Dědovo počítač startuje pomalu

Zpráva

wilgefortz · #1 Příspěvek od **wilgefortz** » 06 úno 2022 14:47

Dobrý den,
prosím o kontrolu logu. Počítač (Win 10 i5 2,2Ghz, 4GB RAM) se chová zpomaleně, dlouho startuje, aplikace se dlouho načítají, pomalé reakce. Pustil jsem ccleaner, odinstaloval Skype, Cortanu podle návodu v Chipu, ale určitě jde odebrat další.

# -------------------------------
# Malwarebytes AdwCleaner 8.3.1.0
# -------------------------------
# Build: 11-18-2021
# Database: 2022-02-03.4 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 02-06-2022
# Duration: 00:00:35
# OS: Windows 10 Home
# Scanned: 32043
# Detected: 29

***** [ Services ] *****

PUP.Optional.Legacy WtuSystemSupport

***** [ Folders ] *****

PUP.Optional.Legacy C:\Program Files (x86)\Common Files\AVG Secure Search
PUP.Optional.Legacy C:\Program Files (x86)\avg web tuneup
PUP.Optional.Legacy C:\Program Files\Common Files\AVG Secure Search
PUP.Optional.Legacy C:\Program Files\avg web tuneup
PUP.Optional.Legacy C:\ProgramData\avg web tuneup
PUP.Optional.Legacy C:\Users\Jarda\AppData\Local\avg web tuneup
PUP.Optional.Legacy C:\Users\Marie\AppData\Local\avg web tuneup
PUP.Optional.Legacy C:\Users\User\AppData\Local\avg web tuneup
PUP.Optional.MYPCTuneUp C:\Users\Jarda\AppData\Local\Packages\windows_ie_ac_001\AC\AVG Web TuneUp
PUP.Optional.MYPCTuneUp C:\Users\Marie\AppData\Local\Packages\windows_ie_ac_001\AC\AVG Web TuneUp
PUP.Optional.MYPCTuneUp C:\Users\User\AppData\Local\Packages\windows_ie_ac_001\AC\AVG Web TuneUp

***** [ Files ] *****

PUP.Optional.AuslogicsDiskDefrag C:\Users\Public\Desktop\Auslogics Disk Defrag.lnk
PUP.Optional.Legacy C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\m9us2a5y.default\searchplugins\avg-secure-search.xml

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

PUP.Optional.AVGSecureSearch HKLM\Software\Classes\WtuServer.WtuServerObj
PUP.Optional.AVGSecureSearch HKLM\Software\Classes\WtuServer.WtuServerObj.1
PUP.Optional.Legacy HKLM\Software\AVG Secure Search
PUP.Optional.Legacy HKLM\Software\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
PUP.Optional.Legacy HKLM\Software\Classes\TypeLib\{4BC8AD89-AC5F-4DBD-A38F-C355C7DD33D7}
PUP.Optional.Legacy HKLM\Software\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\AVG Tuneup
PUP.Optional.Legacy HKLM\Software\Wow6432Node\\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\\Classes\CLSID\{CA3A5461-96B5-46DD-9341-5350D3C94615}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\\Classes\TypeLib\{4BC8AD89-AC5F-4DBD-A38F-C355C7DD33D7}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\\Google\Chrome\NativeMessagingHosts\avgsh
PUP.Optional.Legacy HKLM\System\Setup\FirstBoot\Services\WtuSystemSupport
PUP.Optional.MySearch HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.

***** [ Hosts File Entries ] *****

No malicious hosts file entries found.

***** [ Preinstalled Software ] *****

No Preinstalled Software found.

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########

# -------------------------------
# Malwarebytes AdwCleaner 8.3.1.0
# -------------------------------
# Build: 11-18-2021
# Database: 2022-02-03.4 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 02-06-2022
# Duration: 00:01:18
# OS: Windows 10 Home
# Cleaned: 29
# Failed: 0

***** [ Services ] *****

Deleted WtuSystemSupport

***** [ Folders ] *****

Deleted C:\Program Files (x86)\Common Files\AVG Secure Search
Deleted C:\Program Files (x86)\avg web tuneup
Deleted C:\Program Files\Common Files\AVG Secure Search
Deleted C:\Program Files\avg web tuneup
Deleted C:\ProgramData\avg web tuneup
Deleted C:\Users\Jarda\AppData\Local\Packages\windows_ie_ac_001\AC\AVG Web TuneUp
Deleted C:\Users\Jarda\AppData\Local\avg web tuneup
Deleted C:\Users\Marie\AppData\Local\Packages\windows_ie_ac_001\AC\AVG Web TuneUp
Deleted C:\Users\Marie\AppData\Local\avg web tuneup
Deleted C:\Users\User\AppData\Local\Packages\windows_ie_ac_001\AC\AVG Web TuneUp
Deleted C:\Users\User\AppData\Local\avg web tuneup

***** [ Files ] *****

Deleted C:\Users\Public\Desktop\Auslogics Disk Defrag.lnk
Deleted C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\m9us2a5y.default\searchplugins\avg-secure-search.xml

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Deleted HKLM\Software\AVG Secure Search
Deleted HKLM\Software\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Deleted HKLM\Software\Classes\TypeLib\{4BC8AD89-AC5F-4DBD-A38F-C355C7DD33D7}
Deleted HKLM\Software\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Deleted HKLM\Software\Classes\WtuServer.WtuServerObj
Deleted HKLM\Software\Classes\WtuServer.WtuServerObj.1
Deleted HKLM\Software\Wow6432Node\AVG Tuneup
Deleted HKLM\Software\Wow6432Node\\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Deleted HKLM\Software\Wow6432Node\\Classes\CLSID\{CA3A5461-96B5-46DD-9341-5350D3C94615}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Deleted HKLM\Software\Wow6432Node\\Classes\TypeLib\{4BC8AD89-AC5F-4DBD-A38F-C355C7DD33D7}
Deleted HKLM\Software\Wow6432Node\\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Deleted HKLM\Software\Wow6432Node\\Google\Chrome\NativeMessagingHosts\avgsh
Deleted HKLM\System\Setup\FirstBoot\Services\WtuSystemSupport

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.

*************************

[+] remove_folder_Auslogics
[+] remove_folder_Auslogics(2)
[+] remove_folder_Auslogics(3)
[+] remove_folder_Auslogics(4)
[+] remove_regKey_Auslogics
[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [3964 octets] - [06/02/2022 12:58:14]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

#2 Příspěvek od **Rudy** » 06 úno 2022 15:35

Zdravím!

