zpomalené pc

Zpráva

Hraczka · #1 Příspěvek od **Hraczka** » 17 led 2021 19:57

Dobrý den.
Poslední dobou se mi seká pc, občas je i zpomalený prohlížeč, někdy se mi sekají hry,které předtím normálně fungovaly.

Zde posílám log:

Logfile of random's system information tool 1.10 (written by random/random)
Run by David at 2021-01-17 19:47:51
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 51 GB (42%) free of 119 GB
Total RAM: 4061 MB (73% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:47:56, on 17.1.2021
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.19597)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Advanced SystemCare Pro\Monitor.exe
C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
C:\Program Files (x86)\Advanced SystemCare Pro\ASC.exe
C:\Program Files (x86)\Advanced SystemCare Pro\ASCTray.exe
C:\Program Files\trend micro\David.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/?OCID=IE11FREDHP&PC=UF01
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\URLREDIR.DLL
O4 - HKCU\..\Run: [DAEMON Tools Ultra Agent] "C:\Program Files\DAEMON Tools Ultra\DTAgent.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\MSOXMLMF.DLL
O23 - Service: Advanced SystemCare Service 13 (AdvancedSystemCareService13) - Unknown owner - C:\Program Files (x86)\Advanced SystemCare Pro\ASCService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Disc Soft Ultra Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Ultra\DiscSoftBusService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Security\ekrn.exe
O23 - Service: ESET Firewall Helper (ekrnEpfw) - ESET - C:\Program Files\ESET\ESET Security\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: IObit Uninstaller Service (IObitUnSvr) - IObit - C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 8519 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files (x86)\Advanced SystemCare Pro\ASCService.exe"
"C:\Program Files\ESET\ESET Security\ekrn.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
"taskhost.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Windows\system32\Dwm.exe"
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
taskeng.exe {C73532D6-8AE3-456F-87DB-A6173F5E1E2C}
"C:\Program Files (x86)\Advanced SystemCare Pro\Monitor.exe" /Task
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Windows\System32\igfxtray.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Windows\System32\hkcmd.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\DAEMON Tools Ultra\DTAgent.exe" -autorun
"c:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 2488
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files\ESET\ESET Security\eguiproxy.exe" /hide
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files\DAEMON Tools Ultra\DiscSoftBusService.exe"
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-e15354e7-3503-4823-9d9d-2c90b0d118a2 -SystemEventPortName:HostProcess-5984deef-62f8-48ca-8bc5-090885d9d43e -IoCancelEventPortName:HostProcess-d3fce8a7-8c67-430e-b087-6d3615068398 -NonStateChangingEventPortName:HostProcess-f8f61a42-921a-49b2-8b6e-8735a0b324e0 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:428eb281-e378-480a-9275-f7afb4703ac3 -DeviceGroupId:
"taskhost.exe"
explorer.exe
"C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe" /Set
"C:\Program Files (x86)\Advanced SystemCare Pro\ASC.exe" /SkipUac
"C:\Program Files (x86)\Advanced SystemCare Pro\ASCTray.exe" /manual
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe21_ Global\UsGthrCtrlFltPipeMssGthrPipe21 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 512 516 524 65536 520

"C:\Users\David\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe

=========Mozilla firefox=========

ProfilePath - C:\Users\David\AppData\Roaming\Mozilla\Firefox\Profiles\niag4o4o.default-release-1597433812800

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\SysWOW64\Adobe\Director\np32dsw_1235205.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf]
"Description"=
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf]
"Description"=
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf]
"Description"=
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp]
"Description"=
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf]
"Description"=
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/Lync,version=15.0]
"Description"=Microsoft Lync Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.261.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_261\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.261.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_261\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL

C:\Users\David\AppData\Roaming\Mozilla\Firefox\Profiles\niag4o4o.default-release-1597433812800\extensions\
staged

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
ExplorerWnd Helper - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2019-06-20 2478864]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2020-10-28 210632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_261\bin\ssv.dll [2020-10-17 736424]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - c:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 532336]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\Program Files\Microsoft Office\root\Office16\URLREDIR.DLL [2021-01-15 984472]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_261\bin\jp2ssv.dll [2020-10-17 350888]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2020-07-19 157904]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - c:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\URLREDIR.DLL [2021-01-15 687512]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2011-02-11 162328]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-02-11 386584]
"egui"=C:\Program Files\ESET\ESET Security\ecmds.exe [2020-10-28 175504]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Ultra Agent"=C:\Program Files\DAEMON Tools Ultra\DTAgent.exe [2016-02-02 4338880]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2011-02-11 272896]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoSimpleNetIDList"=1
"NoDriveTypeAutoRun"=221

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\64BitMailAgent.exe]
"Debugger="C:\Program Files (x86)\Advanced SystemCare Pro\AutoReactivator.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\FoxitReader.exe]
"Debugger="C:\Program Files (x86)\Advanced SystemCare Pro\AutoReactivator.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\FoxitReaderConnectedPDFService.exe]
"Debugger="C:\Program Files (x86)\Advanced SystemCare Pro\AutoReactivator.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\FoxitReaderUpdateService.exe]
"Debugger="C:\Program Files (x86)\Advanced SystemCare Pro\AutoReactivator.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\FoxitUpdater.exe]
"Debugger="C:\Program Files (x86)\Advanced SystemCare Pro\AutoReactivator.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\maintenanceservice.exe]
"Debugger="C:\Program Files (x86)\Advanced SystemCare Pro\AutoReactivator.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SendCrashReport.exe]
"Debugger="C:\Program Files (x86)\Advanced SystemCare Pro\AutoReactivator.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ServiceMiniNotice.exe]
"Debugger="C:\Program Files (x86)\Advanced SystemCare Pro\AutoReactivator.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TrackReview.exe]
"Debugger="C:\Program Files (x86)\Advanced SystemCare Pro\AutoReactivator.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"VIDC.LAGS"=lagarith.dll
"VIDC.X264"=x264vfw64.dll
"VIDC.XVID"=xvidvfw.dll
"msacm.l3codecp"=l3codecp.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"VIDC.FFDS"=ff_vfw.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2021-01-17 17:46:31 ----D---- C:\Users\David\AppData\Roaming\EMM

======List of files/folders modified in the last 1 month======

2021-01-17 19:47:54 ----D---- C:\Program Files\trend micro
2021-01-17 19:47:17 ----D---- C:\Windows\Temp
2021-01-17 19:43:08 ----D---- C:\Windows\system32\config
2021-01-17 19:23:56 ----D---- C:\ProgramData\EMM
2021-01-17 19:18:17 ----D---- C:\Users\David\AppData\Roaming\MobiMoverUILaunch
2021-01-17 19:09:57 ----D---- C:\ProgramData\Mozilla
2021-01-17 19:07:44 ----D---- C:\Program Files
2021-01-17 19:07:06 ----D---- C:\Program Files (x86)\Advanced SystemCare Pro
2021-01-17 19:05:49 ----D---- C:\Windows\system32\Tasks
2021-01-17 19:04:30 ----D---- C:\Windows\system32\wdi
2021-01-17 19:04:30 ----D---- C:\Windows\system32\catroot2
2021-01-17 19:04:29 ----D---- C:\Windows\inf
2021-01-17 19:04:28 ----D---- C:\Windows
2021-01-17 18:54:50 ----D---- C:\ProgramData\ProductData
2021-01-17 18:51:29 ----D---- C:\Users\David\AppData\Roaming\IObit
2021-01-17 18:51:09 ----D---- C:\ProgramData\IObit
2021-01-17 18:48:28 ----D---- C:\Program Files (x86)\IObit
2021-01-17 18:45:01 ----HD---- C:\ProgramData
2021-01-17 17:47:06 ----D---- C:\Users\David\AppData\Roaming\MobiMover
2021-01-17 17:44:26 ----D---- C:\Program Files (x86)\EaseUS
2021-01-17 17:43:46 ----D---- C:\Windows\Prefetch
2021-01-15 23:56:18 ----SHD---- C:\System Volume Information
2021-01-15 16:10:15 ----D---- C:\Users\David\AppData\Roaming\Kodi
2021-01-15 12:50:31 ----D---- C:\Program Files\Microsoft Office
2021-01-10 02:59:55 ----D---- C:\Program Files\Mozilla Firefox
2021-01-10 02:59:55 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2020-12-24 23:27:49 ----D---- C:\Windows\System32
2020-12-24 23:27:49 ----A---- C:\Windows\system32\PerfStringBackup.INI

