Spomalený PC

Zpráva

Zanzdm · #1 Příspěvek od **Zanzdm** » 06 srp 2023 00:17

Dobrý deň.
Prosím o pomoc, ide o PC starších príbuzných, ktoré je zrazu výrazne spomalené. Vraj ich asi pred 2 mesiacmi vyzvalo na kúpu antivírového programu, tak si ho objednali a zaplatili na 2 roky, ale nevedia o ktorý ide. AVG, Avast sú spustené na pozadí.
Pre mňa prvým krokom bolo objednanie 4 GB RAM, namiesto ich doterajších 2 GB (pre Win 10 Home 32-bit).

Prikladám FRST.txt aj Addition.txt:

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 01-08-2023
Ran by Rakaš (administrator) on POČITAČ (Hewlett-Packard HP Compaq dc7900 Small Form Factor) (05-08-2023 20:40:24)
Running from C:\Users\Rakaš\Desktop\FRST.exe
Loaded Profiles: Rakaš
Platform: Microsoft Windows 10 Home Version 22H2 19045.3271 (X86) Language: Čeština (Česko)
Default browser: "C:\Program Files\CCleaner Browser\Application\CCleanerBrowser.exe" --single-argument %1
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGUI.exe <4>
(C:\Program Files\AVG\Antivirus\AVGSvc.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswEngSrv.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <8>
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Cleanup\TuneupSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Driver Updater\DriverUpdSvc.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswidsagent.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGSvc.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\avgToolsSvc.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\wsc_proxy.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe <2>
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21524.0_x86__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\oobe\UserOOBEBroker.exe
(svchost.exe ->) (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [34672 2008-06-12] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [PWRISOVM.EXE] => C:\Program Files\PowerISO\PWRISOVM.EXE [415376 2021-02-28] (Power Software Limited -> Power Software Ltd)
HKLM\...\Run: [TuneupUI.exe] => C:\Program Files\Avast Software\Cleanup\TuneupUI.exe [4108696 2023-07-20] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [269752 2023-07-31] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [DriverUpdUI.exe] => C:\Program Files\Avast Software\Driver Updater\DriverUpdUI.exe [4562328 2023-08-03] (Avast Software s.r.o. -> AVAST Software)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\78.0.1.0\GoogleDriveFS.exe [135735064 2023-07-19] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\78.0.1.0\GoogleDriveFS.exe [135735064 2023-07-19] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-559361515-4065419017-1633638139-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\78.0.1.0\GoogleDriveFS.exe [135735064 2023-07-19] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-559361515-4065419017-1633638139-1001\...\Run: [BingWallpaperApp] => C:\Users\Rakaš\AppData\Local\Microsoft\BingWallpaperApp\BingWallpaperApp.exe [14026632 2023-04-28] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-559361515-4065419017-1633638139-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner.exe [34677664 2023-07-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-559361515-4065419017-1633638139-1001\...\MountPoints2: E - "E:\Setup.exe"
HKU\S-1-5-21-559361515-4065419017-1633638139-1001\...\MountPoints2: F - "F:\autorun.exe"
HKU\S-1-5-21-559361515-4065419017-1633638139-1001\...\MountPoints2: {12611bd3-124f-11eb-96b5-002481c112db} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-559361515-4065419017-1633638139-1001\...\MountPoints2: {93458da9-e409-11ed-9bf5-002481c112db} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\78.0.1.0\GoogleDriveFS.exe [135735064 2023-07-19] (Google LLC -> Google, Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{052EB454-9F19-CB42-7875-807F79F311C4}] -> C:\Program Files\CCleaner Browser\Application\115.0.21930.112\Installer\chrmstp.exe [2023-07-28] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\115.0.5790.170\Installer\chrmstp.exe [2023-08-04] (Google LLC -> Google LLC)
Lsa: [Authentication Packages] msv1_0 SshdPinAuthLsa
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\update.bat [2018-02-25] () [File not signed] <==== ATTENTION
BootExecute: autocheck autochk * sdnclean.exe
GroupPolicy\User: Restriction ? <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {87A20F14-F911-4F2C-83A8-25CDA52B0487} - System32\Tasks\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe [4556728 2023-07-31] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) <==== ATTENTION
Task: {FC68EF15-8589-411A-B318-2FF70D3D080A} - System32\Tasks\Avast Software\Avast Cleanup BugReport => C:\Program Files\Avast Software\Cleanup\AvBugReport.exe [4298136 2023-07-20] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 62 --programpath "C:\Program Files\Avast Software\Cleanup\Setup\.." --configpath "C:\Program Files\Avast Software\Cleanup\Setup" --path "C:\ProgramData\Avast Software\Cleanup\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --logpath "C:\ProgramData\A (the data entry has 70 more characters). <==== ATTENTION
Task: {7F82207F-2EF3-426E-9343-53AFB73435E0} - System32\Tasks\Avast Software\Avast Cleanup Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-tu\icarus.exe [6442392 2023-07-18] (Avast Software s.r.o. -> Avast Software) <==== ATTENTION
Task: {B1524FEF-8CE1-4799-8A6E-0D88B809A1DA} - System32\Tasks\Avast Software\Avast Driver Updater BugReport => C:\Program Files\Avast Software\Driver Updater\AvBugReport.exe [4299672 2023-08-03] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 148 --programpath "C:\Program Files\Avast Software\Driver Updater\Setup\.." --configpath "C:\Program Files\Avast Software\Driver Updater\Setup" --path "C:\ProgramData\Avast Software\Driver Updater\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --log (the data entry has 99 more characters). <==== ATTENTION
Task: {E64FFDD2-15FD-4261-AAD9-A7AC217CF37C} - System32\Tasks\Avast Software\Avast Driver Updater Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-du\icarus.exe [6442392 2023-08-02] (Avast Software s.r.o. -> Avast Software) <==== ATTENTION
Task: {98464E17-DBC7-487A-B664-545EF58DE9FC} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [1867192 2023-07-20] (AVG Technologies USA, LLC -> AVG Technologies) <==== ATTENTION
Task: {C272BCEA-47DC-4870-A7C5-E2457954EFFE} - System32\Tasks\CCleaner Browser Heartbeat Task (Hourly) => C:\Program Files\CCleaner Browser\Application\CCleanerBrowser.exe [2415792 2023-07-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) <==== ATTENTION
Task: {43693721-D573-4EE3-AF29-DCF7931CC34E} - System32\Tasks\CCleaner Browser Heartbeat Task (Logon) => C:\Program Files\CCleaner Browser\Application\CCleanerBrowser.exe [2415792 2023-07-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) <==== ATTENTION
Task: {D2830FD5-70F1-4001-B2E4-66651606EF62} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-07-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) <==== ATTENTION
Task: {27464CBB-3D31-49A1-98D2-EC38BE7325D7} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4252576 2023-07-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "40c2176e-4504-4227-a8d7-137b37470393" --version "6.14.10584" --silent <==== ATTENTION
Task: {DA0378B4-B0A1-4B2E-917C-5C0755F6B4D0} - System32\Tasks\CCleanerSkipUAC - Rakaš => C:\Program Files\CCleaner\CCleaner.exe [34677664 2023-07-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) <==== ATTENTION
Task: {B17BC914-5EC4-423F-A2BD-8C4B14B15742} - System32\Tasks\CCleanerUpdateTaskMachineCore => C:\Program Files\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [208168 2023-07-20] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) <==== ATTENTION
Task: {EA2BFDAF-2D8B-48E9-A0E3-D6336FC584A6} - System32\Tasks\CCleanerUpdateTaskMachineUA => C:\Program Files\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [208168 2023-07-20] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) <==== ATTENTION
Task: {B3377CC7-9DA7-4BED-B6C1-42FF991ECF7A} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe [4675912 2023-08-05] (Microsoft Windows -> Microsoft Corporation) <==== ATTENTION
Task: {11AA9A06-B005-429D-BB2F-C5709886F15A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [154920 2019-06-02] (Google Inc -> Google LLC) <==== ATTENTION
Task: {3BC8D36B-B6AA-4151-A9F7-BF63E9159C67} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [154920 2019-06-02] (Google Inc -> Google LLC) <==== ATTENTION
Task: {F5C805BE-C807-4BA8-9BD2-2233C0F99849} - System32\Tasks\Microsoft\Windows\Application Experience\MareBackup => Command(1): %windir%\system32\compattelrunner.exe -> -m:aeinv.dll -f:UpdateSoftwareInventoryW invsvc
Task: {F5C805BE-C807-4BA8-9BD2-2233C0F99849} - System32\Tasks\Microsoft\Windows\Application Experience\MareBackup => Command(2): %windir%\system32\compattelrunner.exe -> -m:appraiser.dll -f:DoScheduledTelemetryRun
Task: {F5C805BE-C807-4BA8-9BD2-2233C0F99849} - System32\Tasks\Microsoft\Windows\Application Experience\MareBackup => Command(3): %windir%\system32\compattelrunner.exe -> -m:aemarebackup.dll -f:BackupMareData
Task: {4730CBD1-4B7A-49D9-8EED-81514B12A6A7} - System32\Tasks\Microsoft\Windows\AppListBackup\Backup => {E0DCC2CC-3354-45F2-8914-519E07809082} C:\WINDOWS\system32\AppListBackupLauncher.dll [69120 2023-06-14] (Microsoft Windows -> Microsoft Corporation)
Task: {8F7652EA-48E1-429F-B05B-1B96DF26ECE2} - System32\Tasks\Microsoft\Windows\CloudRestore\Backup => {722D0F89-B69C-4700-AE8C-4A44350E4876} C:\WINDOWS\System32\CloudRestoreLauncher.dll [387584 2023-08-05] (Microsoft Windows -> Microsoft Corporation)
Task: {1C97313F-C6DC-4758-886F-C86FFEF0E35A} - System32\Tasks\Microsoft\Windows\PI\SecureBootEncodeUEFI => C:\WINDOWS\system32\SecureBootEncodeUEFI.exe [62464 2023-07-12] (Microsoft Windows -> Microsoft Corporation) <==== ATTENTION
Task: {7012373F-D0D4-42EB-8918-4E180C10F346} - System32\Tasks\Microsoft\Windows\Printing\PrinterCleanupTask => {C56F065E-DE49-4E42-BE7C-305C45609D25} C:\WINDOWS\System32\PrinterCleanupTask.dll [68096 2023-07-12] (Microsoft Windows -> Microsoft Corporation)
Task: {4C016290-7E9C-416D-AD4A-795108009016} - System32\Tasks\Microsoft\Windows\Shell\ThemesSyncedImageDownload => {79F8E185-4E45-4B74-8182-02AA430661E4} C:\WINDOWS\System32\Themes.SsfDownload.ScheduledTask.dll [109056 2022-07-15] (Microsoft Windows -> Microsoft Corporation)
Task: {A9FFC201-A745-492A-AAB5-29E1F59F5DAF} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-559361515-4065419017-1633638139-1001 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (No File) <==== ATTENTION

