Zpomalený pc

Zpráva

Mataa90 · #1 Příspěvek od **Mataa90** » 16 led 2021 13:56

Zdravím, asi před týdnem jsem sem psala ohledně zpomaleného pc, spolu jsme to vyčistili, ale teď už je to zase strašně zasekaný :/ díky za rady

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:14-12-2015
Ran by Martina (administrator) on IDEA-PC (16-01-2021 12:25:39)
Running from C:\Users\Martina\Desktop\Složky\Programy\na viry\FRST-OlderVersion
Loaded Profiles: Martina (Available Profiles: Martina)
Platform: Windows 8 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 10 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\avgToolsSvc.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(ExpressVPN) C:\Program Files (x86)\ExpressVPN\bootstrap\amd64\nssm.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(ExpressVPN) C:\Program Files (x86)\ExpressVPN\expressvpnd\expressvpnd.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
(McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(Tenorshare Co,Ltd) C:\Users\Martina\AppData\Roaming\Tenorshare\Service\configs\TenorshareWinAdService.exe
(Windscribe Limited) C:\Program Files (x86)\Windscribe\WindscribeService.exe
(Wondershare) C:\ProgramData\Wondershare\Service\InstallAssistService.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\aswEngSrv.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\aswidsagent.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Piriform Ltd) C:\Program Files (x86)\CCleaner\CCleaner64.exe
(Piriform Ltd) C:\Program Files (x86)\CCleaner\CCleaner64.exe
(Piriform Ltd) C:\Program Files (x86)\CCleaner\CCleaner64.exe
(Piriform Ltd) C:\Program Files (x86)\CCleaner\CCleaner64.exe
(Piriform Ltd) C:\Program Files (x86)\CCleaner\CCleaner64.exe
(Piriform Ltd) C:\Program Files (x86)\CCleaner\CCleaner64.exe
(Piriform Ltd) C:\Program Files (x86)\CCleaner\CCleaner64.exe
(Piriform Ltd) C:\Program Files (x86)\CCleaner\CCleaner64.exe
(Piriform Ltd) C:\Program Files (x86)\CCleaner\CCleaner64.exe
(Piriform Ltd) C:\Program Files (x86)\CCleaner\CCleaner64.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Piriform Ltd) C:\Program Files (x86)\CCleaner\CCleaner64.exe
(Piriform Ltd) C:\Program Files (x86)\CCleaner\CCleaner64.exe
(Piriform Ltd) C:\Program Files (x86)\CCleaner\CCleaner64.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe\LiveComm.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(BitTorrent, Inc.) C:\Program Files (x86)\BitTorrent Sync\BTSync.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe
(GOG.com) C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe
(ExpressVPN) C:\Program Files (x86)\ExpressVPN\expressvpn-ui\ExpressVPN.exe
() C:\Program Files (x86)\Philips\Philips Songbird Resources\Autolauncher\PhilipsDeviceListener.exe
(AimerSoft) C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe
(ExpressVPN) C:\Program Files (x86)\ExpressVPN\expressvpn-ui\ExpressVPNNotificationService.exe
(Qualcomm Atheros) C:\Program Files (x86)\Bluetooth Suite\BtTray.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
() C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
(Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe
(Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(GOG.com) C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe
(GOG.com) C:\Program Files (x86)\GalaxyClient\GOG Galaxy Notifications Renderer.exe
(Piriform Ltd) C:\Program Files (x86)\CCleaner\CCleaner64.exe
(GOG.com) C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe
(Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Piriform Ltd) C:\Program Files (x86)\CCleaner\CCleaner64.exe
(Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Windows\SysWOW64\backgroundTaskHost.exe
(Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\RapportService.exe
(Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1647616 2012-06-13] (Conexant Systems, Inc.)
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [887968 2012-06-15] (Conexant Systems, Inc.)
HKLM\...\Run: [BtPreLoad] => C:\Program Files (x86)\Bluetooth Suite\BtPreLoad.exe [64640 2012-09-30] ()
HKLM\...\Run: [AVGUI.exe] => C:\Program Files (x86)\AVG\Antivirus\AvLaunch.exe [165000 2021-01-04] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [Dolby Advanced Audio v2] => C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [508656 2012-07-26] (Dolby Laboratories Inc.)
HKLM-x32\...\Run: [Intel AppUp(SM) center] => C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [155488 2012-07-12] (Intel Corporation)
HKLM-x32\...\Run: [Philips Device Listener] => C:\Program Files (x86)\Philips\Philips Songbird Resources\Autolauncher\PhilipsDeviceListener.exe [380416 2012-02-15] ()
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [7992832 2020-12-15] (Dropbox, Inc.)
HKLM-x32\...\Run: [Aimersoft Helper Compact.exe] => C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe [2138272 2016-10-08] (AimerSoft)
HKLM-x32\...\Run: [ExpressVPNNotificationService] => C:\Program Files (x86)\ExpressVPN\expressvpn-ui\ExpressVPNNotificationServiceStarter.exe [465632 2020-12-03] (ExpressVPN)
Winlogon\Notify\igfxcui: C:\windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\Run: [BitTorrent] => C:\Users\Martina\AppData\Roaming\BitTorrent\BitTorrent.exe [1744064 2019-03-27] (BitTorrent Inc.)
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\Run: [CCleaner Monitoring] => C:\Program Files (x86)\CCleaner\CCleaner64.exe [17074688 2018-10-06] (Piriform Ltd)
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\Run: [Windscribe] => C:\Program Files (x86)\Windscribe\Windscribe.exe [10106544 2019-01-19] (Windscribe Limited)
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [83524968 2019-11-12] (Skype Technologies S.A.)
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\Run: [BitTorrent Sync] => C:\Program Files (x86)\BitTorrent Sync\BTSync.exe [1651304 2013-11-26] (BitTorrent, Inc.)
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\Run: [GalaxyClient] => C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe [7611464 2019-11-20] (GOG.com)
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\Run: [ExpressVPN4] => C:\Program Files (x86)\ExpressVPN\expressvpn-ui\ExpressVPN.exe [1161440 2020-12-03] (ExpressVPN)
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\MountPoints2: {9ddfa669-2959-11ea-bf6f-2cd05a349e8e} - "D:\HiSuiteDownLoader.exe"
HKU\S-1-5-18\...\Run: [CCleaner Monitoring] => C:\Program Files (x86)\CCleaner\CCleaner64.exe [17074688 2018-10-06] (Piriform Ltd)
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-20] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-20] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-20] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-20] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-20] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-20] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-20] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-20] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-20] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-20] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
ShellIconOverlayIdentifiers: [SugarSyncBackedUp] -> {0C4A258A-3F3B-4FFF-80A7-9B3BEC139472} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncPending] -> {62CCD8E3-9C21-41E1-B55E-1E26DFC68511} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncRoot] -> {A759AFF6-5851-457D-A540-F4ECED148351} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncShared] -> {1574C9EF-7D58-488F-B358-8B78C1538F51} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.46.0.dll [2020-12-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.46.0.dll [2020-12-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.46.0.dll [2020-12-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.46.0.dll [2020-12-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.46.0.dll [2020-12-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.46.0.dll [2020-12-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.46.0.dll [2020-12-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.46.0.dll [2020-12-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.46.0.dll [2020-12-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.46.0.dll [2020-12-01] (Dropbox, Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyServer: [S-1-5-21-1443460809-2058308057-2046692019-1001] => 127.0.0.1:8013
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 0.0.0.0
Tcpip\..\Interfaces\{5366E482-7F18-41D1-8897-2902EDCFF6FC}: [DhcpNameServer] 10.24.0.1
Tcpip\..\Interfaces\{D58DC935-FA05-437B-BA74-886A24E255C4}: [DhcpNameServer] 192.168.0.1 0.0.0.0
Tcpip\..\Interfaces\{ECB2C942-9B31-466C-89CF-45F6AE0AB257}: [DhcpNameServer] 192.168.42.129