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 edevmon;edevmon; C:\Windows\system32\DRIVERS\edevmon.sys [2020-10-28 109360]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2018-01-01 213736]
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2020-10-28 160992]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2020-10-28 190464]
R1 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2020-10-28 70048]
R1 EpfwLWF;ESET Firewall; C:\Windows\system32\DRIVERS\EpfwLWF.sys [2020-10-28 56152]
R1 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2020-10-28 107784]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [2020-05-24 27552]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2016-03-25 60416]
R2 atksgt;atksgt; C:\Windows\system32\DRIVERS\atksgt.sys [2020-03-14 314016]
R2 ekbdflt;ekbdflt; C:\Windows\system32\DRIVERS\ekbdflt.sys [2020-10-28 43720]
R2 lirsgt;lirsgt; C:\Windows\system32\DRIVERS\lirsgt.sys [2020-03-14 43680]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2011-06-27 2753536]
R3 cpuz145;cpuz145; \??\C:\Windows\temp\cpuz145\cpuz145_x64.sys [2021-01-17 49968]
R3 dtultrascsibus;DAEMON Tools Ultra Virtual SCSI Bus; C:\Windows\system32\DRIVERS\dtultrascsibus.sys [2020-01-09 30264]
R3 dtultrausbbus;DAEMON Tools Ultra Virtual USB Bus; C:\Windows\system32\DRIVERS\dtultrausbbus.sys [2020-01-09 47672]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2011-02-11 10628640]
R3 IUFileFilter;IUFileFilter; \??\C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win7_amd64\IUFileFilter.sys [2019-07-30 25992]
R3 IUProcessFilter;IUProcessFilter; \??\C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win7_amd64\IUProcessFilter.sys [2019-07-30 19280]
R3 IURegistryFilter;IURegistryFilter; \??\C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win7_amd64\IURegistryFilter.sys [2019-07-30 31648]
R3 L1E;NDIS Miniport Driver for Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1E62x64.sys [2020-05-24 64040]
R3 mcaudrv_simple;ManyCam Virtual Microphone; C:\Windows\system32\drivers\mcaudrv_x64.sys [2014-12-29 35992]
R3 MTsensor;ATK0100 ACPI UTILITY; C:\Windows\system32\DRIVERS\ATK64AMD.sys [2020-05-24 15928]
R3 ST50220;Sonix ST50220 USB Video Camera Driver; C:\Windows\System32\Drivers\ST50220.sys [2020-05-24 51248]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2016-03-25 18432]
R3 WinUsb;Android USB Driver; C:\Windows\system32\DRIVERS\WinUsb.sys [2016-03-25 42496]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2019-07-30 556032]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2019-07-30 80384]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2020-04-24 136040]
S3 ew_usbccgpfilter;HwHandSet_CompositeFilter; C:\Windows\system32\DRIVERS\ew_usbccgpfilter.sys [2019-12-27 18944]
S3 ManyCam;ManyCam Virtual Webcam; C:\Windows\system32\DRIVERS\mcvidrv.sys [2018-07-27 58280]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2016-03-25 12520]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\Windows\system32\DRIVERS\snp2uvc.sys [2009-06-06 1806400]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2020-04-24 166760]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 usbser;USB RS-232 Emulation Driver; C:\Windows\system32\DRIVERS\USBSER.sys [2019-12-27 33280]
S4 AscRegistryFilter;AscRegistryFilter; \??\C:\Program Files (x86)\Advanced SystemCare Pro\drivers\win7_amd64\AscRegistryFilter.sys []
S4 iobit_monitor_server;iobit_monitor_server; \??\C:\Program Files (x86)\Advanced SystemCare Pro\drivers\Monitor_win7_x64.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdvancedSystemCareService13;Advanced SystemCare Service 13; C:\Program Files (x86)\Advanced SystemCare Pro\ASCService.exe []
R2 ClickToRunSvc;Služba Microsoft Office Klikni a spusť; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2021-01-07 11137416]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2016-03-25 27136]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Security\ekrn.exe [2020-10-28 2595360]
R2 wlidsvc;Windows Live ID Sign-in Assistant; c:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 2291568]
R3 Disc Soft Ultra Bus Service;Disc Soft Ultra Bus Service; C:\Program Files\DAEMON Tools Ultra\DiscSoftBusService.exe [2016-02-02 1439424]
R3 ekrnEpfw;ESET Firewall Helper; C:\Program Files\ESET\ESET Security\ekrn.exe [2020-10-28 2595360]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2019-03-28 132792]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2019-03-28 158912]
S2 IObitUnSvr;IObit Uninstaller Service; C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [2019-08-23 156944]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2019-12-17 116224]
S3 ose64;Office 64 Source Engine; c:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2002-02-01 263496]
S3 osppsvc;Office Software Protection Platform; c:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2019-11-09 5132888]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2020-01-12 1255736]
S3 WiaRpc;@%SystemRoot%\system32\wiarpc.dll,-2; C:\Windows\system32\svchost.exe [2016-03-25 27136]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2019-03-28 54912]
S4 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2021-01-09 242144]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2019-03-28 136256]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2019-03-28 136256]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2019-03-28 136256]

-----------------EOF-----------------

#2 Příspěvek od **Rudy** » 17 led 2021 20:56

Zdravím!
Spusťte tuto utilitu:

Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpoved

Hraczka · #3 Příspěvek od **Hraczka** » 17 led 2021 21:18

# -------------------------------
# Malwarebytes AdwCleaner 8.0.9.0
# -------------------------------
# Build: 01-11-2021
# Database: 2021-01-11.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 01-17-2021
# Duration: 00:00:03
# OS: Windows 7 Home Premium
# Cleaned: 5
# Failed: 0

***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

No malicious registry entries cleaned.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

Deleted Preinstalled.ASUSLiveUpdate Folder C:\Program Files (x86)\ASUS\ASUS LIVE UPDATE
Deleted Preinstalled.ASUSLiveUpdate Folder C:\ProgramData\ASUS\ASUS LIVE UPDATE
Deleted Preinstalled.ASUSLiveUpdate Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AC3C388E-B9D8-45EA-B02D-175494186AA1}
Deleted Preinstalled.ASUSLiveUpdate Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Update Checker
Deleted Preinstalled.ASUSLiveUpdate Task C:\Windows\System32\Tasks\UPDATE CHECKER

*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [2858 octets] - [17/01/2021 21:11:44]
AdwCleaner[C00].txt - [2339 octets] - [17/01/2021 21:13:57]
AdwCleaner[S01].txt - [2035 octets] - [17/01/2021 21:16:47]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C01].txt ##########

#4 Příspěvek od **Rudy** » 17 led 2021 21:55

OK. Teď dejte logy FRST+Addition: https://forum.viry.cz/viewtopic.php?f=13&t=154679 .

Hraczka · #5 Příspěvek od **Hraczka** » 17 led 2021 22:45

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 17-01-2021
Ran by David (administrator) on DAVID-PC (ASUSTeK Computer Inc. K50IJ) (17-01-2021 22:38:12)
Running from C:\Users\David\Downloads
Loaded Profiles: David & DefaultAppPool
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Default browser: FF
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <4>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\inetsrv\w3wp.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [175504 2020-10-28] (ESET, spol. s r.o. -> ESET)
HKLM\...\Policies\Explorer: [CDRAutoRun] 0
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-3321637588-428875143-3676826485-1000\...\Run: [DAEMON Tools Ultra Agent] => C:\Program Files\DAEMON Tools Ultra\DTAgent.exe [4338880 2016-02-02] (Disc Soft Ltd -> Disc Soft Ltd) [File not signed]
HKU\S-1-5-21-3321637588-428875143-3676826485-1000\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKU\S-1-5-21-3321637588-428875143-3676826485-1000\...\MountPoints2: F - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3321637588-428875143-3676826485-1000\...\MountPoints2: G - G:\setup.exe
HKU\S-1-5-21-3321637588-428875143-3676826485-1000\...\MountPoints2: {7471f82e-b066-11ea-aaed-485b39405249} - G:\setup.exe
HKU\S-1-5-21-3321637588-428875143-3676826485-1000\...\MountPoints2: {91a1b3f3-a503-11ea-8f7a-485b39405249} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3321637588-428875143-3676826485-1000\...\MountPoints2: {9616086c-354d-11ea-a30f-485b39405249} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3321637588-428875143-3676826485-1000\...\MountPoints2: {a0a810ce-1622-11eb-bb84-485b39405249} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3321637588-428875143-3676826485-1000\...\MountPoints2: {ad493791-b635-11ea-8152-485b39405249} - G:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3321637588-428875143-3676826485-1000\...\MountPoints2: {ad4937f4-b635-11ea-8152-485b39405249} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3321637588-428875143-3676826485-1000\...\MountPoints2: {c3a838c8-a61f-11ea-889b-485b39405249} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3321637588-428875143-3676826485-1000\...\MountPoints2: {c6c4e676-45a3-11ea-ba13-485b39405249} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3321637588-428875143-3676826485-1000\...\MountPoints2: {d4b63174-44e9-11ea-a4af-485b39405249} - F:\setup.exe
HKU\S-1-5-21-3321637588-428875143-3676826485-1000\...\MountPoints2: {de707c85-c34e-11ea-bc5b-485b39405249} - I:\HiSuiteDownLoader.exe
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKLM\...\Windows x64\Print Processors\HP1020PrintProc: C:\Windows\System32\spool\prtprocs\x64\pphp1020.dll [65024 2012-09-18] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\HPLJ1020LM: C:\Windows\system32\zlhp1020.dll [192512 2012-09-18] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> c:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2009-08-18] (Microsoft Corporation -> Microsoft Corporation)
IFEO\64BitMailAgent.exe: [Debugger] C:\Program Files (x86)\Advanced SystemCare Pro\AutoReactivator.exe
IFEO\FoxitReader.exe: [Debugger] C:\Program Files (x86)\Advanced SystemCare Pro\AutoReactivator.exe
IFEO\FoxitReaderConnectedPDFService.exe: [Debugger] C:\Program Files (x86)\Advanced SystemCare Pro\AutoReactivator.exe
IFEO\FoxitReaderUpdateService.exe: [Debugger] C:\Program Files (x86)\Advanced SystemCare Pro\AutoReactivator.exe
IFEO\FoxitUpdater.exe: [Debugger] C:\Program Files (x86)\Advanced SystemCare Pro\AutoReactivator.exe
IFEO\maintenanceservice.exe: [Debugger] C:\Program Files (x86)\Advanced SystemCare Pro\AutoReactivator.exe
IFEO\SendCrashReport.exe: [Debugger] C:\Program Files (x86)\Advanced SystemCare Pro\AutoReactivator.exe
IFEO\ServiceMiniNotice.exe: [Debugger] C:\Program Files (x86)\Advanced SystemCare Pro\AutoReactivator.exe
IFEO\TrackReview.exe: [Debugger] C:\Program Files (x86)\Advanced SystemCare Pro\AutoReactivator.exe
BootExecute:
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {04AA42E0-05A5-4922-8BA5-628703A87010} - System32\Tasks\Uninstaller_SkipUac_David => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [5900560 2019-09-10] (IObit Information Technology -> IObit)
Task: {19868E42-69DE-438D-9F89-ACAF0681E62D} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24612232 2021-01-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {376981BE-D80F-4536-BF3B-C40C435F7912} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6158768 2021-01-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {3EC9C8F3-117B-4D60-BE62-B28A1C83C98A} - System32\Tasks\{0DAF34B9-9714-4646-B555-6A5849188FC0} => C:\Program Files (x86)\Rockstar Games\GTAIII\gta3.exe [2379776 2020-10-05] () [File not signed]
Task: {413137E1-7A1E-4AB9-B872-6E2C01985D95} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3321637588-428875143-3676826485-1000Core => C:\Users\David\AppData\Local\Google\Update\GoogleUpdate.exe [156104 2020-05-22] (Google LLC -> Google LLC)
Task: {4AE89A71-2281-4F91-AEB1-5D2FA590AAAC} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158568 2021-01-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {519AF96D-0A40-4C9A-9AAD-4E2120DFB3E7} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3321637588-428875143-3676826485-1000UA => C:\Users\David\AppData\Local\Google\Update\GoogleUpdate.exe [156104 2020-05-22] (Google LLC -> Google LLC)
Task: {5DA22109-33E0-4B63-B35D-E56C92E9D54D} - System32\Tasks\{3FD8F676-F770-4D70-89C9-29C569C58E6F} => C:\Windows\system32\pcalua.exe -a C:\Users\David\Desktop\mtxl1225_setup.exe -d C:\Users\David\Desktop
Task: {7A0C3296-8572-4356-AA30-BBC5BC993E7A} - System32\Tasks\{E6A8FC60-6C40-47AE-B292-E5080A817777} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\THQ Nordic\Gothic II - Gold Edition\noc_havrana_cz_install.exe" -d "C:\Program Files (x86)\THQ Nordic\Gothic II - Gold Edition"
Task: {89A5DCCC-BECF-4A0F-A460-BF16DADF1A94} - System32\Tasks\{2D100D0C-29C4-4EFE-8C8D-E66E4561CF44} => C:\Windows\system32\pcalua.exe -a "G:\DirectX RunTime\DX81Win2000.exe" -d "G:\DirectX RunTime"
Task: {98AEAA38-99A7-4487-982A-A23AB11B93A6} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24612232 2021-01-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {99B6E1A4-404D-4784-9FB1-EAF19023493B} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158568 2021-01-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {9DBB20D1-75BE-4EA5-AC70-3A3D5683A8BE} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2038168 2021-01-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {BF5948C8-9EEB-419B-BC6E-A36CC1CB5631} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [693216 2021-01-09] (Mozilla Corporation -> Mozilla Foundation)
Task: {BF8249CF-ED58-4411-84C6-A6E5C7F6CF69} - System32\Tasks\{6FFA7556-D4A7-4553-8B03-99E6259F1394} => C:\Windows\system32\pcalua.exe -a C:\Users\David\Desktop\Sega.Mega.Drive.Classic.Collection.Gold.Edition-ALiAS\SetupReg.exe -d C:\Users\David\Desktop\Sega.Mega.Drive.Classic.Collection.Gold.Edition-ALiAS
Task: {DD709D47-20BE-4D41-BBA4-203193C02540} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6158768 2021-01-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {F2D48296-0ABE-4661-B14E-B9A5A6944223} - System32\Tasks\{9C79D6C9-C669-402D-A1CF-39AFCBDF54FF} => C:\Program Files (x86)\Rockstar Games\GTAIII\gta3.exe [2379776 2020-10-05] () [File not signed]

