Kontrola pomalého počítača

[Lillien]

Dobrý deň, môžem Vás poprosiť o kontrolu stolového počítača? Je spomalený a občas aj zamrzáva. Aj videá v poslednej dobe sekajú, ak je to spôsobené pc. Vopred ďakujem za pomoc


Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 24.10.2018
Ran by Zdenka (administrator) on ZDENKA-PC (06-11-2018 15:50:21)
Running from C:\Users\Zdenka\Downloads
Loaded Profiles: Zdenka (Available Profiles: Zdenka)
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) Language: Slovenčina (Slovensko)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Antivirus\sched.exe
(Realtek Semiconductor Corp.) C:\Windows\SOUNDMAN.EXE
(Google Inc.) C:\Program Files\Google\Update\1.3.33.17\GoogleCrashHandler.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Antivirus\avguard.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Antivirus\avshadow.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Launcher\Avira.Systray.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Antivirus\avgnt.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Farbar) C:\Users\Zdenka\Downloads\FRST (1).exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SoundMan] => C:\Windows\SOUNDMAN.EXE [604704 2009-04-14] (Realtek Semiconductor Corp.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500208 2010-03-06] (Adobe Systems Incorporated)
HKLM\...\Run: [SwitchBoard] => C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM\...\Run: [AdobeCS5ServiceManager] => C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [406992 2010-02-22] (Adobe Systems Incorporated)
HKLM\...\Run: [Avira SystrayStartTrigger] => C:\Program Files\Avira\Launcher\Avira.SystrayStartTrigger.exe [98024 2018-10-09] (Avira Operations GmbH & Co. KG)
HKU\S-1-5-21-4185987789-1860368903-3234318075-1000\...\MountPoints2: {17b3c0f7-5fb8-11e6-bc89-0015588ea988} - L:\LG_PC_Programs.exe
HKU\S-1-5-21-4185987789-1860368903-3234318075-1000\...\MountPoints2: {eafbe030-d9af-11e7-ba72-0015588ea988} - L:\Setup.exe
HKU\S-1-5-21-4185987789-1860368903-3234318075-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Mystify.scr [221184 2010-11-20] (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 82.118.16.11 8.8.8.8
Tcpip\..\Interfaces\{CB687F16-88D8-4CD2-8C06-CF5E31BD8ABA}: [DhcpNameServer] 82.118.16.11 8.8.8.8
Tcpip\..\Interfaces\{E5DB1D11-7F52-436D-9BB7-E06728DF3685}: [DhcpNameServer] 82.118.16.11 8.8.8.8

Internet Explorer:
==================
HKU\S-1-5-21-4185987789-1860368903-3234318075-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?ocid=iehp
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-4185987789-1860368903-3234318075-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =

FireFox:
========
FF DefaultProfile: 480mx98k.default
FF ProfilePath: C:\Users\Zdenka\AppData\Roaming\Mozilla\Firefox\Profiles\480mx98k.default [2018-10-27]
FF Extension: (Avira Browser Safety) - C:\Users\Zdenka\AppData\Roaming\Mozilla\Firefox\Profiles\480mx98k.default\Extensions\abs@avira.com [2018-10-15] [Legacy]
FF Extension: (Google Code Correction) - C:\Users\Zdenka\AppData\Roaming\Mozilla\Firefox\Profiles\480mx98k.default\features\{b45647a3-0268-49fd-b0f0-9c7c7c45a1e0}\google-code-correction@mozilla.org.xpi [2018-10-18] [Legacy]
FF Extension: (Telemetry coverage) - C:\Users\Zdenka\AppData\Roaming\Mozilla\Firefox\Profiles\480mx98k.default\features\{b45647a3-0268-49fd-b0f0-9c7c7c45a1e0}\telemetry-coverage-bug1487578@mozilla.org.xpi [2018-10-18] [Legacy]
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-17] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-17] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-09-20] (Adobe Systems Inc.)