Internet Explorer:
==================
URLSearchHook: [S-1-5-21-1443460809-2058308057-2046692019-1001] ATTENTION => Default URLSearchHook is missing
SearchScopes: HKU\S-1-5-21-1443460809-2058308057-2046692019-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1443460809-2058308057-2046692019-1001 -> {24AB7B16-6C04-4E62-BADB-A3AF9C7BA5B2} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-1443460809-2058308057-2046692019-1001 -> {28DBDC09-CD74-4291-80D1-789ACD6F9883} URL = hxxp://www.mapy.cz/?query={searchTerms}&source ... arch_13415
SearchScopes: HKU\S-1-5-21-1443460809-2058308057-2046692019-1001 -> {4E0C853B-1E34-451A-B946-3B8D7C8BCE5D} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-1443460809-2058308057-2046692019-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={searchTerms}&r ... {startPage}
SearchScopes: HKU\S-1-5-21-1443460809-2058308057-2046692019-1001 -> {6BC336E0-0860-4AFD-B849-E13CABFBD077} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&s ... arch_13415
SearchScopes: HKU\S-1-5-21-1443460809-2058308057-2046692019-1001 -> {764482F2-C192-4032-B5B2-7848E6928461} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz ... arch_13415
SearchScopes: HKU\S-1-5-21-1443460809-2058308057-2046692019-1001 -> {8C35819E-0D88-4E0F-8946-73D1764A9500} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-1443460809-2058308057-2046692019-1001 -> {A82AFC07-BDDB-4D91-91BD-B3D6AB1E5B87} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid= ... arch_13415
SearchScopes: HKU\S-1-5-21-1443460809-2058308057-2046692019-1001 -> {CFDE9E19-18B2-4AC6-9F1E-14BD87C69D29} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_13415
BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2020-12-17] (McAfee, LLC)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-12-21] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-06-26] (Oracle Corporation)
BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2020-12-17] (McAfee, LLC)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-12-21] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-06-26] (Oracle Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\lisxg3qz.default-1478951034493
FF NewTab: about:newtab
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll [2013-09-13] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw_1204144.dll [2013-09-05] (Adobe Systems, Inc.)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2014-01-06] (Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 -> C:\windows\SysWOW64\npDeployJava1.dll [2013-06-26] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [2013-06-26] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll [2013-09-13] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.0.7 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-12-07] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2017-08-24] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppluginrichmediaplayer.dll [2013-03-12] ()
FF Extension: No Name - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2020-12-18]
FF Extension: No Name - C:\Users\Martina\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\rapportext@trusteer.com.xpi [2019-01-26]
FF Extension: No Name - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\lisxg3qz.default-1478951034493\Extensions\@windscribeff.xpi [2019-03-08] [not signed]
FF Extension: No Name - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\lisxg3qz.default-1478951034493\Extensions\jid1-NIfFY2CA8fy1tg@jetpack.xpi [2019-10-29]
FF Extension: No Name - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\lisxg3qz.default-1478951034493\Extensions\s3google@translator.xpi [2018-10-11]
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
StartMenuInternet: Firefox- - kernel32::GetLongPathNameW(w R8, w .R7, i 1024)i .R6

