Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Prosím o kontrolu PC

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zpráva
Autor
joj
Návštěvník
Návštěvník
Příspěvky: 151
Registrován: 10 říj 2013 13:01

Prosím o kontrolu PC

#1 Příspěvek od joj »

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 0.0.0.0
Tcpip\..\Interfaces\{080E8564-C9D6-4E6F-BAE5-C3985A41409F}: [DhcpNameServer] 192.168.0.1 0.0.0.0

Internet Explorer:
==================
HKU\S-1-5-21-2155469419-1363013824-1509811818-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.dell.com
SearchScopes: HKU\S-1-5-21-2155469419-1363013824-1509811818-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_251\bin\ssv.dll [2020-06-21] (Oracle America, Inc. -> Oracle Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_251\bin\jp2ssv.dll [2020-06-21] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)

Edge:
======
Edge Profile: C:\Users\Lenka\AppData\Local\Microsoft\Edge\User Data\Default [2020-06-28]

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.251.2 -> C:\Program Files\Java\jre1.8.0_251\bin\dtplugin\npDeployJava1.dll [2020-06-21] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.251.2 -> C:\Program Files\Java\jre1.8.0_251\bin\plugin2\npjp2.dll [2020-06-21] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)

Chrome:
=======
CHR Profile: C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default [2020-08-19]
CHR DownloadDir: E:\Users\Lenka\Downloads
CHR Notifications: Default -> hxxps://mail.google.com; hxxps://www.instagram.com
CHR HomePage: Default -> hxxps://www.google.com/
CHR Session Restore: Default -> is enabled.
CHR Extension: (Překladač Google) - C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2020-06-20]
CHR Extension: (Prezentace) - C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-06-20]
CHR Extension: (Dokumenty) - C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-06-20]
CHR Extension: (Disk Google) - C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-06-20]
CHR Extension: (YouTube) - C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-06-20]
CHR Extension: (Web for Instagram™) - C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\bonieeblbnamfclndbgnhblogabjijbp [2020-06-20]
CHR Extension: (Image Downloader) - C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnpniohnfphhjihaiiggeabnkjhpaldj [2020-06-20]
CHR Extension: (Tipli do prohlížeče) - C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbnfnbehhjknomdbfhcobpgpphnlnikp [2020-06-20]
CHR Extension: (Video Downloader professional) - C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2020-07-25]
CHR Extension: (Bulk Image Downloader) - C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\facoldpeadablbngjnohbmgaehknhcaj [2020-06-20]
CHR Extension: (Tabulky) - C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-06-20]
CHR Extension: (Video Downloader PLUS) - C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhplmmllnpjjlncfjpbbpjadoeijkogc [2020-06-20]
CHR Extension: (Dokumenty Google offline) - C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-08-19]
CHR Extension: (StoriesWatcher) - C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\jjcmfoepdlnfibimlfgkecogbllknime [2020-07-04]
CHR Extension: (IG Stories for Instagram™) - C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\nilbfjdbacfdodpbdondbbkmoigehodg [2020-08-02]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-06-20]
CHR Extension: (Transcribe: transcribe audio/interviews fast!) - C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogokenmicnjdfhmhocanoemnddmpcjjm [2020-06-20]
CHR Extension: (Gmail) - C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-06-20]
CHR Extension: (Chrome Media Router) - C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-07-21]
CHR Profile: C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\System Profile [2020-06-20]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2018-08-23] (Apple Inc. -> Apple Inc.)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [6514072 2020-07-11] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [356824 2020-07-11] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Firewall; C:\Program Files\Avast Software\Avast\afwServ.exe [1065456 2020-07-11] (Avast Software s.r.o. -> AVAST Software)
R2 SecureLine; C:\Program Files\AVAST Software\SecureLine VPN\VpnSvc.exe [7415168 2020-07-27] (Avast Software s.r.o. -> AVAST Software)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
S3 WLSetupSvc; C:\Program Files (x86)\Windows Live\installer\WLSetupSvc.exe [266240 2007-10-25] (Microsoft Corporation) [File not signed]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [205888 2020-08-19] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [235592 2020-08-19] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [195656 2020-08-19] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [60488 2020-08-19] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42776 2020-08-19] (Avast Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [175192 2020-07-11] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [515544 2020-08-19] (Avast Software s.r.o. -> AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [38152 2020-06-20] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [109280 2020-08-19] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [84856 2020-08-19] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [851608 2020-08-19] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [466752 2020-08-19] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [216816 2020-07-11] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [323784 2020-08-19] (Avast Software s.r.o. -> AVAST Software)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [32224 2016-09-20] (Intel(R) Rapid Storage Technology -> Intel Corporation)
S3 nusb3hub; C:\Windows\system32\drivers\nusb3hub.sys [80384 2010-09-30] (Microsoft Windows Hardware Compatibility Publisher -> Renesas Electronics Corporation)
S3 nusb3xhc; C:\Windows\system32\drivers\nusb3xhc.sys [180736 2010-09-30] (Microsoft Windows Hardware Compatibility Publisher -> Renesas Electronics Corporation)
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2017-09-07] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 gdrv; \??\C:\Windows\gdrv.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-08-19 19:13 - 2020-08-19 19:13 - 000009789 _____ C:\Users\Lenka\Desktop\FRST.txt
2020-08-19 19:13 - 2020-08-19 19:13 - 000000000 ____D C:\FRST
2020-08-19 19:12 - 2020-08-19 19:12 - 002297344 _____ (Farbar) C:\Users\Lenka\Downloads\FRST64.exe
2020-08-19 19:12 - 2020-08-19 19:12 - 002297344 _____ (Farbar) C:\Users\Lenka\Desktop\FRST64.exe
2020-08-19 19:10 - 2020-08-19 19:10 - 000003870 _____ C:\Windows\system32\Tasks\CCleaner Update
2020-08-19 19:10 - 2020-08-19 19:10 - 000002802 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
2020-08-19 19:10 - 2020-08-19 19:10 - 000000822 _____ C:\Users\Public\Desktop\CCleaner.lnk
2020-08-19 19:10 - 2020-08-19 19:10 - 000000822 _____ C:\ProgramData\Desktop\CCleaner.lnk
2020-08-19 19:10 - 2020-08-19 19:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2020-08-19 19:10 - 2020-08-19 19:10 - 000000000 ____D C:\Program Files\CCleaner
2020-08-19 19:09 - 2020-08-19 19:09 - 027072192 _____ (Piriform Software Ltd) C:\Users\Lenka\Downloads\ccsetup570.exe
2020-08-19 19:08 - 2020-08-19 19:08 - 000000000 ____D C:\Users\Lenka\Desktop\chrome
2020-08-19 19:00 - 2020-08-19 19:11 - 000000000 ___SD C:\Users\Lenka\AppData\LocalLow\Temp
2020-08-19 18:59 - 2020-08-19 18:59 - 000335968 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2020-08-19 18:59 - 2020-08-19 18:59 - 000217336 _____ (AVAST Software) C:\Windows\system32\Drivers\asw9d6f6cedba6628a2.tmp
2020-08-19 18:59 - 2020-08-19 18:59 - 000175200 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbe94e555752c7f35.tmp
2020-07-27 17:26 - 2020-07-14 08:45 - 000076184 _____ (Avast Software) C:\Windows\system32\icarus_rvrt.exe
2020-07-26 19:25 - 2020-07-26 19:56 - 000000000 ____D C:\Scenes
2020-07-26 19:25 - 2020-07-26 19:52 - 000000860 ____S C:\Users\Public\Documents\mssystem.cfg
2020-07-26 19:25 - 2020-07-26 19:52 - 000000860 ____S C:\ProgramData\Documents\mssystem.cfg
2020-07-26 19:24 - 2020-07-26 19:57 - 000000000 ____D C:\KD
2020-07-26 19:24 - 2020-07-26 19:24 - 000000510 _____ C:\Users\Public\Desktop\KitchenDraw 6.5.lnk
2020-07-26 19:24 - 2020-07-26 19:24 - 000000510 _____ C:\ProgramData\Desktop\KitchenDraw 6.5.lnk
2020-07-26 19:24 - 2020-07-26 19:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KitchenDraw 6.5
2020-07-26 19:24 - 2008-12-18 11:14 - 000076480 _____ (Aladdin Knowledge Systems Ltd.) C:\Windows\system32\Drivers\eusk3usb-amd64.sys