Chrome:
=======
CHR StartupUrls: Default -> "","hxxp://websearch.searchguru.info/?pid=357&r=2013/12/08&hid=9945940003705936861&lg=EN&cc=SK&unqvl=43"
CHR Profile: C:\Users\Zdenka\AppData\Local\Google\Chrome\User Data\Default [2018-11-06]
CHR Extension: (Seznam doplněk - Email) - C:\Users\Zdenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2018-09-08]
CHR Extension: (Seznam doplněk - Esko-) - C:\Users\Zdenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2018-09-08]
CHR Extension: (YouTube) - C:\Users\Zdenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-09-13]
CHR Extension: (Anna Sui) - C:\Users\Zdenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjohejgigkmiclpgnilojffhiohcglib [2017-09-14]
CHR Extension: (Adobe Acrobat) - C:\Users\Zdenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-09-11]
CHR Extension: (Avira Browser Safety) - C:\Users\Zdenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2018-10-27]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Zdenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-07]
CHR Extension: (Seznam doplněk - Esko) - C:\Users\Zdenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2018-09-08]
CHR Extension: (Gmail) - C:\Users\Zdenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-09-13]
CHR Extension: (Chrome Media Router) - C:\Users\Zdenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-10-28]
CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 AntiVirMailService; C:\Program Files\Avira\Antivirus\avmailc7.exe [891472 2018-10-18] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files\Avira\Antivirus\sched.exe [248312 2018-10-18] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\Antivirus\avguard.exe [248312 2018-10-18] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files\Avira\Antivirus\avwebg7.exe [1162120 2018-10-18] (Avira Operations GmbH & Co. KG)
R2 Avira.ServiceHost; C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe [431688 2018-10-09] (Avira Operations GmbH & Co. KG)
S3 SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 ALCXWDM; C:\Windows\System32\drivers\RTKVAC.SYS [4172832 2009-06-18] (Realtek Semiconductor Corp.)
R2 Angelnt; C:\Windows\System32\Drivers\ANGELNT.SYS [51072 2017-02-15] (Identcode Ltd.) [File not signed]
R0 avdevprot; C:\Windows\System32\DRIVERS\avdevprot.sys [46440 2017-06-20] (Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [132448 2018-07-12] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [147880 2018-07-12] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [35840 2017-03-02] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [59000 2017-03-02] (Avira Operations GmbH & Co. KG)
R3 irsir; C:\Windows\System32\DRIVERS\irsir.sys [20992 2006-11-02] (Microsoft Corporation)
R3 SiS315; C:\Windows\System32\DRIVERS\sisgrp.sys [317952 2007-01-23] (Silicon Integrated Systems Corporation)
R1 SiSkp; C:\Windows\System32\DRIVERS\srvkp.sys [16896 2007-01-23] (Silicon Integrated Systems Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-11-06 15:50 - 2018-11-06 15:51 - 000010294 _____ C:\Users\Zdenka\Downloads\FRST.txt
2018-11-06 15:50 - 2018-11-06 15:50 - 000000000 ____D C:\FRST
2018-11-06 15:49 - 2018-11-06 15:49 - 001774592 _____ (Farbar) C:\Users\Zdenka\Downloads\FRST (1).exe
2018-11-05 20:07 - 2018-11-05 20:08 - 000333913 _____ C:\Users\Zdenka\Documents\Započet rokov FIT LINE.pdf
2018-11-02 19:22 - 2018-11-02 19:22 - 000019174 _____ C:\Users\Zdenka\Downloads\99182_00_7937_2018-11-01.pdf
2018-10-27 18:15 - 2018-10-27 18:26 - 000000000 ____D C:\Users\Zdenka\AppData\LocalLow\Mozilla
2018-10-24 15:58 - 2018-10-24 15:58 - 000014185 _____ C:\Users\Zdenka\Downloads\Camping-S01E02(0000305099).zip
2018-10-23 17:00 - 2018-10-23 17:00 - 001638538 _____ C:\Users\Zdenka\Downloads\Listky.pdf
2018-10-20 16:56 - 2018-10-20 16:56 - 000001088 _____ C:\Users\Public\Desktop\Avira.lnk
2018-10-20 16:56 - 2018-10-20 16:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2018-10-18 19:35 - 2018-10-18 19:36 - 001632669 _____ C:\Users\Zdenka\Downloads\HOMEticket_2933164.pdf
2018-10-18 19:21 - 2018-10-28 17:22 - 000000000 ____D C:\Program Files\Mozilla Firefox
2018-10-15 14:30 - 2018-10-15 14:31 - 001445888 _____ C:\Users\Zdenka\Downloads\Priloha_1_MKCH-NRSR.xls
2018-10-07 15:17 - 2018-10-07 15:17 - 000026606 _____ C:\Users\Zdenka\Downloads\The-Party(0000295108).zip