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 05 c:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [134528 2009-08-18] (Microsoft Corporation -> Microsoft Corporation)
Winsock: Catalog5 06 c:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [134528 2009-08-18] (Microsoft Corporation -> Microsoft Corporation)
Winsock: Catalog5-x64 05 c:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [168304 2009-08-18] (Microsoft Corporation -> Microsoft Corporation)
Winsock: Catalog5-x64 06 c:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [168304 2009-08-18] (Microsoft Corporation -> Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{CE7D2660-32B2-40A0-A6C0-BDC7051D5DC6}: [DhcpNameServer] 10.0.0.138

FireFox:
========
FF DefaultProfile: j1rd7518.default
FF ProfilePath: C:\Users\David\AppData\Roaming\Mozilla\Firefox\Profiles\j1rd7518.default [2020-08-19]
FF user.js: detected! => C:\Users\David\AppData\Roaming\Mozilla\Firefox\Profiles\j1rd7518.default\user.js [2020-11-15]
FF ProfilePath: C:\Users\David\AppData\Roaming\Mozilla\Firefox\Profiles\niag4o4o.default-release-1597433812800 [2021-01-17]
FF user.js: detected! => C:\Users\David\AppData\Roaming\Mozilla\Firefox\Profiles\niag4o4o.default-release-1597433812800\user.js [2020-11-15]
FF Notifications: Mozilla\Firefox\Profiles\niag4o4o.default-release-1597433812800 -> hxxps://mail.google.com
FF Extension: (Simple Translate) - C:\Users\David\AppData\Roaming\Mozilla\Firefox\Profiles\niag4o4o.default-release-1597433812800\Extensions\simple-translate@sienori.xpi [2021-01-13]
FF Plugin: @java.com/DTPlugin,version=11.261.2 -> C:\Program Files\Java\jre1.8.0_261\bin\dtplugin\npDeployJava1.dll [2020-10-17] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.261.2 -> C:\Program Files\Java\jre1.8.0_261\bin\plugin2\npjp2.dll [2020-10-17] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-07-19] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1235205.dll [2019-03-15] (Adobe Systems, Inc.) [File not signed]
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google Inc -> Google, Inc.)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2020-07-19] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2020-07-19] (Microsoft Corporation -> Microsoft Corporation)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2021-01-17]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11137416 2021-01-07] (Microsoft Corporation -> Microsoft Corporation)
S3 Disc Soft Ultra Bus Service; C:\Program Files\DAEMON Tools Ultra\DiscSoftBusService.exe [1439424 2016-02-02] (Disc Soft Ltd -> Disc Soft Ltd)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2595360 2020-10-28] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [2595360 2020-10-28] (ESET, spol. s r.o. -> ESET)
S2 IObitUnSvr; C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [156944 2019-08-23] (IObit Information Technology -> IObit)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R2 wlidsvc; c:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2291568 2009-08-18] (Microsoft Corporation -> Microsoft Corporation)
S2 AdvancedSystemCareService13; "C:\Program Files (x86)\Advanced SystemCare Pro\ASCService.exe" [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 athr; C:\Windows\System32\DRIVERS\athrx.sys [2753536 2011-06-27] (Microsoft Windows Hardware Compatibility Publisher -> Atheros Communications, Inc.)
R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [314016 2020-03-14] (Tages SA -> )
R3 cpuz145; C:\Windows\temp\cpuz145\cpuz145_x64.sys [49968 2021-01-17] (CPUID -> CPUID)
R3 dtultrascsibus; C:\Windows\System32\DRIVERS\dtultrascsibus.sys [30264 2020-01-09] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtultrausbbus; C:\Windows\System32\DRIVERS\dtultrausbbus.sys [47672 2020-01-09] (Disc Soft Ltd -> Disc Soft Ltd)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [160992 2020-10-28] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [109360 2020-10-28] (ESET, spol. s r.o. -> ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [190464 2020-10-28] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\Windows\System32\DRIVERS\ekbdflt.sys [43720 2020-10-28] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\Windows\System32\DRIVERS\epfw.sys [70048 2020-10-28] (ESET, spol. s r.o. -> ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [56152 2020-10-28] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [107784 2020-10-28] (ESET, spol. s r.o. -> ESET)
S3 ew_usbccgpfilter; C:\Windows\System32\DRIVERS\ew_usbccgpfilter.sys [18944 2019-12-27] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2020-05-24] (Martin Malik - REALiX -> REALiX(tm))
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2019-12-27] (Huawei Technologies Co., Ltd.) [File not signed]
R3 IUFileFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win7_amd64\IUFileFilter.sys [25992 2019-07-30] (IObit CO., LTD -> IObit)
R3 IUProcessFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win7_amd64\IUProcessFilter.sys [19280 2019-07-30] (IObit CO., LTD -> IObit)
R3 IURegistryFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win7_amd64\IURegistryFilter.sys [31648 2019-07-30] (IObit CO., LTD -> IObit)
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43680 2020-03-14] (Tages SA -> )
S3 ManyCam; C:\Windows\System32\DRIVERS\mcvidrv.sys [58280 2018-07-27] (ManyCam (VISICOM MÉDIA INC.) -> Visicom Media Inc.)
R3 mcaudrv_simple; C:\Windows\System32\drivers\mcaudrv_x64.sys [35992 2014-12-29] (ManyCam LLC -> Visicom Media Inc.)
S4 secdrv; C:\Windows\SysWow64\Drivers\secdrv.sys [28400 2020-10-05] () [File not signed]
S3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [1806400 2009-06-06] (SONIX TECHNOLOGY CO. , LTD -> )
S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [166760 2020-04-24] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 ST50220; C:\Windows\System32\Drivers\ST50220.sys [51248 2020-05-24] (Chicony Electronics Co., Ltd. -> Sonix)
U3 aswbdisk; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-01-17 22:38 - 2021-01-17 22:39 - 000018246 _____ C:\Users\David\Downloads\FRST.txt
2021-01-17 22:35 - 2021-01-17 22:38 - 000000000 ____D C:\FRST
2021-01-17 22:26 - 2021-01-17 22:26 - 002295296 _____ (Farbar) C:\Users\David\Downloads\FRST64.exe
2021-01-17 22:22 - 2021-01-17 22:22 - 000000020 ___SH C:\Users\DefaultAppPool\ntuser.ini
2021-01-17 22:22 - 2021-01-17 22:22 - 000000000 _SHDL C:\Users\DefaultAppPool\Šablony
2021-01-17 22:22 - 2021-01-17 22:22 - 000000000 _SHDL C:\Users\DefaultAppPool\Soubory cookie
2021-01-17 22:22 - 2021-01-17 22:22 - 000000000 _SHDL C:\Users\DefaultAppPool\Poslední
2021-01-17 22:22 - 2021-01-17 22:22 - 000000000 _SHDL C:\Users\DefaultAppPool\Okolní tiskárny
2021-01-17 22:22 - 2021-01-17 22:22 - 000000000 _SHDL C:\Users\DefaultAppPool\Okolní síť
2021-01-17 22:22 - 2021-01-17 22:22 - 000000000 _SHDL C:\Users\DefaultAppPool\Nabídka Start
2021-01-17 22:22 - 2021-01-17 22:22 - 000000000 _SHDL C:\Users\DefaultAppPool\Dokumenty
2021-01-17 22:22 - 2021-01-17 22:22 - 000000000 _SHDL C:\Users\DefaultAppPool\Documents\Obrázky
2021-01-17 22:22 - 2021-01-17 22:22 - 000000000 _SHDL C:\Users\DefaultAppPool\Documents\Hudba
2021-01-17 22:22 - 2021-01-17 22:22 - 000000000 _SHDL C:\Users\DefaultAppPool\Documents\Filmy
2021-01-17 22:22 - 2021-01-17 22:22 - 000000000 _SHDL C:\Users\DefaultAppPool\Data aplikací
2021-01-17 22:22 - 2021-01-17 22:22 - 000000000 _SHDL C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2021-01-17 22:22 - 2021-01-17 22:22 - 000000000 _SHDL C:\Users\DefaultAppPool\AppData\Local\Data aplikací
2021-01-17 22:22 - 2021-01-17 22:22 - 000000000 ____D C:\Users\DefaultAppPool
2021-01-17 22:22 - 2009-07-14 16:36 - 000000000 ____D C:\Users\DefaultAppPool\AppData\Roaming\Media Center Programs
