch_12454
SearchScopes: HKU\S-1-5-21-835433377-1433666261-3082474647-1000 -> {4AC592D3-7BCD-4DC1-8B44-C589D17B7A37} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid= ... arch_12454
SearchScopes: HKU\S-1-5-21-835433377-1433666261-3082474647-1000 -> {BB2D0F1E-B329-4EC6-9E6D-7AFE0321B394} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-835433377-1433666261-3082474647-1000 -> {E179443E-DC27-473B-A279-C9C8091DC7B4} URL = hxxp://search.seznam.cz/?q={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-835433377-1433666261-3082474647-1000 -> {F41CD5ED-2BB8-4D58-9A8C-3B826C405379} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-835433377-1433666261-3082474647-1000 -> {F8D14E72-77A1-4FB6-AAEE-BB4FB3AAC7CA} URL = hxxp://www.mapy.cz/?query={searchTerms}&source ... arch_12454

Edge:
======
Edge Profile: C:\Users\Danica\AppData\Local\Microsoft\Edge\User Data\Default [2020-06-26]

FireFox:
========
FF DefaultProfile: 8qyzod9n.default-1549969440949
FF ProfilePath: C:\Users\Danica\AppData\Roaming\Mozilla\Firefox\Profiles\8qyzod9n.default-1549969440949 [2019-10-12]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_387.dll [2020-06-11] (Adobe Inc. -> )
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-16] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_387.dll [2020-06-11] (Adobe Inc. -> )
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll [2015-11-18] (Adobe Systems, Inc.) [File not signed]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-16] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.10 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.7 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-05-04] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-835433377-1433666261-3082474647-1000: google.com/WidevineMediaOptimizer -> C:\Users\Danica\AppData\Roaming\IDM\bin\npwidevinemediaoptimizer.dll [2014-06-09] (Widevine Technologies -> Google Inc.)