Dejte logy FRST+Addition: https://forum.viry.cz/viewtopic.php?f=13&t=154679 .

wilgefortz · #3 Příspěvek od **wilgefortz** » 06 úno 2022 16:49

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 05-02-2022
Ran by User (administrator) on DESKTOP-LNKIFO3 (LENOVO 80E5) (06-02-2022 14:28:10)
Running from C:\Users\User\Desktop
Loaded Profiles: User & Marie & Jarda
Platform: Microsoft Windows 10 Home Version 21H1 19043.1466 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\aswEngSrv.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\aswidsagent.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\avgToolsSvc.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe <4>
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\wsc_proxy.exe
(Lenovo (Beijing) Limited -> Lenovo) C:\Windows\System32\LenovoUpdate.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Desktop.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtsFT] => C:\WINDOWS\RTFTrack.exe [5166872 2016-08-04] (Realtek Semiconductor Corp -> Realtek semiconductor)
HKLM\...\Run: [ForteConfig] => C:\Program Files\Conexant\ForteConfig\fmapp.exe [49056 2010-10-26] (Fortemedia Inc -> )
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [919768 2014-11-20] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files (x86)\AVG\Antivirus\AvLaunch.exe [190904 2021-12-21] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [StartCN] => C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe [6613896 2016-06-28] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1830616 2014-04-10] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM-x32\...\Run: [vProt] => "C:\Program Files (x86)\AVG Web TuneUp\vprot.exe" (No File)
HKU\S-1-5-21-279109266-662476951-1249067375-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35320448 2022-01-25] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-279109266-662476951-1249067375-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35320448 2022-01-25] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM\...\Windows x64\Print Processors\BJ Print Processor4: C:\Windows\System32\spool\prtprocs\x64\CNBPP4.DLL [84992 2011-08-30] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Windows x64\Print Processors\Canon MP520 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPD94.DLL [27648 2007-05-22] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\BJ Language Monitor4: C:\WINDOWS\system32\CNBLM4.DLL [267776 2011-08-30] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MP520 series: C:\WINDOWS\system32\CNMLM94.DLL [258560 2007-05-22] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\97.0.4692.99\Installer\chrmstp.exe [2022-02-02] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {055E0E72-3D23-4738-AF01-E6629AE81CFA} - System32\Tasks\AVG EUpdate Task => avgsetupx.exe /eu (No File)
Task: {1C963ABE-F4F8-495E-B130-F356635EF7F3} - System32\Tasks\HPCustParticipation HP LaserJet MFP M129-M134 => C:\Program Files\HP\HP LaserJet MFP M129-M134\Bin\HPCustPartic.exe [6438544 2016-04-12] (Hewlett Packard -> HP Inc.)
Task: {2228C6EA-0482-4F09-9B37-9D436740947A} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [1821968 2021-04-30] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {23707283-0C74-4001-B347-2D80447ED8C4} - System32\Tasks\Mozilla\Firefox Background Update E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla\updates\E7CF176E110C211B\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {2B91AFF3-0A5B-44CB-89F5-0A981FF6FE42} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-17] (Adobe Inc. -> Adobe Inc.)
Task: {377E1875-916A-4E46-98A5-273859B324D8} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe do-task "E7CF176E110C211B"
Task: {3C8D9189-47AC-4C6C-8D93-AA931ABC0C49} - System32\Tasks\Antivirus Emergency Update => C:\Program Files (x86)\AVG\Antivirus\AvEmUpdate.exe [5002680 2021-12-21] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
Task: {60BD0F51-7AE7-47D3-A69C-01EB399C3C2A} - System32\Tasks\CCleanerSkipUAC - User => C:\Program Files\CCleaner\CCleaner.exe [29453952 2022-01-25] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {62DC3531-32F5-4E31-980E-D931E16297D4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2016-11-02] (Google Inc -> Google Inc.)
Task: {7E350FB5-0C2A-4903-8312-0862D923989B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2016-11-02] (Google Inc -> Google Inc.)
Task: {8D62D999-8D45-4D4C-9566-76C6CEE2996A} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {D279802F-B853-4E97-B853-D3FD1FFB5659} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-01-25] (Piriform Software Ltd -> Piriform)
Task: {E48D99A2-2AED-4A87-AB92-9F4ACAF60529} - System32\Tasks\Microsoft\Windows\rempl\shell => C:\Program Files\rempl\sedlauncher.exe (No File)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{3e3b8be3-2c54-4a5f-b974-58703950b65d}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{8f8f2d02-3b66-43de-8e8c-a474d9bd17d6}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{d8bd3ae7-dcde-4a3e-b306-73c99b5990e2}: [DhcpNameServer] 10.0.0.138

Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Default
Edge Profile: C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default [2022-02-05]
Edge StartupUrls: Default -> "hxxps://gis.jihoceske-cyklostezky.cz/portal/home/signin.html?returnUrl=http%3A//gis.jihoceske-cyklostezky.cz/portal/apps/webappviewer/index.html%3Fid%3Dcc0cfeb6fa2c4c239029f207d4b4296f"

FireFox:
========
FF DefaultProfile: m9us2a5y.default
FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\m9us2a5y.default [2022-02-06]
FF Homepage: Mozilla\Firefox\Profiles\m9us2a5y.default -> hxxps://www.seznam.cz/
FF Session Restore: Mozilla\Firefox\Profiles\m9us2a5y.default -> is enabled.
FF Notifications: Mozilla\Firefox\Profiles\m9us2a5y.default -> hxxps://www.tomshardware.com; hxxps://www.tisknulevne.cz
FF Extension: (I don't care about cookies) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\m9us2a5y.default\Extensions\jid1-KKzOGWgsW3Ao4Q@jetpack.xpi [2022-01-25]
FF Extension: (No Name) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\m9us2a5y.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2021-11-26]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2021-12-24] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1225195.dll [2016-09-20] (Adobe Systems, Inc.) [File not signed]
FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\40.3.8\\npsitesafety.dll [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] (Microsoft Corporation -> Microsoft Corporation)