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-11-06 15:51 - 2009-07-14 05:34 - 000021072 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-11-06 15:51 - 2009-07-14 05:34 - 000021072 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-11-06 13:22 - 2009-07-14 05:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-11-01 17:17 - 2010-11-20 22:01 - 000781298 _____ C:\Windows\system32\PerfStringBackup.INI
2018-11-01 17:17 - 2009-07-14 03:37 - 000000000 ____D C:\Windows\inf
2018-10-28 17:22 - 2016-06-21 07:53 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service
2018-10-27 18:22 - 2017-06-20 13:04 - 000002196 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-10-27 18:22 - 2017-06-20 13:04 - 000002155 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2018-10-24 19:39 - 2016-06-22 13:35 - 000000000 ____D C:\Users\Zdenka\AppData\Roaming\BitTorrent
2018-10-24 19:28 - 2017-02-15 13:47 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2018-10-24 16:29 - 2016-08-12 14:16 - 000000000 ____D C:\Users\Zdenka\AppData\Roaming\vlc
2018-10-24 15:56 - 2018-09-10 15:53 - 000000000 ____D C:\Users\Zdenka\AppData\LocalLow\BitTorrent
2018-10-24 15:56 - 2016-06-22 13:38 - 000000000 ___SD C:\Users\Zdenka\AppData\LocalLow\Temp
2018-10-23 16:56 - 2016-07-22 16:03 - 000000000 ____D C:\Users\Zdenka\AppData\LocalLow\Adobe
2018-10-20 16:56 - 2016-06-21 07:51 - 000000000 ____D C:\ProgramData\Package Cache
2018-10-07 17:58 - 2018-03-17 14:46 - 000000000 ____D C:\Users\Zdenka\AppData\Local\CrashDumps

==================== Files in the root of some directories =======

2016-07-21 18:54 - 2016-07-21 18:54 - 000000132 _____ () C:\Users\Zdenka\AppData\Roaming\Adobe PNG Format CS5 Prefs
2016-08-12 14:15 - 2016-08-12 14:15 - 000002828 _____ () C:\Users\Zdenka\AppData\Local\config.dat

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-10-28 18:35

==================== End of FRST.txt ============================


Additional scan result of Farbar Recovery Scan Tool (x86) Version: 24.10.2018
Ran by Zdenka (06-11-2018 15:52:20)
Running from C:\Users\Zdenka\Downloads
Microsoft Windows 7 Home Premium Service Pack 1 (X86) (2016-06-20 12:54:57)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-4185987789-1860368903-3234318075-500 - Administrator - Disabled)
Guest (S-1-5-21-4185987789-1860368903-3234318075-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-4185987789-1860368903-3234318075-1002 - Limited - Enabled)
Zdenka (S-1-5-21-4185987789-1860368903-3234318075-1000 - Administrator - Enabled) => C:\Users\Zdenka