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3: <==== ATTENTION (Restriction - Zones)
AutoConfigURL: [{BF8DC721-AB26-4A08-94F4-D6FA6656FFC3}] => 192.168.0.1 <==== ATTENTION
AutoConfigURL: [S-1-5-21-559361515-4065419017-1633638139-1001] => 192.168.0.1 <==== ATTENTION
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{7220615e-e8bb-467b-bf91-c9319c496686}: [DhcpNameServer] 192.168.0.1
ManualProxies: 0192.168.0.1 <==== ATTENTION

Edge:
=======
DownloadDir: C:\Users\Rakaš\Downloads
Edge Notifications: HKU\S-1-5-21-559361515-4065419017-1633638139-1001 -> hxxps://www.svetandroida.cz; hxxps://www.analdin.com; hxxps://www.bravotube.net
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (Translator pro Microsoft Edge) -> MicrosoftTranslate_MicrosoftTranslatorforMicrosoftEdge_8wekyb3d8bbwe => C:\Program Files\WindowsApps\Microsoft.TranslatorforMicrosoftEdge_0.91.51.0_neutral__8wekyb3d8bbwe [2021-08-06]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Profile 1
Edge Profile: C:\Users\Rakaš\AppData\Local\Microsoft\Edge\User Data\Default [2023-08-05]
Edge Extension: (Avira Safe Shopping) - C:\Users\Rakaš\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\caiblelclndcckfafdaggpephhgfpoip [2022-09-03]
Edge Extension: (Avira Password Manager) - C:\Users\Rakaš\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\emgfgdclgfeldebanedpihppahgngnle [2022-09-03]
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\Rakaš\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2022-09-03]
Edge Profile: C:\Users\Rakaš\AppData\Local\Microsoft\Edge\User Data\Guest Profile [2023-08-05]
Edge Profile: C:\Users\Rakaš\AppData\Local\Microsoft\Edge\User Data\Profile 1 [2023-08-05]
Edge HomePage: Profile 1 -> qwant.com
Edge DefaultSearchURL: Profile 1 -> hxxps://www.qwant.com/?q={searchTerms}&client=ext-edge-sb
Edge DefaultSearchKeyword: Profile 1 -> www.qwant.com
Edge DefaultSuggestURL: Profile 1 -> hxxps://api.qwant.com/api/suggest/?q={searchTerms}&client=opensearch
Edge Extension: (Avira Safe Shopping) - C:\Users\Rakaš\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\caiblelclndcckfafdaggpephhgfpoip [2022-04-11]
Edge Extension: (Handy Screenshot) - C:\Users\Rakaš\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\dajlhodahakobmgdiglkajjgbchiiccf [2022-09-15]
Edge Extension: (Qwant) - C:\Users\Rakaš\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\eljplgljphmgjhnalbganhenlcapgnne [2022-12-20]
Edge Extension: (Avira Password Manager) - C:\Users\Rakaš\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\emgfgdclgfeldebanedpihppahgngnle [2023-03-24]
Edge Extension: (Dokumenty Google offline) - C:\Users\Rakaš\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-07-21]
Edge Extension: (Microsoft Editor: kontrola pravopisu a gramatiky) - C:\Users\Rakaš\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\hokifickgkhplphjiodbggjmoafhignh [2023-07-04]
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\Rakaš\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2023-07-19]
Edge Extension: (Edge relevant text changes) - C:\Users\Rakaš\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-07-26]
Edge Extension: (One Click GSN Games) - C:\Users\Rakaš\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\kjdbedlepiebjogmbmmfgilidoobdfmb [2022-02-15]
Edge Profile: C:\Users\Rakaš\AppData\Local\Microsoft\Edge\User Data\Profile 2 [2023-08-05]
Edge HKLM\...\Edge\Extension: [caiblelclndcckfafdaggpephhgfpoip]
Edge HKLM\...\Edge\Extension: [emgfgdclgfeldebanedpihppahgngnle]
Edge HKLM\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]

FireFox:
========
FF Plugin: @update.ccleanerbrowser.com/CCleaner Browser;version=3 -> C:\Program Files\CCleaner Browser\Update\1.8.1636.4\npCCleanerBrowserUpdate3.dll [2023-07-20] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
FF Plugin: @update.ccleanerbrowser.com/CCleaner Browser;version=9 -> C:\Program Files\CCleaner Browser\Update\1.8.1636.4\npCCleanerBrowserUpdate3.dll [2023-07-20] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)