Chrome:
=======
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Default [2022-02-05]
CHR Extension: (Prezentace) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-01-09]
CHR Extension: (Dokumenty) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-01-09]
CHR Extension: (Disk Google) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-03-02]
CHR Extension: (YouTube) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-03]
CHR Extension: (Tabulky) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-01-09]
CHR Extension: (Dokumenty Google offline) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-03-02]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-05-22]
CHR Extension: (Gmail) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-05-22]
CHR Extension: (Chrome Media Router) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-03-02]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 AdaptiveSleepService; C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe [138752 2016-06-28] () [File not signed]
S2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-17] (Adobe Inc. -> Adobe Inc.)
R2 AVG Antivirus; C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe [485816 2021-12-21] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AVG Tools; C:\Program Files (x86)\AVG\Antivirus\avgToolsSvc.exe [485816 2021-12-21] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R3 avgbIDSAgent; C:\Program Files (x86)\AVG\Antivirus\aswidsagent.exe [8517744 2021-12-21] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AvgWscReporter; C:\Program Files (x86)\AVG\Antivirus\wsc_proxy.exe [109480 2021-05-25] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [192200 2017-07-26] (Huawei Software Technologies Co., LTD. -> )
R3 LenovoUpdate; C:\WINDOWS\System32\LenovoUpdate.exe [26608 2022-02-06] (Lenovo (Beijing) Limited -> Lenovo)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13036464 2022-01-24] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2006.10-0\NisSrv.exe [2496144 2020-07-18] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2006.10-0\MsMpEng.exe [104192 2020-07-18] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 avgArDisk; C:\WINDOWS\System32\drivers\avgArDisk.sys [36920 2021-12-21] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [222248 2021-12-21] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdriver.sys [369288 2021-12-21] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\WINDOWS\System32\drivers\avgbidsh.sys [253064 2021-12-21] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\WINDOWS\System32\drivers\avgbuniv.sys [100488 2021-12-21] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgElam; C:\WINDOWS\System32\drivers\avgElam.sys [21960 2021-09-23] (Microsoft Windows Early Launch Anti-malware Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgKbd; C:\WINDOWS\System32\drivers\avgKbd.sys [42552 2021-12-21] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [186424 2021-12-21] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgNetHub; C:\WINDOWS\System32\drivers\avgNetHub.sys [540192 2021-12-21] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\WINDOWS\System32\drivers\avgRdr2.sys [109056 2021-12-21] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [84120 2021-12-21] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [853944 2021-12-21] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [545312 2021-12-21] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 avgStm; C:\WINDOWS\System32\drivers\avgStm.sys [215576 2021-12-21] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [318904 2021-12-21] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45976 2020-07-18] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [408816 2020-07-18] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [64224 2020-07-18] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-02-06 14:28 - 2022-02-06 14:29 - 000017237 _____ C:\Users\User\Desktop\FRST.txt
2022-02-06 14:27 - 2022-02-06 14:29 - 000000000 ____D C:\FRST
2022-02-06 14:07 - 2022-02-06 14:07 - 002311680 _____ (Farbar) C:\Users\User\Desktop\FRST64.exe
2022-02-06 12:57 - 2022-02-06 12:59 - 000000000 ____D C:\AdwCleaner
2022-02-06 11:36 - 2021-12-21 08:55 - 000336824 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\avgBoot.exe
2022-02-05 22:32 - 2022-02-05 22:32 - 000000000 ___HD C:\$WinREAgent
2022-02-05 22:24 - 2022-02-05 22:24 - 008540344 _____ (Malwarebytes) C:\Users\User\Downloads\adwcleaner_8.3.1.exe
2022-02-05 21:45 - 2022-01-24 11:06 - 000046936 _____ (TeamViewer GmbH) C:\WINDOWS\system32\Drivers\teamviewervpn.sys
2022-02-05 10:24 - 2022-02-05 10:24 - 000523776 _____ (curl, hxxps://curl.se/) C:\WINDOWS\system32\curl.exe
2022-02-05 10:24 - 2022-02-05 10:24 - 000464384 _____ (curl, hxxps://curl.se/) C:\WINDOWS\SysWOW64\curl.exe
2022-02-05 10:24 - 2022-02-05 10:24 - 000011797 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-02-02 14:58 - 2022-02-06 11:31 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2022-01-29 10:35 - 2022-01-29 10:35 - 000000000 ____D C:\WINDOWS\system32\Tasks\Agent Activation Runtime