Chrome:
=======
CHR Profile: C:\Users\Danica\AppData\Local\Google\Chrome\User Data\Default [2020-07-08]
CHR DownloadDir: C:\Users\Danica\Desktop
CHR Notifications: Default -> hxxps://cz.pinterest.com; hxxps://hotovkykosik.cz; hxxps://www.4shared.com; hxxps://www.facebook.com; hxxps://www.megaknihy.cz
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR StartupUrls: Default -> "hxxp://www.denik.cz/krimi/vysetrovani-tragedie ... ount/Index"
CHR Session Restore: Default -> is enabled.
CHR Extension: (Prezentace) - C:\Users\Danica\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
CHR Extension: (Dokumenty) - C:\Users\Danica\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Disk Google) - C:\Users\Danica\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-22]
CHR Extension: (YouTube) - C:\Users\Danica\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-11-22]
CHR Extension: (Facebook) - C:\Users\Danica\AppData\Local\Google\Chrome\User Data\Default\Extensions\boeajhmfdjldchidhphikilcgdacljfm [2015-11-24]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\Danica\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2020-07-02]
CHR Extension: (Vyhledávání Google) - C:\Users\Danica\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-22]
CHR Extension: (Tabulky) - C:\Users\Danica\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
CHR Extension: (Hodiny) - C:\Users\Danica\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdkjifoifglkpcdffkenpinlbjgephlo [2015-11-24]
CHR Extension: (Chuck Anderson) - C:\Users\Danica\AppData\Local\Google\Chrome\User Data\Default\Extensions\gegkoiakifeoejnjkbnnojkkdoegeofp [2017-07-14]
CHR Extension: (Avast Online Security) - C:\Users\Danica\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2020-06-04]
CHR Extension: (Tlačítko „Uložit“ pro Pinterest) - C:\Users\Danica\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2020-07-02]
CHR Extension: (Pinterest) - C:\Users\Danica\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdihkofamofdkgdlibcogkkogdhlakop [2019-10-25]
CHR Extension: (Blogger) - C:\Users\Danica\AppData\Local\Google\Chrome\User Data\Default\Extensions\lejliakmhcfhakneflmicaoikhbicggc [2015-11-24]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Danica\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Picasa) - C:\Users\Danica\AppData\Local\Google\Chrome\User Data\Default\Extensions\onlgmecjpnejhfeofkgbfgnmdlipdejb [2015-11-24]
CHR Extension: (Avast SecureLine VPN) - C:\Users\Danica\AppData\Local\Google\Chrome\User Data\Default\Extensions\phmegojolgpbbcnhccbfneddlooepbpd [2019-11-29]
CHR Extension: (Gmail) - C:\Users\Danica\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-17]
CHR Extension: (Chrome Media Router) - C:\Users\Danica\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-05-30]
CHR Profile: C:\Users\Danica\AppData\Local\Google\Chrome\User Data\System Profile [2019-03-26]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-06-11] (Adobe Inc. -> Adobe)
S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6514072 2020-07-02] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [356824 2020-07-02] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [1065456 2020-07-02] (Avast Software s.r.o. -> AVAST Software)
R2 CleanupPSvc; C:\Program Files\Avast Software\Cleanup\TuneupSvc.exe [12942184 2020-06-11] (Avast Software s.r.o. -> AVAST Software)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [343016 2018-09-13] (Intel Corporation -> Intel Corporation)
R2 SecureLine; C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe [6828424 2019-10-23] (AVAST Software s.r.o. -> AVAST Software)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2015-11-22] (Microsoft Windows -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [205880 2020-07-02] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [235584 2020-07-02] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [195648 2020-07-02] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [60480 2020-07-02] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42768 2020-07-02] (Avast Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [175192 2020-07-02] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [514448 2020-07-02] (Avast Software s.r.o. -> AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [38152 2019-01-27] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [109272 2020-07-02] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [84848 2020-07-02] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [851600 2020-07-02] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [466232 2020-07-02] (Avast Software s.r.o. -> AVAST Software)
S2 aswStm; C:\Windows\System32\drivers\aswStm.sys [216816 2020-07-02] (Avast Software s.r.o. -> AVAST Software)
S3 aswTap; C:\Windows\System32\DRIVERS\aswTap.sys [53904 2018-09-05] (AVAST Software s.r.o. -> The OpenVPN Project)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [323272 2020-07-02] (Avast Software s.r.o. -> AVAST Software)
S3 dg_ssudbus; C:\Windows\System32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 e1dexpress; C:\Windows\System32\DRIVERS\e1d62x64.sys [545776 2017-09-22] (Intel(R) INTELND1617 -> Intel Corporation)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [40448 2017-04-19] (Intel(R) Rapid Storage Technology -> Intel Corporation)
S3 netr28ux; C:\Windows\System32\DRIVERS\netr28ux.sys [2253112 2015-09-28] (MEDIATEK INC. -> MediaTek Inc.)
S3 PAC207; C:\Windows\System32\DRIVERS\PFC027.SYS [572416 2006-12-05] (Microsoft Windows Hardware Compatibility Publisher -> PixArt Imaging Inc.)
S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [25608 2020-07-08] (AVG Technologies CZ, s.r.o. -> SlimWare Utilities, Inc.)
S1 netfilter2; system32\drivers\netfilter2.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-07-08 22:10 - 2020-07-08 22:11 - 000024821 _____ C:\Users\Danica\Desktop\FRST.txt
2020-07-08 22:09 - 2020-07-08 22:10 - 002292736 _____ (Farbar) C:\Users\Danica\Desktop\FRST64.exe
2020-07-08 20:50 - 2020-07-08 20:50 - 000003098 _____ C:\Windows\system32\Tasks\AdwCleaner_onReboot
2020-07-08 20:47 - 2020-07-08 20:50 - 000000000 ____D C:\AdwCleaner
2020-07-08 20:47 - 2020-07-08 20:47 - 008420016 _____ (Malwarebytes) C:\Users\Danica\Desktop\adwcleaner_8.0.6.exe
2020-07-08 12:49 - 2020-07-08 22:10 - 000000000 ____D C:\FRST
2020-07-08 11:58 - 2020-07-08 11:58 - 000402736 _____ C:\Windows\system32\FNTCACHE.DAT
2020-07-06 13:31 - 2020-07-06 13:31 - 000007813 _____ C:\Users\Danica\Desktop\2013-05-26 13.53.51_resized – zástupce.lnk
2020-07-02 19:47 - 2020-07-02 19:47 - 000335976 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2020-07-02 19:47 - 2020-07-02 19:47 - 000216816 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2020-07-02 19:47 - 2020-07-02 19:47 - 000175192 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2020-06-25 20:40 - 2020-06-27 16:55 - 000000000 ____D C:\Users\Danica\Desktop\2020-06-25
2020-06-10 16:14 - 2020-01-30 04:30 - 000834560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2020-06-10 16:14 - 2020-01-30 04:23 - 001010688 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2020-06-09 17:25 - 2020-06-08 12:39 - 000076184 _____ (Avast Software) C:\Windows\system32\icarus_rvrt.exe