Chrome:
=======
CHR DefaultProfile: Profile 1
CHR Profile: C:\Users\Rakaš\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-08-05]
CHR Profile: C:\Users\Rakaš\AppData\Local\Google\Chrome\User Data\Profile 1 [2023-08-05]
CHR Notifications: Profile 1 -> hxxps://adhesionplum.com; hxxps://blikk.pushengage.com; hxxps://blikkruzs.pushengage.com; hxxps://blog.csdn.net; hxxps://cs-vid.net; hxxps://cs.uzasnenabidky24.com; hxxps://cz-oriflame-com-of.salesmanagopush.com; hxxps://cz.lekarskereporteri24.com; hxxps://cz.pinterest.com; hxxps://fakta.today; hxxps://fastshare.cz; hxxps://femina.hu; hxxps://hnonline.sk; hxxps://keresztlabda.hu; hxxps://lodigoaca.com; hxxps://nevergiveupyourmind.com; hxxps://newsyoucanread24.com; hxxps://noizzhu.pushengage.com; hxxps://popularni.live; hxxps://postovnezdarma.cz; hxxps://slovenskoaktualne.sk; hxxps://szavazo.os.tc; hxxps://thenovosti.com; hxxps://topofferss4you.com; hxxps://tv2play.hu; hxxps://upgrade.beltsdance.com; hxxps://wellnesswayblog.com; hxxps://www.ac24.cz; hxxps://www.caramelbotanica.com; hxxps://www.esky.cz; hxxps://www.expondo.cz; hxxps://www.facebook.com; hxxps://www.idnes.cz; hxxps://www.kupi.cz; hxxps://www.lightinthebox.com; hxxps://www.magyarorszagom.hu; hxxps://www.myistria.com; hxxps://www.n3ws247.com; hxxps://www.napi.hu; hxxps://www.podnikatel.cz; hxxps://www.wish.com; hxxps://zebrinestreem.info; hxxps://zivot.org
CHR HomePage: Profile 1 -> qwant.com
CHR DefaultSearchURL: Profile 1 -> hxxps://www.gstatic.com/youtube/img/branding/fa ... 44x144.png
CHR DefaultSearchKeyword: Profile 1 -> www.qwant.com
CHR DefaultSuggestURL: Profile 1 -> hxxps://www.bing.com/osjson.aspx?form=BGGCSS&pc ... earchTerms}
CHR Extension: (Avira Safe Shopping) - C:\Users\Rakaš\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ccbpbkebodcjkknkfkpmfeciinhidaeh [2023-08-02]
CHR Extension: (Handy Screenshot) - C:\Users\Rakaš\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\dajlhodahakobmgdiglkajjgbchiiccf [2022-09-14]
CHR Extension: (Avira Browser Safety) - C:\Users\Rakaš\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2022-10-26]
CHR Extension: (Microsoft Bing Search Engine) - C:\Users\Rakaš\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\hkecabaloghleaicfhefejdijblljpco [2022-10-09]
CHR Extension: (Qwant) - C:\Users\Rakaš\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\hnlkiofnhhoahaiimdicppgemmmomijo [2022-12-29]
CHR Extension: (Spouštěč aplikací pro Disk (od Googlu)) - C:\Users\Rakaš\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2023-07-26]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Rakaš\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Profile: C:\Users\Rakaš\AppData\Local\Google\Chrome\User Data\System Profile [2023-08-05]
CHR HKLM\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
CHR HKLM\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKU\S-1-5-21-559361515-4065419017-1633638139-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [hkecabaloghleaicfhefejdijblljpco]
CHR HKU\S-1-5-21-559361515-4065419017-1633638139-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [585656 2023-07-31] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AVG Tools; C:\Program Files\AVG\Antivirus\avgToolsSvc.exe [586168 2023-07-31] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\aswidsagent.exe [8058808 2023-07-31] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AVGWscReporter; C:\Program Files\AVG\Antivirus\wsc_proxy.exe [109480 2023-07-20] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S3 c2wts; C:\Program Files\Windows Identity Foundation\v3.5\c2wtshost.exe [5632 2021-03-20] (Microsoft Windows -> Microsoft Corporation)
S2 ccleaner; C:\Program Files\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [208168 2023-07-20] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
S3 CCleanerBrowserElevationService; C:\Program Files\CCleaner Browser\Application\115.0.21930.112\elevation_service.exe [1657992 2023-07-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
S3 ccleanerm; C:\Program Files\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [208168 2023-07-20] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [896416 2023-07-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
R2 CleanupPSvc; C:\Program Files\Avast Software\Cleanup\TuneupSvc.exe [15922072 2023-07-20] (Avast Software s.r.o. -> AVAST Software)
S2 debugregsvc; C:\WINDOWS\System32\debugregsvc.dll [68096 2021-04-14] (Microsoft Windows -> Microsoft Corporation)
S3 DeveloperToolsService; C:\WINDOWS\System32\DeveloperToolsSvc.exe [33792 2020-11-04] (Microsoft Windows -> Microsoft Corporation)
R2 DriverUpdSvc; C:\Program Files\Avast Software\Driver Updater\DriverUpdSvc.exe [8668056 2023-08-03] (Avast Software s.r.o. -> AVAST Software)
R2 ftpsvc; C:\WINDOWS\system32\inetsrv\ftpsvc.dll [358400 2021-08-13] (Microsoft Windows -> Microsoft Corporation)
R2 IISADMIN; C:\WINDOWS\system32\inetsrv\inetinfo.exe [14848 2021-08-13] (Microsoft Windows -> Microsoft Corporation)
R2 MSMQTriggers; C:\WINDOWS\system32\mqtgsvc.exe [121344 2021-08-13] (Microsoft Windows -> Microsoft Corporation)
S3 sshd; C:\WINDOWS\System32\OpenSSH\sshd.exe [865280 2021-05-14] (Microsoft Windows -> )
S3 SshdBroker; C:\WINDOWS\System32\SshdBroker.dll [230912 2021-02-10] (Microsoft Windows -> Microsoft Corporation)
S4 uhssvc; C:\Program Files\Microsoft Update Health Tools\uhssvc.exe [299344 2023-04-05] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\NisSrv.exe [1998784 2023-06-14] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 WebManagement; C:\WINDOWS\system32\WebManagement.exe [1105920 2021-01-15] (Microsoft Windows -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MsMpEng.exe [89736 2023-06-14] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 avgArDisk; C:\WINDOWS\System32\drivers\avgArDisk.sys [28856 2023-07-31] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [189528 2023-07-31] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdriver.sys [330888 2023-07-31] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\WINDOWS\System32\drivers\avgbidsh.sys [242072 2023-07-31] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\WINDOWS\System32\drivers\avgbuniv.sys [88160 2023-07-31] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R0 avgElam; C:\WINDOWS\System32\drivers\avgElam.sys [22504 2023-07-20] (Microsoft Windows Early Launch Anti-malware Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgKbd; C:\WINDOWS\System32\drivers\avgKbd.sys [36528 2023-07-31] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [228648 2023-07-31] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgNetHub; C:\WINDOWS\System32\drivers\avgNetHub.sys [407424 2023-07-31] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\WINDOWS\System32\drivers\avgRdr2.sys [89776 2023-07-31] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [69088 2023-07-31] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [776120 2023-07-31] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [595408 2023-07-31] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R2 avgStm; C:\WINDOWS\System32\drivers\avgStm.sys [158960 2023-07-31] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [264744 2023-07-31] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [200192 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [104448 2019-12-07] (Microsoft Corporation) [File not signed]
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [15360 2020-09-07] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R1 googledrivefs31092; C:\WINDOWS\System32\DRIVERS\googledrivefs31092.sys [344664 2023-02-08] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
S3 HidSpiCx; C:\WINDOWS\System32\drivers\HidSpiCx.sys [70144 2023-06-14] (Microsoft Windows -> Microsoft Corporation)
S3 MpKsl61632e5a; C:\WINDOWS\system32\MpEngineStore\MpKslDrv.sys [56552 2022-01-28] (Microsoft Windows -> Microsoft Corporation)
S3 MpKsla07942ed; C:\WINDOWS\system32\MpEngineStore\MpKslDrv.sys [56552 2022-01-28] (Microsoft Windows -> Microsoft Corporation)
S3 npcap; C:\WINDOWS\system32\DRIVERS\npcap.sys [79680 2019-05-11] (Insecure.Com LLC -> Insecure.Com LLC.)
R2 PrjFlt; C:\WINDOWS\system32\drivers\prjflt.sys [187776 2023-08-05] (Microsoft Windows -> Microsoft Corporation)
R1 SCDEmu; C:\Windows\System32\Drivers\SCDEmu.sys [124616 2017-06-07] (Power Software Limited -> Power Software Ltd)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [40384 2023-06-14] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [401688 2023-06-14] (Microsoft Windows -> Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\System32\drivers\usb2ser.sys [119952 2016-07-15] (NGO -> MBB)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [67864 2023-06-14] (Microsoft Windows -> Microsoft Corporation)
S3 WUDFWpdMtp; C:\WINDOWS\System32\drivers\WUDFRd.sys [218624 2023-07-12] (Microsoft Windows -> Microsoft Corporation)
S3 MpKslaadc2a53; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{AF27D79A-B78F-4B49-9FCB-AB8DFCE48BE9}\MpKslDrv.sys [X]
S3 SWDUMon; \SystemRoot\system32\DRIVERS\SWDUMon.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-08-05 20:34 - 2023-08-05 20:40 - 000037201 ____C C:\Users\Rakaš\Desktop\Addition.txt
2023-08-05 20:27 - 2023-08-05 20:43 - 000030363 ____C C:\Users\Rakaš\Desktop\FRST.txt
2023-08-05 20:26 - 2023-08-05 20:42 - 000000000 ____D C:\FRST
2023-08-05 20:24 - 2023-08-05 20:24 - 002085376 _____ (Farbar) C:\Users\Rakaš\Desktop\FRST.exe
2023-08-05 20:11 - 2023-08-05 20:17 - 000000000 ____D C:\AdwCleaner
2023-08-05 20:10 - 2023-08-05 20:10 - 008791352 _____ (Malwarebytes) C:\Users\Rakaš\Desktop\adwcleaner.exe
2023-08-05 16:53 - 2023-08-05 16:53 - 000001156 _____ C:\Users\Public\Desktop\CPUID HWMonitor.lnk
2023-08-05 16:53 - 2023-08-05 16:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2023-08-05 16:53 - 2023-08-05 16:53 - 000000000 ____D C:\Program Files\CPUID
2023-08-05 16:51 - 2023-08-05 16:52 - 001491000 _____ (CPUID, Inc. ) C:\Users\Rakaš\Downloads\hwmonitor_1.51.exe
2023-08-05 14:20 - 2023-08-05 14:20 - 000000000 ___HD C:\$WinREAgent
2023-07-31 18:26 - 2023-07-31 18:25 - 000270264 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\avgBoot.exe
2023-07-26 15:32 - 2023-07-26 15:32 - 000002283 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Driver Updater.lnk
2023-07-26 15:32 - 2023-07-26 15:32 - 000002271 _____ C:\Users\Public\Desktop\Avast Driver Updater.lnk
2023-07-26 15:29 - 2023-07-26 15:29 - 001300760 _____ (Avast Software) C:\Users\Rakaš\Downloads\avast_driver_updater_online_setup.exe
2023-07-20 19:00 - 2023-07-20 19:00 - 000000000 ____D C:\Users\Rakaš\AppData\Local\AVG
2023-07-20 16:52 - 2023-07-20 16:52 - 000002071 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG AntiVirus Free.lnk
2023-07-20 16:52 - 2023-07-20 16:52 - 000000000 ____D C:\Users\Rakaš\AppData\Roaming\AVG
2023-07-20 16:51 - 2023-07-20 16:51 - 000000000 ____D C:\ProgramData\Piriform
2023-07-20 16:48 - 2023-07-28 11:43 - 000002333 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner Browser.lnk
2023-07-20 16:46 - 2023-07-20 16:46 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVG
2023-07-20 16:45 - 2023-07-20 16:45 - 000000000 ____D C:\Users\Rakaš\AppData\Local\CCleaner Browser
2023-07-20 16:45 - 2023-07-20 16:45 - 000000000 ____D C:\ProgramData\CCleaner Browser
2023-07-20 16:44 - 2023-07-31 18:26 - 000003992 _____ C:\WINDOWS\system32\Tasks\Antivirus Emergency Update
2023-07-20 16:44 - 2023-07-28 14:16 - 000003092 _____ C:\WINDOWS\system32\Tasks\CCleaner Browser Heartbeat Task (Hourly)
2023-07-20 16:44 - 2023-07-28 14:16 - 000002610 _____ C:\WINDOWS\system32\Tasks\CCleaner Browser Heartbeat Task (Logon)
2023-07-20 16:43 - 2023-07-20 16:43 - 000000000 ____D C:\Program Files\Common Files\AVG
2023-07-20 16:38 - 2023-07-28 14:16 - 000003444 _____ C:\WINDOWS\system32\Tasks\CCleanerUpdateTaskMachineUA
2023-07-20 16:38 - 2023-07-28 14:16 - 000003220 _____ C:\WINDOWS\system32\Tasks\CCleanerUpdateTaskMachineCore
2023-07-20 16:38 - 2023-07-28 11:43 - 000000000 ____D C:\Program Files\CCleaner Browser
2023-07-20 16:38 - 2023-07-20 16:38 - 000000000 ____D C:\Program Files\AVG
2023-07-20 16:37 - 2023-08-05 18:33 - 000000000 ____D C:\ProgramData\AVG
2023-07-20 16:36 - 2023-07-28 14:54 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-07-20 16:36 - 2023-07-28 14:16 - 000003046 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2023-07-20 16:35 - 2023-08-05 20:06 - 000000000 ____D C:\Program Files\CCleaner
2023-07-20 16:35 - 2023-08-02 12:54 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-07-20 16:35 - 2023-07-28 14:16 - 000002252 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - Rakaš
2023-07-20 16:35 - 2023-07-20 16:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2023-07-07 22:39 - 2023-07-07 22:39 - 000186501 _____ C:\Users\Rakaš\Downloads\Doklad_SIPO_202307_5070023919.pdf