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-08-19 19:07 - 2020-06-20 11:41 - 000000000 ____D C:\ProgramData\Avast Software
2020-08-19 19:03 - 2009-07-14 06:45 - 000038832 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-08-19 19:03 - 2009-07-14 06:45 - 000038832 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-08-19 19:00 - 2020-06-20 21:02 - 000669580 _____ C:\Windows\system32\perfh005.dat
2020-08-19 19:00 - 2020-06-20 21:02 - 000141738 _____ C:\Windows\system32\perfc005.dat
2020-08-19 19:00 - 2009-07-14 07:13 - 001586648 _____ C:\Windows\system32\PerfStringBackup.INI
2020-08-19 19:00 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2020-08-19 18:59 - 2020-06-20 11:41 - 000851608 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2020-08-19 18:59 - 2020-06-20 11:41 - 000515544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2020-08-19 18:59 - 2020-06-20 11:41 - 000466752 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2020-08-19 18:59 - 2020-06-20 11:41 - 000323784 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2020-08-19 18:59 - 2020-06-20 11:41 - 000235592 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2020-08-19 18:59 - 2020-06-20 11:41 - 000205888 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2020-08-19 18:59 - 2020-06-20 11:41 - 000195656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2020-08-19 18:59 - 2020-06-20 11:41 - 000109280 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2020-08-19 18:59 - 2020-06-20 11:41 - 000084856 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2020-08-19 18:59 - 2020-06-20 11:41 - 000060488 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2020-08-19 18:59 - 2020-06-20 11:41 - 000042776 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2020-08-19 18:59 - 2020-06-20 11:41 - 000003910 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2020-08-19 18:55 - 2020-06-20 11:32 - 000000000 __SHD C:\Users\Lenka\IntelGraphicsProfiles
2020-08-19 18:55 - 2020-06-20 11:06 - 000000000 ____D C:\Users\Lenka
2020-08-19 18:55 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-08-19 18:54 - 2020-06-20 15:16 - 000000000 ____D C:\Users\Lenka\AppData\Local\HP
2020-08-19 18:54 - 2020-06-20 11:42 - 000000000 ____D C:\Windows\system32\Tasks\Avast Software
2020-08-19 18:54 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\registration
2020-08-19 18:54 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\AppCompat
2020-08-19 18:53 - 2020-06-21 10:09 - 000000000 __RHD C:\MSOCache
2020-08-04 14:42 - 2020-06-20 18:55 - 000004196 _____ C:\Windows\system32\Tasks\Avast SecureLine VPN Update
2020-08-02 17:53 - 2009-07-14 07:09 - 000000000 ____D C:\Windows\system32\Tasks\WPD
2020-07-29 19:14 - 2020-06-20 11:25 - 000002224 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-07-29 19:14 - 2020-06-20 11:25 - 000002183 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-07-29 19:14 - 2020-06-20 11:25 - 000002183 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2020-07-28 15:59 - 2020-06-20 18:55 - 000002064 _____ C:\Users\Public\Desktop\Avast SecureLine VPN.lnk
2020-07-28 15:59 - 2020-06-20 18:55 - 000002064 _____ C:\ProgramData\Desktop\Avast SecureLine VPN.lnk
2020-07-27 17:26 - 2020-06-20 11:41 - 000000000 ____D C:\Program Files\Common Files\Avast Software
2020-07-26 21:30 - 2020-06-20 15:17 - 000003556 _____ C:\Windows\system32\Tasks\HPCustParticipation HP LaserJet M101-M106
2020-07-26 21:30 - 2020-06-20 15:17 - 000002934 _____ C:\Windows\system32\Tasks\HPCustPartic.exe_{BA9045A2-F794-4574-8C7A-49F4C219E880}
2020-07-26 21:30 - 2020-06-20 11:26 - 000003646 _____ C:\Windows\system32\Tasks\Intel PTT EK Recertification
2020-07-26 21:30 - 2020-06-20 11:24 - 000003388 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2020-07-26 21:30 - 2020-06-20 11:24 - 000003260 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2020-07-26 19:25 - 2020-06-20 11:06 - 000000000 ____D C:\Users\Lenka\AppData\Local\VirtualStore

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2020-08-07 16:14
==================== End of FRST.txt ========================

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 114797
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosím o kontrolu PC

#2 Příspěvek od Rudy »

Zdravím!
Log FRST není kompletní a log Addition zcela chybí. Vložte znovu.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

joj
Návštěvník
Návštěvník
Příspěvky: 151
Registrován: 10 říj 2013 13:01

Re: Prosím o kontrolu PC

#3 Příspěvek od joj »

Omlouvám se.


Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 19-08-2020
Ran by Lenka (administrator) on FERDA (Gigabyte Technology Co., Ltd. B250M-D3H) (19-08-2020 20:00:12)
Running from C:\Users\Lenka\Desktop
Loaded Profiles: Lenka
Platform: Windows 7 Professional Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\afwServ.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <2>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\SecureLine VPN\VpnSvc.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Network Platform Group -> Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel(R) USB eXtensible Host Controller Drivers -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 3.1 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9072128 2016-11-17] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [320568 2016-09-20] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [109160 2020-07-11] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [303928 2018-08-27] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 3.1 eXtensible Host Controller Driver\Application\iusb3mon.exe [299504 2016-08-18] (Intel(R) USB eXtensible Host Controller Drivers -> Intel Corporation)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [646776 2020-03-12] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-2155469419-1363013824-1509811818-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [29271224 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2155469419-1363013824-1509811818-1000\...\MountPoints2: {ea27b886-b2d4-11ea-9054-806e6f6e6963} - D:\Run.exe
HKLM\...\Print\Monitors\HP 612a Status Monitor: C:\Windows\system32\hpinksts612aLM.dll [468576 2018-08-01] (Hewlett Packard -> HP Inc.)
HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP LaserJet M101-M106): C:\Windows\system32\HPDiscoPM612a.dll [988296 2018-08-22] (Hewlett Packard -> HP Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\84.0.4147.105\Installer\chrmstp.exe [2020-07-29] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast SecureLine VPN.lnk [2020-07-28]
ShortcutTarget: Avast SecureLine VPN.lnk -> C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe (Avast Software s.r.o. -> AVAST Software)
BootExecute: autocheck autochk * icarus_rvrt.exe
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {164AA8B2-480E-442A-A0AB-715E88E01195} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [24770744 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {1843223F-8A3F-4C35-9848-51A91DB0C450} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [909112 2016-07-26] (Intel(R) Trusted Connect Service -> Intel(R) Corporation)
Task: {1F589188-0EC2-4BCC-822E-34E5F90FB3B4} - System32\Tasks\HPCustPartic.exe_{BA9045A2-F794-4574-8C7A-49F4C219E880} => C:\Program Files\HP\HP LaserJet M101-M106\Bin\HPCustPartic.exe [6660744 2018-08-22] (Hewlett Packard -> HP Inc.)
Task: {5A02638A-28AB-4C12-943B-031D46DE8F0E} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {5DE7F836-57AF-4F78-B6E0-97C54A026DDF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2020-06-20] (Google Inc -> Google Inc.)
Task: {64230D07-602F-4FC1-9662-1647147251E8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2020-06-20] (Google Inc -> Google Inc.)
Task: {7116C542-D3FF-4255-B35B-260B6A1FB087} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1660520 2020-06-20] (Avast Software s.r.o. -> Avast Software)
Task: {8AE024A6-53BA-4713-9B08-EA85BE85C96F} - System32\Tasks\HPCustParticipation HP LaserJet M101-M106 => C:\Program Files\HP\HP LaserJet M101-M106\Bin\HPCustPartic.exe [6660744 2018-08-22] (Hewlett Packard -> HP Inc.)
Task: {9BB7B791-5532-4296-AD1F-FE3C053645FC} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [3810408 2020-08-19] (Avast Software s.r.o. -> AVAST Software)
Task: {AD9D4EDB-7FE5-4E3C-952C-22AAAE4BE030} - System32\Tasks\Avast Software\Avast SecureLine VPN Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-vpn\icarus.exe [5098136 2020-07-14] (Avast Software s.r.o. -> Avast Software)
Task: {B02FAAFE-DCBE-4888-8BA1-1ECB77EEC35C} - System32\Tasks\Avast SecureLine VPN Update => C:\Program Files\Avast Software\SecureLine VPN\VpnUpdate.exe [1180488 2020-07-27] (Avast Software s.r.o. -> AVAST Software)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 07 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 0.0.0.0
Tcpip\..\Interfaces\{080E8564-C9D6-4E6F-BAE5-C3985A41409F}: [DhcpNameServer] 192.168.0.1 0.0.0.0

Internet Explorer:
==================
HKU\S-1-5-21-2155469419-1363013824-1509811818-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.dell.com
SearchScopes: HKU\S-1-5-21-2155469419-1363013824-1509811818-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_251\bin\ssv.dll [2020-06-21] (Oracle America, Inc. -> Oracle Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_251\bin\jp2ssv.dll [2020-06-21] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)

Edge:
======
Edge Profile: C:\Users\Lenka\AppData\Local\Microsoft\Edge\User Data\Default [2020-06-28]

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.251.2 -> C:\Program Files\Java\jre1.8.0_251\bin\dtplugin\npDeployJava1.dll [2020-06-21] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.251.2 -> C:\Program Files\Java\jre1.8.0_251\bin\plugin2\npjp2.dll [2020-06-21] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)