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-07-08 21:08 - 2009-07-14 06:45 - 000032464 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-07-08 21:08 - 2009-07-14 06:45 - 000032464 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-07-08 20:59 - 2018-02-11 18:54 - 000002912 _____ C:\Windows\system32\Tasks\Avast Driver Updater Startup
2020-07-08 20:59 - 2018-02-11 18:54 - 000000484 _____ C:\Windows\Tasks\Avast Driver Updater Startup.job
2020-07-08 20:58 - 2017-03-12 10:36 - 000000000 ____D C:\Users\Danica\AppData\Local\AVAST Software
2020-07-08 20:58 - 2015-11-22 14:26 - 000000000 __SHD C:\Users\Danica\IntelGraphicsProfiles
2020-07-08 20:57 - 2017-10-04 15:33 - 000025608 _____ (SlimWare Utilities, Inc.) C:\Windows\system32\Drivers\SWDUMon.sys
2020-07-08 20:56 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-07-08 20:50 - 2015-11-24 14:06 - 000000000 ____D C:\ProgramData\AVAST Software
2020-07-08 11:59 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2020-07-08 10:31 - 2019-10-12 20:45 - 000000530 _____ C:\Windows\Tasks\WinASORegistryOptimizerForDanica.job
2020-07-07 17:18 - 2019-11-23 14:17 - 000003646 _____ C:\Windows\system32\Tasks\Intel PTT EK Recertification
2020-07-07 17:18 - 2019-11-23 14:11 - 000003162 _____ C:\Windows\system32\Tasks\{003A18A4-2C9E-43EF-8650-323E6B2FCD47}
2020-07-07 17:18 - 2019-11-23 14:11 - 000003152 _____ C:\Windows\system32\Tasks\{EE9EE9AF-DFCB-40AB-A235-D25DBDEE1FE9}
2020-07-07 17:18 - 2019-11-23 14:10 - 000003162 _____ C:\Windows\system32\Tasks\{E78935D2-3237-4609-B869-5091F5382265}
2020-07-07 17:18 - 2019-10-12 20:45 - 000003260 _____ C:\Windows\system32\Tasks\WinASORegistryOptimizerForDanica
2020-07-07 17:18 - 2019-01-30 10:04 - 000004072 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1548835486
2020-07-07 17:18 - 2015-12-03 17:08 - 000000000 ____D C:\Windows\system32\Tasks\AVAST Software
2020-07-07 17:17 - 2019-10-08 07:40 - 000003566 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-835433377-1433666261-3082474647-1000UA
2020-07-07 17:17 - 2019-10-08 07:40 - 000003294 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-835433377-1433666261-3082474647-1000Core
2020-07-07 17:17 - 2019-10-07 23:28 - 000003388 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2020-07-07 17:17 - 2019-10-07 23:28 - 000003260 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2020-07-07 17:17 - 2018-03-13 22:00 - 000004532 _____ C:\Windows\system32\Tasks\Adobe Flash Player NPAPI Notifier
2020-07-02 19:48 - 2017-03-11 09:09 - 000003910 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2020-07-02 19:47 - 2020-04-16 09:21 - 000514448 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2020-07-02 19:47 - 2019-01-14 17:47 - 000235584 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2020-07-02 19:47 - 2019-01-06 21:08 - 000195648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2020-07-02 19:47 - 2019-01-06 21:08 - 000060480 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2020-07-02 19:47 - 2018-10-10 08:51 - 000042768 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2020-07-02 19:47 - 2017-11-09 19:04 - 000205880 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2020-07-02 19:47 - 2015-11-24 14:06 - 000851600 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2020-07-02 19:47 - 2015-11-24 14:06 - 000466232 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2020-07-02 19:47 - 2015-11-24 14:06 - 000323272 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2020-07-02 19:47 - 2015-11-24 14:06 - 000109272 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2020-07-02 19:47 - 2015-11-24 14:06 - 000084848 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2020-06-29 09:43 - 2015-11-25 20:14 - 000004478 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2020-06-29 09:43 - 2015-11-25 11:16 - 000000000 ____D C:\Users\Danica\Favorites\Documents\Moje tvorba
2020-06-29 09:43 - 2015-11-22 10:18 - 000000000 ____D C:\Users\Danica
2020-06-29 09:39 - 2016-01-17 15:23 - 000002059 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-06-25 07:57 - 2017-08-13 21:07 - 000002224 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-06-14 09:22 - 2015-11-24 15:39 - 000000000 ___RD C:\Users\Danica\Favorites\Documents\Fotografie
2020-06-14 09:13 - 2020-04-05 10:35 - 000000000 ____D C:\Users\Danica\Favorites\Documents\videa-edík,vasik
2020-06-11 08:11 - 2015-11-28 14:16 - 000842296 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe
2020-06-11 08:11 - 2015-11-28 14:16 - 000175160 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2020-06-11 08:11 - 2015-11-28 14:16 - 000004398 _____ C:\Windows\system32\Tasks\Adobe Flash Player Updater
2020-06-11 08:11 - 2015-11-28 14:16 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2020-06-11 08:11 - 2015-11-28 14:16 - 000000000 ____D C:\Windows\system32\Macromed
2020-06-10 16:09 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\system32\NDF
2020-06-10 07:57 - 2017-12-21 17:25 - 000000000 ____D C:\Program Files (x86)\AVAST Software
2020-06-09 17:27 - 2015-11-22 10:32 - 000001066 _____ C:\Users\Public\Desktop\VLC media player.lnk
2020-06-09 17:27 - 2015-11-22 10:31 - 000000000 ____D C:\Users\Danica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-06-09 17:27 - 2015-11-22 10:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-06-09 17:27 - 2015-11-22 10:31 - 000000000 ____D C:\Program Files\WinRAR
2020-06-09 17:26 - 2017-12-21 17:25 - 000002040 _____ C:\Users\Public\Desktop\Avast Cleanup Premium.lnk
2020-06-09 17:25 - 2017-12-07 00:05 - 000000000 ____D C:\Program Files\Common Files\Avast Software
2020-06-09 17:25 - 2015-11-24 14:06 - 000000000 ____D C:\Program Files\AVAST Software