2021-01-17 22:17 - 2021-01-17 22:17 - 000000020 ___SH C:\Users\Classic .NET AppPool\ntuser.ini
2021-01-17 22:17 - 2021-01-17 22:17 - 000000000 _SHDL C:\Users\Classic .NET AppPool\Šablony
2021-01-17 22:17 - 2021-01-17 22:17 - 000000000 _SHDL C:\Users\Classic .NET AppPool\Soubory cookie
2021-01-17 22:17 - 2021-01-17 22:17 - 000000000 _SHDL C:\Users\Classic .NET AppPool\Poslední
2021-01-17 22:17 - 2021-01-17 22:17 - 000000000 _SHDL C:\Users\Classic .NET AppPool\Okolní tiskárny
2021-01-17 22:17 - 2021-01-17 22:17 - 000000000 _SHDL C:\Users\Classic .NET AppPool\Okolní síť
2021-01-17 22:17 - 2021-01-17 22:17 - 000000000 _SHDL C:\Users\Classic .NET AppPool\Nabídka Start
2021-01-17 22:17 - 2021-01-17 22:17 - 000000000 _SHDL C:\Users\Classic .NET AppPool\Dokumenty
2021-01-17 22:17 - 2021-01-17 22:17 - 000000000 _SHDL C:\Users\Classic .NET AppPool\Documents\Obrázky
2021-01-17 22:17 - 2021-01-17 22:17 - 000000000 _SHDL C:\Users\Classic .NET AppPool\Documents\Hudba
2021-01-17 22:17 - 2021-01-17 22:17 - 000000000 _SHDL C:\Users\Classic .NET AppPool\Documents\Filmy
2021-01-17 22:17 - 2021-01-17 22:17 - 000000000 _SHDL C:\Users\Classic .NET AppPool\Data aplikací
2021-01-17 22:17 - 2021-01-17 22:17 - 000000000 _SHDL C:\Users\Classic .NET AppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2021-01-17 22:17 - 2021-01-17 22:17 - 000000000 _SHDL C:\Users\Classic .NET AppPool\AppData\Local\Data aplikací
2021-01-17 22:17 - 2021-01-17 22:17 - 000000000 ____D C:\Users\Classic .NET AppPool
2021-01-17 22:17 - 2009-07-14 16:36 - 000000000 ____D C:\Users\Classic .NET AppPool\AppData\Roaming\Media Center Programs
2021-01-17 22:15 - 2021-01-17 22:15 - 000000000 ____D C:\Windows\SysWOW64\BestPractices
2021-01-17 22:15 - 2021-01-17 22:15 - 000000000 ____D C:\Windows\system32\BestPractices
2021-01-17 22:15 - 2021-01-17 22:15 - 000000000 ____D C:\inetpub
2021-01-17 21:10 - 2021-01-17 21:13 - 000000000 ____D C:\AdwCleaner
2021-01-17 21:10 - 2021-01-17 21:10 - 008458096 _____ (Malwarebytes) C:\Users\David\Downloads\adwcleaner_8.0.9.exe
2021-01-17 21:05 - 2021-01-17 21:06 - 008447152 _____ (Malwarebytes) C:\Users\David\Downloads\AdwCleaner.exe
2021-01-17 21:02 - 2021-01-17 21:02 - 000000000 ____D C:\Users\David\AppData\Local\mbam
2021-01-17 21:00 - 2021-01-17 21:00 - 000000000 ____D C:\Program Files\Malwarebytes
2021-01-17 19:46 - 2021-01-17 19:46 - 001222144 _____ C:\Users\David\Downloads\RSITx64.exe
2021-01-17 18:52 - 2021-01-17 18:52 - 000001141 _____ C:\Users\David\Desktop\Loader-IU.lnk
2021-01-17 18:51 - 2021-01-17 18:51 - 000002856 _____ C:\Windows\system32\Tasks\Uninstaller_SkipUac_David
2021-01-17 18:51 - 2021-01-17 18:51 - 000001317 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller.lnk
2021-01-17 18:51 - 2021-01-17 18:51 - 000001177 _____ C:\Users\Public\Desktop\IObit Uninstaller.lnk
2021-01-17 18:51 - 2021-01-17 18:51 - 000001177 _____ C:\ProgramData\Desktop\IObit Uninstaller.lnk
2021-01-17 18:51 - 2021-01-17 18:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
2021-01-17 17:57 - 2021-01-17 18:02 - 592445440 _____ C:\Users\David\Downloads\cm-x86-14.1-r4-k419.iso
2021-01-17 17:52 - 2021-01-17 18:41 - 000000000 ____D C:\Users\David\AppData\Local\Bluestacks
2021-01-17 17:52 - 2021-01-17 17:59 - 000000000 ____D C:\Users\Public\BlueStacks
2021-01-17 17:46 - 2021-01-17 17:46 - 000000000 ____D C:\Users\David\AppData\Roaming\EMM
2021-01-17 17:45 - 2021-01-17 17:45 - 000001253 _____ C:\Users\Public\Desktop\do mp4.lnk
2021-01-17 17:45 - 2021-01-17 17:45 - 000001253 _____ C:\ProgramData\Desktop\do mp4.lnk
2021-01-17 17:45 - 2021-01-17 17:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS MobiMover
2021-01-17 17:40 - 2021-01-17 17:42 - 199191568 _____ (EaseUS ) C:\Users\David\Downloads\mover_free_easeus.exe
2021-01-17 17:38 - 2021-01-17 17:38 - 001520016 _____ C:\Users\David\Downloads\mover_free_Installer_20210117.2.exe
2021-01-15 21:16 - 2021-01-15 22:04 - 852784286 _____ C:\Users\David\Downloads\A Simple Wish-Stačí si přát(1997).mp4
2021-01-13 12:58 - 2021-01-13 12:58 - 000311179 _____ C:\Users\David\Downloads\Vyrocni_dopis_a_Zelena_karta.pdf
2021-01-13 12:47 - 2021-01-13 12:47 - 000837702 _____ C:\Users\David\Downloads\Smlouva Kozáčková.pdf život.pdf
2021-01-09 22:05 - 2021-01-09 22:05 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-01-17 22:38 - 2020-01-09 19:29 - 000000000 ____D C:\Users\David\AppData\LocalLow\Mozilla
2021-01-17 22:37 - 2020-01-12 22:18 - 000000000 ____D C:\Windows\system32\MRT
2021-01-17 22:37 - 2020-01-09 19:29 - 000000000 ____D C:\ProgramData\Mozilla
2021-01-17 22:36 - 2009-07-14 05:45 - 000029408 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2021-01-17 22:36 - 2009-07-14 05:45 - 000029408 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2021-01-17 22:28 - 2020-01-12 22:18 - 135062968 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2021-01-17 22:17 - 2020-01-09 20:26 - 001709976 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2021-01-17 22:17 - 2009-07-14 16:18 - 000750544 _____ C:\Windows\system32\perfh005.dat
2021-01-17 22:17 - 2009-07-14 16:18 - 000177568 _____ C:\Windows\system32\perfc005.dat
2021-01-17 22:17 - 2009-07-14 06:13 - 001798574 _____ C:\Windows\system32\PerfStringBackup.INI
2021-01-17 22:17 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2021-01-17 22:15 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\SysWOW64\inetsrv
2021-01-17 22:15 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\system32\inetsrv
2021-01-17 21:17 - 2020-05-24 18:01 - 000000000 ____D C:\ProgramData\ASUS
2021-01-17 21:17 - 2020-05-24 16:00 - 000000000 ____D C:\Program Files (x86)\ASUS
2021-01-17 21:13 - 2020-01-17 18:58 - 000000000 ____D C:\Users\David\AppData\LocalLow\IObit
2021-01-17 21:13 - 2020-01-17 18:57 - 000000000 ____D C:\Users\David\AppData\Roaming\IObit
2021-01-17 21:13 - 2020-01-17 18:57 - 000000000 ____D C:\ProgramData\IObit
2021-01-17 20:51 - 2009-07-14 06:32 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2021-01-17 20:51 - 2009-07-14 06:32 - 000000000 ____D C:\Program Files\Microsoft Games
2021-01-17 20:45 - 2020-05-24 21:27 - 000000000 ____D C:\Program Files (x86)\Advanced SystemCare Pro
2021-01-17 20:38 - 2020-09-11 21:00 - 000000000 ____D C:\Users\David\Downloads\Nová složka
2021-01-17 19:47 - 2020-04-29 20:39 - 000000000 ____D C:\Program Files\trend micro
2021-01-17 19:24 - 2020-11-10 23:21 - 000000000 ____D C:\Users\David\AppData\Local\MobiMoverUILaunch
2021-01-17 19:24 - 2020-05-27 10:29 - 000000000 ____D C:\Users\David\Desktop\mp4
2021-01-17 19:23 - 2020-11-10 23:19 - 000000000 ____D C:\ProgramData\EMM
2021-01-17 19:18 - 2020-11-10 23:21 - 000000000 ____D C:\Users\David\AppData\Roaming\MobiMoverUILaunch
2021-01-17 18:54 - 2020-04-29 20:38 - 000000000 ____D C:\ProgramData\ProductData
2021-01-17 18:53 - 2020-05-27 22:37 - 000000000 ____D C:\Users\David\AppData\Local\CrashDumps
2021-01-17 18:48 - 2020-01-17 18:57 - 000000000 ____D C:\Program Files (x86)\IObit
2021-01-17 17:47 - 2020-11-10 23:16 - 000000000 ____D C:\Users\David\AppData\Roaming\MobiMover
2021-01-17 17:44 - 2020-11-10 23:19 - 000000000 ____D C:\Program Files (x86)\EaseUS
2021-01-17 17:16 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-01-15 16:10 - 2020-05-18 14:52 - 000000000 ____D C:\Users\David\AppData\Roaming\Kodi
2021-01-15 12:50 - 2020-01-09 19:53 - 000000000 ____D C:\Program Files\Microsoft Office
2021-01-10 02:59 - 2020-11-09 18:23 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-01-10 02:59 - 2020-01-22 18:16 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-01-10 02:45 - 2020-11-01 23:10 - 000000000 ____D C:\Users\David\Desktop\FILMY 2
2021-01-10 01:29 - 2020-11-24 11:50 - 000000000 ____D C:\Users\David\Desktop\ww