Chrome:
=======
CHR Profile: C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-05-07]
CHR Extension: (Chrome Media Router) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-12-18]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx
CHR HKU\.DEFAULT\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bbjllphbppobebmjpjcijfbakobcheof] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bbjllphbppobebmjpjcijfbakobcheof] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [mbckjcfnjmoiinpgddefodcighgikkgn] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [220288 2012-09-30] (Qualcomm Atheros Commnucations) [File not signed]
R2 AVG Antivirus; C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe [622312 2021-01-04] (AVG Technologies CZ, s.r.o.)
R2 AVG Tools; C:\Program Files (x86)\AVG\Antivirus\avgToolsSvc.exe [352392 2021-01-04] (AVG Technologies CZ, s.r.o.)
R3 avgbIDSAgent; C:\Program Files (x86)\AVG\Antivirus\aswidsagent.exe [8524736 2021-01-04] (AVG Technologies CZ, s.r.o.)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-01-12] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-01-12] (Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [44552 2020-12-15] (Dropbox, Inc.)
R2 ExpressVPNService; C:\Program Files (x86)\ExpressVPN\bootstrap\amd64\nssm.exe [437472 2020-12-03] (ExpressVPN)
S3 GalaxyClientService; C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [791112 2019-11-20] (GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6841416 2019-11-20] (GOG.com)
S3 GoogleChromeElevationService; C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.141\elevation_service.exe [1431656 2021-01-06] (Google LLC)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2960672 2016-05-27] (IObit)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [958216 2020-12-17] (McAfee, LLC)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2142728 2016-11-07] (Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2209296 2016-11-07] (Electronic Arts)
R2 RapportMgmtService; C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe [5274560 2019-04-15] (IBM Corp.)
R2 TenorshareWinAdService; C:\Users\Martina\AppData\Roaming\Tenorshare\Service\configs\TenorshareWinAdService.exe [53472 2020-01-13] (Tenorshare Co,Ltd)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16048 2013-07-02] (Microsoft Corporation)
R2 WindscribeService; C:\Program Files (x86)\Windscribe\WindscribeService.exe [493232 2019-01-19] (Windscribe Limited)
R2 Wondershare InstallAssist; C:\ProgramData\Wondershare\Service\InstallAssistService.exe [230176 2020-01-16] (Wondershare)
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2012-09-30] (Atheros) [File not signed]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [88480 2016-05-16] ()
R0 avgArDisk; C:\Windows\System32\drivers\avgArDisk.sys [36936 2021-01-04] (AVG Technologies CZ, s.r.o.)
R1 avgArPot; C:\Windows\System32\drivers\avgArPot.sys [208808 2021-01-04] (AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\Windows\System32\drivers\avgbidsdriver.sys [332944 2021-01-04] (AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\Windows\System32\drivers\avgbidsh.sys [247952 2021-01-04] (AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\Windows\System32\drivers\avgbuniv.sys [97424 2021-01-04] (AVG Technologies CZ, s.r.o.)
R1 avgKbd; C:\Windows\System32\drivers\avgKbd.sys [42568 2021-01-04] (AVG Technologies CZ, s.r.o.)
R1 avgMonFlt; C:\Windows\System32\drivers\avgMonFlt.sys [176528 2021-01-04] (AVG Technologies CZ, s.r.o.)
R1 avgNetHub; C:\Windows\System32\drivers\avgNetHub.sys [522616 2021-01-04] (AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\Windows\System32\drivers\avgRdr2.sys [109064 2021-01-04] (AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\Windows\System32\drivers\avgRvrt.sys [84640 2021-01-04] (AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\Windows\System32\drivers\avgSnx.sys [851392 2021-01-04] (AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\Windows\System32\drivers\avgSP.sys [469040 2021-01-08] (AVG Technologies CZ, s.r.o.)
R2 avgStm; C:\Windows\System32\drivers\avgStm.sys [214936 2021-01-08] (AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\Windows\System32\drivers\avgVmm.sys [325056 2021-01-07] (AVG Technologies CZ, s.r.o.)
R3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [76952 2012-09-30] (Qualcomm Atheros)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2014-01-24] (Disc Soft Ltd)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3265256 2012-09-20] (Broadcom Corporation)
S3 expressvpnsplittunnel; C:\Program Files (x86)\ExpressVPN\splittunnel\expressvpnsplittunnel.sys [18800 2020-12-03] ()
S3 GEARAspiWDM; C:\Windows\SysWOW64\Drivers\GEARAspiWDM.sys [15664 2011-07-15] (GEAR Software Inc.)
R1 RapportAegle64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportAegle64.sys [503000 2019-04-15] (IBM Corp.)
R1 RapportCerberus_1930415; C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus64_1930415.sys [1659544 2019-04-02] (IBM Corp.)
R1 RapportEI64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportEI64.sys [727000 2019-04-15] (IBM Corp.)
R0 RapportHades64; C:\Windows\System32\Drivers\RapportHades64.sys [463408 2019-04-15] (IBM Corp.)
R0 RapportKE64; C:\Windows\System32\Drivers\RapportKE64.sys [610648 2019-04-15] (IBM Corp.)
R1 RapportPG64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys [766616 2019-04-15] (IBM Corp.)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [43832 2012-08-27] (Synaptics Incorporated)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 tapexpressvpn; C:\Windows\system32\DRIVERS\tapexpressvpn.sys [36208 2020-12-03] (The OpenVPN Project)
S3 tapwindscribe0901; C:\Windows\system32\DRIVERS\tapwindscribe0901.sys [45560 2017-03-29] (The OpenVPN Project)
S3 usbrndis6; C:\Windows\system32\DRIVERS\usb80236.sys [20992 2013-02-12] (Microsoft Corporation)
R3 vm331avs; C:\Windows\System32\Drivers\vm331avs.sys [975104 2012-08-24] (Vimicro Corporation)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [36288 2013-07-02] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [247216 2013-07-01] (Microsoft Corporation)
S3 WsAudio_Device; C:\Windows\system32\drivers\VirtualAudio.sys [39112 2018-01-19] (Wondershare)
S3 wsvd; C:\Windows\system32\DRIVERS\wsvd.sys [102376 2012-06-14] ("CyberLink)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-01-13 15:53 - 2021-01-13 17:30 - 1752414074 _____ C:\Users\Martina\Downloads\I told sunset about you EP3 HARDSUB.mkv
2021-01-12 14:43 - 2021-01-12 16:11 - 1578816002 _____ C:\Users\Martina\Downloads\I told sunset about you EP2 HARDSUB.mkv
2021-01-10 15:17 - 2021-01-10 15:55 - 682398722 _____ C:\Users\Martina\Downloads\The Untamed - Special Edition 01.mp4
2021-01-09 16:04 - 2021-01-09 16:54 - 900408003 _____ C:\Users\Martina\Downloads\0aftd.mkv
2021-01-08 17:42 - 2021-01-08 18:12 - 287410028 _____ C:\Users\Martina\Downloads\PD.mp4
2021-01-04 14:25 - 2021-01-08 15:48 - 00214936 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgStm.sys
2021-01-04 14:25 - 2021-01-04 14:25 - 00341128 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\avgBoot.exe
2021-01-03 23:36 - 2021-01-04 00:18 - 724798718 _____ C:\Users\Martina\Downloads\Bangkok.Love.Story -Thailand-GAY TEMA.avi
2020-12-27 17:04 - 2020-12-27 19:37 - 2526611420 _____ C:\Users\Martina\Downloads\I told sunset about you EP1 HARDSUB.mkv
2020-12-27 15:36 - 2020-12-27 15:36 - 00075891 _____ C:\Users\Martina\Downloads\i-told-sunset-about-you_slovak-2360150.zip
2020-12-25 01:24 - 2020-12-25 01:25 - 00583368 _____ C:\Users\Martina\Downloads\Guardian Zhen hun CZ tit E01 - E40 komplet.rar
2020-12-23 23:45 - 2020-12-23 23:49 - 00000000 ____D C:\Users\Martina\AppData\Local\ExpressVPN
2020-12-23 23:45 - 2020-12-23 23:45 - 00002239 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ExpressVPN.lnk
2020-12-23 23:45 - 2020-12-23 23:45 - 00002098 _____ C:\Users\Public\Desktop\ExpressVPN.lnk
2020-12-23 23:44 - 2020-12-23 23:44 - 00000000 ____D C:\ProgramData\ExpressVPN
2020-12-23 23:44 - 2020-12-23 23:44 - 00000000 ____D C:\Program Files (x86)\ExpressVPN
2020-12-23 23:43 - 2020-12-23 23:43 - 00000000 ____D C:\ProgramData\Package Cache
2020-12-23 23:10 - 2020-12-23 23:10 - 00000000 ____D C:\windows\LastGood
2020-12-23 22:30 - 2020-12-23 22:52 - 00000000 ____D C:\Users\Martina\AppData\Roaming\NordPass
2020-12-23 22:29 - 2020-12-23 22:29 - 00000000 ____D C:\Users\Martina\AppData\Local\nordpass-updater
2020-12-20 18:23 - 2021-01-03 22:21 - 00000974 _____ C:\Users\Martina\Desktop\The Untamed.txt
2020-12-20 13:00 - 2020-12-20 13:00 - 00000359 _____ C:\Users\Martina\Desktop\Počítač.lnk
2020-12-18 02:21 - 2020-12-18 02:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-01-16 12:38 - 2013-11-26 20:59 - 00000000 ____D C:\Users\Martina\AppData\Roaming\BitTorrent Sync
2021-01-16 12:24 - 2015-03-30 13:16 - 00000000 ____D C:\FRST
2021-01-16 12:18 - 2018-05-20 16:30 - 00000932 _____ C:\windows\Tasks\DropboxUpdateTaskMachineUA.job
2021-01-16 12:15 - 2018-05-20 16:30 - 00000928 _____ C:\windows\Tasks\DropboxUpdateTaskMachineCore.job
2021-01-16 01:05 - 2017-05-19 13:50 - 00005434 _____ C:\windows\system32\PerfStringBackup.INI
2021-01-16 01:05 - 2013-02-08 12:38 - 36250292 _____ C:\windows\system32\perfh005.dat
2021-01-16 01:05 - 2013-02-08 12:38 - 11846910 _____ C:\windows\system32\perfc005.dat
2021-01-15 22:26 - 2015-12-30 19:45 - 00002235 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-01-15 22:26 - 2015-12-30 19:45 - 00002194 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-01-15 21:40 - 2013-06-19 21:29 - 00000000 ____D C:\Users\Martina\AppData\Local\CrashDumps
2021-01-15 21:37 - 2018-10-18 14:01 - 00004174 _____ C:\windows\System32\Tasks\Antivirus Emergency Update
2021-01-15 21:27 - 2013-06-19 08:07 - 21989376 ___SH C:\Users\Martina\Desktop\Thumbs.db
2021-01-14 23:11 - 2020-10-15 14:01 - 00003386 _____ C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA
2021-01-14 23:11 - 2020-10-15 14:00 - 00003258 _____ C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore
2021-01-14 23:11 - 2017-01-12 14:54 - 00003904 _____ C:\windows\System32\Tasks\DropboxUpdateTaskMachineUA
2021-01-14 23:11 - 2016-03-11 12:48 - 00000000 ____D C:\windows\System32\Tasks\AVAST Software
2021-01-14 23:11 - 2013-02-08 12:00 - 00002982 _____ C:\windows\System32\Tasks\Synaptics TouchPad Enhancements
2021-01-14 23:10 - 2019-03-15 23:27 - 00002710 _____ C:\windows\System32\Tasks\arp_flush
2021-01-14 23:10 - 2018-10-08 11:55 - 00002804 _____ C:\windows\System32\Tasks\CCleanerSkipUAC
2021-01-14 23:10 - 2018-10-06 14:02 - 00004140 _____ C:\windows\System32\Tasks\CCleaner Update
2021-01-14 23:10 - 2017-01-12 14:54 - 00003668 _____ C:\windows\System32\Tasks\DropboxUpdateTaskMachineCore
2021-01-14 23:10 - 2016-05-13 19:59 - 00004476 _____ C:\windows\System32\Tasks\Adobe Acrobat Update Task
2021-01-09 15:48 - 2019-02-03 10:06 - 00005360 _____ C:\Users\Martina\Desktop\recepty.txt
2021-01-08 15:49 - 2018-10-06 13:59 - 00469040 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgSP.sys
2021-01-07 12:56 - 2013-06-22 18:10 - 00014457 _____ C:\Users\Martina\Desktop\filmy.txt
2021-01-07 12:44 - 2018-10-06 13:59 - 00325056 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgVmm.sys
2021-01-07 01:28 - 2015-04-20 13:23 - 00000000 ____D C:\KMPlayer
2021-01-05 15:25 - 2014-03-20 20:00 - 00000000 ____D C:\ProgramData\AVG
2021-01-05 08:08 - 2012-07-26 08:22 - 00000006 ____H C:\windows\Tasks\SA.DAT
2021-01-05 08:07 - 2012-07-26 06:26 - 00262144 ___SH C:\windows\system32\config\BBI
2021-01-04 15:00 - 2012-07-26 09:12 - 00000000 ___HD C:\Program Files\WindowsApps
2021-01-04 15:00 - 2012-07-26 09:12 - 00000000 ____D C:\windows\AUInstallAgent
2021-01-04 14:44 - 2013-10-07 21:48 - 01178624 ___SH C:\Users\Martina\Documents\Thumbs.db
2021-01-04 14:25 - 2020-10-28 17:20 - 00176528 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgMonFlt.sys
2021-01-04 14:25 - 2020-06-20 11:57 - 00522616 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgNetHub.sys
2021-01-04 14:25 - 2019-01-16 21:29 - 00247952 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgbidsh.sys
2021-01-04 14:25 - 2019-01-16 21:29 - 00097424 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgbuniv.sys
2021-01-04 14:25 - 2018-10-23 20:17 - 00042568 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgKbd.sys
2021-01-04 14:25 - 2018-10-06 13:59 - 00109064 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgRdr2.sys
2021-01-04 14:25 - 2018-10-06 13:59 - 00084640 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgRvrt.sys
2021-01-04 14:24 - 2019-01-16 21:29 - 00332944 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgbidsdriver.sys
2021-01-04 14:24 - 2019-01-16 21:29 - 00036936 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgArDisk.sys
2021-01-04 14:24 - 2018-10-06 13:59 - 00851392 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgSnx.sys
2021-01-04 14:24 - 2018-10-06 13:59 - 00208808 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgArPot.sys
2021-01-04 14:18 - 2012-07-26 06:37 - 00000000 ____D C:\windows\Inf
2021-01-04 14:09 - 2013-06-18 10:30 - 00000000 ____D C:\Users\Martina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo
2021-01-04 14:09 - 2013-02-08 12:04 - 00000000 ____D C:\Program Files (x86)\Vimicro
2021-01-04 13:51 - 2013-02-08 12:16 - 00000000 ____D C:\Program Files (x86)\Lenovo
2020-12-25 15:01 - 2019-08-27 18:57 - 00001232 _____ C:\Users\Martina\Desktop\vyúčtování táta.txt
2020-12-24 03:18 - 2013-06-22 18:03 - 00020628 _____ C:\Users\Martina\Desktop\Nový textový dokument.txt
2020-12-23 23:10 - 2012-07-26 06:37 - 00000000 ____D C:\Windows
2020-12-22 14:31 - 2013-06-18 20:54 - 00000000 ____D C:\Users\Martina\AppData\Roaming\vlc
2020-12-18 02:22 - 2017-01-12 14:53 - 00000000 ____D C:\Program Files (x86)\Dropbox