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-08-05 20:39 - 2019-12-07 08:12 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-08-05 20:23 - 2021-12-17 17:43 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-08-05 20:23 - 2019-06-02 03:09 - 000000000 ____D C:\Program Files\Google
2023-08-05 20:19 - 2019-12-07 08:12 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2023-08-05 20:17 - 2019-04-13 09:54 - 000000000 ____D C:\Users\Rakaš\AppData\LocalLow\IObit
2023-08-05 20:07 - 2019-08-31 10:45 - 000000000 ____D C:\Users\Rakaš\AppData\Local\CrashDumps
2023-08-05 19:08 - 2019-12-07 08:10 - 000000000 ____D C:\WINDOWS\INF
2023-08-05 18:33 - 2019-06-30 07:56 - 000000000 ____D C:\ProgramData\AVAST Software
2023-08-05 18:32 - 2020-11-04 16:08 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-08-05 18:32 - 2020-11-04 15:41 - 000008192 ___SH C:\DumpStack.log.tmp
2023-08-05 17:16 - 2019-12-07 08:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2023-08-05 15:12 - 2020-11-04 15:55 - 002973736 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-08-05 15:12 - 2020-11-04 14:50 - 000839092 _____ C:\WINDOWS\system32\perfh007.dat
2023-08-05 15:12 - 2020-11-04 14:50 - 000187708 _____ C:\WINDOWS\system32\perfc007.dat
2023-08-05 15:12 - 2019-12-07 14:21 - 000805198 _____ C:\WINDOWS\system32\perfh005.dat
2023-08-05 15:12 - 2019-12-07 14:21 - 000183898 _____ C:\WINDOWS\system32\perfc005.dat
2023-08-05 15:07 - 2022-03-10 10:37 - 000339864 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-08-05 15:02 - 2019-12-07 08:12 - 000000000 ____D C:\WINDOWS\SystemResources
2023-08-05 15:02 - 2019-12-07 08:12 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-08-05 15:02 - 2019-12-07 08:12 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-08-05 15:02 - 2019-12-07 08:12 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-08-05 15:02 - 2019-12-07 08:12 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-08-05 15:02 - 2019-12-07 08:12 - 000000000 ____D C:\WINDOWS\appcompat
2023-08-05 14:59 - 2019-12-07 08:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-08-05 13:47 - 2023-04-13 13:37 - 000000000 ____D C:\Log
2023-08-04 10:55 - 2020-10-19 13:25 - 000002206 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2023-08-04 10:55 - 2018-02-04 00:28 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-08-03 18:44 - 2020-11-04 15:41 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-08-03 15:20 - 2019-12-07 08:12 - 000000000 ___HD C:\Program Files\WindowsApps
2023-08-03 15:20 - 2019-12-07 08:12 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-08-03 13:45 - 2020-11-04 15:45 - 000000000 ____D C:\Users\Rakaš
2023-08-02 12:59 - 2019-12-07 08:12 - 000000000 ____D C:\WINDOWS\system32\NDF
2023-08-02 11:18 - 2020-11-04 16:08 - 000003756 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2023-08-02 11:18 - 2020-11-04 16:08 - 000003632 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2023-07-31 18:26 - 2019-12-07 08:12 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-07-29 11:14 - 2023-01-16 22:23 - 000002220 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-07-29 11:14 - 2020-03-27 21:29 - 000002382 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-07-28 14:16 - 2022-03-09 13:17 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2023-07-28 14:16 - 2021-01-05 03:25 - 000002588 _____ C:\WINDOWS\system32\Tasks\CreateExplorerShellUnelevatedTask
2023-07-28 14:16 - 2020-11-04 16:08 - 000003556 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-07-28 14:16 - 2020-11-04 16:08 - 000003332 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-07-28 14:16 - 2020-11-04 16:08 - 000002858 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-559361515-4065419017-1633638139-1001
2023-07-26 15:33 - 2019-06-30 08:06 - 000000000 ____D C:\Users\Rakaš\AppData\Roaming\AVAST Software
2023-07-26 15:31 - 2022-03-09 13:15 - 000000000 ____D C:\Program Files\Avast Software
2023-07-19 15:57 - 2021-09-21 11:07 - 000002166 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2023-07-19 15:57 - 2021-09-21 11:07 - 000002008 _____ C:\Users\Default\Desktop\Google Slides.lnk
2023-07-19 15:57 - 2021-09-21 11:07 - 000002008 _____ C:\Users\Default\Desktop\Google Sheets.lnk
2023-07-19 15:57 - 2021-09-21 11:07 - 000001996 _____ C:\Users\Default\Desktop\Google Docs.lnk
2023-07-14 10:43 - 2019-05-19 03:47 - 000757160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2023-07-12 13:36 - 2019-12-07 08:12 - 000000000 ____D C:\WINDOWS\system32\setup
2023-07-12 13:36 - 2019-12-07 08:12 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2023-07-12 13:36 - 2019-12-07 08:12 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-07-12 13:35 - 2019-12-07 08:12 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-07-12 11:18 - 2019-05-19 03:52 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-07-12 10:56 - 2019-05-19 03:51 - 168745656 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-07-09 19:05 - 2021-04-02 20:50 - 000000000 ___DC C:\Users\Rakaš\Documents\NFS Most Wanted

==================== Files in the root of some directories ========

2021-04-28 20:28 - 2021-11-11 16:08 - 000007666 _____ () C:\Users\Rakaš\AppData\Local\Resmon.ResmonCfg
2021-03-22 20:06 - 2021-03-22 20:06 - 000000000 _____ () C:\Users\Rakaš\AppData\Local\{F441F4A8-046A-41A0-B312-46060E44229A}

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Zanzdm · #2 Příspěvek od **Zanzdm** » 06 srp 2023 00:22

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 01-08-2023
Ran by Rakaš (05-08-2023 20:44:34)
Running from C:\Users\Rakaš\Desktop
Microsoft Windows 10 Home Version 22H2 19045.3271 (X86) (2020-11-04 14:10:29)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-559361515-4065419017-1633638139-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-559361515-4065419017-1633638139-503 - Limited - Disabled)
Guest (S-1-5-21-559361515-4065419017-1633638139-501 - Limited - Disabled)
Rakaš (S-1-5-21-559361515-4065419017-1633638139-1001 - Administrator - Enabled) => C:\Users\Rakaš
rakyn (S-1-5-21-559361515-4065419017-1633638139-1002 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-559361515-4065419017-1633638139-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Spybot - Search and Destroy (Disabled - Out of date) {F77C7796-45C4-531E-0DAE-B4A8229B11C8}
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: AVG Antivirus (Enabled - Up to date) {18A975F9-A60C-37D8-E30B-4BEF31AD3411}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
FW: Avast Antivirus (Enabled) {B693136B-F6EE-DD1C-A0EF-229B8B0B29C4}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Reader 9 (HKLM\...\{AC76BA86-7AD7-1033-7B44-A90000000001}) (Version: 9.0.0 - Adobe Systems Incorporated)
Avast Cleanup Premium (HKLM\...\Avast Cleanup) (Version: 23.2.13795.13400 - Avast Software)
Avast Driver Updater (HKLM\...\Avast Driver Updater) (Version: 23.2.3825.14816 - Avast Software)
AVG AntiVirus Free (HKLM\...\AVG Antivirus) (Version: 23.7.3294 - AVG Technologies)
Backup and Sync from Google (HKLM\...\{7848B54F-5EA0-4F86-AFB4-01D8A3B57AB0}) (Version: 3.57.4256.0809 - Google, Inc.)
Bing Wallpaper (HKLM\...\{226D3657-6EC8-4C04-8CAE-09E7C9272707}) (Version: 2.0.0.2 - Microsoft Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 6.14 - Piriform)
CCleaner Browser (HKLM\...\CCleaner Browser) (Version: 115.0.21930.112 - Autoři prohlížeče CCleaner Browser)
CCleaner Update Helper (HKLM\...\{E4EAC0E2-A80B-479F-BA45-DCDA595C9A93}) (Version: 1.8.1636.4 - Piriform Software) Hidden
CPUID HWMonitor 1.51 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.51 - CPUID, Inc.)
Google Drive (HKLM\...\{6BBAE539-2232-434A-A4E5-9A33560C6283}) (Version: 78.0.1.0 - Google LLC)
Google Earth Pro (HKLM\...\{EFE749BA-B12B-45EA-9A41-81E80A90DC4B}) (Version: 7.3.6.9345 - Google)
Google Chrome (HKLM\...\Google Chrome) (Version: 115.0.5790.170 - Google LLC)
Chess 2020 (HKU\S-1-5-21-559361515-4065419017-1633638139-1001\...\Chess2020) (Version: 2020.17 - Filip Hofer)
Microsoft Edge (HKLM\...\Microsoft Edge) (Version: 115.0.1901.188 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM\...\Microsoft EdgeWebView) (Version: 115.0.1901.188 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{A68395A4-D60A-4A41-A82A-FAAB737BA62B}) (Version: 3.72.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.16.27029 (HKLM\...\{f50edb7e-c25e-47b4-bc4f-7ec4a4d256b1}) (Version: 14.16.27029.1 - Microsoft Corporation)
Microsoft Visual C++ 2017 X86 Additional Runtime - 14.16.27024 (HKLM\...\{7258184A-EC44-4B1A-A7D3-68D85A35BFD0}) (Version: 14.16.27024 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2017 X86 Minimum Runtime - 14.16.27024 (HKLM\...\{5EEFCEFB-E5F7-4C82-99A5-813F04AA4FBD}) (Version: 14.16.27024 - Microsoft Corporation) Hidden
Need For Speed Most Wanted (HKLM\...\Need For Speed Most Wanted 1.3.0) (Version: 1.3.0 - Electronic Arts)
PowerISO (HKLM\...\PowerISO) (Version: 7.8 - Power Software Ltd)
Unreal Tournament 2004 (HKLM\...\Unreal Tournament 2004_is1) (Version: - GOG.com)
Update for Windows 10 (KB5001716) (HKLM\...\{37B0AE6B-8B20-4603-95D9-48C1338CB154}) (Version: 8.91.0.0 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.12 - VideoLAN)
WinRAR 6.00 (32-bit) (HKLM\...\WinRAR archiver) (Version: 6.00.0 - win.rar GmbH)
Yandex.Games (HKU\S-1-5-21-559361515-4065419017-1633638139-1001\...\9bf85a733a78b612cc1b7fa6a86ccbc1) (Version: 1.0 - Google\Chrome)