Chrome:
=======
CHR Profile: C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default [2020-08-19]
CHR DownloadDir: E:\Users\Lenka\Downloads
CHR Notifications: Default -> hxxps://mail.google.com; hxxps://www.instagram.com
CHR HomePage: Default -> hxxps://www.google.com/
CHR Session Restore: Default -> is enabled.
CHR Extension: (Překladač Google) - C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2020-06-20]
CHR Extension: (Prezentace) - C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-06-20]
CHR Extension: (Dokumenty) - C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-06-20]
CHR Extension: (Disk Google) - C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-06-20]
CHR Extension: (YouTube) - C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-06-20]
CHR Extension: (Web for Instagram™) - C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\bonieeblbnamfclndbgnhblogabjijbp [2020-06-20]
CHR Extension: (Image Downloader) - C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnpniohnfphhjihaiiggeabnkjhpaldj [2020-06-20]
CHR Extension: (Tipli do prohlížeče) - C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbnfnbehhjknomdbfhcobpgpphnlnikp [2020-06-20]
CHR Extension: (Video Downloader professional) - C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2020-07-25]
CHR Extension: (Bulk Image Downloader) - C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\facoldpeadablbngjnohbmgaehknhcaj [2020-06-20]
CHR Extension: (Tabulky) - C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-06-20]
CHR Extension: (Video Downloader PLUS) - C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhplmmllnpjjlncfjpbbpjadoeijkogc [2020-06-20]
CHR Extension: (Dokumenty Google offline) - C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-08-19]
CHR Extension: (StoriesWatcher) - C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\jjcmfoepdlnfibimlfgkecogbllknime [2020-07-04]
CHR Extension: (IG Stories for Instagram™) - C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\nilbfjdbacfdodpbdondbbkmoigehodg [2020-08-02]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-06-20]
CHR Extension: (Transcribe: transcribe audio/interviews fast!) - C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogokenmicnjdfhmhocanoemnddmpcjjm [2020-06-20]
CHR Extension: (Gmail) - C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-06-20]
CHR Extension: (Chrome Media Router) - C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-07-21]
CHR Profile: C:\Users\Lenka\AppData\Local\Google\Chrome\User Data\System Profile [2020-06-20]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2018-08-23] (Apple Inc. -> Apple Inc.)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [6514072 2020-07-11] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [356824 2020-07-11] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Firewall; C:\Program Files\Avast Software\Avast\afwServ.exe [1065456 2020-07-11] (Avast Software s.r.o. -> AVAST Software)
R2 SecureLine; C:\Program Files\AVAST Software\SecureLine VPN\VpnSvc.exe [7415168 2020-07-27] (Avast Software s.r.o. -> AVAST Software)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
S3 WLSetupSvc; C:\Program Files (x86)\Windows Live\installer\WLSetupSvc.exe [266240 2007-10-25] (Microsoft Corporation) [File not signed]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [205888 2020-08-19] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [235592 2020-08-19] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [195656 2020-08-19] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [60488 2020-08-19] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42776 2020-08-19] (Avast Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [175192 2020-07-11] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [515544 2020-08-19] (Avast Software s.r.o. -> AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [38152 2020-06-20] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [109280 2020-08-19] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [84856 2020-08-19] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [851608 2020-08-19] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [466752 2020-08-19] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [216816 2020-07-11] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [323784 2020-08-19] (Avast Software s.r.o. -> AVAST Software)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [32224 2016-09-20] (Intel(R) Rapid Storage Technology -> Intel Corporation)
S3 nusb3hub; C:\Windows\system32\drivers\nusb3hub.sys [80384 2010-09-30] (Microsoft Windows Hardware Compatibility Publisher -> Renesas Electronics Corporation)
S3 nusb3xhc; C:\Windows\system32\drivers\nusb3xhc.sys [180736 2010-09-30] (Microsoft Windows Hardware Compatibility Publisher -> Renesas Electronics Corporation)
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2017-09-07] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 gdrv; \??\C:\Windows\gdrv.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-08-19 20:00 - 2020-08-19 20:00 - 000019325 _____ C:\Users\Lenka\Desktop\FRST.txt
2020-08-19 19:13 - 2020-08-19 20:00 - 000000000 ____D C:\FRST
2020-08-19 19:12 - 2020-08-19 19:12 - 002297344 _____ (Farbar) C:\Users\Lenka\Downloads\FRST64.exe
2020-08-19 19:12 - 2020-08-19 19:12 - 002297344 _____ (Farbar) C:\Users\Lenka\Desktop\FRST64.exe
2020-08-19 19:10 - 2020-08-19 19:10 - 000003870 _____ C:\Windows\system32\Tasks\CCleaner Update
2020-08-19 19:10 - 2020-08-19 19:10 - 000002802 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
2020-08-19 19:10 - 2020-08-19 19:10 - 000000822 _____ C:\Users\Public\Desktop\CCleaner.lnk
2020-08-19 19:10 - 2020-08-19 19:10 - 000000822 _____ C:\ProgramData\Desktop\CCleaner.lnk
2020-08-19 19:10 - 2020-08-19 19:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2020-08-19 19:10 - 2020-08-19 19:10 - 000000000 ____D C:\Program Files\CCleaner
2020-08-19 19:09 - 2020-08-19 19:09 - 027072192 _____ (Piriform Software Ltd) C:\Users\Lenka\Downloads\ccsetup570.exe
2020-08-19 19:08 - 2020-08-19 19:21 - 000000000 ____D C:\Users\Lenka\Desktop\chrome
2020-08-19 19:00 - 2020-08-19 19:11 - 000000000 ___SD C:\Users\Lenka\AppData\LocalLow\Temp
2020-08-19 18:59 - 2020-08-19 18:59 - 000335968 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2020-08-19 18:59 - 2020-08-19 18:59 - 000217336 _____ (AVAST Software) C:\Windows\system32\Drivers\asw9d6f6cedba6628a2.tmp
2020-08-19 18:59 - 2020-08-19 18:59 - 000175200 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbe94e555752c7f35.tmp
2020-07-27 17:26 - 2020-07-14 08:45 - 000076184 _____ (Avast Software) C:\Windows\system32\icarus_rvrt.exe
2020-07-26 19:25 - 2020-07-26 19:56 - 000000000 ____D C:\Scenes
2020-07-26 19:25 - 2020-07-26 19:52 - 000000860 ____S C:\Users\Public\Documents\mssystem.cfg
2020-07-26 19:25 - 2020-07-26 19:52 - 000000860 ____S C:\ProgramData\Documents\mssystem.cfg
2020-07-26 19:24 - 2020-07-26 19:57 - 000000000 ____D C:\KD
2020-07-26 19:24 - 2020-07-26 19:24 - 000000510 _____ C:\Users\Public\Desktop\KitchenDraw 6.5.lnk
2020-07-26 19:24 - 2020-07-26 19:24 - 000000510 _____ C:\ProgramData\Desktop\KitchenDraw 6.5.lnk
2020-07-26 19:24 - 2020-07-26 19:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KitchenDraw 6.5
2020-07-26 19:24 - 2008-12-18 11:14 - 000076480 _____ (Aladdin Knowledge Systems Ltd.) C:\Windows\system32\Drivers\eusk3usb-amd64.sys