==================== Files in the root of some directories =======

2004-06-01 16:21 - 2004-06-01 16:21 - 0289552 _____ (Microsoft Corporation) C:\Program Files (x86)\shlwapi.dll
2006-04-04 10:42 - 2006-04-04 10:42 - 0006537 _____ () C:\Program Files (x86)\XMLSchema1.xsd
2018-12-24 12:58 - 2018-12-24 12:58 - 0000017 _____ () C:\Users\Martina\AppData\Local\resmon.resmoncfg
2016-11-05 20:27 - 2016-11-05 20:27 - 0032038 _____ () C:\Users\Martina\AppData\Local\SquareClock.Production_Home_Siko_WebIcon.ico
2020-02-23 21:40 - 2020-02-23 21:40 - 0000069 _____ () C:\Users\Martina\AppData\Local\uts.ini
2020-05-04 23:20 - 2020-05-04 23:20 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\explorer.exe => File is digitally signed
C:\windows\SysWOW64\explorer.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\SysWOW64\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\SysWOW64\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\SysWOW64\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\dnsapi.dll => File is digitally signed
C:\windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2021-01-11 22:04

==================== End of FRST.txt ============================

#2 Příspěvek od **Rudy** » 16 led 2021 16:33

Zdravím!
Spusťte tuto utilitu:

Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

Mataa90 · #3 Příspěvek od **Mataa90** » 18 led 2021 17:24

# -------------------------------
# Malwarebytes AdwCleaner 7.4.2.0
# -------------------------------
# Build: 10-21-2019
# Database: 2021-01-11.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 01-18-2021
# Duration: 00:00:46
# OS: Windows 8
# Cleaned: 0
# Failed: 0

***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

No malicious registry entries cleaned.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.

*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner_Debug.log - [301199 octets] - [22/11/2019 15:36:10]
AdwCleaner[S00].txt - [6610 octets] - [22/11/2019 15:45:46]
AdwCleaner[C00].txt - [2478 octets] - [22/11/2019 15:54:54]
AdwCleaner[S01].txt - [5762 octets] - [03/05/2020 12:51:46]
AdwCleaner[S02].txt - [5823 octets] - [03/05/2020 12:57:10]
AdwCleaner[C02].txt - [1872 octets] - [03/05/2020 13:13:07]
AdwCleaner[S03].txt - [5731 octets] - [04/01/2021 13:20:03]
AdwCleaner[C03].txt - [6347 octets] - [04/01/2021 14:10:07]
AdwCleaner[S04].txt - [1811 octets] - [18/01/2021 17:03:56]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C04].txt ##########

#4 Příspěvek od **Rudy** » 18 led 2021 18:03

Toto je OK. Přidejte ještě log Addition ( je v souboru addition.txt v C:\Users\Martina\Desktop\Složky\Programy\na viry\FRST-OlderVersion) a dočistíme ručně.

Mataa90 · #5 Příspěvek od **Mataa90** » 18 led 2021 20:00

Additional scan result of Farbar Recovery Scan Tool (x64) Version:14-12-2015
Ran by Martina (2021-01-18 19:57:04)
Running from C:\Users\Martina\Desktop\Složky\Programy\na viry\FRST-OlderVersion
Windows 8 (X64) (2013-06-18 09:32:05)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-1443460809-2058308057-2046692019-500 - Administrator - Disabled)
Guest (S-1-5-21-1443460809-2058308057-2046692019-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1443460809-2058308057-2046692019-1003 - Limited - Enabled)
Martina (S-1-5-21-1443460809-2058308057-2046692019-1001 - Administrator - Enabled) => C:\Users\Martina

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: AVG Antivirus (Enabled - Up to date) {18A975F9-A60C-37D8-E30B-4BEF31AD3411}
AS: AVG Antivirus (Enabled - Up to date) {A3C8941D-8036-3856-D9BB-709D4A2A7EAC}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 20.013.20074 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 20.0.0.260 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.0 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.0.4.144 - Adobe Systems, Inc.)
Advanced PDF to IMAGE converter 1.9.9.34 (HKLM-x32\...\Advanced PDF to IMAGE converter_is1) (Version: 1.9.9.34 - IntraPDF)
Aimersoft Helper Compact 2.5.2 (HKLM-x32\...\{405147F7-FCC5-499B-A27E-EA6BD4A80435}_is1) (Version: 2.5.2 - Aimersoft)
Apple Software Update (HKLM-x32\...\{A3985C05-7386-411F-A4BF-32A73F37EB44}) (Version: 2.6.3.1 - Apple Inc.)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.7 - Atheros Communications Inc.)
AVG AntiVirus FREE (HKLM-x32\...\AVG Antivirus) (Version: 20.10.3157 - AVG Technologies)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
BitTorrent (HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\BitTorrent) (Version: 7.10.5.44995 - BitTorrent Inc.)
BitTorrent Sync (HKLM-x32\...\BitTorrent Sync) (Version: 1.2.75 - )
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.74.1086 - AB Team, d.o.o.)
CCleaner (HKLM-x32\...\CCleaner) (Version: 2.36 - Piriform)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.54.44.50 - Conexant)
CZ-Doc2Txt Demo 4.0 (HKLM-x32\...\CZ-Doc2Txt Demo_is1) (Version: - )
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.48.1.0347 - Disc Soft Ltd)
Dark Souls - Prepare to Die Edition (HKLM-x32\...\Dark Souls - Prepare to Die Edition_R.G. Mechanics_is1) (Version: - R.G. Mechanics, spider91)
Defraggler (HKLM\...\Defraggler) (Version: 2.21 - Piriform)
Dolby Advanced Audio v2 (HKLM-x32\...\{B9E70C7A-9F85-4A39-A4A3-BFA3C3BF7613}) (Version: 7.2.8000.16 - Dolby Laboratories Inc)
Dropbox (HKLM-x32\...\Dropbox) (Version: 112.4.321 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.377.1 - Dropbox, Inc.) Hidden
ExpressVPN (HKLM-x32\...\{61d80bc4-f57d-4f1a-8a15-f0d2d9ed3e1e}) (Version: 9.4.0.271 - ExpressVPN)
ExpressVPN (x32 Version: 9.4.0.271 - ExpressVPN) Hidden
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
GOM Player (HKLM-x32\...\GOM Player) (Version: 2.2.56.5181 - Gretech Corporation)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 87.0.4280.141 - Google LLC)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.36.51 - Google LLC) Hidden
Google+ Auto Backup (HKLM-x32\...\{A50DE037-B5C0-4C8A-8049-B0C576B313D1}) (Version: 1.0.21.81 - Google)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.7702 - HP)
Intel AppUp(SM) center (HKLM-x32\...\Intel AppUp(SM) center 33057) (Version: 3.6.1.33057.10 - Intel)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.2828 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.5.4.1001 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.36 - Irfan Skiljan)
Java 7 Update 25 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.250 - Oracle)
Jpeg Resampler Vs 6+ (HKLM-x32\...\JpegResampler2010_is1) (Version: - Jpeg Resampler)
KMPlayer (remove only) (HKLM-x32\...\The KMPlayer) (Version: 3.9.1.135 - PandoraTV)
Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.0.0.0710 - CyberLink Corp.)
Lenovo OneKey Recovery (Version: 8.0.0.0710 - CyberLink Corp.) Hidden
Malwarebytes Anti-Malware verze 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Microsoft Office 2010 pro podnikatele (HKLM\...\Office14.SingleImage) (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Office 2010 Service Pack 1 (SP1) (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{7BC9B5EB-125A-4E9B-97E1-8D85B5E960B8}) (Version: - Microsoft)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Mozilla Firefox 65.0.1 (x64 cs) (HKLM\...\Mozilla Firefox 65.0.1 (x64 cs)) (Version: 65.0.1 - Mozilla)
Mozilla Firefox 65.0.2 (x64 cs) (HKLM\...\Mozilla Firefox 65.0.2 (x64 cs)) (Version: 65.0.2 - Mozilla)
Mozilla Firefox 66.0.3 (x64 cs) (HKLM\...\Mozilla Firefox 66.0.3 (x64 cs)) (Version: 66.0.3 - Mozilla)
Mozilla Firefox 66.0.5 (x64 cs) (HKLM\...\Mozilla Firefox 66.0.5 (x64 cs)) (Version: 66.0.5 - Mozilla)
Mozilla Firefox 81.0.1 (x64 cs) (HKLM\...\Mozilla Firefox 81.0.1 (x64 cs)) (Version: 81.0.1 - Mozilla)
Mozilla Firefox 81.0.2 (x64 cs) (HKLM\...\Mozilla Firefox 81.0.2 (x64 cs)) (Version: 81.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 62.0.3.6848 - Mozilla)
Neverwinter Nights 2 Complete (HKLM-x32\...\1207659162_is1) (Version: 2.2.0.10 - GOG.com)
NVIDIA PhysX (HKLM-x32\...\{F9835182-794B-4F24-902A-E2CA9D43380F}) (Version: 9.10.0512 - NVIDIA Corporation)
Ochrana koncového bodu Trusteer (HKLM-x32\...\Rapport_msi) (Version: 3.5.1930.429 - Trusteer)
One Click Root (HKLM-x32\...\{6EAD0BE5-D1CF-4BE8-A66F-53FE9B8D89CC}) (Version: 1.0.0.5 - One Click Root)
Origin (HKLM-x32\...\Origin) (Version: 9.4.1.116 - Electronic Arts, Inc.)
Philips Songbird (HKLM-x32\...\Philips Songbird) (Version: 5.6.2119 (2119) - Koninklijke Philips Electronics N.V.)
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
Podpora aplikací Apple (32bitová) (HKLM-x32\...\{A7039CC9-4669-4799-92B1-C5CE346DBE3D}) (Version: 8.3 - Apple Inc.)
Podpora aplikací Apple (64bitová) (HKLM\...\{DA78A9DC-3599-4D81-A960-B679687A6C14}) (Version: 8.3 - Apple Inc.)
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.0.210 - Qualcomm Atheros Communications)
Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros)
Rapport (x32 Version: 3.5.1930.429 - Trusteer) Hidden
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.8400.39030 - Realtek Semiconductor Corp.)
RollerCoaster Tycoon 2 (HKLM-x32\...\{72DF62BD-FF36-424E-AA5F-D89BAFF2C249}) (Version: - )
RollerCoaster Tycoon 2: Time Twister (HKLM-x32\...\{BA1E1AFD-D1F2-4C52-88C3-186FC5E61604}) (Version: 1.00.000 - )
RollerCoaster Tycoon 2: Wacky Worlds (HKLM-x32\...\{B1AD83A0-DC92-41E3-B111-E9472349768C}) (Version: - )
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
Skype verze 8.54 (HKLM-x32\...\Skype_is1) (Version: 8.54 - Skype Technologies S.A.)
SoulseekQt (HKLM-x32\...\SoulseekQt) (Version: - )
SugarSync Manager (HKLM-x32\...\SugarSync) (Version: 1.9.61.90905 - SugarSync, Inc.)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 16.2.10.13 - Synaptics Incorporated)
Total Commander (Remove or Repair) (HKLM-x32\...\Totalcmd) (Version: 8.01 - Ghisler Software GmbH)
UltData - Windows 7.1.1.23 (HKLM-x32\...\{UltData - Windows}_is1) (Version: 7.1.1.23 - Tenorshare, Inc.)
UserGuide (HKLM-x32\...\InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 1.0.0.9 - Lenovo)
UserGuide (x32 Version: 1.0.0.9 - Lenovo) Hidden
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
WebAdvisor od společnosti McAfee (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.1.177 - McAfee, LLC)
Windows Driver Package - Lenovo (ACPIVPC) System (06/15/2012 8.1.0.1) (HKLM\...\71BC3FD63F450BA0A957AAECBDB4A000C4F2BE42) (Version: 06/15/2012 8.1.0.1 - Lenovo)
Windows Driver Package - Lenovo (WUDFRd) LenovoVhid (06/19/2012 10.13.29.733) (HKLM\...\8A223E56FB1ED4F697B54E5BF96F1EB63B512684) (Version: 06/19/2012 10.13.29.733 - Lenovo)
Windscribe (HKLM-x32\...\{fa690e90-ddb0-4f0c-b3f1-136c084e5fc7}_is1) (Version: 1.83 Build 20 - Windscribe Limited)
WinRAR 4.20 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== Restore Points =========================