==================== Files in the root of some directories ========

2020-11-15 15:53 - 2020-11-15 15:53 - 000003584 _____ () C:\Users\David\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2020-05-24 18:10 - 2020-05-24 18:10 - 000000017 _____ () C:\Users\David\AppData\Local\resmon.resmoncfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

LastRegBack: 2021-01-15 19:29
==================== End of FRST.txt ========================

Hraczka · #6 Příspěvek od **Hraczka** » 17 led 2021 22:45

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 17-01-2021
Ran by David (17-01-2021 22:40:23)
Running from C:\Users\David\Downloads
Windows 7 Home Premium Service Pack 1 (X64) (2020-01-09 17:49:29)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-3321637588-428875143-3676826485-500 - Administrator - Disabled)
David (S-1-5-21-3321637588-428875143-3676826485-1000 - Administrator - Enabled) => C:\Users\David
Guest (S-1-5-21-3321637588-428875143-3676826485-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3321637588-428875143-3676826485-1002 - Limited - Enabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: ESET Security (Enabled - Up to date) {89B55CC4-3881-78B2-11E2-479AE0371896}
AS: ESET Security (Enabled - Up to date) {32D4BD20-1EBB-773C-2B52-7CE89BB0522B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ESET Firewall (Enabled) {B18EDDE1-72EE-79EA-3ABD-EEAF1EE45FED}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Shockwave Player 12.3 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.3.5.205 - Adobe, Inc.)
ASUS Live Update (HKLM-x32\...\{3CC30020-E9B7-4880-8182-270A810C80A1}) (Version: 3.6.8 - ASUSTeK COMPUTER INC.)
Audacity 2.1.0 (HKLM-x32\...\Audacity_is1) (Version: 2.1.0 - Audacity Team)
DAEMON Tools Ultra (HKLM\...\DAEMON Tools Ultra) (Version: 4.1.0.0489 - Disc Soft Ltd)
EaseUS MobiMover 5.3.6 (HKLM-x32\...\EaseUS MobiMover_is1) (Version: - EaseUS)
ESET Security (HKLM\...\{D8E84711-EDFC-4D4E-B579-95AEB40DAA4D}) (Version: 14.0.22.0 - ESET, spol. s r.o.)
Google Video Support Plugin (HKU\S-1-5-21-3321637588-428875143-3676826485-1000\...\{F9B579C2-D854-300A-BE62-A09EB9D722E4}) (Version: 19.12.1000.0 - Google, LLC.)
Grand Theft Auto Vice City (HKLM-x32\...\{4B35F00C-E63D-40DC-9839-DF15A33EAC46}) (Version: 1.00.000 - )
GTA San Andreas (HKLM-x32\...\{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}) (Version: 1.00.00001 - Rockstar Games)
Icecream Ebook Reader verze 5.19 (HKLM-x32\...\{B8C30F0F-1F23-49E1-A3ED-44DE17660EE2}_is1) (Version: 5.19 - Icecream Apps)
IObit Uninstaller 9 (HKLM-x32\...\IObitUninstall) (Version: 9.0.2.40 - IObit)
Java 8 Update 261 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180261F0}) (Version: 8.0.2610.12 - Oracle Corporation)
K-Lite Mega Codec Pack 15.6.0 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 15.6.0 - KLCP)
Kodi (HKU\S-1-5-21-3321637588-428875143-3676826485-1000\...\Kodi) (Version: - XBMC Foundation)
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - )
MegaTrainer XL V1.2.2.5 (HKLM-x32\...\MegaTrainer XL_is1) (Version: - )
Microsoft .NET Framework 4.8 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{F2508213-9989-4E85-A078-72BE483917EF}) (Version: 3.5.88.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Office 365 ProPlus - cs-cz (HKLM\...\O365ProPlusRetail - cs-cz) (Version: 16.0.12527.21504 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3321637588-428875143-3676826485-1000\...\OneDriveSetup.exe) (Version: 20.052.0311.0011 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.21.27702 (HKLM-x32\...\{f4220b74-9edd-4ded-bc8b-0342c1e164d8}) (Version: 14.21.27702.2 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.21.27702 (HKLM-x32\...\{49697869-be8e-427d-81a0-c334d1d14950}) (Version: 14.21.27702.2 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 3.0 (HKLM-x32\...\{3898934B-05AE-41CD-96BE-70DA9BFBCE1F}) (Version: 3.0.11010.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
MIRACLE (HKLM-x32\...\MIRACLE) (Version: 1.00 - Miracle Team)
Mozilla Firefox 84.0.2 (x64 cs) (HKLM\...\Mozilla Firefox 84.0.2 (x64 cs)) (Version: 84.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 72.0.2 - Mozilla)
NVIDIA PhysX (HKLM-x32\...\{B83FC356-B7C0-441F-8A4D-D71E088E7974}) (Version: 9.09.0428 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.12527.20988 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.12527.20988 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-1000-0000000FF1CE}) (Version: 16.0.12527.20988 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9.141.259 - Google, Inc.)
SumatraPDF (HKLM\...\SumatraPDF) (Version: 3.2 - Krzysztof Kowalczyk)
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Teams Machine-Wide Installer (HKLM-x32\...\{731F6BAA-A986-45A4-8936-7C3AAAAA760B}) (Version: 1.2.0.34161 - Microsoft Corporation)
Total Commander (Remove or Repair) (HKLM-x32\...\Totalcmd) (Version: - )
USB 2.0 1.3M UVC WebCam (HKLM\...\USB 2.0 1.3M UVC WebCam) (Version: - )
USB Serial Port Driver (x64) (HKLM-x32\...\{53012BD2-D1A3-4530-9AE2-B0C503B5C1C2}) (Version: 2013.30.0.313 - Nokia)
Videoder 1.0.9 (HKLM-x32\...\808fc302-3d01-59ce-8094-e0443a55877e) (Version: 1.0.9 - GlennioTech)
Windows Driver Package - Broadcom Bluetooth (06/15/2009 6.2.0.9000) (HKLM\...\6B8550A319DDC8B17F35F4A89988705E4592349B) (Version: 06/15/2009 6.2.0.9000 - Broadcom)
Windows Driver Package - Broadcom Bluetooth (07/30/2009 6.2.0.9405) (HKLM\...\6B6B5E96843E55CF5CF8C7E45FB457F1FE642FF1) (Version: 07/30/2009 6.2.0.9405 - Broadcom)
Windows Driver Package - Broadcom HIDClass (07/28/2009 6.2.0.9800) (HKLM\...\3BA80AB4C7E9F8497C115C844953A3D4BEB84D21) (Version: 07/28/2009 6.2.0.9800 - Broadcom)
Windows Live ID Sign-in Assistant (HKLM\...\{9B48B0AC-C813-4174-9042-476A887592C7}) (Version: 6.500.3165.0 - Microsoft Corporation)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.31.0 - ASUS)
WinRAR 5.90 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.90.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3321637588-428875143-3676826485-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\David\AppData\Local\Google\Update\1.3.35.452\psuser_64.dll (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-3321637588-428875143-3676826485-1000_Classes\CLSID\{E9E7529D-7F09-410B-AF2A-CC154473B19C}\InprocServer32 -> C:\Users\David\AppData\Local\Google\Update\1.3.35.452\psuser_64.dll (Google LLC -> Google LLC)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-10-28] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => -> No File
ContextMenuHandlers1: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2019-07-30] (IObit Information Technology -> IObit)
ContextMenuHandlers1: [SmartDefragExtension] -> {189F1E63-33A7-404B-B2F6-8C76A452CC54} => C:\Windows\System32\IObitSmartDefragExtension.dll [2019-09-12] (IObit Information Technology -> IObit)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-10-28] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers4: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2019-07-30] (IObit Information Technology -> IObit)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2011-02-11] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-10-28] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers6: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2019-07-30] (IObit Information Technology -> IObit)
ContextMenuHandlers6: [SmartDefragExtension] -> {189F1E63-33A7-404B-B2F6-8C76A452CC54} => C:\Windows\System32\IObitSmartDefragExtension.dll [2019-09-12] (IObit Information Technology -> IObit)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [VIDC.LAGS] => C:\Windows\system32\lagarith.dll [148992 2011-12-07] () [File not signed]
HKLM\...\Drivers32: [VIDC.X264] => C:\Windows\system32\x264vfw64.dll [3799552 2017-07-30] (x264vfw project) [File not signed]
HKLM\...\Drivers32: [VIDC.XVID] => C:\Windows\system32\xvidvfw.dll [310784 2019-12-28] () [File not signed]
HKLM\...\Drivers32: [VIDC.FFDS] => C:\Windows\system32\ff_vfw.dll [126976 2015-10-24] () [File not signed]