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-02-06 14:27 - 2016-11-19 18:34 - 000000000 ____D C:\Users\User\AppData\LocalLow\Mozilla
2022-02-06 14:25 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-02-06 14:14 - 2019-02-05 11:16 - 000000000 ____D C:\ProgramData\Mozilla
2022-02-06 14:03 - 2021-04-18 13:27 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-02-06 13:42 - 2016-11-02 17:27 - 000000000 ____D C:\Program Files (x86)\Google
2022-02-06 12:30 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-02-06 12:30 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-02-06 12:00 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2022-02-06 11:47 - 2020-06-03 21:14 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-02-06 11:47 - 2020-06-03 21:14 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2022-02-06 11:46 - 2016-11-19 22:49 - 000000000 ____D C:\Program Files\CCleaner
2022-02-06 11:44 - 2018-07-13 09:24 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2022-02-06 11:44 - 2016-11-02 17:47 - 000000000 __SHD C:\Users\User\IntelGraphicsProfiles
2022-02-06 11:43 - 2016-11-02 17:27 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-02-06 11:42 - 2016-11-02 17:27 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2022-02-06 11:39 - 2021-04-18 13:51 - 001605602 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-02-06 11:39 - 2019-12-07 15:41 - 000683426 _____ C:\WINDOWS\system32\perfh005.dat
2022-02-06 11:39 - 2019-12-07 15:41 - 000137206 _____ C:\WINDOWS\system32\perfc005.dat
2022-02-06 11:39 - 2016-11-03 09:19 - 000000000 ____D C:\ProgramData\Avg
2022-02-06 11:37 - 2021-04-18 14:09 - 000004004 _____ C:\WINDOWS\system32\Tasks\Antivirus Emergency Update
2022-02-06 11:37 - 2017-11-12 08:53 - 000002053 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG AntiVirus FREE.lnk
2022-02-06 11:37 - 2017-11-12 08:53 - 000002041 _____ C:\Users\Public\Desktop\AVG AntiVirus FREE.lnk
2022-02-06 11:36 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-02-06 11:32 - 2021-04-18 13:27 - 000464176 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-02-06 11:31 - 2021-04-18 14:09 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-02-06 11:31 - 2021-04-18 13:26 - 000008192 ___SH C:\DumpStack.log.tmp
2022-02-06 11:31 - 2017-06-04 09:11 - 000153336 _____ C:\WINDOWS\system32\wpbbin.exe
2022-02-06 11:31 - 2017-06-04 09:11 - 000111088 _____ (Lenovo (Beijing) Limited) C:\WINDOWS\system32\LenovoCheck.exe
2022-02-06 11:31 - 2017-06-04 09:11 - 000026608 _____ (Lenovo) C:\WINDOWS\system32\LenovoUpdate.exe
2022-02-06 11:31 - 2017-02-19 21:28 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2022-02-06 11:31 - 2016-11-02 17:26 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-02-06 11:30 - 2019-12-07 10:03 - 001310720 _____ C:\WINDOWS\system32\config\BBI
2022-02-06 11:25 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-02-06 11:23 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2022-02-06 11:23 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-02-06 11:23 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-02-06 11:23 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2022-02-06 11:23 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-02-06 11:23 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-02-06 11:22 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-02-06 11:10 - 2018-09-01 16:48 - 000000000 ____D C:\Users\User\AppData\Local\CrashDumps
2022-02-05 22:46 - 2018-01-01 21:16 - 000000000 ____D C:\Users\User\AppData\Local\Packages
2022-02-05 21:48 - 2021-05-19 13:26 - 000000000 ____D C:\WINDOWS\Minidump
2022-02-05 21:46 - 2021-04-18 13:37 - 000000000 ____D C:\Users\Marie
2022-02-05 21:46 - 2021-04-18 13:37 - 000000000 ____D C:\Users\Jarda
2022-02-05 09:37 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2022-02-04 14:18 - 2021-12-22 20:17 - 000003058 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-279109266-662476951-1249067375-1002
2022-02-04 14:18 - 2021-12-13 18:11 - 000003058 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-279109266-662476951-1249067375-1001
2022-02-04 14:18 - 2021-08-21 17:08 - 000002248 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - User
2022-02-04 14:18 - 2021-04-27 13:23 - 000003318 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d7345145a8479a
2022-02-04 14:18 - 2021-04-18 14:09 - 000003512 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-02-04 14:18 - 2021-04-18 14:09 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2022-02-04 14:18 - 2021-04-18 14:09 - 000003402 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2022-02-04 14:18 - 2021-04-18 14:09 - 000003288 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-02-04 14:18 - 2021-04-18 14:09 - 000003178 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2022-02-04 14:18 - 2021-04-18 14:09 - 000002988 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2022-02-04 14:18 - 2021-04-18 14:09 - 000002854 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-279109266-662476951-1249067375-1002
2022-02-04 14:18 - 2021-04-18 14:09 - 000002854 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-279109266-662476951-1249067375-1001
2022-02-04 14:18 - 2021-04-18 14:09 - 000002664 _____ C:\WINDOWS\system32\Tasks\HPCustParticipation HP LaserJet MFP M129-M134
2022-02-04 14:18 - 2021-04-18 14:09 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2022-02-02 16:00 - 2021-10-10 17:55 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2022-02-02 16:00 - 2016-11-02 17:26 - 000001228 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-01-19 17:07 - 2016-11-04 12:23 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-01-19 16:47 - 2016-11-04 12:23 - 145765912 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-01-15 10:58 - 2021-04-18 13:37 - 000002374 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-01-15 10:55 - 2021-11-06 09:52 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2022-01-15 10:55 - 2021-11-06 09:52 - 000002061 _____ C:\Users\Public\Desktop\Adobe Acrobat DC.lnk