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2020-12-23 23:00 - 2020-12-23 23:00 - 00000000 ____A C:\windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0972E051-EFAC-41D8-ACBA-D39D1FB1E37D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-30] (Google Inc.)
Task: {0D1B3762-69DC-4200-8AD6-1FAE42DFA42B} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\Overseer.exe [2020-09-18] (Avast Software)
Task: {0F5FE9FE-881E-4CC2-AA86-91B3AD4B37DA} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2019-09-04] (Apple Inc.)
Task: {28D9D3A0-A342-45B7-98FF-3DCAF7C9CD65} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-30] (Google Inc.)
Task: {2C682BF3-9208-4A48-8C9A-BB68F4A3204B} - System32\Tasks\Norton Security Scan for Martina => C:\PROGRA~2\NORTON~2\Engine\401~1.16\Nss.exe
Task: {3FA5D95D-FDCA-477D-B0B7-54A40FBC3C70} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2020-11-03] (Adobe Inc.)
Task: {42FF3D6E-2493-4F6C-8817-A9F7AB7452DA} - System32\Tasks\CCleaner Update => C:\Program Files (x86)\CCleaner\CCUpdate.exe [2019-02-04] (Piriform Software Ltd)
Task: {473DF277-F08F-4789-A6DE-15A880BCDBDA} - System32\Tasks\Synaptics TouchPad Enhancements => Program Files\Synaptics\SynTP\SynTPEnh.exe
Task: {663451D9-85F7-4A7A-AC05-20CD831F2BE9} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2017-01-12] (Dropbox, Inc.)
Task: {691EBD32-1C8B-4E43-9304-92517C24F0C2} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe
Task: {6F88E2DB-28F1-4869-BE32-3920ECDF5AAA} - System32\Tasks\CCleanerSkipUAC => C:\Program Files (x86)\CCleaner\CCleaner.exe [2018-10-06] (Piriform Ltd)
Task: {DB247BA8-9C08-4CB9-B847-A80346262A6B} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [2020-10-17] (Mozilla Foundation)
Task: {DC15CD11-1B58-4D95-BCBE-230E23B0FA92} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2017-01-12] (Dropbox, Inc.)
Task: {DC7FB7BA-F78E-4B42-A3BC-9A67950E450B} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [2020-09-18] (AVG Technologies)
Task: {EDEFA62F-F748-4C83-91D0-5C6F686528A4} - System32\Tasks\Antivirus Emergency Update => C:\Program Files (x86)\AVG\Antivirus\AvEmUpdate.exe [2021-01-04] (AVG Technologies CZ, s.r.o.)
Task: {F6AA6C89-D2A5-4EA3-B597-1FF4EF9BF620} - System32\Tasks\arp_flush => C:\Program Files (x86)\hide.me VPN\FlushArpCache.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

Shortcut: C:\Users\Martina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Intеrnеt Ехplоrеr.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.bat (No File) <==== ATTENTION
Shortcut: C:\Users\Martina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome\Gооglе Сhrоmе.lnk -> C:\Users\Martina\AppData\Local\Google\Chrome\Application\chrome.bat (No File) <==== ATTENTION
Shortcut: C:\Users\Martina\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Gооglе Сhrоmе.lnk -> C:\Users\Martina\AppData\Local\Google\Chrome\Application\chrome.bat (No File) <==== ATTENTION
Shortcut: C:\Users\Martina\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Lаunсh Intеrnеt Ехplоrеr Вrоwsеr.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.bat (No File) <==== ATTENTION
Shortcut: C:\Users\Martina\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Gооglе Сhrоmе.lnk -> C:\Users\Martina\AppData\Local\Google\Chrome\Application\chrome.bat (No File) <==== ATTENTION
Shortcut: C:\Users\Martina\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Intеrnеt Ехplоrеr.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.bat (No File) <==== ATTENTION
Shortcut: C:\Users\Martina\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Моzillа Firеfох.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.bat (No File) <==== ATTENTION
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Моzillа Firеfох.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.bat (No File) <==== ATTENTION