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2009-08-18 10:24 - 2009-08-18 10:24 - 000167424 _____ (Microsoft Corporation) [File not signed] c:\Program Files\Common Files\Microsoft Shared\Windows Live\sqmapi.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Version 11) (Whitelisted) ==========

HKU\S-1-5-21-3321637588-428875143-3676826485-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.msn.com/?OCID=IE11FREDHP&PC=UF01
SearchScopes: HKU\S-1-5-21-3321637588-428875143-3676826485-1000 -> {1415E7BB-3C9E-4BC7-A584-5B424FF6710E} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid=QuickSearch_7436
SearchScopes: HKU\S-1-5-21-3321637588-428875143-3676826485-1000 -> {57D5C9DE-914A-415C-A065-B08B345BB2E7} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_7436
SearchScopes: HKU\S-1-5-21-3321637588-428875143-3676826485-1000 -> {795C8A5A-863C-492B-A3E1-242B22B2C43A} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_7436
SearchScopes: HKU\S-1-5-21-3321637588-428875143-3676826485-1000 -> {B0FC838F-8F9F-4A31-854E-F7F3AA4C0980} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&s ... earch_7436
SearchScopes: HKU\S-1-5-21-3321637588-428875143-3676826485-1000 -> {B6D7A696-0AAF-490C-B869-B9194CD2C3A8} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz ... earch_7436
SearchScopes: HKU\S-1-5-21-3321637588-428875143-3676826485-1000 -> {BB28DE13-B3EA-4DEA-8138-279C55B7AB2D} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_7436
SearchScopes: HKU\S-1-5-21-3321637588-428875143-3676826485-1000 -> {C9D6A5B4-9E4B-4DF3-9032-D464C81A9C96} URL = hxxp://www.mapy.cz/?query={searchTerms}&source ... earch_7436
SearchScopes: HKU\S-1-5-21-3321637588-428875143-3676826485-1000 -> {D4B6D89C-83C4-4036-9B10-8084E4C0C959} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_7436
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2019-06-20] (IObit Information Technology -> IObit)
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2020-10-28] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_261\bin\ssv.dll [2020-10-17] (Oracle America, Inc. -> Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> c:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation -> Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\root\Office16\URLREDIR.DLL [2021-01-15] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_261\bin\jp2ssv.dll [2020-10-17] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2020-07-19] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> c:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\URLREDIR.DLL [2021-01-15] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-01-15] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-07-19] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-01-15] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-07-19] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-01-15] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-07-19] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-01-15] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-07-19] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-3321637588-428875143-3676826485-1000\...\sharepoint.com -> hxxps://ecentral-files.sharepoint.com

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2020-05-29 18:54 - 2020-05-29 18:54 - 000000000 _____ C:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> %CommonProgramFiles%\Microsoft Shared\Windows Live;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\
HKU\S-1-5-21-3321637588-428875143-3676826485-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\David\AppData\Roaming\Mozilla\Firefox\Pozadí plochy.bmp
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{9375FA8C-3AA4-4E7E-8935-F511A4E45A16}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{CBF7D4F8-D3C7-4F5C-B6F6-F0240AEBAE01}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F7DA5269-79C6-4944-A052-B5A59A91B24D}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{071601A2-85F4-4B26-877B-BCC94BBB3691}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C1B12201-36DA-4012-BCD0-36129BDAFCCB}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{21E5D9CD-61F9-4FD9-A191-B3BF438F789E}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{EF97CAC6-D612-45D0-BEC1-3FD3D814123A}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)

==================== Restore Points =========================

15-01-2021 23:55:48 Naplánovaný kontrolní bod
17-01-2021 20:49:25 Instalační služba modulů systému Windows
17-01-2021 21:17:05 AdwCleaner_BeforeCleaning_17/01/2021_21:17:04
17-01-2021 22:14:17 Instalační služba modulů systému Windows
17-01-2021 22:28:02 Windows Update

==================== Faulty Device Manager Devices ============

Name: CAM-L21
Description: CAM-L21
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

==================== Event log errors: ========================

Application errors:
==================
Error: (01/17/2021 06:53:19 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Loader-IU.exe, verze: 0.0.0.0, časové razítko: 0x5c6f0b12
Název chybujícího modulu: KERNELBASE.dll, verze: 6.1.7601.24545, časové razítko: 0x5e0eb7f5
Kód výjimky: 0x0eedfade
Posun chyby: 0x0000c5af
ID chybujícího procesu: 0x15f4
Čas spuštění chybující aplikace: 0x01d6ecf9a3fc10e4
Cesta k chybující aplikaci: C:\Program Files (x86)\IObit\IObit Uninstaller\Loader-IU.exe
Cesta k chybujícímu modulu: C:\Windows\syswow64\KERNELBASE.dll
ID zprávy: e1b482a5-58ec-11eb-8b85-485b39405249

Error: (01/17/2021 06:53:01 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Loader-IU.exe, verze: 0.0.0.0, časové razítko: 0x5c6f0b12
Název chybujícího modulu: KERNELBASE.dll, verze: 6.1.7601.24545, časové razítko: 0x5e0eb7f5
Kód výjimky: 0x0eedfade
Posun chyby: 0x0000c5af
ID chybujícího procesu: 0x3fc
Čas spuštění chybující aplikace: 0x01d6ecf999222b04
Cesta k chybující aplikaci: C:\Program Files (x86)\IObit\IObit Uninstaller\Loader-IU.exe
Cesta k chybujícímu modulu: C:\Windows\syswow64\KERNELBASE.dll
ID zprávy: d6f26a88-58ec-11eb-8b85-485b39405249

Error: (01/17/2021 06:52:20 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Loader-IU.exe, verze: 0.0.0.0, časové razítko: 0x5c6f0b12
Název chybujícího modulu: KERNELBASE.dll, verze: 6.1.7601.24545, časové razítko: 0x5e0eb7f5
Kód výjimky: 0x0eedfade
Posun chyby: 0x0000c5af
ID chybujícího procesu: 0xe24
Čas spuštění chybující aplikace: 0x01d6ecf97fd87679
Cesta k chybující aplikaci: C:\Program Files (x86)\IObit\IObit Uninstaller\Loader-IU.exe
Cesta k chybujícímu modulu: C:\Windows\syswow64\KERNELBASE.dll
ID zprávy: be70a994-58ec-11eb-8b85-485b39405249

Error: (01/17/2021 06:38:02 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Loader-IU.exe, verze: 0.0.0.0, časové razítko: 0x5c6f0b12
Název chybujícího modulu: KERNELBASE.dll, verze: 6.1.7601.24545, časové razítko: 0x5e0eb7f5
Kód výjimky: 0x0eedfade
Posun chyby: 0x0000c5af
ID chybujícího procesu: 0x1688
Čas spuštění chybující aplikace: 0x01d6ecf78071469a
Cesta k chybující aplikaci: C:\Program Files (x86)\IObit\IObit Uninstaller\Loader-IU.exe
Cesta k chybujícímu modulu: C:\Windows\syswow64\KERNELBASE.dll
ID zprávy: bf39baa8-58ea-11eb-8b85-485b39405249

Error: (01/17/2021 06:27:25 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: HD-Player.exe, verze: 4.250.0.1070, časové razítko: 0x5fc8eda3
Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.24545, časové razítko: 0x5e0eb67f
Kód výjimky: 0xc0000374
Posun chyby: 0x00000000000bf262
ID chybujícího procesu: 0x1950
Čas spuštění chybující aplikace: 0x01d6ecf58c7ea141
Cesta k chybující aplikaci: C:\Program Files\BlueStacks\HD-Player.exe
Cesta k chybujícímu modulu: C:\Windows\SYSTEM32\ntdll.dll
ID zprávy: 4349a59e-58e9-11eb-8b85-485b39405249

Error: (01/17/2021 06:26:11 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program MobiMoverUILaunch.exe verze 5.1.6.0 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: 11d0