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

wilgefortz · #4 Příspěvek od **wilgefortz** » 06 úno 2022 16:49

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 05-02-2022
Ran by User (06-02-2022 14:38:11)
Running from C:\Users\User\Desktop
Microsoft Windows 10 Home Version 21H1 19043.1466 (X64) (2021-04-18 13:11:06)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-279109266-662476951-1249067375-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-279109266-662476951-1249067375-503 - Limited - Disabled)
Guest (S-1-5-21-279109266-662476951-1249067375-501 - Limited - Disabled)
Jarda (S-1-5-21-279109266-662476951-1249067375-1003 - Limited - Enabled) => C:\Users\Jarda
Marie (S-1-5-21-279109266-662476951-1249067375-1002 - Limited - Enabled) => C:\Users\Marie
User (S-1-5-21-279109266-662476951-1249067375-1001 - Administrator - Enabled) => C:\Users\User
WDAGUtilityAccount (S-1-5-21-279109266-662476951-1249067375-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: AVG Antivirus (Enabled - Up to date) {18A975F9-A60C-37D8-E30B-4BEF31AD3411}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)
Adobe Acrobat DC (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 21.011.20039 - Adobe)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 23.0.0.257 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.2 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.2.5.195 - Adobe Systems, Inc.)
AMD Settings (HKLM\...\WUCCCApp) (Version: 2016.0628.2138.37120 - Advanced Micro Devices, Inc.)
Auslogics Disk Defrag (HKLM-x32\...\{DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1) (Version: 7.0.0.0 - Auslogics Labs Pty Ltd)
AVG AntiVirus FREE (HKLM\...\AVG Antivirus) (Version: 21.11.3215 - AVG Technologies)
AVG Web TuneUp (HKLM-x32\...\AVG Web TuneUp) (Version: 4.3.9.626 - AVG Technologies)
Canon MP520 series (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP520_series) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 5.89 - Piriform)
Combined Community Codec Pack 64bit 2015-10-18 (HKLM\...\Combined Community Codec Pack 64bit_is1) (Version: 2015.10.19.0 - CCCP Project)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.66.27.55 - Conexant)
Dolby Digital Plus Advanced Audio (HKLM\...\{B0BFC63F-EA07-419E-960B-3FB2ED5DD0B2}) (Version: 7.6.5.1 - Dolby Laboratories Inc)
Google Earth Pro (HKLM\...\{9BFB06CD-3925-49E2-BAB7-EA695821CE4C}) (Version: 7.3.4.8248 - Google)
Google Chrome (HKLM-x32\...\{3E1821B2-8653-3E3F-83CB-3A532DB20D06}) (Version: 97.0.4692.99 - Google, Inc.)
HiSuite (HKLM-x32\...\Hi Suite) (Version: 1.0 - Huawei Technologies Co.,Ltd)
HP Dropbox Plugin (HKLM-x32\...\{0078F518-B5B5-4857-8939-199E752A4190}) (Version: 36.0.41.58587 - HP)
HP Google Drive Plugin (HKLM-x32\...\{F260117F-45E4-483E-B10F-C80224558C4D}) (Version: 36.0.41.58587 - HP)
I.R.I.S. OCR (HKLM-x32\...\{08AE1F44-18C4-4079-B8FF-8A9E6F1E4892}) (Version: 12.3.7.0 - HP)
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4474 - Intel Corporation)
K-Lite Codec Pack 12.5.0 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 12.5.0 - KLCP)
KMPlayer (remove only) (HKLM-x32\...\The KMPlayer) (Version: 4.1.2.2 - PandoraTV)
Kontrola stavu osobního počítače s Windows (HKLM\...\{88EC8D4A-54AB-4A7F-BDE9-4AD906D9D11F}) (Version: 3.2.2110.14001 - Microsoft Corporation)
LibreOffice 6.2.5.2 (HKLM\...\{207F3229-8AA5-4544-BDB7-7995538A5ED5}) (Version: 6.2.5.2 - The Document Foundation)
LibreOffice 6.3 Help Pack (Czech) (HKLM\...\{50CAE74D-4166-4D9D-B46F-2B34D84BCC6D}) (Version: 6.3.0.4 - The Document Foundation)
LM129 (HKLM-x32\...\{A2D25501-6F44-4CE2-9EFA-C9E5A0658FA9}) (Version: 0.00.0005 - HP)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 98.0.1108.43 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-279109266-662476951-1249067375-1001\...\OneDriveSetup.exe) (Version: 21.245.1128.0002 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-279109266-662476951-1249067375-1002\...\OneDriveSetup.exe) (Version: 21.230.1107.0004 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-279109266-662476951-1249067375-1003\...\OneDriveSetup.exe) (Version: 17.3.6799.0327 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{29B15818-E79F-4AB0-8938-9410C807AD76}) (Version: 2.84.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox 96.0.3 (x64 cs)) (Version: 96.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 96.0.3.8061 - Mozilla)
PSPad editor (HKLM-x32\...\PSPad editor_is1) (Version: 4.6.2.2750 - Jan Fiala)
Studie vylepšování produktu HP LaserJet MFP M129-M134 (HKLM\...\{9AD2B7FA-2E1F-4281-9F28-F56B5B109356}) (Version: 40.1.1047.62877 - HP Inc.)
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.26.4 - TeamViewer)
Total Commander (Remove or Repair) (HKLM-x32\...\Totalcmd) (Version: 8.52a - Ghisler Software GmbH)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.10 - VideoLAN)
XnView 2.38 (HKLM-x32\...\XnView_is1) (Version: 2.38 - Gougelet Pierre-e)
Základní software zařízení HP LaserJet MFP M129-M134 (HKLM\...\{7FA61108-47DD-4C4C-BDE6-43EF08E9FF03}) (Version: 40.1.1047.62877 - HP Inc.)

Packages:
=========
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2019-11-07] (Autodesk Inc.)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-05-24] (Microsoft Corporation)
Facebook -> C:\Program Files\WindowsApps\FACEBOOK.FACEBOOK_2021.927.1.0_neutral__8xx8rvfyw5nnt [2021-09-29] (Facebook Inc)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_134.1.221.0_x64__v10z8vjag6ke6 [2022-02-06] (HP Inc.)
Messenger -> C:\Program Files\WindowsApps\FACEBOOK.317180B0BB486_1380.6.115.0_x64__8xx8rvfyw5nnt [2022-02-06] (Facebook Inc) [Startup Task]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1808.3.0_x64__8wekyb3d8bbwe [2021-04-18] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-21] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-21] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.12.1050.0_x64__8wekyb3d8bbwe [2022-01-16] (Microsoft Studios) [MS Ad]
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.178.765.0_x86__zpdnekdrzrea0 [2022-02-06] (Spotify AB) [Startup Task]
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.TWITTER_7.0.1.0_neutral__wgeqdkkx372wm [2021-07-23] (Twitter Inc.)
Xmarks -> C:\Program Files\WindowsApps\LastPass.Xmarks_1.5.0.15_neutral__qq0fmhteeht3j [2016-11-06] (LastPass)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-279109266-662476951-1249067375-1001_Classes\CLSID\{ED90173A-3B4C-4E7E-B9CF-79714425D4B5}\InprocServer32 -> C:\Program Files (x86)\PSPad editor\pspshellx64.dll () [File not signed]
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ShellIconOverlayIdentifiers: [00avg] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShell.dll [2021-12-21] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ShellIconOverlayIdentifiers-x32: [00avg] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShell.dll [2021-12-21] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShell.dll [2021-12-21] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers3: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers3: [00avg] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShell.dll [2021-12-21] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2017-05-26] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShell.dll [2021-12-21] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers1_S-1-5-21-279109266-662476951-1249067375-1001: [EditWithPSPad] -> {ED90173A-3B4C-4E7E-B9CF-79714425D4B5} => C:\Program Files (x86)\PSPad editor\pspshellx64.dll [2014-11-02] () [File not signed]

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32-x32: [vidc.XVID] => xvidvfw.dll
HKLM\...\Drivers32-x32: [VIDC.VP80] => vp8vfw.dll

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2017-11-11 21:31 - 2014-11-02 18:45 - 000029184 _____ () [File not signed] C:\Program Files (x86)\PSPad editor\pspshellx64.dll
2016-11-02 17:30 - 2019-02-21 17:00 - 000078336 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\avgSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\avgSP.sys => ""="Driver"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

BHO: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files\AVG Web TuneUp\4.3.9.626\AVG Web TuneUp.dll => No File
BHO-x32: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files (x86)\AVG Web TuneUp\4.3.9.626\AVG Web TuneUp.dll => No File