==================== Loaded Modules (Whitelisted) ==============

2012-08-14 09:56 - 2012-08-03 17:34 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2020-11-26 21:20 - 2020-11-26 21:20 - 132979264 _____ () C:\Program Files (x86)\AVG\Antivirus\libcef.dll
2012-07-26 08:55 - 2012-07-26 08:53 - 00170864 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe\ModernShared\ErrorReporting\ErrorReporting.dll
2012-09-30 04:02 - 2012-09-30 04:02 - 00384128 _____ () C:\Program Files (x86)\Bluetooth Suite\ContactsApi.dll
2012-09-30 03:59 - 2012-09-30 03:59 - 00011264 _____ () C:\Program Files (x86)\Bluetooth Suite\Modules\ActivateDesktopDebugger\ActivateDesktopDebugger.dll
2012-09-30 04:01 - 2012-09-30 04:01 - 00012928 _____ () C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
2012-02-15 04:02 - 2012-02-15 04:02 - 00380416 _____ () C:\Program Files (x86)\Philips\Philips Songbird Resources\Autolauncher\PhilipsDeviceListener.exe
2021-01-15 22:21 - 2021-01-06 02:16 - 07626856 _____ () C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.141\libglesv2.dll
2021-01-15 22:21 - 2021-01-06 02:16 - 00455784 _____ () C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.141\libegl.dll
2020-11-26 21:20 - 2020-11-26 21:20 - 02700864 _____ () C:\Program Files (x86)\AVG\Antivirus\swiftshader\libglesv2.dll
2020-11-26 21:20 - 2020-11-26 21:20 - 00420416 _____ () C:\Program Files (x86)\AVG\Antivirus\swiftshader\libegl.dll
2016-07-09 13:43 - 2015-12-23 15:27 - 00629536 _____ () C:\Program Files (x86)\IObit\LiveUpdate\ProductStatistics.dll
2019-03-12 13:07 - 2018-07-06 17:22 - 00071168 _____ () C:\Program Files (x86)\Windscribe\zlib1.dll
2019-01-20 02:53 - 2018-07-06 17:22 - 01603072 _____ () C:\Program Files (x86)\Windscribe\libGLESv2.dll
2015-06-02 14:51 - 2015-06-02 14:51 - 00545792 _____ () C:\Program Files (x86)\Trusteer\Rapport\bin\js32.dll
2019-11-18 14:27 - 2019-11-20 14:33 - 91810376 _____ () C:\Program Files (x86)\GalaxyClient\libcef.dll
2019-11-18 14:28 - 2019-11-20 14:34 - 00503368 _____ () C:\Program Files (x86)\GalaxyClient\PocoUtil.dll
2019-11-18 14:28 - 2019-11-20 14:34 - 01071176 _____ () C:\Program Files (x86)\GalaxyClient\PocoNet.dll
2019-11-18 14:28 - 2019-11-20 14:34 - 01856072 _____ () C:\Program Files (x86)\GalaxyClient\PocoData.dll
2019-11-18 14:28 - 2019-11-20 14:34 - 00387656 _____ () C:\Program Files (x86)\GalaxyClient\PocoDataSQLite.dll
2019-11-18 14:28 - 2019-11-20 14:34 - 01656392 _____ () C:\Program Files (x86)\GalaxyClient\PocoFoundation.dll
2019-11-18 14:28 - 2019-11-20 14:34 - 00306248 _____ () C:\Program Files (x86)\GalaxyClient\PocoNetSSL.dll
2019-11-18 14:28 - 2019-11-20 14:34 - 00327752 _____ () C:\Program Files (x86)\GalaxyClient\PocoJSON.dll
2019-11-21 21:15 - 2019-11-20 14:34 - 00130120 _____ () C:\Program Files (x86)\GalaxyClient\xdelta3.dll
2019-11-18 14:28 - 2019-11-20 14:34 - 00747080 _____ () C:\Program Files (x86)\GalaxyClient\sqlite.dll
2019-11-18 14:28 - 2019-11-20 14:34 - 00107592 _____ () C:\Program Files (x86)\GalaxyClient\zlib.dll
2019-11-18 14:28 - 2019-11-20 14:34 - 00513608 _____ () C:\Program Files (x86)\GalaxyClient\PocoXML.dll
2019-11-18 14:28 - 2019-11-20 14:34 - 00270920 _____ () C:\Program Files (x86)\GalaxyClient\PocoZip.dll
2019-11-18 14:28 - 2019-11-20 14:34 - 00426568 _____ () C:\Program Files (x86)\GalaxyClient\pcre.dll
2019-11-18 14:28 - 2019-11-20 14:34 - 00157256 _____ () C:\Program Files (x86)\GalaxyClient\PocoCrypto.dll
2019-11-18 14:27 - 2019-11-20 14:33 - 00152648 _____ () C:\Program Files (x86)\GalaxyClient\expat.dll
2020-05-13 21:21 - 2016-10-08 16:03 - 01506304 _____ () C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\DAQExp.dll
2020-05-13 21:21 - 2016-07-21 09:54 - 00137728 _____ () C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\CBSCreateVC.dll
2013-02-08 11:50 - 2012-06-25 19:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2019-11-18 14:28 - 2019-11-20 14:34 - 04436552 _____ () C:\Program Files (x86)\GalaxyClient\libglesv2.dll
2019-11-18 14:28 - 2019-11-20 14:33 - 00098376 _____ () C:\Program Files (x86)\GalaxyClient\libegl.dll
2019-11-21 21:15 - 2019-11-20 14:34 - 02264136 _____ () C:\Program Files (x86)\GalaxyClient\swiftshader\libglesv2.dll
2019-11-21 21:15 - 2019-11-20 14:34 - 00129608 _____ () C:\Program Files (x86)\GalaxyClient\swiftshader\libegl.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Martina\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\Run: => "SmartAudio"
HKLM\...\StartupApproved\Run32: => "Dolby Advanced Audio v2"
HKLM\...\StartupApproved\Run32: => "Dropbox"
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\StartupApproved\Run: => "BitTorrent"
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\StartupApproved\Run: => "CCleaner Monitoring"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{DF289F14-CAC0-4213-9305-8FF21D411D09}] => (Allow) C:\Program Files (x86)\Lenovo\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe
FirewallRules: [{91B74A67-CAD8-4339-92CF-DCFD59D0038F}] => (Allow) C:\Program Files (x86)\Lenovo\PowerDVD10\PowerDVD10.EXE
FirewallRules: [{9808533E-1663-4A9A-B4D8-BDEAACA5F738}] => (Allow) C:\Users\Martina\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{734FAB46-8A70-4A1A-AC97-7A56376E9C7B}] => (Allow) C:\Users\Martina\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{562600B4-92D4-4CEF-94E3-1459030F0793}] => (Allow) C:\Program Files (x86)\BitTorrent Sync\BTSync.exe
FirewallRules: [{4A6E15AF-840B-4A8E-BEF1-88795E8AF772}] => (Allow) C:\Program Files (x86)\BitTorrent Sync\BTSync.exe
FirewallRules: [TCP Query User{5D7DC74F-5D97-4F82-8E46-9315998EFE6D}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Allow) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe
FirewallRules: [UDP Query User{349F3F8E-284A-466F-9889-BA8301928005}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Allow) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe
FirewallRules: [TCP Query User{FD18A27C-2D9F-47C3-9E16-E84C429FC4EA}C:\program files (x86)\soulseekqt\soulseekqt.exe] => (Allow) C:\program files (x86)\soulseekqt\soulseekqt.exe
FirewallRules: [UDP Query User{EB2C6D05-1245-425E-A253-262BDD2E4FBF}C:\program files (x86)\soulseekqt\soulseekqt.exe] => (Allow) C:\program files (x86)\soulseekqt\soulseekqt.exe
FirewallRules: [{70F237BC-0E0C-4916-B45B-DF48A4EC024E}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{D8FEA99B-78FF-490D-9E16-B5C1E5D4287A}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{64B0C5F5-B3D6-49CD-838A-54D2F1CC5E66}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{33AEF4EC-C3A0-4930-A277-7CFA2C85B08A}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{799F497E-9FD2-4A64-98BF-B8B785745764}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{1C0C8B8B-966B-478C-BD19-B17E9BF53D39}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [TCP Query User{0169972B-1224-4D9F-B377-0B5A9D29FE17}C:\program files (x86)\windscribe\wsappcontrol.exe] => (Allow) C:\program files (x86)\windscribe\wsappcontrol.exe
FirewallRules: [UDP Query User{FE87590A-AB75-4F68-9148-4BF22E79D63D}C:\program files (x86)\windscribe\wsappcontrol.exe] => (Allow) C:\program files (x86)\windscribe\wsappcontrol.exe
FirewallRules: [TCP Query User{05FF4A2F-7AAA-4DA5-B2A7-B25A774CB43E}C:\program files (x86)\windscribe\wsappcontrol.exe] => (Block) C:\program files (x86)\windscribe\wsappcontrol.exe
FirewallRules: [UDP Query User{50620EA6-0564-4089-879B-4B04C0409178}C:\program files (x86)\windscribe\wsappcontrol.exe] => (Block) C:\program files (x86)\windscribe\wsappcontrol.exe
FirewallRules: [TCP Query User{157EA005-D04A-4ADA-8395-484C776CE523}C:\games\the sims 4\game\bin\ts4.exe] => (Allow) C:\games\the sims 4\game\bin\ts4.exe
FirewallRules: [UDP Query User{FE5E0AEC-1FC9-4E5D-83BD-A45DA4B39A61}C:\games\the sims 4\game\bin\ts4.exe] => (Allow) C:\games\the sims 4\game\bin\ts4.exe
FirewallRules: [TCP Query User{A8ABE2C7-148B-4ED1-93A1-3036AD25A6F2}C:\games\the sims 4\game\bin\ts4_x64.exe] => (Block) C:\games\the sims 4\game\bin\ts4_x64.exe
FirewallRules: [UDP Query User{EB133B98-E73E-4973-B0DF-DAA76BDD0B63}C:\games\the sims 4\game\bin\ts4_x64.exe] => (Block) C:\games\the sims 4\game\bin\ts4_x64.exe
FirewallRules: [TCP Query User{52BF8D40-96C2-44C7-B21E-D5CE789778EB}C:\games\the sims 4\game\bin\ts4_x64.exe] => (Block) C:\games\the sims 4\game\bin\ts4_x64.exe
FirewallRules: [UDP Query User{17CBB7FB-DECB-45A3-8CF8-8C21D6F7839E}C:\games\the sims 4\game\bin\ts4_x64.exe] => (Block) C:\games\the sims 4\game\bin\ts4_x64.exe
FirewallRules: [TCP Query User{E3525052-3E02-49D8-9558-30E14AF3F540}C:\games\the sims 4\game\bin\ts4.exe] => (Block) C:\games\the sims 4\game\bin\ts4.exe
FirewallRules: [UDP Query User{405067B0-A61B-49E7-815F-89160DB66068}C:\games\the sims 4\game\bin\ts4.exe] => (Block) C:\games\the sims 4\game\bin\ts4.exe
FirewallRules: [TCP Query User{39C7904D-AA0B-462F-9AA4-99065A4EFE15}C:\gog games\nwn2 complete\nwn2main.exe] => (Block) C:\gog games\nwn2 complete\nwn2main.exe
FirewallRules: [UDP Query User{EBCF2447-A89F-476C-8605-7832CA98A16B}C:\gog games\nwn2 complete\nwn2main.exe] => (Block) C:\gog games\nwn2 complete\nwn2main.exe
FirewallRules: [{79C93381-606D-4D9A-97B2-14F97EE4876F}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
FirewallRules: [{6DACEDA1-D11E-4207-9ECF-7352DBFF0955}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
FirewallRules: [{42B9DAFB-AD25-46DC-BEE7-38A5115242D4}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
FirewallRules: [{75FFE938-700D-4D8D-A689-D4C03DD071BB}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{DF3CCA3E-F559-4B79-8B8A-69CA10861511}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{94ED2451-E426-464D-BB6C-9FDC938DF055}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{BAE750BA-0FC9-4CFB-A89D-A1481BE270B3}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [TCP Query User{CCC4867A-3C50-4598-93F4-E7DB7DEEFD91}C:\users\martina\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\martina\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{8DEAEF11-0C2D-4701-9DD5-6F4808249FE2}C:\users\martina\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\martina\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{8773B594-E750-4BD6-891A-5F3AB63B165C}C:\users\martina\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\martina\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{C2007875-867C-4152-A4B9-95F3111E3FA1}C:\users\martina\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\martina\appdata\roaming\spotify\spotify.exe
FirewallRules: [{117DACCA-A9F5-4467-98C9-ED5C0A924D42}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
FirewallRules: [TCP Query User{F3C3464A-84DB-427E-BAF2-C9365F17B906}C:\users\martina\appdata\local\programs\nordpass\nordpass.exe] => (Allow) C:\users\martina\appdata\local\programs\nordpass\nordpass.exe
FirewallRules: [UDP Query User{9A42CBD7-33F0-43FA-B78B-2C7D47718D6D}C:\users\martina\appdata\local\programs\nordpass\nordpass.exe] => (Allow) C:\users\martina\appdata\local\programs\nordpass\nordpass.exe
FirewallRules: [{85AB21C3-556E-461C-BFEA-C7B5A0A70019}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Faulty Device Manager Devices =============