Čas spuštění: 01d6ecf041fb352d

Čas ukončení: 1218

Cesta k aplikaci: C:\Program Files (x86)\EaseUS\EaseUS MobiMover\bin\MobiMoverUILaunch.exe

ID hlášení: fcd832d4-58e8-11eb-8b85-485b39405249

Error: (01/17/2021 06:22:32 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: HD-Player.exe, verze: 4.250.0.1070, časové razítko: 0x5fc8eda3
Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.24545, časové razítko: 0x5e0eb67f
Kód výjimky: 0xc0000374
Posun chyby: 0x00000000000bf262
ID chybujícího procesu: 0x10c0
Čas spuštění chybující aplikace: 0x01d6ecf3d11dc672
Cesta k chybující aplikaci: C:\Program Files\BlueStacks\HD-Player.exe
Cesta k chybujícímu modulu: C:\Windows\SYSTEM32\ntdll.dll
ID zprávy: 9495e3d3-58e8-11eb-8b85-485b39405249

Error: (01/15/2021 12:40:11 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program IEXPLORE.EXE verze 11.0.9600.19597 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: 34c

Čas spuštění: 01d6eb32d8f1ea10

Čas ukončení: 47

Cesta k aplikaci: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

ID hlášení:

System errors:
=============
Error: (01/17/2021 10:18:21 PM) (Source: Service Control Manager) (EventID: 7003) (User: )
Description: Služba Adaptér naslouchání Net.Msmq závisí na následující službě: msmq. Tato služba pravděpodobně není nainstalována.

Error: (01/17/2021 09:17:29 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba Windows Media Player Network Sharing byla nečekaně ukončena. Stalo se to 2 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.

Error: (01/17/2021 09:17:29 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Live ID Sign-in Assistant byla nečekaně ukončena. Stalo se to 2 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.

Error: (01/17/2021 09:17:29 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba Microsoft Office Klikni a spusť byla nečekaně ukončena. Stalo se to 2 krát. Následující opravná akce bude spuštěna za 0 milisekund: Restartovat službu.

Error: (01/17/2021 09:17:29 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Instalační služba modulů systému Windows byla nečekaně ukončena. Stalo se to 2 krát. Následující opravná akce bude spuštěna za 300000 milisekund: Restartovat službu.

Error: (01/17/2021 09:15:45 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Správce služeb se pokusil o opravnou akci (Restartovat službu) po nečekaném ukončení služby Instalační služba modulů systému Windows, ale tato akce selhala kvůli následující chybě:
Instance této služby je již spuštěna.

Error: (01/17/2021 09:13:46 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Live ID Sign-in Assistant byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.

Error: (01/17/2021 09:13:46 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba Microsoft Office Klikni a spusť byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 0 milisekund: Restartovat službu.

==================== Memory info ===========================

BIOS: American Megatrends Inc. 220 01/25/2011
Motherboard: ASUSTeK Computer Inc. K50IJ
Processor: Celeron(R) Dual-Core CPU T3100 @ 1.90GHz
Percentage of memory in use: 68%
Total physical RAM: 4061.09 MB
Available physical RAM: 1279.16 MB
Total Virtual: 8120.32 MB
Available Virtual: 5442.59 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:116.44 GB) (Free:48.34 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: (DATA) (Fixed) (Total:332.72 GB) (Free:20.16 GB) NTFS
Drive f: (My CDROM) (CDROM) (Total:0.01 GB) (Free:0 GB) CDFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 76692CA8)
Partition 1: (Not Active) - (Size=16.6 GB) - (Type=1C)
Partition 2: (Active) - (Size=116.4 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=332.7 GB) - (Type=0F Extended)

==================== End of Addition.txt =======================

#7 Příspěvek od **Rudy** » 18 led 2021 10:29

Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => -> No File
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-3321637588-428875143-3676826485-1000\...\MountPoints2: F - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3321637588-428875143-3676826485-1000\...\MountPoints2: G - G:\setup.exe
HKU\S-1-5-21-3321637588-428875143-3676826485-1000\...\MountPoints2: {7471f82e-b066-11ea-aaed-485b39405249} - G:\setup.exe
HKU\S-1-5-21-3321637588-428875143-3676826485-1000\...\MountPoints2: {91a1b3f3-a503-11ea-8f7a-485b39405249} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3321637588-428875143-3676826485-1000\...\MountPoints2: {9616086c-354d-11ea-a30f-485b39405249} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3321637588-428875143-3676826485-1000\...\MountPoints2: {a0a810ce-1622-11eb-bb84-485b39405249} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3321637588-428875143-3676826485-1000\...\MountPoints2: {ad493791-b635-11ea-8152-485b39405249} - G:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3321637588-428875143-3676826485-1000\...\MountPoints2: {ad4937f4-b635-11ea-8152-485b39405249} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3321637588-428875143-3676826485-1000\...\MountPoints2: {c3a838c8-a61f-11ea-889b-485b39405249} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3321637588-428875143-3676826485-1000\...\MountPoints2: {c6c4e676-45a3-11ea-ba13-485b39405249} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3321637588-428875143-3676826485-1000\...\MountPoints2: {d4b63174-44e9-11ea-a4af-485b39405249} - F:\setup.exe
HKU\S-1-5-21-3321637588-428875143-3676826485-1000\...\MountPoints2: {de707c85-c34e-11ea-bc5b-485b39405249} - I:\HiSuiteDownLoader.exe
IFEO\64BitMailAgent.exe: [Debugger] C:\Program Files (x86)\Advanced SystemCare Pro\AutoReactivator.exe
IFEO\FoxitReader.exe: [Debugger] C:\Program Files (x86)\Advanced SystemCare Pro\AutoReactivator.exe
IFEO\FoxitReaderConnectedPDFService.exe: [Debugger] C:\Program Files (x86)\Advanced SystemCare Pro\AutoReactivator.exe
IFEO\FoxitReaderUpdateService.exe: [Debugger] C:\Program Files (x86)\Advanced SystemCare Pro\AutoReactivator.exe
IFEO\FoxitUpdater.exe: [Debugger] C:\Program Files (x86)\Advanced SystemCare Pro\AutoReactivator.exe
IFEO\maintenanceservice.exe: [Debugger] C:\Program Files (x86)\Advanced SystemCare Pro\AutoReactivator.exe
IFEO\SendCrashReport.exe: [Debugger] C:\Program Files (x86)\Advanced SystemCare Pro\AutoReactivator.exe
IFEO\ServiceMiniNotice.exe: [Debugger] C:\Program Files (x86)\Advanced SystemCare Pro\AutoReactivator.exe
IFEO\TrackReview.exe: [Debugger] C:\Program Files (x86)\Advanced SystemCare Pro\AutoReactivator.exe
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {413137E1-7A1E-4AB9-B872-6E2C01985D95} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3321637588-428875143-3676826485-1000Core => C:\Users\David\AppData\Local\Google\Update\GoogleUpdate.exe [156104 2020-05-22] (Google LLC -> Google LLC)
Task: {519AF96D-0A40-4C9A-9AAD-4E2120DFB3E7} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3321637588-428875143-3676826485-1000UA => C:\Users\David\AppData\Local\Google\Update\GoogleUpdate.exe [156104 2020-05-22] (Google LLC -> Google LLC)
Task: {5DA22109-33E0-4B63-B35D-E56C92E9D54D} - System32\Tasks\{3FD8F676-F770-4D70-89C9-29C569C58E6F} => C:\Windows\system32\pcalua.exe -a C:\Users\David\Desktop\mtxl1225_setup.exe -d C:\Users\David\Desktop
Task: {7A0C3296-8572-4356-AA30-BBC5BC993E7A} - System32\Tasks\{E6A8FC60-6C40-47AE-B292-E5080A817777} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\THQ Nordic\Gothic II - Gold Edition\noc_havrana_cz_install.exe" -d "C:\Program Files (x86)\THQ Nordic\Gothic II - Gold Edition"
Task: {89A5DCCC-BECF-4A0F-A460-BF16DADF1A94} - System32\Tasks\{2D100D0C-29C4-4EFE-8C8D-E66E4561CF44} => C:\Windows\system32\pcalua.exe -a "G:\DirectX RunTime\DX81Win2000.exe" -d "G:\DirectX RunTime"
Task: {BF8249CF-ED58-4411-84C6-A6E5C7F6CF69} - System32\Tasks\{6FFA7556-D4A7-4553-8B03-99E6259F1394} => C:\Windows\system32\pcalua.exe -a C:\Users\David\Desktop\Sega.Mega.Drive.Classic.Collection.Gold.Edition-ALiAS\SetupReg.exe -d C:\Users\David\Desktop\Sega.Mega.Drive.Classic.Collection.Gold.Edition-ALiAS
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
U3 aswbdisk; no ImagePath
C:\Users\David\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

EmptyTemp:
End

Uložte do C:\Users\David\Downloads jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Hraczka · #8 Příspěvek od **Hraczka** » 18 led 2021 12:06