==================== Files in the root of some directories ========

2019-10-01 15:48 - 2019-10-01 15:48 - 000000017 _____ () C:\Users\Danica\AppData\Local\resmon.resmoncfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2020-07-08 12:37
==================== End of FRST.txt ========================
Děkuji!
Danica Tomášková

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosím o preventivku

#6 Příspěvek od Rudy »

Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
CustomCLSID: HKU\S-1-5-21-835433377-1433666261-3082474647-1000_Classes\CLSID\{46406D82-6EC0-47CC-8A75-1F33C6DEDBBE}\InprocServer32 -> C:\Users\Danica\AppData\Local\Google\Update\1.3.35.442\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-835433377-1433666261-3082474647-1000_Classes\CLSID\{540C17A8-04F2-4B66-95D7-B2FEF9A19B54}\InprocServer32 -> C:\Users\Danica\AppData\Local\Google\Update\1.3.35.422\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-835433377-1433666261-3082474647-1000_Classes\CLSID\{84EB3779-151B-4C71-AEF0-A0FEE9481401}\InprocServer32 -> C:\Users\Danica\AppData\Local\Google\Update\1.3.35.342\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-835433377-1433666261-3082474647-1000_Classes\CLSID\{EF076C91-DC9E-43E3-84ED-3D219E065A4F}\InprocServer32 -> C:\Users\Danica\AppData\Local\Google\Update\1.3.35.302\psuser_64.dll => No File
FirewallRules: [{E62D9686-0A04-4A5B-B742-FD1CFBE66943}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe => No File
FirewallRules: [{E97530E0-2BE9-4BBB-BD93-D9D8AFD0158F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe => No File
FirewallRules: [{31428591-8838-438D-8443-649CC74D1266}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe => No File
FirewallRules: [{DC772462-E3C7-4E32-AB36-CDD5D77A7918}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe => No File
FirewallRules: [{CA050061-9434-43C5-AEF1-D75DD5B7CA93}] => (Allow) C:\Program Files (x86)\AVAST Software\Avast Cleanup\TUNEUpdate.exe => No File
FirewallRules: [{8CDEF3FA-CE41-41BE-A7CF-FFAD245635C3}] => (Allow) C:\Program Files (x86)\AVAST Software\Avast Cleanup\TUNEUpdate.exe => No File
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {77DB11A3-79E1-4A44-BA20-FFA423F13490} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-08-13] (Google Inc -> Google Inc.)
Task: {9330AAF2-1B98-4F5D-9B75-B42F7E1950D5} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-835433377-1433666261-3082474647-1000Core => C:\Users\Danica\AppData\Local\Google\Update\GoogleUpdate.exe [154440 2016-02-02] (Google Inc -> Google Inc.)
Task: {BE7BF55D-38EA-40BB-962B-6440C64E8CC6} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-08-13] (Google Inc -> Google Inc.)
Task: {DC2AC09E-3F49-4C43-BF18-BF4D3672BB4D} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-835433377-1433666261-3082474647-1000UA => C:\Users\Danica\AppData\Local\Google\Update\GoogleUpdate.exe [154440 2016-02-02] (Google Inc -> Google Inc.)
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
C:\Windows\system32\Tasks\{003A18A4-2C9E-43EF-8650-323E6B2FCD47}
C:\Windows\system32\Tasks\{EE9EE9AF-DFCB-40AB-A235-D25DBDEE1FE9}
C:\Windows\system32\Tasks\{E78935D2-3237-4609-B869-5091F5382265}
C:\Windows\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-835433377-1433666261-3082474647-1000UA
C:\Windows\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-835433377-1433666261-3082474647-1000Core
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore

EmptyTemp:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

danatoma
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 349
Registrován: 14 úno 2008 20:05
Bydliště: Praha
Kontaktovat uživatele:

Re: Prosím o preventivku

#7 Příspěvek od danatoma »

Tak snad jsem to udělala dobře:
Uf - odklepla jsem bez vložení logu - je to moje blbost :shock:
Naposledy upravil(a) danatoma dne 09 črc 2020 10:16, celkem upraveno 1 x.
Děkuji!
Danica Tomášková

danatoma
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 349
Registrován: 14 úno 2008 20:05
Bydliště: Praha
Kontaktovat uživatele:

Re: Prosím o preventivku

#8 Příspěvek od danatoma »

Fix result of Farbar Recovery Scan Tool (x64) Version: 08-07-2020 01
Ran by Danica (09-07-2020 10:59:31) Run:1
Running from C:\Users\Danica\Desktop
Loaded Profiles: Danica
Boot Mode: Normal
==============================================

fixlist content:
*****************
CloseProcesses:
CustomCLSID: HKU\S-1-5-21-835433377-1433666261-3082474647-1000_Classes\CLSID\{46406D82-6EC0-47CC-8A75-1F33C6DEDBBE}\InprocServer32 -> C:\Users\Danica\AppData\Local\Google\Update\1.3.35.442\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-835433377-1433666261-3082474647-1000_Classes\CLSID\{540C17A8-04F2-4B66-95D7-B2FEF9A19B54}\InprocServer32 -> C:\Users\Danica\AppData\Local\Google\Update\1.3.35.422\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-835433377-1433666261-3082474647-1000_Classes\CLSID\{84EB3779-151B-4C71-AEF0-A0FEE9481401}\InprocServer32 -> C:\Users\Danica\AppData\Local\Google\Update\1.3.35.342\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-835433377-1433666261-3082474647-1000_Classes\CLSID\{EF076C91-DC9E-43E3-84ED-3D219E065A4F}\InprocServer32 -> C:\Users\Danica\AppData\Local\Google\Update\1.3.35.302\psuser_64.dll => No File
FirewallRules: [{E62D9686-0A04-4A5B-B742-FD1CFBE66943}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe => No File
FirewallRules: [{E97530E0-2BE9-4BBB-BD93-D9D8AFD0158F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe => No File
FirewallRules: [{31428591-8838-438D-8443-649CC74D1266}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe => No File
FirewallRules: [{DC772462-E3C7-4E32-AB36-CDD5D77A7918}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe => No File
FirewallRules: [{CA050061-9434-43C5-AEF1-D75DD5B7CA93}] => (Allow) C:\Program Files (x86)\AVAST Software\Avast Cleanup\TUNEUpdate.exe => No File
FirewallRules: [{8CDEF3FA-CE41-41BE-A7CF-FFAD245635C3}] => (Allow) C:\Program Files (x86)\AVAST Software\Avast Cleanup\TUNEUpdate.exe => No File
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {77DB11A3-79E1-4A44-BA20-FFA423F13490} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-08-13] (Google Inc -> Google Inc.)
Task: {9330AAF2-1B98-4F5D-9B75-B42F7E1950D5} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-835433377-1433666261-3082474647-1000Core => C:\Users\Danica\AppData\Local\Google\Update\GoogleUpdate.exe [154440 2016-02-02] (Google Inc -> Google Inc.)
Task: {BE7BF55D-38EA-40BB-962B-6440C64E8CC6} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-08-13] (Google Inc -> Google Inc.)
Task: {DC2AC09E-3F49-4C43-BF18-BF4D3672BB4D} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-835433377-1433666261-3082474647-1000UA => C:\Users\Danica\AppData\Local\Google\Update\GoogleUpdate.exe [154440 2016-02-02] (Google Inc -> Google Inc.)
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
C:\Windows\system32\Tasks\{003A18A4-2C9E-43EF-8650-323E6B2FCD47}
C:\Windows\system32\Tasks\{EE9EE9AF-DFCB-40AB-A235-D25DBDEE1FE9}
C:\Windows\system32\Tasks\{E78935D2-3237-4609-B869-5091F5382265}
C:\Windows\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-835433377-1433666261-3082474647-1000UA
C:\Windows\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-835433377-1433666261-3082474647-1000Core
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore

EmptyTemp:
End
*****************

Processes closed successfully.
HKU\S-1-5-21-835433377-1433666261-3082474647-1000_Classes\CLSID\{46406D82-6EC0-47CC-8A75-1F33C6DEDBBE} => removed successfully
HKU\S-1-5-21-835433377-1433666261-3082474647-1000_Classes\CLSID\{540C17A8-04F2-4B66-95D7-B2FEF9A19B54} => removed successfully
HKU\S-1-5-21-835433377-1433666261-3082474647-1000_Classes\CLSID\{84EB3779-151B-4C71-AEF0-A0FEE9481401} => removed successfully
HKU\S-1-5-21-835433377-1433666261-3082474647-1000_Classes\CLSID\{EF076C91-DC9E-43E3-84ED-3D219E065A4F} => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E62D9686-0A04-4A5B-B742-FD1CFBE66943}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E97530E0-2BE9-4BBB-BD93-D9D8AFD0158F}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{31428591-8838-438D-8443-649CC74D1266}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{DC772462-E3C7-4E32-AB36-CDD5D77A7918}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{CA050061-9434-43C5-AEF1-D75DD5B7CA93}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8CDEF3FA-CE41-41BE-A7CF-FFAD245635C3}" => removed successfully
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
HKLM\SOFTWARE\Policies\Google => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{77DB11A3-79E1-4A44-BA20-FFA423F13490}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{77DB11A3-79E1-4A44-BA20-FFA423F13490}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{9330AAF2-1B98-4F5D-9B75-B42F7E1950D5}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9330AAF2-1B98-4F5D-9B75-B42F7E1950D5}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-835433377-1433666261-3082474647-1000Core => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskUserS-1-5-21-835433377-1433666261-3082474647-1000Core" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{BE7BF55D-38EA-40BB-962B-6440C64E8CC6}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BE7BF55D-38EA-40BB-962B-6440C64E8CC6}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DC2AC09E-3F49-4C43-BF18-BF4D3672BB4D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DC2AC09E-3F49-4C43-BF18-BF4D3672BB4D}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-835433377-1433666261-3082474647-1000UA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskUserS-1-5-21-835433377-1433666261-3082474647-1000UA" => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Local Page"="C:\Windows\SysWOW64\blank.htm" => value restored successfully
C:\Windows\system32\Tasks\{003A18A4-2C9E-43EF-8650-323E6B2FCD47} => moved successfully
C:\Windows\system32\Tasks\{EE9EE9AF-DFCB-40AB-A235-D25DBDEE1FE9} => moved successfully
C:\Windows\system32\Tasks\{E78935D2-3237-4609-B869-5091F5382265} => moved successfully
"C:\Windows\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-835433377-1433666261-3082474647-1000UA" => not found
"C:\Windows\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-835433377-1433666261-3082474647-1000Core" => not found
"C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore" => not found

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 5944475 B
Java, Flash, Steam htmlcache => 291 B
Windows/system/drivers => 41210600 B
Edge => 0 B
Chrome => 657482829 B
Firefox => 32768 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 0 B
Danica => 33382406 B

RecycleBin => 4693355 B
EmptyTemp: => 716.3 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 10:59:51 ====
Děkuji!
Danica Tomášková

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosím o preventivku

#9 Příspěvek od Rudy »

Smazáno, log by již měl být OK.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

danatoma
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 349
Registrován: 14 úno 2008 20:05
Bydliště: Praha
Kontaktovat uživatele:

Re: Prosím o preventivku

#10 Příspěvek od danatoma »

Rudy, moc děkuji a poslala jsem nějakou tu korunku na podporu provozu fóra. :wub: :wub: :wub:
Děkuji!
Danica Tomášková

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosím o preventivku

#11 Příspěvek od Rudy »

Za příspěvek děkujeme a vy nemáte zač! :)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Zamčeno