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-08-19 19:15 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2020-08-19 19:07 - 2020-06-20 11:41 - 000000000 ____D C:\ProgramData\Avast Software
2020-08-19 19:03 - 2009-07-14 06:45 - 000038832 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-08-19 19:03 - 2009-07-14 06:45 - 000038832 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-08-19 19:00 - 2020-06-20 21:02 - 000669580 _____ C:\Windows\system32\perfh005.dat
2020-08-19 19:00 - 2020-06-20 21:02 - 000141738 _____ C:\Windows\system32\perfc005.dat
2020-08-19 19:00 - 2009-07-14 07:13 - 001586648 _____ C:\Windows\system32\PerfStringBackup.INI
2020-08-19 18:59 - 2020-06-20 11:41 - 000851608 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2020-08-19 18:59 - 2020-06-20 11:41 - 000515544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2020-08-19 18:59 - 2020-06-20 11:41 - 000466752 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2020-08-19 18:59 - 2020-06-20 11:41 - 000323784 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2020-08-19 18:59 - 2020-06-20 11:41 - 000235592 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2020-08-19 18:59 - 2020-06-20 11:41 - 000205888 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2020-08-19 18:59 - 2020-06-20 11:41 - 000195656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2020-08-19 18:59 - 2020-06-20 11:41 - 000109280 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2020-08-19 18:59 - 2020-06-20 11:41 - 000084856 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2020-08-19 18:59 - 2020-06-20 11:41 - 000060488 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2020-08-19 18:59 - 2020-06-20 11:41 - 000042776 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2020-08-19 18:59 - 2020-06-20 11:41 - 000003910 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2020-08-19 18:55 - 2020-06-20 11:32 - 000000000 __SHD C:\Users\Lenka\IntelGraphicsProfiles
2020-08-19 18:55 - 2020-06-20 11:06 - 000000000 ____D C:\Users\Lenka
2020-08-19 18:55 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-08-19 18:54 - 2020-06-20 15:16 - 000000000 ____D C:\Users\Lenka\AppData\Local\HP
2020-08-19 18:54 - 2020-06-20 11:42 - 000000000 ____D C:\Windows\system32\Tasks\Avast Software
2020-08-19 18:54 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\registration
2020-08-19 18:54 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\AppCompat
2020-08-19 18:53 - 2020-06-21 10:09 - 000000000 __RHD C:\MSOCache
2020-08-04 14:42 - 2020-06-20 18:55 - 000004196 _____ C:\Windows\system32\Tasks\Avast SecureLine VPN Update
2020-08-02 17:53 - 2009-07-14 07:09 - 000000000 ____D C:\Windows\system32\Tasks\WPD
2020-07-29 19:14 - 2020-06-20 11:25 - 000002224 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-07-29 19:14 - 2020-06-20 11:25 - 000002183 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-07-29 19:14 - 2020-06-20 11:25 - 000002183 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2020-07-28 15:59 - 2020-06-20 18:55 - 000002064 _____ C:\Users\Public\Desktop\Avast SecureLine VPN.lnk
2020-07-28 15:59 - 2020-06-20 18:55 - 000002064 _____ C:\ProgramData\Desktop\Avast SecureLine VPN.lnk
2020-07-27 17:26 - 2020-06-20 11:41 - 000000000 ____D C:\Program Files\Common Files\Avast Software
2020-07-26 21:30 - 2020-06-20 15:17 - 000003556 _____ C:\Windows\system32\Tasks\HPCustParticipation HP LaserJet M101-M106
2020-07-26 21:30 - 2020-06-20 15:17 - 000002934 _____ C:\Windows\system32\Tasks\HPCustPartic.exe_{BA9045A2-F794-4574-8C7A-49F4C219E880}
2020-07-26 21:30 - 2020-06-20 11:26 - 000003646 _____ C:\Windows\system32\Tasks\Intel PTT EK Recertification
2020-07-26 21:30 - 2020-06-20 11:24 - 000003388 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2020-07-26 21:30 - 2020-06-20 11:24 - 000003260 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2020-07-26 19:25 - 2020-06-20 11:06 - 000000000 ____D C:\Users\Lenka\AppData\Local\VirtualStore

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2020-08-07 16:14
==================== End of FRST.txt ========================Additional scan result of Farbar Recovery Scan Tool (x64) Version: 19-08-2020
Ran by Lenka (19-08-2020 20:00:44)
Running from C:\Users\Lenka\Desktop
Windows 7 Professional Service Pack 1 (X64) (2020-06-20 09:06:14)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2155469419-1363013824-1509811818-500 - Administrator - Disabled)
Guest (S-1-5-21-2155469419-1363013824-1509811818-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2155469419-1363013824-1509811818-1002 - Limited - Enabled)
Lenka (S-1-5-21-2155469419-1363013824-1509811818-1000 - Administrator - Enabled) => C:\Users\Lenka

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {5078598A-1FA2-C888-AA5F-A9C66537DB12}
FW: Avast Antivirus (Enabled) {D322394B-73F7-C65E-BBB0-3B81E063D6D4}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

3TB+Unlock B12.1102.1 (HKLM-x32\...\{17630FD1-B14A-4CA5-A627-B6B5F7DD41CF}) (Version: 1.00.0001 - GIGABYTE)
Apple Mobile Device Support (HKLM\...\{77F8C879-88CD-4145-945A-541C35285285}) (Version: 12.0.0.1039 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{C1BBFD2A-BCDD-45B3-8C0B-66BD434970A8}) (Version: 2.4.8.1 - Apple Inc.)
Avast Premium Security (HKLM-x32\...\Avast Antivirus) (Version: 20.6.2420 - Avast Software)
Avast SecureLine VPN (HKLM\...\Avast SecureLine) (Version: 5.6.4982.470 - Avast Software)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.70 - Piriform)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - )
Google Drive (HKLM-x32\...\{459CE109-4E46-4340-92BC-054642BC3BC2}) (Version: 1.31.2873.2758 - Google, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 84.0.4147.105 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.6.0.1035 - Intel Corporation)
Intel(R) Network Connections 21.1.29.0 (HKLM\...\PROSetDX) (Version: 21.1.29.0 - Intel)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 21.20.16.4550 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 15.2.0.1020 - Intel Corporation)
Intel(R) USB 3.0\3.1 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 5.0.0.32 - Intel Corporation)
Intel® Chipset Device Software (HKLM-x32\...\{bb0592a7-5772-4736-9d55-2402740085db}) (Version: 10.1.1.38 - Intel(R) Corporation) Hidden
iTunes (HKLM\...\{51E78C79-92F0-48B2-8A9A-3A5C0A7DD3F2}) (Version: 12.6.5.3 - Apple Inc.)
Java 8 Update 251 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180251F0}) (Version: 8.0.2510.8 - Oracle Corporation)
KitchenDraw 6.5 (HKLM-x32\...\KitchenDraw_is1) (Version: - Pragma)
LM101 (HKLM-x32\...\{C1D550A6-7C72-4286-970D-5CBF7C828A38}) (Version: 0.00.0005 - HP)
Microsoft .NET Framework 4.8 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUSR) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Podpora aplikací Apple (32bitová) (HKLM-x32\...\{543F829B-4591-4B2F-AF63-6E6E6AE59EB2}) (Version: 6.4 - Apple Inc.)
Podpora aplikací Apple (64bitová) (HKLM\...\{0ECA3BB5-4410-414B-B226-241FF1C12CD0}) (Version: 6.4 - Apple Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7989 - Realtek Semiconductor Corp.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Studie vylepšování produktu HP LaserJet M101-M106 (HKLM\...\{754F8BE3-417B-4550-B0FA-74A919581DC3}) (Version: 44.3.2667.18234 - HP Inc.)
Ubiquiti UniFi (remove only) (HKLM-x32\...\Ubiquiti UniFi) (Version: - )
Windows Live installer (HKLM-x32\...\{239BB983-8A2D-4974-B780-2ADAE32752D5}) (Version: 12.0.1471.1025 - Microsoft Corporation)
Windows Live Mail (HKLM-x32\...\{17EAD3D5-7E7D-47A3-A63C-C07AB46D468B}) (Version: 12.0.1606.1023 - Microsoft Corporation)
Základní software zařízení HP LaserJet M101-M106 (HKLM\...\{45AE3451-8651-4FFB-9BA4-7F0EBF1EA8F3}) (Version: 44.3.2667.18234 - HP Inc.)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [4171480 2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2020-07-11] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2020-07-11] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2016-07-29] (Google Inc -> Google)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2020-07-11] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2016-07-29] (Google Inc -> Google)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2016-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2020-07-11] (Avast Software s.r.o. -> AVAST Software)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]