Fix result of Farbar Recovery Scan Tool (x64) Version: 17-01-2021
Ran by David (18-01-2021 12:00:37) Run:2
Running from C:\Users\David\Downloads
Loaded Profiles: David
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => -> No File
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-3321637588-428875143-3676826485-1000\...\MountPoints2: F - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3321637588-428875143-3676826485-1000\...\MountPoints2: G - G:\setup.exe
HKU\S-1-5-21-3321637588-428875143-3676826485-1000\...\MountPoints2: {7471f82e-b066-11ea-aaed-485b39405249} - G:\setup.exe
HKU\S-1-5-21-3321637588-428875143-3676826485-1000\...\MountPoints2: {91a1b3f3-a503-11ea-8f7a-485b39405249} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3321637588-428875143-3676826485-1000\...\MountPoints2: {9616086c-354d-11ea-a30f-485b39405249} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3321637588-428875143-3676826485-1000\...\MountPoints2: {a0a810ce-1622-11eb-bb84-485b39405249} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3321637588-428875143-3676826485-1000\...\MountPoints2: {ad493791-b635-11ea-8152-485b39405249} - G:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3321637588-428875143-3676826485-1000\...\MountPoints2: {ad4937f4-b635-11ea-8152-485b39405249} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3321637588-428875143-3676826485-1000\...\MountPoints2: {c3a838c8-a61f-11ea-889b-485b39405249} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3321637588-428875143-3676826485-1000\...\MountPoints2: {c6c4e676-45a3-11ea-ba13-485b39405249} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3321637588-428875143-3676826485-1000\...\MountPoints2: {d4b63174-44e9-11ea-a4af-485b39405249} - F:\setup.exe
HKU\S-1-5-21-3321637588-428875143-3676826485-1000\...\MountPoints2: {de707c85-c34e-11ea-bc5b-485b39405249} - I:\HiSuiteDownLoader.exe
IFEO\64BitMailAgent.exe: [Debugger] C:\Program Files (x86)\Advanced SystemCare Pro\AutoReactivator.exe
IFEO\FoxitReader.exe: [Debugger] C:\Program Files (x86)\Advanced SystemCare Pro\AutoReactivator.exe
IFEO\FoxitReaderConnectedPDFService.exe: [Debugger] C:\Program Files (x86)\Advanced SystemCare Pro\AutoReactivator.exe
IFEO\FoxitReaderUpdateService.exe: [Debugger] C:\Program Files (x86)\Advanced SystemCare Pro\AutoReactivator.exe
IFEO\FoxitUpdater.exe: [Debugger] C:\Program Files (x86)\Advanced SystemCare Pro\AutoReactivator.exe
IFEO\maintenanceservice.exe: [Debugger] C:\Program Files (x86)\Advanced SystemCare Pro\AutoReactivator.exe
IFEO\SendCrashReport.exe: [Debugger] C:\Program Files (x86)\Advanced SystemCare Pro\AutoReactivator.exe
IFEO\ServiceMiniNotice.exe: [Debugger] C:\Program Files (x86)\Advanced SystemCare Pro\AutoReactivator.exe
IFEO\TrackReview.exe: [Debugger] C:\Program Files (x86)\Advanced SystemCare Pro\AutoReactivator.exe
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {413137E1-7A1E-4AB9-B872-6E2C01985D95} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3321637588-428875143-3676826485-1000Core => C:\Users\David\AppData\Local\Google\Update\GoogleUpdate.exe [156104 2020-05-22] (Google LLC -> Google LLC)
Task: {519AF96D-0A40-4C9A-9AAD-4E2120DFB3E7} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3321637588-428875143-3676826485-1000UA => C:\Users\David\AppData\Local\Google\Update\GoogleUpdate.exe [156104 2020-05-22] (Google LLC -> Google LLC)
Task: {5DA22109-33E0-4B63-B35D-E56C92E9D54D} - System32\Tasks\{3FD8F676-F770-4D70-89C9-29C569C58E6F} => C:\Windows\system32\pcalua.exe -a C:\Users\David\Desktop\mtxl1225_setup.exe -d C:\Users\David\Desktop
Task: {7A0C3296-8572-4356-AA30-BBC5BC993E7A} - System32\Tasks\{E6A8FC60-6C40-47AE-B292-E5080A817777} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\THQ Nordic\Gothic II - Gold Edition\noc_havrana_cz_install.exe" -d "C:\Program Files (x86)\THQ Nordic\Gothic II - Gold Edition"
Task: {89A5DCCC-BECF-4A0F-A460-BF16DADF1A94} - System32\Tasks\{2D100D0C-29C4-4EFE-8C8D-E66E4561CF44} => C:\Windows\system32\pcalua.exe -a "G:\DirectX RunTime\DX81Win2000.exe" -d "G:\DirectX RunTime"
Task: {BF8249CF-ED58-4411-84C6-A6E5C7F6CF69} - System32\Tasks\{6FFA7556-D4A7-4553-8B03-99E6259F1394} => C:\Windows\system32\pcalua.exe -a C:\Users\David\Desktop\Sega.Mega.Drive.Classic.Collection.Gold.Edition-ALiAS\SetupReg.exe -d C:\Users\David\Desktop\Sega.Mega.Drive.Classic.Collection.Gold.Edition-ALiAS
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
U3 aswbdisk; no ImagePath
C:\Users\David\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00asw => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avg => not found
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\Glary Utilities => not found
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => not found
HKU\S-1-5-21-3321637588-428875143-3676826485-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\F => not found
HKU\S-1-5-21-3321637588-428875143-3676826485-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\G => not found
HKU\S-1-5-21-3321637588-428875143-3676826485-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{7471f82e-b066-11ea-aaed-485b39405249} => not found
HKU\S-1-5-21-3321637588-428875143-3676826485-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{91a1b3f3-a503-11ea-8f7a-485b39405249} => not found
HKU\S-1-5-21-3321637588-428875143-3676826485-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9616086c-354d-11ea-a30f-485b39405249} => not found
HKU\S-1-5-21-3321637588-428875143-3676826485-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a0a810ce-1622-11eb-bb84-485b39405249} => not found
HKU\S-1-5-21-3321637588-428875143-3676826485-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ad493791-b635-11ea-8152-485b39405249} => not found
HKU\S-1-5-21-3321637588-428875143-3676826485-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ad4937f4-b635-11ea-8152-485b39405249} => not found
HKU\S-1-5-21-3321637588-428875143-3676826485-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c3a838c8-a61f-11ea-889b-485b39405249} => not found
HKU\S-1-5-21-3321637588-428875143-3676826485-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c6c4e676-45a3-11ea-ba13-485b39405249} => not found
HKU\S-1-5-21-3321637588-428875143-3676826485-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{d4b63174-44e9-11ea-a4af-485b39405249} => not found
HKU\S-1-5-21-3321637588-428875143-3676826485-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{de707c85-c34e-11ea-bc5b-485b39405249} => not found
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\64BitMailAgent.exe => not found
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\FoxitReader.exe => not found
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\FoxitReaderConnectedPDFService.exe => not found
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\FoxitReaderUpdateService.exe => not found
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\FoxitUpdater.exe => not found
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\maintenanceservice.exe => not found
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\SendCrashReport.exe => not found
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\ServiceMiniNotice.exe => not found
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\TrackReview.exe => not found
"C:\Windows\system32\GroupPolicy\Machine" => not found
"C:\ProgramData\NTUSER.pol" => not found
HKLM\SOFTWARE\Policies\Mozilla => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{413137E1-7A1E-4AB9-B872-6E2C01985D95}" => not found
"C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3321637588-428875143-3676826485-1000Core" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskUserS-1-5-21-3321637588-428875143-3676826485-1000Core" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{519AF96D-0A40-4C9A-9AAD-4E2120DFB3E7}" => not found
"C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3321637588-428875143-3676826485-1000UA" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskUserS-1-5-21-3321637588-428875143-3676826485-1000UA" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5DA22109-33E0-4B63-B35D-E56C92E9D54D}" => not found
"C:\Windows\System32\Tasks\{3FD8F676-F770-4D70-89C9-29C569C58E6F}" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{3FD8F676-F770-4D70-89C9-29C569C58E6F}" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7A0C3296-8572-4356-AA30-BBC5BC993E7A}" => not found
"C:\Windows\System32\Tasks\{E6A8FC60-6C40-47AE-B292-E5080A817777}" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{E6A8FC60-6C40-47AE-B292-E5080A817777}" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{89A5DCCC-BECF-4A0F-A460-BF16DADF1A94}" => not found
"C:\Windows\System32\Tasks\{2D100D0C-29C4-4EFE-8C8D-E66E4561CF44}" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{2D100D0C-29C4-4EFE-8C8D-E66E4561CF44}" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BF8249CF-ED58-4411-84C6-A6E5C7F6CF69}" => not found
"C:\Windows\System32\Tasks\{6FFA7556-D4A7-4553-8B03-99E6259F1394}" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{6FFA7556-D4A7-4553-8B03-99E6259F1394}" => not found
HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE => not found
HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE => not found
aswbdisk => service not found.
"C:\Users\David\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini" => not found

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 0 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 38524 B
Edge => 0 B
Chrome => 0 B
Brave => 0 B
Firefox => 529097466 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 66228 B
Public => 66228 B
ProgramData => 66228 B
systemprofile => 58624506 B
systemprofile32 => 58694618 B
LocalService => 58694618 B
NetworkService => 58760846 B
David => 315325132 B
Classic .NET AppPool => 315391360 B
DefaultAppPool => 315457588 B

RecycleBin => 0 B
EmptyTemp: => 1.6 GB temporary data Removed.

================================

The system needed a reboot.

==== End of Fixlog 12:01:56 ====

#9 Příspěvek od **Rudy** » 18 led 2021 15:11

Smazáno. Nastala nějaká změna?

Hraczka · #10 Příspěvek od **Hraczka** » 18 led 2021 16:31

Pc je rychlejší, prohlížeč se malinko zrychlil, Hry jsem ještě nekoušel.

Jinak děkuji za pomoc

#11 Příspěvek od **Rudy** » 18 led 2021 16:56

OK, nemáte zač!

VIRY.CZ

zpomalené pc

zpomalené pc

Re: zpomalené pc

Re: zpomalené pc

Re: zpomalené pc

Re: zpomalené pc

Re: zpomalené pc

Re: zpomalené pc

Re: zpomalené pc

Re: zpomalené pc

Re: zpomalené pc

Re: zpomalené pc