Name: ExpressVPN TAP Adapter
Description: ExpressVPN TAP Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: ExpressVPN
Service: tapexpressvpn
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Teredo Tunneling Pseudo-Interface
Description: Adaptér tunelového režimu Microsoft Teredo
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

==================== Event log errors: =========================

Application errors:
==================
Error: (01/18/2021 05:24:12 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT AUTHORITY)
Description: Unloading the performance counter strings for service WmiApRpl (WmiApRpl) failed. The first DWORD in the Data section contains the error code.

Error: (01/18/2021 05:24:12 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: The performance strings in the Performance registry value is corrupted when process Performance extension counter provider. The BaseIndex value from the Performance registry is the first DWORD in the Data section, LastCounter value is the second DWORD in the Data section, and LastHelp value is the third DWORD in the Data section.

Error: (01/18/2021 05:24:11 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: The performance strings in the Performance registry value is corrupted when process Performance extension counter provider. The BaseIndex value from the Performance registry is the first DWORD in the Data section, LastCounter value is the second DWORD in the Data section, and LastHelp value is the third DWORD in the Data section.

Error: (01/18/2021 03:54:37 PM) (Source: Firefox Default Browser Agent) (EventID: 12157) (User: )
Description: 0x80072F7D in IsAgentRemoteDisabledInternal:68

Error: (01/18/2021 03:54:32 PM) (Source: Firefox Default Browser Agent) (EventID: 0) (User: )
Description: ERROR - Error::WindowsError(12157) (HRESULT: 0x80072f7d)

Error: (01/18/2021 03:53:01 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: LiveUpdate.exe, verze: 2.1.6.2245, časové razítko: 0x57188ed5
Název chybujícího modulu: LiveUpdate.exe, verze: 2.1.6.2245, časové razítko: 0x57188ed5
Kód výjimky: 0xc0000005
Posun chyby: 0x00210067
ID chybujícího procesu: 0x11d4
Čas spuštění chybující aplikace: 0xLiveUpdate.exe0
Cesta k chybující aplikaci: LiveUpdate.exe1
Cesta k chybujícímu modulu: LiveUpdate.exe2
ID zprávy: LiveUpdate.exe3
Úplný název chybujícího balíčku: LiveUpdate.exe4
ID aplikace související s chybujícím balíčkem: LiveUpdate.exe5

Error: (01/17/2021 04:24:44 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 4593

Error: (01/17/2021 04:24:44 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 4593

Error: (01/17/2021 04:24:44 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (01/17/2021 04:24:42 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2093

System errors:
=============
Error: (01/18/2021 07:17:58 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Ze vzdáleného koncového bodu byla přijata následující výstraha o závažné chybě. Kód výstrahy o závažné chybě definovaný protokolem TLS: 40

Error: (01/18/2021 06:19:49 PM) (Source: volsnap) (EventID: 36) (User: )
Description: Stínové kopie svazku C: byly přerušeny, protože z důvodu limitu stanoveného uživatelem se nepodařilo zvětšit úložiště stínové kopie.

Error: (01/18/2021 05:17:37 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Origin Web Helper Service neuspěla při spuštění v důsledku následující chyby:
%%1053

Error: (01/18/2021 05:17:37 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Origin Web Helper Service bylo dosaženo časového limitu (30000 ms).

Error: (01/18/2021 05:16:02 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \SystemRoot\SysWow64\Drivers\GEARAspiWDM.sys

Error: (01/18/2021 05:16:02 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \SystemRoot\SysWow64\Drivers\GEARAspiWDM.sys

Error: (01/18/2021 05:16:01 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \SystemRoot\SysWow64\Drivers\GEARAspiWDM.sys

Error: (01/18/2021 05:15:52 PM) (Source: Microsoft-Windows-Kernel-General) (EventID: 6) (User: NT AUTHORITY)
Description: 0xc000014d0

Error: (01/18/2021 05:15:08 PM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Služba AVG Antivirus se po přijetí pokynu pro vypnutí neukončila správně.

Error: (01/18/2021 05:09:36 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) Management and Security Application User Notification Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

CodeIntegrity:
===================================
Date: 2014-07-02 16:25:19.270
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files (x86)\SuperAdBlocker.com\Super Ad Blocker\SABProcEnum.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-07-02 16:25:16.216
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files (x86)\SuperAdBlocker.com\Super Ad Blocker\SABKUTIL.SYS because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-07-02 16:25:16.123
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files (x86)\SuperAdBlocker.com\Super Ad Blocker\sabdifsv.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info ===========================

Processor: Intel(R) Celeron(R) CPU 1000M @ 1.80GHz
Percentage of memory in use: 67%
Total physical RAM: 3961.77 MB
Available physical RAM: 1299.82 MB
Total Virtual: 8569.77 MB
Available Virtual: 4875.82 MB

==================== Drives ================================

Drive c: (Windows8_OS) (Fixed) (Total:418.43 GB) (Free:1.86 GB) NTFS ==>[system with boot components (obtained from drive)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 487094B7)

Partition: GPT.