Packages:
=========
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x86__8wekyb3d8bbwe [2020-04-08] (Microsoft Corporation)
Doplněk pro Fotky -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2017.39121.36610.0_x86__8wekyb3d8bbwe [2019-05-26] (Microsoft Corporation)
DTS Sound Unbound -> C:\Program Files\WindowsApps\DTSInc.DTSSoundUnbound_2023.3.1.0_x86__t5j2fzbtdg37r [2023-07-20] (DTS, Inc.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-05-19] (Microsoft Corporation) [MS Ad]
MyVoiceApp -> C:\Program Files\WindowsApps\51229ourweb.net.MyVoiceApp_1.0.1.0_x86__rp5att98tffjm [2021-09-21] (ourweb.net)
Typing Fingers LT -> C:\Program Files\WindowsApps\Foriero.TypingFingersLT_6.5.0.0_x86__09q16fny7anwm [2021-09-21] (Marek Ledvina)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [ GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\78.0.1.0\drivefsext.dll [2023-07-19] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\78.0.1.0\drivefsext.dll [2023-07-19] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\78.0.1.0\drivefsext.dll [2023-07-19] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\78.0.1.0\drivefsext.dll [2023-07-19] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync32.dll [2022-02-01] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync32.dll [2022-02-01] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync32.dll [2022-02-01] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [00avg] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2023-07-31] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2023-07-31] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\78.0.1.0\drivefsext.dll [2023-07-19] (Google LLC -> Google, Inc.)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu32.dll [2022-02-01] (Google LLC -> Google)
ContextMenuHandlers1: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2021-02-28] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00avg] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2023-07-31] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\78.0.1.0\drivefsext.dll [2023-07-19] (Google LLC -> Google, Inc.)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu32.dll [2022-02-01] (Google LLC -> Google)
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2021-02-28] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\78.0.1.0\drivefsext.dll [2023-07-19] (Google LLC -> Google, Inc.)
ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2023-07-31] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2021-02-28] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1_S-1-5-21-559361515-4065419017-1633638139-1001: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> No File

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\Rakaš\Desktop\Yandex.Games.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 1" --app-id=bjpdbplmiahkichipjjpeilmpklmcnkp
ShortcutWithArgument: C:\Users\Rakaš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Yandex.Games.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 1" --app-id=bjpdbplmiahkichipjjpeilmpklmcnkp
ShortcutWithArgument: C:\Users\Rakaš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\YouTube.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 1" --app-id=agimnkijcaahngcdmfeangaknmldooml
ShortcutWithArgument: C:\Users\Rakaš\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 1"
ShortcutWithArgument: C:\Users\Rakaš\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\188f5ec9d11ded56\Náš net. - Edge.lnk -> C:\Program Files\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation) -> --profile-directory="Profile 1"

==================== Loaded Modules (Whitelisted) =============

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\avgSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HidSpiCx.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\avgSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\HidSpiCx.sys => ""="Driver"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)

(If an entry is included in the fixlist, it will be removed from the registry.)

IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com
IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com

There are 7940 more sites.

IE restricted site: HKU\S-1-5-21-559361515-4065419017-1633638139-1001\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-559361515-4065419017-1633638139-1001\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-559361515-4065419017-1633638139-1001\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-559361515-4065419017-1633638139-1001\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-559361515-4065419017-1633638139-1001\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-559361515-4065419017-1633638139-1001\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-559361515-4065419017-1633638139-1001\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-559361515-4065419017-1633638139-1001\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-559361515-4065419017-1633638139-1001\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-559361515-4065419017-1633638139-1001\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-559361515-4065419017-1633638139-1001\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-559361515-4065419017-1633638139-1001\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-559361515-4065419017-1633638139-1001\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-559361515-4065419017-1633638139-1001\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-559361515-4065419017-1633638139-1001\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-559361515-4065419017-1633638139-1001\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-559361515-4065419017-1633638139-1001\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-559361515-4065419017-1633638139-1001\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-559361515-4065419017-1633638139-1001\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-559361515-4065419017-1633638139-1001\...\123simsen.com -> www.123simsen.com

There are 7940 more sites.

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-05-19 02:04 - 2021-08-29 01:50 - 000454611 ____R C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 q4master.idsoftware.com
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
127.0.0.1 10sek.com
127.0.0.1 www.10sek.com
127.0.0.1 www.1-2005-search.com
127.0.0.1 1-2005-search.com
127.0.0.1 123fporn.info
127.0.0.1 www.123fporn.info
127.0.0.1 123haustiereundmehr.com
127.0.0.1 www.123haustiereundmehr.com
127.0.0.1 123moviedownload.com

There are 15604 more lines.

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-559361515-4065419017-1633638139-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Rakaš\AppData\Local\Microsoft\BingWallpaperApp\WPImages\20230805.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

Network Binding:
=============
Ethernet: Npcap Packet Driver (NPCAP) -> INSECURE_NPCAP (enabled)

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run: => "TuneupUI.exe"
HKLM\...\StartupApproved\Run: => "DriverUpdUI.exe"
HKLM\...\StartupApproved\Run: => "PWRISOVM.EXE"
HKU\S-1-5-21-559361515-4065419017-1633638139-1001\...\StartupApproved\Run: => "OneDrive"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [OpenSSH-Server-In-TCP] => (Allow) C:\WINDOWS\system32\OpenSSH\sshd.exe (Microsoft Windows -> )
FirewallRules: [TCP Query User{80C98C4D-87D5-4CA6-B434-BFCCB3ED5E3D}C:\users\rakaš\appdata\roaming\xiaomi\miphonemanager\plugin\xunlei\download\minithunderplatform.exe] => (Allow) C:\users\rakaš\appdata\roaming\xiaomi\miphonemanager\plugin\xunlei\download\minithunderplatform.exe (ShenZhen Thunder Networking Technologies Ltd. -> 深圳市迅雷网络技术有限公司)
FirewallRules: [UDP Query User{78A7A4F6-776A-4C46-AC65-6ADD357AFD0B}C:\users\rakaš\appdata\roaming\xiaomi\miphonemanager\plugin\xunlei\download\minithunderplatform.exe] => (Allow) C:\users\rakaš\appdata\roaming\xiaomi\miphonemanager\plugin\xunlei\download\minithunderplatform.exe (ShenZhen Thunder Networking Technologies Ltd. -> 深圳市迅雷网络技术有限公司)
FirewallRules: [TCP Query User{02C4AFD5-0CC5-4568-A937-E9B3695D1802}C:\program files\google\chrome\application\chrome.exe] => (Allow) C:\program files\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [UDP Query User{22071B5C-F1CA-489C-97CF-236100295CB1}C:\program files\google\chrome\application\chrome.exe] => (Allow) C:\program files\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [TCP Query User{EC0ECBC2-617C-4C1C-9EBB-33FA55ACC945}C:\users\rakaš\documents\need for speed\nfs most wanted\speed.exe] => (Allow) C:\users\rakaš\documents\need for speed\nfs most wanted\speed.exe () [File not signed]
FirewallRules: [UDP Query User{64F36CB8-D58F-4CCA-BD0E-232D72A15613}C:\users\rakaš\documents\need for speed\nfs most wanted\speed.exe] => (Allow) C:\users\rakaš\documents\need for speed\nfs most wanted\speed.exe () [File not signed]
FirewallRules: [TCP Query User{499AE4EC-6224-492F-81EC-0973E8F22637}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{A27449F7-B332-4086-A252-44CA0A03391F}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{FAB71B7B-8A5E-43AE-A8C8-919964ECE74E}] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{AA73CF88-024C-425A-90FB-6EED066080E1}] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [WCF-NetTcpActivator-In-TCP-32bit] => (Allow) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{93BC0D7D-8CC2-4255-A063-5ACD19FB7476}] => (Allow) C:\Program Files\GOG.com\Unreal Tournament 2004\System\UT2004.exe () [File not signed]
FirewallRules: [{9B84B36E-F502-46C8-B1E7-1271DC79948F}] => (Allow) C:\Program Files\GOG.com\Unreal Tournament 2004\System\UT2004.exe () [File not signed]
FirewallRules: [{5B052240-9A51-419B-BCB8-3D88F8321A0F}] => (Allow) C:\Program Files\Avast Software\Cleanup\TuneupUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{B0BF0CDC-C54C-48EE-B6F5-BABA41E4CE19}] => (Allow) C:\Program Files\Avast Software\Cleanup\TuneupUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{A108E5C3-DBF0-453F-BCC8-4ABF0FA6A2BC}] => (Allow) C:\Program Files\AVG\Antivirus\AVGUI.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
FirewallRules: [{6FB46ADB-42AC-434E-8B8D-0CEB2895F673}] => (Allow) C:\Program Files\AVG\Antivirus\AVGUI.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
FirewallRules: [{E204924B-1DBC-4CE8-875D-7854519B89E0}] => (Allow) C:\Program Files\Avast Software\Driver Updater\DriverUpdUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{3E9C5A76-3677-46F8-85F7-42B614A92F79}] => (Allow) C:\Program Files\Avast Software\Driver Updater\DriverUpdUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{09F58AD6-8CD8-477B-8AB7-F1C24CB3A329}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.100.3203.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D721DFE2-FE32-4809-9508-4A5F258DEF22}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.100.3203.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{C33841CC-F8E2-4FD1-8F99-9B0FF5F11866}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.100.3203.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D436A9FE-6205-4C22-92C0-10374C171AD7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.100.3203.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{8866A2A8-5ECE-4CF9-91A3-511CFD0EFEA9}] => (Allow) C:\Program Files\CCleaner Browser\Application\CCleanerBrowser.exe (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
FirewallRules: [{66E8B168-CFBF-4AF2-99BA-BA090D118FD5}] => (Allow) C:\Program Files\Microsoft\EdgeWebView\Application\115.0.1901.188\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{8E238522-C99D-4F6C-B390-71AD84A8B644}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