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2015-10-30 08:24 - 2018-12-03 16:56 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\ProgramData\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-279109266-662476951-1249067375-1001\Control Panel\Desktop\\Wallpaper ->
HKU\S-1-5-21-279109266-662476951-1249067375-1002\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
HKU\S-1-5-21-279109266-662476951-1249067375-1003\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{A350A41B-AAAE-475D-907F-2A5B29A851CE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{43EBAF5E-5D22-4DE4-A845-D000A72AC9BE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{67583C04-9B9B-4A84-80FA-7642915DB7EB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{BBCDDBA4-BFAC-494F-AF05-C89D3CC7B2D1}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{C7F34491-7A2E-4C00-95E2-1DED87E6D821}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform)
FirewallRules: [{8A6BF0AF-0654-49DB-8755-37E37DA454B6}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform)
FirewallRules: [{0CCFDE91-2700-46D4-B709-A08DA595B76B}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{6FBA455F-C49D-4AD3-A6D4-337A67301D8E}] => (Allow) C:\Program Files\HP\HP LaserJet MFP M129-M134\bin\FaxPrinterUtility.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{86417043-53B3-44F6-8666-70359A028F12}] => (Allow) C:\Program Files\HP\HP LaserJet MFP M129-M134\bin\DigitalWizards.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{C9ECE6E2-3A67-4935-BDD2-CE362987E42B}] => (Allow) C:\Program Files\HP\HP LaserJet MFP M129-M134\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{DD459F50-D3A8-41AC-9290-F4855170D9BB}] => (Allow) LPort=5357
FirewallRules: [{ED687386-FCAC-451B-ACAD-31270703D80D}] => (Allow) C:\Program Files\HP\HP LaserJet MFP M129-M134\Bin\DeviceSetup.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{CF512AF3-1704-4BD1-8EED-2F4DCB13D079}] => (Allow) C:\Program Files\HP\HP LaserJet MFP M129-M134\bin\EWSProxy.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [UDP Query User{F800D381-656D-4A17-BB1E-41B15E332845}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{6063A0F3-4CC6-4501-902B-204362047062}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{84CD6F09-F836-43B1-8F15-411066700F56}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe => No File
FirewallRules: [{BF678023-06C1-4724-9AE4-AC3634849517}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe => No File
FirewallRules: [{3553187B-E02D-4821-944E-81BB7521A3E6}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe => No File
FirewallRules: [{03E4C0F3-C670-41D7-AF02-C43405E29376}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{0865D6A9-CFB1-4D71-9519-FCEEB69179B9}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{7604E95D-A3E1-4D31-AA1F-B51460D1E4CF}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe => No File
FirewallRules: [{1C0D2D3F-4E25-4FB0-ABD3-33B5034C9C64}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe => No File
FirewallRules: [TCP Query User{7B41FD35-0F57-4916-BCC0-055E180E9527}C:\program files (x86)\airdroid\airdroid.exe] => (Allow) C:\program files (x86)\airdroid\airdroid.exe => No File
FirewallRules: [UDP Query User{104AA029-B380-4DF0-8500-981B1AF24530}C:\program files (x86)\airdroid\airdroid.exe] => (Allow) C:\program files (x86)\airdroid\airdroid.exe => No File
FirewallRules: [{5A3A9582-01D6-4238-8B9F-0E7EA1F70BD3}] => (Block) C:\program files (x86)\airdroid\airdroid.exe => No File
FirewallRules: [{9C00F85F-943B-4063-BBCB-AA4589F6B0EC}] => (Block) C:\program files (x86)\airdroid\airdroid.exe => No File
FirewallRules: [{E62A0D66-8467-414E-95A5-761E9169A19B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.73.124.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E2ECC7A2-E7FB-4FF6-A85B-6459CFED7189}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.73.124.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{2C9E2E37-E0CE-424E-AD8B-05433D53D63C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.73.124.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{7F940A8E-A60D-4583-8126-A3AB32A58A86}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.73.124.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{9EF11ACA-6DEE-4B61-8323-CD1BF098DE9D}] => (Block) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
FirewallRules: [{345C81A5-0770-4799-A640-BF3BD48B1A5B}] => (Block) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
FirewallRules: [{EF7E06EB-9F10-4FDD-9BB3-8ACF12F0D7DF}] => (Block) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
FirewallRules: [{C9CB1FD5-3E79-4436-AC19-437ADD1A9B17}] => (Block) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
FirewallRules: [{4E3F9D78-11CA-4D9E-BBB8-2238711C0CF9}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.78.159.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{7BAFB02A-E8C7-4580-8DE6-92347FC94867}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.78.159.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{84CD26EE-358C-4736-9063-B5CCBC3A1894}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.78.159.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{417F93B5-5A2D-4FB0-B35D-36CAFD7A34F5}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.78.159.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{05ADED60-CD80-4CEB-9FD5-80093E8D437C}] => (Block) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
FirewallRules: [{CD099B32-5A05-4EAF-BB9A-DC15529F1D9F}] => (Block) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
FirewallRules: [{8E35CE9E-695C-4EE1-A1DB-CEDD8E6D8BDB}] => (Block) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
FirewallRules: [{C548796F-2E74-4400-BE5A-B4B104FDEBE6}] => (Block) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
FirewallRules: [{01157367-D66E-4022-B612-6E89A69FF34C}] => (Block) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
FirewallRules: [{1DF3C369-656D-4AD5-82FD-C86A3CE4C34C}] => (Block) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
FirewallRules: [{2EB19AE4-4603-47C5-8B41-3105F3BCB28C}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{4A6E7230-1504-4EE7-8C82-5729ED30AFCE}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{44CBB6FC-8B23-4588-ABA8-18CDC4796F2D}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{2D255223-93AF-4419-9FA9-02C75C82A58B}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{B7263C9F-9528-4667-B559-B66DDDD7C1FD}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{B5E55EE6-B8EC-4191-A2D1-EE07B3F05EF8}] => (Block) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
FirewallRules: [{D23012DD-4174-4A41-B797-9BABBFF58A13}] => (Block) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
FirewallRules: [{2BF019AA-3EFE-4654-8771-03BD390A1812}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.178.765.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{579F2A83-D5B6-4C98-9EA3-C103CC6DB9A6}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.178.765.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{D868F513-640F-4B09-BDBE-C2999FA58763}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.178.765.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{E6E298DA-FC66-491B-B2F5-3CE867DC12C3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.178.765.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{58F6781F-22AE-43C2-BD13-CD2BB77AFB57}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.178.765.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{8B6AD3F9-D52A-498B-8B0F-133DADAAD1B0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.178.765.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{58E60D4A-4C06-4BC6-AEB0-EF5C9CBCA063}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.178.765.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{135C35C8-29ED-4294-905D-3B4FB44D0199}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.178.765.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)