==================== Loaded Modules (Whitelisted) =============

2007-10-05 13:43 - 2007-10-05 13:43 - 000134144 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Windows Live\Mail\sqmapi.dll
2019-03-27 23:48 - 2019-03-27 23:48 - 000115200 _____ (Microsoft Corporation) [File not signed] C:\Windows\Microsoft.Net\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
2020-07-11 11:54 - 2020-07-11 11:54 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2020-07-11 11:54 - 2020-07-11 11:54 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2020-07-11 11:54 - 2020-07-11 11:54 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2020-07-11 11:54 - 2020-07-11 11:54 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2020-07-11 11:54 - 2020-07-11 11:54 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2020-07-11 11:54 - 2020-07-11 11:54 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2020-07-11 11:54 - 2020-07-11 11:54 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2020-07-11 11:54 - 2020-07-11 11:54 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2020-07-11 11:54 - 2020-07-11 11:54 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2020-07-11 11:54 - 2020-07-11 11:54 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2020-07-11 11:54 - 2020-07-11 11:54 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2020-07-11 11:54 - 2020-07-11 11:54 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\ucrtbase.DLL
2020-07-11 11:54 - 2020-07-11 11:54 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\VCRUNTIME140.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2009-06-10 23:00 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\UCRT\;C:\Program Files\Intel\UCRT\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT
HKU\S-1-5-21-2155469419-1363013824-1509811818-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Lenka\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
MpsSvc => Firewall Service is not running.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) C:\Windows\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) C:\Windows\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{CCB0D68D-3960-4025-A9E0-662FA0B42DE8}] => (Allow) C:\Users\Lenka\AppData\Local\Temp\7zS3AE8\HPDiagnosticCoreUI.exe (HP Inc. -> HPDC LP)
FirewallRules: [{8A5C49EC-B181-44CD-A8DE-FBFAF8003FD9}] => (Allow) C:\Users\Lenka\AppData\Local\Temp\7zS3AE8\HPDiagnosticCoreUI.exe (HP Inc. -> HPDC LP)
FirewallRules: [{4D62C02D-F88C-4F56-BE1C-71383CC10A90}] => (Allow) C:\Program Files\HP\HP LaserJet M101-M106\bin\EWSProxy.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{1B83F446-7538-413F-89EF-7E4EA6A8073D}] => (Allow) C:\Program Files\HP\HP LaserJet M101-M106\Bin\DeviceSetup.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{5042C93E-F322-477C-B4E7-65B5E792B0F0}] => (Allow) LPort=5357
FirewallRules: [{BE2D61AB-7B09-4CD1-A0AE-CE92102FBA41}] => (Allow) C:\Program Files\HP\HP LaserJet M101-M106\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{04F7CDA8-ABFF-4D6B-8B40-EF609698D869}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{0DC795FA-958F-49C0-B64B-21B058D410EB}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{AEB24CCE-F666-4733-A81F-C6803A14954A}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{47AF64C1-8548-4B7A-A3B5-5FC56A938BB9}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{ACD051DC-7DEF-4EEE-B698-31D96E56DA13}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{67889228-9C6D-4954-9103-ABB5DC60A64B}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{34C45DF4-56F7-4101-8BF5-6A19EC750E40}] => (Allow) C:\Program Files\Java\jre1.8.0_251\bin\java.exe
FirewallRules: [{86D2D945-E873-4433-A60A-58003BDC9927}] => (Allow) C:\Program Files\Java\jre1.8.0_251\bin\java.exe
FirewallRules: [{3E6ABFEB-1D11-46DB-8BDB-AA449C4BCF1B}] => (Allow) C:\Users\Lenka\Ubiquiti UniFi\bin\mongod.exe (MongoDB, Inc) [File not signed]
FirewallRules: [{4B27131A-B6DE-42BE-8918-535DCC5F8966}] => (Allow) C:\Users\Lenka\Ubiquiti UniFi\bin\mongod.exe (MongoDB, Inc) [File not signed]
FirewallRules: [{55EB7DFB-9D46-49BA-8B1B-B1477A62F4A1}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

04-08-2020 15:04:06 Naplánovaný kontrolní bod
19-08-2020 14:57:13 lll
19-08-2020 18:52:57 Operace obnovení

==================== Faulty Device Manager Devices ============

Name: Myš Microsoft pro port PS/2
Description: Myš Microsoft pro port PS/2
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Standardní klávesnice PS/2
Description: Standardní klávesnice PS/2
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standardní klávesnice)
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Event log errors: ========================

Application errors:
==================
Error: (08/19/2020 06:55:08 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (08/19/2020 06:39:50 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (08/19/2020 02:54:44 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (08/18/2020 06:12:57 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (08/18/2020 02:01:59 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (08/17/2020 04:54:21 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (08/16/2020 04:00:21 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (08/16/2020 08:43:56 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.


System errors:
=============
Error: (08/19/2020 07:27:09 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 20.

Error: (08/19/2020 06:55:19 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Služba Naslouchací proces domácí skupiny ukončena s chybou %%-2147023143 = Pro mapovač koncových bodů nejsou k dispozici další koncové body., specifickou pro službu.

Error: (08/19/2020 06:55:05 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Služba Brána Windows Firewall ukončena s chybou Přístup byl odepřen.
, specifickou pro službu.

Error: (08/18/2020 06:12:50 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (16:46:51, ‎18.‎8.‎2020) bylo neočekávané.

Error: (08/16/2020 07:43:16 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: Název WORKGROUP :1d nelze zaregistrovat v rozhraní s IP adresou 192.168.0.104.
Počítač s IP adresou 192.168.0.1 nepovolil získání názvu
tímto počítačem.

Error: (08/16/2020 07:36:22 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: Název WORKGROUP :1d nelze zaregistrovat v rozhraní s IP adresou 192.168.0.104.
Počítač s IP adresou 192.168.0.1 nepovolil získání názvu
tímto počítačem.

Error: (08/15/2020 09:36:08 PM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Služba Diagnostics Tracking Service se po přijetí pokynu pro vypnutí neukončila správně.