20-07-2023 20:54:52 Naplánovaný kontrolní bod
29-07-2023 17:31:42 Naplánovaný kontrolní bod
05-08-2023 14:06:36 Instalační služba modulů systému Windows
05-08-2023 14:10:30 Instalační služba modulů systému Windows
05-08-2023 14:18:01 Instalační služba modulů systému Windows
05-08-2023 14:21:02 Instalační služba modulů systému Windows

==================== Faulty Device Manager Devices ============

Name: Standardní klávesnice PS/2
Description: Standardní klávesnice PS/2
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standardní klávesnice)
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Kompatibilní myš PS/2
Description: Kompatibilní myš PS/2
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

==================== Event log errors: ========================

Application errors:
==================
Error: (08/05/2023 07:32:28 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Vyhradené systémom, protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (08/05/2023 07:18:52 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Vyhradené systémom, protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (08/05/2023 04:47:13 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: ShellExperienceHost.exe, verze: 10.0.19041.3031, časové razítko: 0x746efb2e
Název chybujícího modulu: ntdll.dll, verze: 10.0.19041.3155, časové razítko: 0x8eb074f1
Kód výjimky: 0xc0000005
Posun chyby: 0x0009a289
ID chybujícího procesu: 0x1d40
Čas spuštění chybující aplikace: 0x01d9c79fa080f254
Cesta k chybující aplikaci: C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
ID zprávy: a8fe4f40-48a7-414e-aa1d-00905ab98b85
Úplný název chybujícího balíčku: Microsoft.Windows.ShellExperienceHost_10.0.19041.1949_neutral_neutral_cw5n1h2txyewy
ID aplikace související s chybujícím balíčkem: App

Error: (08/05/2023 04:37:06 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Vyhradené systémom, protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (08/05/2023 04:24:11 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Vyhradené systémom, protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (08/05/2023 03:05:01 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému.
.

Error: (08/05/2023 03:05:01 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]

Error: (08/05/2023 02:27:13 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: wuauclt.exe, verze: 10.0.19041.3031, časové razítko: 0x135ff976
Název chybujícího modulu: UpdateDeploymentProvider.dll, verze: 10.0.19041.3031, časové razítko: 0x87c22868
Kód výjimky: 0xc0000409
Posun chyby: 0x0001397a
ID chybujícího procesu: 0x994
Čas spuštění chybující aplikace: 0x01d9c796de50cc9d
Cesta k chybující aplikaci: C:\WINDOWS\system32\wuauclt.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\UpdateDeploymentProvider.dll
ID zprávy: 8c8692dc-081b-41e0-a7f8-20b8ab74e897
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

System errors:
=============
Error: (08/05/2023 08:17:06 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Avast Driver Updater byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 5000 milisekund: Restartovat službu.

Error: (08/05/2023 08:17:06 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Avast Cleanup byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 5000 milisekund: Restartovat službu.

Error: (08/05/2023 08:17:02 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Správa služby IIS byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 0 milisekund: Restartovat službu.

Error: (08/05/2023 06:42:23 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Aktualizovat službu Orchestrator přestala během spouštění reagovat.

Error: (08/05/2023 06:40:21 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Služba úložiště přestala během spouštění reagovat.

Error: (08/05/2023 06:38:12 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Správce stažených map přestala během spouštění reagovat.

Error: (08/05/2023 03:28:21 PM) (Source: DCOM) (EventID: 10005) (User: POČITAČ)
Description: Služba DCOM zjistila chybu 1053 při pokusu o spuštění služby gupdatem s argumenty /comsvc za účelem spuštění serveru:
{E225E692-4B47-4777-9BED-4FD7FE257F0E}

Error: (08/05/2023 03:28:21 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba Aktualizace Google (gupdatem) neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Windows Defender:
================
Date: 2023-07-18 11:13:37
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {CF9BC417-B8E8-43C1-9A57-406AB9FDA7D0}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2023-07-18 10:52:07
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {40FA45A3-C33C-432D-AF41-82EF828C6092}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2023-07-17 11:09:07
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {44949FCA-9C11-4421-A10B-1F9F9F9518BB}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2023-07-15 11:28:51
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {123602A1-B8C4-416A-ABD1-275F3CABA847}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2023-07-14 11:17:20
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {BE131199-76FB-42DE-8DAD-9472F32FBDCB}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Event[0]:

Date: 2023-07-19 10:50:38
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.393.694.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.23060.1005
Kód chyby: 0x80070102
Popis chyby: Vypršel časový limit operace čekání.

Date: 2023-07-19 10:50:38
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.393.694.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.23060.1005
Kód chyby: 0x80070102
Popis chyby: Vypršel časový limit operace čekání.

Date: 2023-07-17 10:54:30
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.393.508.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.23060.1005
Kód chyby: 0x80070643
Popis chyby: Při instalaci došlo k závažné chybě.

Date: 2023-07-14 22:27:43
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.393.350.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.23060.1005
Kód chyby: 0x80070102
Popis chyby: Vypršel časový limit operace čekání.

Date: 2023-07-14 17:59:27
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.393.218.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.23060.1005
Kód chyby: 0x80070643
Popis chyby: Při instalaci došlo k závažné chybě.

CodeIntegrity:
===============
Date: 2023-08-05 19:20:52
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\WINDOWS\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements.

==================== Memory info ===========================

BIOS: Hewlett-Packard 786G1 v01.16 03/05/2009
Motherboard: Hewlett-Packard 3031h
Processor: Intel(R) Core(TM)2 Duo CPU E7500 @ 2.93GHz
Percentage of memory in use: 81%
Total physical RAM: 1993.24 MB
Available physical RAM: 367.32 MB
Total Virtual: 5833.24 MB
Available Virtual: 2932.16 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:232.35 GB) (Free:146.14 GB) (Model: ST3250318AS) NTFS

\\?\Volume{23ddd98d-0000-0000-0000-100000000000}\ (Vyhradené systémom) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS
\\?\Volume{23ddd98d-0000-0000-0000-801c3a000000}\ () (Fixed) (Total:0.44 GB) (Free:0.1 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 232.9 GB) (Disk ID: 23DDD98D)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=232.3 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)