==================== Restore Points =========================

04-02-2022 14:01:20 Instalační služba modulů systému Windows

==================== Faulty Device Manager Devices ============

==================== Event log errors: ========================

Application errors:
==================
Error: (02/06/2022 02:01:33 PM) (Source: lupdate) (EventID: 0) (User: )
Description: Event-ID 0

Error: (02/06/2022 02:01:33 PM) (Source: lupdate) (EventID: 0) (User: )
Description: Event-ID 0

Error: (02/06/2022 01:46:58 PM) (Source: lupdate) (EventID: 0) (User: )
Description: Event-ID 0

Error: (02/06/2022 11:53:17 AM) (Source: lupdate) (EventID: 0) (User: )
Description: Event-ID 0

Error: (02/06/2022 11:53:17 AM) (Source: lupdate) (EventID: 0) (User: )
Description: Event-ID 0

Error: (02/06/2022 11:44:38 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: NT AUTHORITY)
Description: Uživatelský podregistr načetl jiný proces (zámek registru). Název procesu: C:\Program Files (x86)\AVG\Antivirus\avgToolsSvc.exe, identifikátor PID: 3448, identifikátor PID ProfSvc: 1576.

Error: (02/06/2022 11:34:37 AM) (Source: lupdate) (EventID: 0) (User: )
Description: Event-ID 0

Error: (02/06/2022 11:11:43 AM) (Source: lupdate) (EventID: 0) (User: )
Description: Event-ID 0

System errors:
=============
Error: (02/06/2022 12:59:02 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba HuaweiHiSuiteService64.exe byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (02/06/2022 12:59:01 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) HD Graphics Control Panel Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (02/06/2022 12:59:01 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Conexant SmartAudio service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (02/06/2022 12:59:01 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba AMD External Events Utility byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (02/06/2022 12:59:01 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba lupdate byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (02/06/2022 12:59:01 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba AdaptiveSleepService byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (02/06/2022 12:59:00 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba SynTPEnh Caller Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (02/06/2022 12:59:00 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel Bluetooth Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

CodeIntegrity:
===============
Date: 2022-02-06 11:40:30
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2022-02-06 11:40:13
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\ProgramData\Microsoft\Windows Defender\Platform\4.18.2006.10-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\AVG\Antivirus\aswAMSI.dll that did not meet the Microsoft signing level requirements.

Date: 2022-02-06 11:40:11
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\AVG\Antivirus\aswAMSI.dll that did not meet the Microsoft signing level requirements.

==================== Memory info ===========================

BIOS: LENOVO B0CN69WW 06/20/2014
Motherboard: LENOVO Lenovo G50-80
Processor: Intel(R) Core(TM) i5-5200U CPU @ 2.20GHz
Percentage of memory in use: 86%
Total physical RAM: 4010.45 MB
Available physical RAM: 526.57 MB
Total Virtual: 5930.45 MB
Available Virtual: 1390.71 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:269.13 GB) (Free:208.86 GB) NTFS
Drive d: (Data) (Fixed) (Total:195.31 GB) (Free:103.79 GB) NTFS

\\?\Volume{01adb0a9-a168-4856-a56d-52630ceb7eb1}\ (Obnovení) (Fixed) (Total:0.44 GB) (Free:0.42 GB) NTFS
\\?\Volume{052a9146-9fa0-4543-9f23-800e0429abda}\ () (Fixed) (Total:0.77 GB) (Free:0.27 GB) NTFS
\\?\Volume{affd34cd-a37f-469d-ac72-48947862daaf}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: DDFD391C)

Partition: GPT.

==================== End of Addition.txt =======================

#5 Příspěvek od **Rudy** » 06 úno 2022 17:57

Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers3: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
FirewallRules: [{A350A41B-AAAE-475D-907F-2A5B29A851CE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{43EBAF5E-5D22-4DE4-A845-D000A72AC9BE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{67583C04-9B9B-4A84-80FA-7642915DB7EB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{BBCDDBA4-BFAC-494F-AF05-C89D3CC7B2D1}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{84CD6F09-F836-43B1-8F15-411066700F56}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe => No File
FirewallRules: [{BF678023-06C1-4724-9AE4-AC3634849517}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe => No File
FirewallRules: [{3553187B-E02D-4821-944E-81BB7521A3E6}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe => No File
FirewallRules: [{7604E95D-A3E1-4D31-AA1F-B51460D1E4CF}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe => No File
FirewallRules: [{1C0D2D3F-4E25-4FB0-ABD3-33B5034C9C64}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe => No File
FirewallRules: [TCP Query User{7B41FD35-0F57-4916-BCC0-055E180E9527}C:\program files (x86)\airdroid\airdroid.exe] => (Allow) C:\program files (x86)\airdroid\airdroid.exe => No File
FirewallRules: [UDP Query User{104AA029-B380-4DF0-8500-981B1AF24530}C:\program files (x86)\airdroid\airdroid.exe] => (Allow) C:\program files (x86)\airdroid\airdroid.exe => No File
FirewallRules: [{5A3A9582-01D6-4238-8B9F-0E7EA1F70BD3}] => (Block) C:\program files (x86)\airdroid\airdroid.exe => No File
FirewallRules: [{9C00F85F-943B-4063-BBCB-AA4589F6B0EC}] => (Block) C:\program files (x86)\airdroid\airdroid.exe => No File
FirewallRules: [{4E3F9D78-11CA-4D9E-BBB8-2238711C0CF9}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.78.159.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{7BAFB02A-E8C7-4580-8DE6-92347FC94867}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.78.159.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{84CD26EE-358C-4736-9063-B5CCBC3A1894}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.78.159.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{417F93B5-5A2D-4FB0-B35D-36CAFD7A34F5}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.78.159.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
HKLM-x32\...\Run: [vProt] => "C:\Program Files (x86)\AVG Web TuneUp\vprot.exe" (No File)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {8D62D999-8D45-4D4C-9566-76C6CEE2996A} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore

EmptyTemp:
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

wilgefortz · #6 Příspěvek od **wilgefortz** » 06 úno 2022 18:24

Fix result of Farbar Recovery Scan Tool (x64) Version: 05-02-2022
Ran by User (06-02-2022 18:11:40) Run:1
Running from C:\Users\User\Desktop
Loaded Profiles: User & Marie & Jarda
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers3: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
FirewallRules: [{A350A41B-AAAE-475D-907F-2A5B29A851CE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{43EBAF5E-5D22-4DE4-A845-D000A72AC9BE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{67583C04-9B9B-4A84-80FA-7642915DB7EB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{BBCDDBA4-BFAC-494F-AF05-C89D3CC7B2D1}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{84CD6F09-F836-43B1-8F15-411066700F56}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe => No File
FirewallRules: [{BF678023-06C1-4724-9AE4-AC3634849517}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe => No File
FirewallRules: [{3553187B-E02D-4821-944E-81BB7521A3E6}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe => No File
FirewallRules: [{7604E95D-A3E1-4D31-AA1F-B51460D1E4CF}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe => No File
FirewallRules: [{1C0D2D3F-4E25-4FB0-ABD3-33B5034C9C64}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe => No File
FirewallRules: [TCP Query User{7B41FD35-0F57-4916-BCC0-055E180E9527}C:\program files (x86)\airdroid\airdroid.exe] => (Allow) C:\program files (x86)\airdroid\airdroid.exe => No File
FirewallRules: [UDP Query User{104AA029-B380-4DF0-8500-981B1AF24530}C:\program files (x86)\airdroid\airdroid.exe] => (Allow) C:\program files (x86)\airdroid\airdroid.exe => No File
FirewallRules: [{5A3A9582-01D6-4238-8B9F-0E7EA1F70BD3}] => (Block) C:\program files (x86)\airdroid\airdroid.exe => No File
FirewallRules: [{9C00F85F-943B-4063-BBCB-AA4589F6B0EC}] => (Block) C:\program files (x86)\airdroid\airdroid.exe => No File
FirewallRules: [{4E3F9D78-11CA-4D9E-BBB8-2238711C0CF9}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.78.159.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{7BAFB02A-E8C7-4580-8DE6-92347FC94867}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.78.159.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{84CD26EE-358C-4736-9063-B5CCBC3A1894}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.78.159.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
FirewallRules: [{417F93B5-5A2D-4FB0-B35D-36CAFD7A34F5}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.78.159.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => No File
HKLM-x32\...\Run: [vProt] => "C:\Program Files (x86)\AVG Web TuneUp\vprot.exe" (No File)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {8D62D999-8D45-4D4C-9566-76C6CEE2996A} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore

EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avast => removed successfully
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\00avast => removed successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\ACE => removed successfully
HKLM\Software\Classes\CLSID\{5E2121EE-0300-11D4-8D3B-444553540000} => removed successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A350A41B-AAAE-475D-907F-2A5B29A851CE}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{43EBAF5E-5D22-4DE4-A845-D000A72AC9BE}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{67583C04-9B9B-4A84-80FA-7642915DB7EB}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{BBCDDBA4-BFAC-494F-AF05-C89D3CC7B2D1}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{84CD6F09-F836-43B1-8F15-411066700F56}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{BF678023-06C1-4724-9AE4-AC3634849517}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3553187B-E02D-4821-944E-81BB7521A3E6}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{7604E95D-A3E1-4D31-AA1F-B51460D1E4CF}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1C0D2D3F-4E25-4FB0-ABD3-33B5034C9C64}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{7B41FD35-0F57-4916-BCC0-055E180E9527}C:\program files (x86)\airdroid\airdroid.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{104AA029-B380-4DF0-8500-981B1AF24530}C:\program files (x86)\airdroid\airdroid.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5A3A9582-01D6-4238-8B9F-0E7EA1F70BD3}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{9C00F85F-943B-4063-BBCB-AA4589F6B0EC}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4E3F9D78-11CA-4D9E-BBB8-2238711C0CF9}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{7BAFB02A-E8C7-4580-8DE6-92347FC94867}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{84CD26EE-358C-4736-9063-B5CCBC3A1894}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{417F93B5-5A2D-4FB0-B35D-36CAFD7A34F5}" => removed successfully
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\vProt" => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
HKLM\SOFTWARE\Policies\Google => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8D62D999-8D45-4D4C-9566-76C6CEE2996A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8D62D999-8D45-4D4C-9566-76C6CEE2996A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UNP\RunCampaignManager" => not found
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\BookReader_B171F20233094AC88D05A8EF7B9763E8 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => removed successfully
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat => moved successfully
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore => moved successfully

=========== EmptyTemp: ==========

BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 83857483 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 297793 B
Edge => 44494 B
Chrome => 166992 B
Firefox => 88060990 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 6656 B
ProgramData => 6656 B
Public => 6656 B
systemprofile => 6656 B
systemprofile32 => 6656 B
LocalService => 13078 B
NetworkService => 14526 B
User => 27497090 B
Marie => 212688945 B
Jarda => 212702561 B

RecycleBin => 0 B
EmptyTemp: => 596.4 MB temporary data Removed.

================================

The system needed a reboot.

==== End of Fixlog 18:12:23 ====

#7 Příspěvek od **Rudy** » 06 úno 2022 18:51

Smazáno. Nastala nějaká změna?

wilgefortz · #8 Příspěvek od **wilgefortz** » 06 úno 2022 19:12

Bohužel ntb je stále pomalý, obávám se jestli to není feature?

#9 Příspěvek od **Rudy** » 06 úno 2022 19:57

Nemusí být. Do přík. řádlku napište:

msconfig

a odentrujte.

V otevřeném okně na záložkách "Po spuštění" a "Služby" odstraňte zatržítka u všech ne-microsoftích položek, s vyjímkou anriviru a ovladačů. Nastavení uložte, zavřete okno a restartujte.

wilgefortz · #10 Příspěvek od **wilgefortz** » 06 úno 2022 21:46

Díky za pomoc, trošku to pomohlo, udělal jsem i defragmentaci (deffaggler). Další na řadě je jedině asi reinstall nebo nahradit unixem ?

#11 Příspěvek od **Rudy** » 06 úno 2022 21:49

OK, nemáte zač!

VIRY.CZ

Dědovo počítač startuje pomalu

Dědovo počítač startuje pomalu

Re: Dědovo počítač startuje pomalu

Re: Dědovo počítač startuje pomalu

Re: Dědovo počítač startuje pomalu

Re: Dědovo počítač startuje pomalu

Re: Dědovo počítač startuje pomalu

Re: Dědovo počítač startuje pomalu

Re: Dědovo počítač startuje pomalu

Re: Dědovo počítač startuje pomalu

Re: Dědovo počítač startuje pomalu

Re: Dědovo počítač startuje pomalu