==================== End of Addition.txt ============================

#6 Příspěvek od **Rudy** » 18 led 2021 21:10

Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
Task: {28D9D3A0-A342-45B7-98FF-3DCAF7C9CD65} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-30] (Google Inc.)
Task: {0972E051-EFAC-41D8-ACBA-D39D1FB1E37D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-30] (Google Inc.)
Shortcut: C:\Users\Martina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Intеrnеt Ехplоrеr.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.bat (No File) <==== ATTENTION
Shortcut: C:\Users\Martina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome\Gооglе Сhrоmе.lnk -> C:\Users\Martina\AppData\Local\Google\Chrome\Application\chrome.bat (No File) <==== ATTENTION
Shortcut: C:\Users\Martina\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Gооglе Сhrоmе.lnk -> C:\Users\Martina\AppData\Local\Google\Chrome\Application\chrome.bat (No File) <==== ATTENTION
Shortcut: C:\Users\Martina\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Lаunсh Intеrnеt Ехplоrеr Вrоwsеr.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.bat (No File) <==== ATTENTION
Shortcut: C:\Users\Martina\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Gооglе Сhrоmе.lnk -> C:\Users\Martina\AppData\Local\Google\Chrome\Application\chrome.bat (No File) <==== ATTENTION
Shortcut: C:\Users\Martina\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Intеrnеt Ехplоrеr.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.bat (No File) <==== ATTENTION
Shortcut: C:\Users\Martina\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Моzillа Firеfох.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.bat (No File) <==== ATTENTION
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Моzillа Firеfох.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.bat (No File) <==== ATTENTION
FirewallRules: [{75FFE938-700D-4D8D-A689-D4C03DD071BB}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{DF3CCA3E-F559-4B79-8B8A-69CA10861511}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{94ED2451-E426-464D-BB6C-9FDC938DF055}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{BAE750BA-0FC9-4CFB-A89D-A1481BE270B3}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
C:\Program Files (x86)\Bonjour
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\MountPoints2: {9ddfa669-2959-11ea-bf6f-2cd05a349e8e} - "D:\HiSuiteDownLoader.exe"
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
URLSearchHook: [S-1-5-21-1443460809-2058308057-2046692019-1001] ATTENTION => Default URLSearchHook is missing
C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA
C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore
C:\ProgramData\DP45977C.lfl

EmptyTemp:
End

Uložte do C:\Users\Martina\Desktop\Složky\Programy\na viry\FRST-OlderVersion jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Mataa90 · #7 Příspěvek od **Mataa90** » 18 led 2021 22:14

Fix result of Farbar Recovery Scan Tool (x64) Version:14-12-2015
Ran by Martina (2021-01-18 22:01:57) Run:16
Running from C:\Users\Martina\Desktop\Složky\Programy\na viry\FRST-OlderVersion
Loaded Profiles: Martina (Available Profiles: Martina)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
Task: {28D9D3A0-A342-45B7-98FF-3DCAF7C9CD65} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-30] (Google Inc.)
Task: {0972E051-EFAC-41D8-ACBA-D39D1FB1E37D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-30] (Google Inc.)
Shortcut: C:\Users\Martina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Int?rn?t ??pl?r?r.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.bat (No File) <==== ATTENTION
Shortcut: C:\Users\Martina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome\G??gl? ?hr?m?.lnk -> C:\Users\Martina\AppData\Local\Google\Chrome\Application\chrome.bat (No File) <==== ATTENTION
Shortcut: C:\Users\Martina\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\G??gl? ?hr?m?.lnk -> C:\Users\Martina\AppData\Local\Google\Chrome\Application\chrome.bat (No File) <==== ATTENTION
Shortcut: C:\Users\Martina\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\L?un?h Int?rn?t ??pl?r?r ?r?ws?r.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.bat (No File) <==== ATTENTION
Shortcut: C:\Users\Martina\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\G??gl? ?hr?m?.lnk -> C:\Users\Martina\AppData\Local\Google\Chrome\Application\chrome.bat (No File) <==== ATTENTION
Shortcut: C:\Users\Martina\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Int?rn?t ??pl?r?r.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.bat (No File) <==== ATTENTION
Shortcut: C:\Users\Martina\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\??zill? Fir?f??.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.bat (No File) <==== ATTENTION
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\??zill? Fir?f??.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.bat (No File) <==== ATTENTION
FirewallRules: [{75FFE938-700D-4D8D-A689-D4C03DD071BB}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{DF3CCA3E-F559-4B79-8B8A-69CA10861511}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{94ED2451-E426-464D-BB6C-9FDC938DF055}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{BAE750BA-0FC9-4CFB-A89D-A1481BE270B3}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
C:\Program Files (x86)\Bonjour
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\MountPoints2: {9ddfa669-2959-11ea-bf6f-2cd05a349e8e} - "D:\HiSuiteDownLoader.exe"
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
URLSearchHook: [S-1-5-21-1443460809-2058308057-2046692019-1001] ATTENTION => Default URLSearchHook is missing
C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA
C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore
C:\ProgramData\DP45977C.lfl

EmptyTemp:
End
*****************

Processes closed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{28D9D3A0-A342-45B7-98FF-3DCAF7C9CD65}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{28D9D3A0-A342-45B7-98FF-3DCAF7C9CD65}" => key removed successfully
C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{0972E051-EFAC-41D8-ACBA-D39D1FB1E37D}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0972E051-EFAC-41D8-ACBA-D39D1FB1E37D}" => key removed successfully
C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => key removed successfully
Shortcut: C:\Users\Martina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Int?rn?t ??pl?r?r.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.bat (No File) <==== ATTENTION => Error: No automatic fix found for this entry.
Shortcut: C:\Users\Martina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome\G??gl? ?hr?m?.lnk -> C:\Users\Martina\AppData\Local\Google\Chrome\Application\chrome.bat (No File) <==== ATTENTION => Error: No automatic fix found for this entry.
Shortcut: C:\Users\Martina\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\G??gl? ?hr?m?.lnk -> C:\Users\Martina\AppData\Local\Google\Chrome\Application\chrome.bat (No File) <==== ATTENTION => Error: No automatic fix found for this entry.
Shortcut: C:\Users\Martina\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\L?un?h Int?rn?t ??pl?r?r ?r?ws?r.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.bat (No File) <==== ATTENTION => Error: No automatic fix found for this entry.
Shortcut: C:\Users\Martina\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\G??gl? ?hr?m?.lnk -> C:\Users\Martina\AppData\Local\Google\Chrome\Application\chrome.bat (No File) <==== ATTENTION => Error: No automatic fix found for this entry.
Shortcut: C:\Users\Martina\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Int?rn?t ??pl?r?r.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.bat (No File) <==== ATTENTION => Error: No automatic fix found for this entry.
Shortcut: C:\Users\Martina\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\??zill? Fir?f??.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.bat (No File) <==== ATTENTION => Error: No automatic fix found for this entry.
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\??zill? Fir?f??.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.bat (No File) <==== ATTENTION => Error: No automatic fix found for this entry.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{75FFE938-700D-4D8D-A689-D4C03DD071BB} => value removed successfully
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{DF3CCA3E-F559-4B79-8B8A-69CA10861511} => value removed successfully
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{94ED2451-E426-464D-BB6C-9FDC938DF055} => value removed successfully
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{BAE750BA-0FC9-4CFB-A89D-A1481BE270B3} => value removed successfully
C:\Program Files (x86)\Bonjour => moved successfully
"HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9ddfa669-2959-11ea-bf6f-2cd05a349e8e}" => key removed successfully
HKCR\CLSID\{9ddfa669-2959-11ea-bf6f-2cd05a349e8e} => key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avg" => key removed successfully
HKCR\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => key not found.
Could not restore Default URLSearchHook.
"C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA" => not found.
"C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore" => not found.
C:\ProgramData\DP45977C.lfl => moved successfully
EmptyTemp: => 273.8 MB temporary data Removed.

The system needed a reboot.

==== End of Fixlog 22:02:28 ====

#8 Příspěvek od **Rudy** » 19 led 2021 10:40

Smazáno. Nastala nějaká změna?

Mataa90 · #9 Příspěvek od **Mataa90** » 20 led 2021 17:33

Ano, už je to ok. Uvidíme, jak dlouho to vydrží. Díky

#10 Příspěvek od **Rudy** » 20 led 2021 17:59

Uvidíme. Nemáte zač!

VIRY.CZ

Zpomalený pc

Zpomalený pc

Re: Zpomalený pc

Re: Zpomalený pc

Re: Zpomalený pc

Re: Zpomalený pc

Re: Zpomalený pc

Re: Zpomalený pc

Re: Zpomalený pc

Re: Zpomalený pc

Re: Zpomalený pc