==================== End of Addition.txt =======================

#3 Příspěvek od **Rudy** » 06 srp 2023 10:21

Zdravím!
Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
ContextMenuHandlers1_S-1-5-21-559361515-4065419017-1633638139-1001: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> No File
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-559361515-4065419017-1633638139-1001\...\MountPoints2: E - "E:\Setup.exe"
HKU\S-1-5-21-559361515-4065419017-1633638139-1001\...\MountPoints2: F - "F:\autorun.exe"
HKU\S-1-5-21-559361515-4065419017-1633638139-1001\...\MountPoints2: {12611bd3-124f-11eb-96b5-002481c112db} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-559361515-4065419017-1633638139-1001\...\MountPoints2: {93458da9-e409-11ed-9bf5-002481c112db} - "E:\HiSuiteDownLoader.exe"
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\update.bat [2018-02-25] () [File not signed] <==== ATTENTION
GroupPolicy\User: Restriction ? <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {87A20F14-F911-4F2C-83A8-25CDA52B0487} - System32\Tasks\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe [4556728 2023-07-31] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) <==== ATTENTION
Task: {FC68EF15-8589-411A-B318-2FF70D3D080A} - System32\Tasks\Avast Software\Avast Cleanup BugReport => C:\Program Files\Avast Software\Cleanup\AvBugReport.exe [4298136 2023-07-20] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 62 --programpath "C:\Program Files\Avast Software\Cleanup\Setup\.." --configpath "C:\Program Files\Avast Software\Cleanup\Setup" --path "C:\ProgramData\Avast Software\Cleanup\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --logpath "C:\ProgramData\A (the data entry has 70 more characters). <==== ATTENTION
Task: {7F82207F-2EF3-426E-9343-53AFB73435E0} - System32\Tasks\Avast Software\Avast Cleanup Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-tu\icarus.exe [6442392 2023-07-18] (Avast Software s.r.o. -> Avast Software) <==== ATTENTION
Task: {E64FFDD2-15FD-4261-AAD9-A7AC217CF37C} - System32\Tasks\Avast Software\Avast Driver Updater Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-du\icarus.exe [6442392 2023-08-02] (Avast Software s.r.o. -> Avast Software) <==== ATTENTION
Task: {98464E17-DBC7-487A-B664-545EF58DE9FC} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [1867192 2023-07-20] (AVG Technologies USA, LLC -> AVG Technologies) <==== ATTENTION
Task: {C272BCEA-47DC-4870-A7C5-E2457954EFFE} - System32\Tasks\CCleaner Browser Heartbeat Task (Hourly) => C:\Program Files\CCleaner Browser\Application\CCleanerBrowser.exe [2415792 2023-07-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) <==== ATTENTION
Task: {43693721-D573-4EE3-AF29-DCF7931CC34E} - System32\Tasks\CCleaner Browser Heartbeat Task (Logon) => C:\Program Files\CCleaner Browser\Application\CCleanerBrowser.exe [2415792 2023-07-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) <==== ATTENTION
Task: {D2830FD5-70F1-4001-B2E4-66651606EF62} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-07-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) <==== ATTENTION
Task: {27464CBB-3D31-49A1-98D2-EC38BE7325D7} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4252576 2023-07-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "40c2176e-4504-4227-a8d7-137b37470393" --version "6.14.10584" --silent <==== ATTENTION
Task: {DA0378B4-B0A1-4B2E-917C-5C0755F6B4D0} - System32\Tasks\CCleanerSkipUAC - Rakaš => C:\Program Files\CCleaner\CCleaner.exe [34677664 2023-07-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) <==== ATTENTION
Task: {B17BC914-5EC4-423F-A2BD-8C4B14B15742} - System32\Tasks\CCleanerUpdateTaskMachineCore => C:\Program Files\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [208168 2023-07-20] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) <==== ATTENTION
Task: {EA2BFDAF-2D8B-48E9-A0E3-D6336FC584A6} - System32\Tasks\CCleanerUpdateTaskMachineUA => C:\Program Files\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [208168 2023-07-20] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) <==== ATTENTION
Task: {B3377CC7-9DA7-4BED-B6C1-42FF991ECF7A} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe [4675912 2023-08-05] (Microsoft Windows -> Microsoft Corporation) <==== ATTENTION
Task: {11AA9A06-B005-429D-BB2F-C5709886F15A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [154920 2019-06-02] (Google Inc -> Google LLC) <==== ATTENTION
Task: {3BC8D36B-B6AA-4151-A9F7-BF63E9159C67} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [154920 2019-06-02] (Google Inc -> Google LLC) <==== ATTENTION
Task: {1C97313F-C6DC-4758-886F-C86FFEF0E35A} - System32\Tasks\Microsoft\Windows\PI\SecureBootEncodeUEFI => C:\WINDOWS\system32\SecureBootEncodeUEFI.exe [62464 2023-07-12] (Microsoft Windows -> Microsoft Corporation) <==== ATTENTION
Task: {A9FFC201-A745-492A-AAB5-29E1F59F5DAF} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-559361515-4065419017-1633638139-1001 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (No File) <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3: <==== ATTENTION (Restriction - Zones)
AutoConfigURL: [{BF8DC721-AB26-4A08-94F4-D6FA6656FFC3}] => 192.168.0.1 <==== ATTENTION
AutoConfigURL: [S-1-5-21-559361515-4065419017-1633638139-1001] => 192.168.0.1 <==== ATTENTION
ManualProxies: 0192.168.0.1 <==== ATTENTION
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
CHR DefaultSuggestURL: Profile 1 -> hxxps://www.bing.com/osjson.aspx?form=BGGCSS&pc ... earchTerms}
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
C:\Users\Rakaš\AppData\Local\{F441F4A8-046A-41A0-B312-46060E44229A}

Hosts:
EmptyTemp:
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Zanzdm · #4 Příspěvek od **Zanzdm** » 06 srp 2023 13:35

Fix result of Farbar Recovery Scan Tool (x86) Version: 01-08-2023
Ran by Rakaš (06-08-2023 14:26:24) Run:2
Running from C:\Users\Rakaš\Desktop
Loaded Profiles: Rakaš
Boot Mode: Normal

==============================================

fixlist content:
*****************
Start

CloseProcesses:
ContextMenuHandlers1_S-1-5-21-559361515-4065419017-1633638139-1001: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> No File
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-559361515-4065419017-1633638139-1001\...\MountPoints2: E - "E:\Setup.exe"
HKU\S-1-5-21-559361515-4065419017-1633638139-1001\...\MountPoints2: F - "F:\autorun.exe"
HKU\S-1-5-21-559361515-4065419017-1633638139-1001\...\MountPoints2: {12611bd3-124f-11eb-96b5-002481c112db} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-559361515-4065419017-1633638139-1001\...\MountPoints2: {93458da9-e409-11ed-9bf5-002481c112db} - "E:\HiSuiteDownLoader.exe"
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\update.bat [2018-02-25] () [File not signed] <==== ATTENTION
GroupPolicy\User: Restriction ? <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {87A20F14-F911-4F2C-83A8-25CDA52B0487} - System32\Tasks\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe [4556728 2023-07-31] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) <==== ATTENTION
Task: {FC68EF15-8589-411A-B318-2FF70D3D080A} - System32\Tasks\Avast Software\Avast Cleanup BugReport => C:\Program Files\Avast Software\Cleanup\AvBugReport.exe [4298136 2023-07-20] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 62 --programpath "C:\Program Files\Avast Software\Cleanup\Setup\.." --configpath "C:\Program Files\Avast Software\Cleanup\Setup" --path "C:\ProgramData\Avast Software\Cleanup\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --logpath "C:\ProgramData\A (the data entry has 70 more characters). <==== ATTENTION
Task: {7F82207F-2EF3-426E-9343-53AFB73435E0} - System32\Tasks\Avast Software\Avast Cleanup Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-tu\icarus.exe [6442392 2023-07-18] (Avast Software s.r.o. -> Avast Software) <==== ATTENTION
Task: {E64FFDD2-15FD-4261-AAD9-A7AC217CF37C} - System32\Tasks\Avast Software\Avast Driver Updater Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-du\icarus.exe [6442392 2023-08-02] (Avast Software s.r.o. -> Avast Software) <==== ATTENTION
Task: {98464E17-DBC7-487A-B664-545EF58DE9FC} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [1867192 2023-07-20] (AVG Technologies USA, LLC -> AVG Technologies) <==== ATTENTION
Task: {C272BCEA-47DC-4870-A7C5-E2457954EFFE} - System32\Tasks\CCleaner Browser Heartbeat Task (Hourly) => C:\Program Files\CCleaner Browser\Application\CCleanerBrowser.exe [2415792 2023-07-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) <==== ATTENTION
Task: {43693721-D573-4EE3-AF29-DCF7931CC34E} - System32\Tasks\CCleaner Browser Heartbeat Task (Logon) => C:\Program Files\CCleaner Browser\Application\CCleanerBrowser.exe [2415792 2023-07-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) <==== ATTENTION
Task: {D2830FD5-70F1-4001-B2E4-66651606EF62} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-07-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) <==== ATTENTION
Task: {27464CBB-3D31-49A1-98D2-EC38BE7325D7} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4252576 2023-07-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "40c2176e-4504-4227-a8d7-137b37470393" --version "6.14.10584" --silent <==== ATTENTION
Task: {DA0378B4-B0A1-4B2E-917C-5C0755F6B4D0} - System32\Tasks\CCleanerSkipUAC - Rakaš => C:\Program Files\CCleaner\CCleaner.exe [34677664 2023-07-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) <==== ATTENTION
Task: {B17BC914-5EC4-423F-A2BD-8C4B14B15742} - System32\Tasks\CCleanerUpdateTaskMachineCore => C:\Program Files\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [208168 2023-07-20] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) <==== ATTENTION
Task: {EA2BFDAF-2D8B-48E9-A0E3-D6336FC584A6} - System32\Tasks\CCleanerUpdateTaskMachineUA => C:\Program Files\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [208168 2023-07-20] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) <==== ATTENTION
Task: {B3377CC7-9DA7-4BED-B6C1-42FF991ECF7A} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe [4675912 2023-08-05] (Microsoft Windows -> Microsoft Corporation) <==== ATTENTION
Task: {11AA9A06-B005-429D-BB2F-C5709886F15A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [154920 2019-06-02] (Google Inc -> Google LLC) <==== ATTENTION
Task: {3BC8D36B-B6AA-4151-A9F7-BF63E9159C67} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [154920 2019-06-02] (Google Inc -> Google LLC) <==== ATTENTION
Task: {1C97313F-C6DC-4758-886F-C86FFEF0E35A} - System32\Tasks\Microsoft\Windows\PI\SecureBootEncodeUEFI => C:\WINDOWS\system32\SecureBootEncodeUEFI.exe [62464 2023-07-12] (Microsoft Windows -> Microsoft Corporation) <==== ATTENTION
Task: {A9FFC201-A745-492A-AAB5-29E1F59F5DAF} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-559361515-4065419017-1633638139-1001 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (No File) <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3: <==== ATTENTION (Restriction - Zones)
AutoConfigURL: [{BF8DC721-AB26-4A08-94F4-D6FA6656FFC3}] => 192.168.0.1 <==== ATTENTION
AutoConfigURL: [S-1-5-21-559361515-4065419017-1633638139-1001] => 192.168.0.1 <==== ATTENTION
ManualProxies: 0192.168.0.1 <==== ATTENTION
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
CHR DefaultSuggestURL: Profile 1 -> hxxps://www.bing.com/osjson.aspx?form=BGGCSS&pc ... earchTerms}
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
C:\Users\Rakaš\AppData\Local\{F441F4A8-046A-41A0-B312-46060E44229A}