Error: (08/14/2020 09:06:05 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {995C996E-D918-4A8C-A302-45719A6F4EA7} se v daném časovém limitu neregistroval u služby DCOM.


==================== Memory info ===========================

BIOS: American Megatrends Inc. F4 02/21/2017
Motherboard: Gigabyte Technology Co., Ltd. B250M-D3H-CF
Processor: Intel(R) Pentium(R) CPU G4500 @ 3.50GHz
Percentage of memory in use: 82%
Total physical RAM: 8078.93 MB
Available physical RAM: 1445.17 MB
Total Virtual: 16156 MB
Available Virtual: 9567.05 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:111.57 GB) (Free:48.06 GB) NTFS


==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 111.8 GB) (Disk ID: F667B260)

Partition: GPT.

==================== End of Addition.txt =======================

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 114797
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosím o kontrolu PC

#4 Příspěvek od Rudy »

Teď spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

joj
Návštěvník
Návštěvník
Příspěvky: 151
Registrován: 10 říj 2013 13:01

Re: Prosím o kontrolu PC

#5 Příspěvek od joj »

# -------------------------------
# Malwarebytes AdwCleaner 8.0.7.0
# -------------------------------
# Build: 07-22-2020
# Database: 2020-07-20.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 08-19-2020
# Duration: 00:00:13
# OS: Windows 7 Professional
# Scanned: 31837
# Detected: 0


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.

***** [ Hosts File Entries ] *****

No malicious hosts file entries found.

***** [ Preinstalled Software ] *****

No Preinstalled Software found.########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 114797
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosím o kontrolu PC

#6 Příspěvek od Rudy »

Toto je OK. Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [646776 2020-03-12] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-2155469419-1363013824-1509811818-1000\...\MountPoints2: {ea27b886-b2d4-11ea-9054-806e6f6e6963} - D:\Run.exe
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {5DE7F836-57AF-4F78-B6E0-97C54A026DDF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2020-06-20] (Google Inc -> Google Inc.)
Task: {64230D07-602F-4FC1-9662-1647147251E8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2020-06-20] (Google Inc -> Google Inc.)
SearchScopes: HKU\S-1-5-21-2155469419-1363013824-1509811818-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
C:\Windows\system32\Drivers\asw9d6f6cedba6628a2.tmp
C:\Windows\system32\Drivers\aswbe94e555752c7f35.tmp
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File

EmptyTemp:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

joj
Návštěvník
Návštěvník
Příspěvky: 151
Registrován: 10 říj 2013 13:01

Re: Prosím o kontrolu PC

#7 Příspěvek od joj »

Tak fix jsem provedla, ale restart PC se zamrzl u Starting Windows a dál ani ťuk. Proběhly 3 pokusy o opravu systému, ale vždy to zamrzne u Starting Windows.

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 114797
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosím o kontrolu PC

#8 Příspěvek od Rudy »

To je divné. Dostanete se alespoň do nouz. režimu?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

joj
Návštěvník
Návštěvník
Příspěvky: 151
Registrován: 10 říj 2013 13:01

Re: Prosím o kontrolu PC

#9 Příspěvek od joj »

Tak jsem zkusila stav nouze načítalo to jednotlivé soubory win a pak se to kouslo a nic :frusty:

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 114797
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosím o kontrolu PC

#10 Příspěvek od Rudy »

Byly mazány pouze zbytečnosti, ty to nemohly způsobit. Možná byl nykopnutý systém. Nezbude vám nic jiného, než reinstal systému. Je možné, že je poškozen disk.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

joj
Návštěvník
Návštěvník
Příspěvky: 151
Registrován: 10 říj 2013 13:01

Re: Prosím o kontrolu PC

#11 Příspěvek od joj »

Když dám kontrolu disku tak to nehlásí chybu na disku. Můžete mi doporučit nějaký program který by odhalil případně chyby? Diky

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 114797
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosím o kontrolu PC

#12 Příspěvek od Rudy »

Pokud nespustíte Windows, potom jen bootovatelné CD Hiren ´s boot CD: https://www.hirensbootcd.org/download/ . Je to komplexní nástroj obsahující řadu kontrolních utilit, kterými je možné zjistit příčinu problému. Ne vždy je ale možné provést opravu bez reinstalu. Je třeba mít možnost vypálení CD (vypalovací utiilita je součástí balíku).
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

joj
Návštěvník
Návštěvník
Příspěvky: 151
Registrován: 10 říj 2013 13:01

Re: Prosím o kontrolu PC

#13 Příspěvek od joj »

Mam už HDD vyvážený z pc a pripojeny jako externi disk u notebooku. Zkusím ho zkontrolovat jako periferií! Jo?

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 114797
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosím o kontrolu PC

#14 Příspěvek od Rudy »

To jistě můžete. Potom lze na disk použít CrystalDiskInfo: https://www.instaluj.cz/crystaldiskinfo . Po otevření okna přes Úpravy>Kopírovat sem dejte log.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

joj
Návštěvník
Návštěvník
Příspěvky: 151
Registrován: 10 říj 2013 13:01

Re: Prosím o kontrolu PC

#15 Příspěvek od joj »

----------------------------------------------------------------------------
CrystalDiskInfo 7.0.4 (C) 2008-2016 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows 10 [10.0 Build 18362] (x64)
Date : 2020/08/20 21:08:23

-- Controller Map ----------------------------------------------------------
+ Řadič třídy úložiště SD [SCSI]
- Generic M0S002
- Řadič prostorů úložišť [SCSI]

-- Disk List ---------------------------------------------------------------
(1) WDC WDS120G1G0A-00SS50 : 120,0 GB [1/0/0, sa1]

----------------------------------------------------------------------------
(1) WDC WDS120G1G0A-00SS50
----------------------------------------------------------------------------
Enclosure : Generic External USB Device (V=13FD, P=0840, sa1)
Model : WDC WDS120G1G0A-00SS50
Firmware : Z3311000
Serial Number : 173503A016F2
Disk Size : 120,0 GB (8,4/120,0/120,0/120,0)
Buffer Size : Neznámy údaj
Queue Depth : 32
# of Sectors : 234441648
Rotation Rate : ---- (SSD)
Interface : USB (Serial ATA)
Major Version : ACS-2
Minor Version : ACS-2 Revision 3
Transfer Mode : SATA/150 | SATA/600
Power On Hours : 3786 hod.
Power On Count : 2415 krát
Temperature : 27 C (80 F)
Health Status : Dobrý
Features : S.M.A.R.T., APM, 48bit LBA, NCQ, TRIM, DevSleep
APM Level : 0080h [ON]
AAM Level : ----
Drive Letter : D:

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
05 100 100 __0 000000000000 Počet přemapovaných sektorů
09 __0 100 __0 000000000ECA Hodin v činnosti
0C 100 100 __0 00000000096F Počet cyklů zapnutí zařízení
A5 100 100 __0 13E5176F16DE Specifický pro výrobce
A6 100 100 __0 00000000000B Specifický pro výrobce
A7 100 100 __0 000000000000 Specifický pro výrobce
A8 100 100 __0 000000000071 Specifický pro výrobce
A9 100 100 __0 000000000000 Specifický pro výrobce
AA 100 100 __0 000000000000 Specifický pro výrobce
AB 100 100 __0 000000000000 Specifický pro výrobce
AC 100 100 __0 000000000000 Specifický pro výrobce
AD 100 100 __0 00000000003D Specifický pro výrobce
AE 100 100 __0 000000000014 Specifický pro výrobce
BB 100 100 __0 000000000000 Specifický pro výrobce
BC 100 100 __0 000000000000 Specifický pro výrobce
C2 _73 _52 __0 00300000001B Teplota
C7 100 100 __0 000000000000 Specifický pro výrobce
E6 100 100 __0 079F036E079F Specifický pro výrobce
E8 100 100 __4 000000000064 Specifický pro výrobce
E9 100 100 __0 000000001C79 Specifický pro výrobce
EA 100 100 __0 00000000696B Specifický pro výrobce
F1 253 253 __0 000000002259 Total Host Writes
F2 253 253 __0 00000000326A Total Host Reads
F4 __0 100 __0 000000000000 Specifický pro výrobce

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0000 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 3137 3335 3033 4130 3136 4632 2020 2020 2020 2020
020: 0000 0000 0000 5A33 3331 3130 3030 5744 4320 5744
030: 5331 3230 4731 4730 412D 3030 5353 3530 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8001 4000 2F00
050: 4000 0200 0000 0007 3FFF 0010 003F FC10 00FB 9101
060: 4BB0 0DF9 0000 0007 0003 0078 0078 0078 0078 4D20
070: 0000 0000 0000 0000 0000 001F 850E 0082 014C 0040
080: 03F0 0110 346B 7D09 4163 3469 BC09 4163 407F 0001
090: 0001 0080 FFFE 0000 0000 0000 0000 0000 0000 0000
100: 4BB0 0DF9 0000 0000 0000 0008 4000 0000 5001 B448
110: B438 6107 0000 0000 0000 0000 0000 0000 0000 401C
120: 401C 0000 0000 0000 0000 0000 0000 0000 0021 0000
130: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
140: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0003 0001
170: 0000 0000 0000 0000 0000 0000 2020 2020 2020 2020
180: 2020 2020 2020 2020 2020 2020 2020 2020 2020 2020
190: 2020 2020 2020 2020 2020 2020 2020 2020 2020 2020
200: 2020 2020 2020 2020 2020 2020 0000 0000 0000 4000
210: 0000 0000 0000 0000 0000 0000 0000 0001 0000 0000
220: 0000 0000 10FF 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0020 0020 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 B3A5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 01 00 05 32 00 64 64 00 00 00 00 00 00 00 09 32
010: 00 00 64 CA 0E 00 00 00 00 00 0C 32 00 64 64 6F
020: 09 00 00 00 00 00 A5 32 00 64 64 DE 16 6F 17 E5
030: 13 00 A6 32 00 64 64 0B 00 00 00 00 00 00 A7 32
040: 00 64 64 00 00 00 00 00 00 00 A8 32 00 64 64 71
050: 00 00 00 00 00 00 A9 32 00 64 64 00 00 00 00 00
060: 00 00 AA 32 00 64 64 00 00 00 00 00 00 00 AB 32
070: 00 64 64 00 00 00 00 00 00 00 AC 32 00 64 64 00
080: 00 00 00 00 00 00 AD 32 00 64 64 3D 00 00 00 00
090: 00 00 AE 32 00 64 64 14 00 00 00 00 00 00 BB 32
0A0: 00 64 64 00 00 00 00 00 00 00 BC 32 00 64 64 00
0B0: 00 00 00 00 00 00 C2 22 00 49 34 1B 00 00 00 30
0C0: 00 00 C7 32 00 64 64 00 00 00 00 00 00 00 E6 32
0D0: 00 64 64 9F 07 6E 03 9F 07 00 E8 33 00 64 64 64
0E0: 00 00 00 00 00 00 E9 32 00 64 64 79 1C 00 00 00
0F0: 00 00 EA 32 00 64 64 6B 69 00 00 00 00 00 F1 30
100: 00 FD FD 59 22 00 00 00 00 00 F2 30 00 FD FD 6A
110: 32 00 00 00 00 00 F4 32 00 00 64 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 78 00 00 11
170: 03 00 01 00 02 0A 00 00 00 00 00 00 00 00 00 00
180: 00 00 65 32 01 00 78 66 0D 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 9B DD D1 0E 00 00 00 00 61 2D 56 15 00 00 00 00
1D0: F2 4E A8 11 A0 05 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 9B

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 01 00 05 00 00 00 00 00 00 00 00 00 00 00 09 00
010: 00 00 00 00 00 00 00 00 00 00 0C 00 00 00 00 00
020: 00 00 00 00 00 00 A5 00 00 00 00 00 00 00 00 00
030: 00 00 A6 00 00 00 00 00 00 00 00 00 00 00 A7 00
040: 00 00 00 00 00 00 00 00 00 00 A8 00 00 00 00 00
050: 00 00 00 00 00 00 A9 00 00 00 00 00 00 00 00 00
060: 00 00 AA 00 00 00 00 00 00 00 00 00 00 00 AB 00
070: 00 00 00 00 00 00 00 00 00 00 AC 00 00 00 00 00
080: 00 00 00 00 00 00 AD 00 00 00 00 00 00 00 00 00
090: 00 00 AE 00 00 00 00 00 00 00 00 00 00 00 BB 00
0A0: 00 00 00 00 00 00 00 00 00 00 BC 00 00 00 00 00
0B0: 00 00 00 00 00 00 C2 00 00 00 00 00 00 00 00 00
0C0: 00 00 C7 00 00 00 00 00 00 00 00 00 00 00 E6 00
0D0: 00 00 00 00 00 00 00 00 00 00 E8 04 00 00 00 00
0E0: 00 00 00 00 00 00 E9 00 00 00 00 00 00 00 00 00
0F0: 00 00 EA 00 00 00 00 00 00 00 00 00 00 00 F1 00
100: 00 00 00 00 00 00 00 00 00 00 F2 00 00 00 00 00
110: 00 00 00 00 00 00 F4 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 CA

Zamčeno