Hosts:
EmptyTemp:
End
*****************

Processes closed successfully.
HKU\S-1-5-21-559361515-4065419017-1633638139-1001\Software\Classes\*\ShellEx\ContextMenuHandlers\ FileSyncEx => removed successfully.
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiSpyware"="0" => value restored successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiVirus"="0" => value restored successfully
HKU\S-1-5-21-559361515-4065419017-1633638139-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\E => removed successfully.
HKU\S-1-5-21-559361515-4065419017-1633638139-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\F => removed successfully.
HKU\S-1-5-21-559361515-4065419017-1633638139-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{12611bd3-124f-11eb-96b5-002481c112db} => removed successfully.
HKU\S-1-5-21-559361515-4065419017-1633638139-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{93458da9-e409-11ed-9bf5-002481c112db} => removed successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\update.bat => moved successfully

"C:\WINDOWS\system32\GroupPolicy\User" folder move:

C:\WINDOWS\system32\GroupPolicy\User => moved successfully
C:\WINDOWS\system32\GroupPolicy\GPT.ini => moved successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully.
HKLM\SOFTWARE\Policies\Google => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{87A20F14-F911-4F2C-83A8-25CDA52B0487}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{87A20F14-F911-4F2C-83A8-25CDA52B0487}" => removed successfully.
C:\Windows\System32\Tasks\Antivirus Emergency Update => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Antivirus Emergency Update" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{FC68EF15-8589-411A-B318-2FF70D3D080A}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FC68EF15-8589-411A-B318-2FF70D3D080A}" => removed successfully.
C:\Windows\System32\Tasks\Avast Software\Avast Cleanup BugReport => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Avast Software\Avast Cleanup BugReport" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{7F82207F-2EF3-426E-9343-53AFB73435E0}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7F82207F-2EF3-426E-9343-53AFB73435E0}" => removed successfully.
C:\Windows\System32\Tasks\Avast Software\Avast Cleanup Update => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Avast Software\Avast Cleanup Update" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{E64FFDD2-15FD-4261-AAD9-A7AC217CF37C}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E64FFDD2-15FD-4261-AAD9-A7AC217CF37C}" => removed successfully.
C:\Windows\System32\Tasks\Avast Software\Avast Driver Updater Update => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Avast Software\Avast Driver Updater Update" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{98464E17-DBC7-487A-B664-545EF58DE9FC}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{98464E17-DBC7-487A-B664-545EF58DE9FC}" => removed successfully.
C:\Windows\System32\Tasks\AVG\Overseer => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AVG\Overseer" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C272BCEA-47DC-4870-A7C5-E2457954EFFE}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C272BCEA-47DC-4870-A7C5-E2457954EFFE}" => removed successfully.
C:\Windows\System32\Tasks\CCleaner Browser Heartbeat Task (Hourly) => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\CCleaner Browser Heartbeat Task (Hourly)" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{43693721-D573-4EE3-AF29-DCF7931CC34E}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{43693721-D573-4EE3-AF29-DCF7931CC34E}" => removed successfully.
C:\Windows\System32\Tasks\CCleaner Browser Heartbeat Task (Logon) => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\CCleaner Browser Heartbeat Task (Logon)" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{D2830FD5-70F1-4001-B2E4-66651606EF62}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D2830FD5-70F1-4001-B2E4-66651606EF62}" => removed successfully.
C:\Windows\System32\Tasks\CCleaner Update => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\CCleaner Update" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{27464CBB-3D31-49A1-98D2-EC38BE7325D7}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{27464CBB-3D31-49A1-98D2-EC38BE7325D7}" => removed successfully.
C:\Windows\System32\Tasks\CCleanerCrashReporting => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\CCleanerCrashReporting" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DA0378B4-B0A1-4B2E-917C-5C0755F6B4D0}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DA0378B4-B0A1-4B2E-917C-5C0755F6B4D0}" => removed successfully.
C:\Windows\System32\Tasks\CCleanerSkipUAC - Rakaš => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\CCleanerSkipUAC - Rakaš" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{B17BC914-5EC4-423F-A2BD-8C4B14B15742}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B17BC914-5EC4-423F-A2BD-8C4B14B15742}" => removed successfully.
C:\Windows\System32\Tasks\CCleanerUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\CCleanerUpdateTaskMachineCore" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{EA2BFDAF-2D8B-48E9-A0E3-D6336FC584A6}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EA2BFDAF-2D8B-48E9-A0E3-D6336FC584A6}" => removed successfully.
C:\Windows\System32\Tasks\CCleanerUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\CCleanerUpdateTaskMachineUA" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B3377CC7-9DA7-4BED-B6C1-42FF991ECF7A}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B3377CC7-9DA7-4BED-B6C1-42FF991ECF7A}" => removed successfully.
C:\Windows\System32\Tasks\CreateExplorerShellUnelevatedTask => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\CreateExplorerShellUnelevatedTask" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{11AA9A06-B005-429D-BB2F-C5709886F15A}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{11AA9A06-B005-429D-BB2F-C5709886F15A}" => removed successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3BC8D36B-B6AA-4151-A9F7-BF63E9159C67}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3BC8D36B-B6AA-4151-A9F7-BF63E9159C67}" => removed successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1C97313F-C6DC-4758-886F-C86FFEF0E35A}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1C97313F-C6DC-4758-886F-C86FFEF0E35A}" => removed successfully.
C:\Windows\System32\Tasks\Microsoft\Windows\PI\SecureBootEncodeUEFI => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\PI\SecureBootEncodeUEFI" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A9FFC201-A745-492A-AAB5-29E1F59F5DAF}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A9FFC201-A745-492A-AAB5-29E1F59F5DAF}" => removed successfully.
C:\Windows\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-559361515-4065419017-1633638139-1001 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OneDrive Standalone Update Task-S-1-5-21-559361515-4065419017-1633638139-1001" => removed successfully.
HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3 => removed successfully.
HKLM\SYSTEM\CurrentControlSet\Services\iphlpsvc\Parameters\ProxyMgr\{BF8DC721-AB26-4A08-94F4-D6FA6656FFC3} => removed successfully.
"HKU\S-1-5-21-559361515-4065419017-1633638139-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\AutoConfigURL" => removed successfully.
"HKLM\SYSTEM\CurrentControlSet\services\NlaSvc\Parameters\Internet\ManualProxies\\" => removed successfully.
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => removed successfully.
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\BookReader_B171F20233094AC88D05A8EF7B9763E8 => removed successfully.
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => removed successfully.
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => removed successfully.
"Chrome DefaultSuggestURL" => removed successfully.
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore" => not found
C:\Users\Rakaš\AppData\Local\{F441F4A8-046A-41A0-B312-46060E44229A} => moved successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

FlushDNS => completed
BITS transfer queue => 2097152 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 20546000 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 11352143 B
Windows/system/drivers => 201939 B
Edge => 0 B
Chrome => 392768886 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 7168 B
ProgramData => 7168 B
Public => 7168 B
systemprofile => 7168 B
LocalService => 902902 B
NetworkService => 570347030 B
Rakaš => 587247462 B
Classic .NET AppPool => 587254630 B
.NET v4.5 => 587261798 B
DefaultAppPool => 587268966 B
.NET v2.0 => 587276134 B
.NET v4.5 Classic => 587283302 B
.NET v2.0 Classic => 587290470 B

RecycleBin => 0 B
EmptyTemp: => 4.8 GB temporary data Removed.

================================

The system needed a reboot.

==== End of Fixlog 14:27:15 ====

#5 Příspěvek od **Rudy** » 06 srp 2023 13:58

Amazáno. Zrychlil se chod PC?

Zanzdm · #6 Příspěvek od **Zanzdm** » 06 srp 2023 14:05

Trochu áno, ale bol o dosť rýchlejší predtým.

#7 Příspěvek od **Rudy** » 06 srp 2023 15:26

Zkuste defragmentovat disk.

Zanzdm · #8 Příspěvek od **Zanzdm** » 06 srp 2023 20:08

Ešte o niečo sa zrýchlil počítač, a verím tomu, že ďalších 2 GB RAM ho výrazne zrýchlia.
Díky pekne za pomoc

#9 Příspěvek od **Rudy** » 06 srp 2023 20:44

To jistě. Jen je to změna hw konfigurace.

VIRY.CZ

Spomalený PC

Spomalený PC

Re: Spomalený PC

Re: Spomalený PC

Re: Spomalený PC

Re: Spomalený PC

Re: Spomalený PC

Re: Spomalený PC

Re: Spomalený PC

Re: Spomalený PC