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avira Antivirus (Enabled - Up to date) {B3F630BD-538D-1B4A-14FA-14B63235278F}
AS: Avira Antivirus (Enabled - Up to date) {0897D159-75B7-14C4-2E4A-2FC449B26D32}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 19.008.20080 - Adobe Systems Incorporated)
Adobe AIR (HKLM\...\Adobe AIR) (Version: 1.5.3.9120 - Adobe Systems Inc.)
Adobe Community Help (HKLM\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.0.0.400 - Adobe Systems Incorporated)
Adobe Media Player (HKLM\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.8 - Adobe Systems Incorporated)
Adobe Photoshop CS5 (HKLM\...\{15FEDA5F-141C-4127-8D7E-B962D1742728}) (Version: 12.0 - Adobe Systems Incorporated)
AlbumMaker (HKLM\...\TiskProRadost_AlbumMaker) (Version: - )
Avira (HKLM\...\{18787388-9263-47A6-B954-41BDE0B90959}) (Version: 1.2.121.24663 - Avira Operations GmbH & Co. KG) Hidden
Avira (HKLM\...\{2884d9b5-2fed-48df-b0e0-fe229e7eb781}) (Version: 1.2.121.24663 - Avira Operations GmbH & Co. KG)
Avira Antivirus (HKLM\...\Avira Antivirus) (Version: 15.0.42.11 - Avira Operations GmbH & Co. KG)
BitTorrent (HKU\S-1-5-21-4185987789-1860368903-3234318075-1000\...\BitTorrent) (Version: 7.10.4.44521 - BitTorrent Inc.)
BS.Player FREE (HKLM\...\BSPlayerf) (Version: 2.70.1080 - AB Team, d.o.o.)
CCleaner (HKLM\...\CCleaner) (Version: 5.30 - Piriform)
Codec Pack - All In 1 6.0.3.0 (HKLM\...\Cool's_Codec_pack_4.12) (Version: - )
Google Chrome (HKLM\...\Google Chrome) (Version: 70.0.3538.77 - Spoločnosť Google Inc.)
Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft Office Professional Plus 2007 (HKLM\...\PROPLUS) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506 (HKLM\...\{23daf363-3020-4059-b3ae-dc4ad39fed19}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2015 (HKLM\...\{dd8b09df-3ef8-49f1-bd1a-65278435860b}) (Version: 14.0.23217 - Microsoft Corporation)
Mozilla Firefox 56.0 (x86 sk) (HKLM\...\Mozilla Firefox 56.0 (x86 sk)) (Version: 56.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 56.0.0.6478 - Mozilla)
PDF Settings CS5 (HKLM\...\{A78FE97A-C0C8-49CE-89D0-EDD524A17392}) (Version: 10.0 - Adobe Systems Incorporated) Hidden
Realtek AC'97 Audio (HKLM\...\{FB08F381-6533-4108-B7DD-039E11FBC27E}) (Version: - )
VLC media player (HKLM\...\VLC media player) (Version: 2.2.4 - VideoLAN)
WinRAR 5.50 (32-bitová verzia) (HKLM\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ContextMenuHandlers1: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files\Avira\Antivirus\shlext.dll [2018-10-18] (Avira Operations GmbH & Co. KG)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers6: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files\Avira\Antivirus\shlext.dll [2018-10-18] (Avira Operations GmbH & Co. KG)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {1E95E5FA-38FE-4735-9F8A-7CDE0D67C80C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2017-06-20] (Google Inc.)
Task: {60070D6C-E441-4B30-87FB-06DA98FFC776} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-08-13] (Adobe Systems Incorporated)
Task: {91E7565C-5871-49BE-85D0-01171368B777} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2017-06-20] (Google Inc.)
Task: {E913D5EA-5D2E-42B8-9BC6-1C8633793FE3} - System32\Tasks\Avira_Antivirus_Systray => C:\Program Files\Avira\Antivirus\avgnt.exe [2018-10-18] (Avira Operations GmbH & Co. KG)
Task: {FE6F0FE6-DE39-4AFA-8631-8B20D4337C39} - \CCleanerSkipUAC -> No File <==== ATTENTION
Task: {FEC2FB70-4BA3-462B-84F3-6C469497D5DF} - System32\Tasks\AdobeAAMUpdater-1.0-Zdenka-PC-Zdenka => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06] (Adobe Systems Incorporated)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2018-08-14 16:54 - 2018-08-14 16:50 - 001204472 _____ () C:\Program Files\Avira\Antivirus\crypto-42.dll
2018-08-14 16:54 - 2018-08-14 16:50 - 000243352 _____ () C:\Program Files\Avira\Antivirus\ssl-44.dll
2018-10-27 18:22 - 2018-10-23 22:45 - 002249560 _____ () C:\Program Files\Google\Chrome\Application\70.0.3538.77\swiftshader\libglesv2.dll
2018-10-27 18:22 - 2018-10-23 22:45 - 000125272 _____ () C:\Program Files\Google\Chrome\Application\70.0.3538.77\swiftshader\libegl.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:04 - 2009-06-10 22:39 - 000000824 _____ C:\Windows\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-4185987789-1860368903-3234318075-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Zdenka\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 82.118.16.11 - 8.8.8.8
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{CFD6208D-593C-45BB-AE3D-A30366189906}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{61B2C18A-858D-492D-8D79-226D102E507B}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{6F2E99F3-04C4-473B-AC5B-A730BE00EFE3}D:\users\lilly\appdata\roaming\bittorrent\bittorrent.exe] => (Allow) D:\users\lilly\appdata\roaming\bittorrent\bittorrent.exe
FirewallRules: [UDP Query User{6F86161F-881D-4308-BE6B-36DA975D6E5E}D:\users\lilly\appdata\roaming\bittorrent\bittorrent.exe] => (Allow) D:\users\lilly\appdata\roaming\bittorrent\bittorrent.exe
FirewallRules: [{EF61A39C-0D7C-4DE9-8B42-5F593941F66F}] => (Allow) C:\Users\Zdenka\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{C08C6172-A2E7-47B9-A51E-46C8218420E0}] => (Allow) C:\Users\Zdenka\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{1894E098-2CBF-4F2F-9BE0-284293E2BD64}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [TCP Query User{E43AFECC-FD2F-4B96-84A7-6A73745E9C98}C:\users\zdenka\appdata\local\antikvirtualstb\antikvirtualstb.exe] => (Allow) C:\users\zdenka\appdata\local\antikvirtualstb\antikvirtualstb.exe
FirewallRules: [UDP Query User{B284B461-7722-4B66-A952-5A61E5F29E20}C:\users\zdenka\appdata\local\antikvirtualstb\antikvirtualstb.exe] => (Allow) C:\users\zdenka\appdata\local\antikvirtualstb\antikvirtualstb.exe
FirewallRules: [TCP Query User{DB9C3091-79B5-46C4-B35C-2378656E6100}C:\users\zdenka\appdata\roaming\bittorrent\updates\7.10.0_43917.exe] => (Allow) C:\users\zdenka\appdata\roaming\bittorrent\updates\7.10.0_43917.exe
FirewallRules: [UDP Query User{F3C74933-0CAE-4CB3-B06E-438D28480C0B}C:\users\zdenka\appdata\roaming\bittorrent\updates\7.10.0_43917.exe] => (Allow) C:\users\zdenka\appdata\roaming\bittorrent\updates\7.10.0_43917.exe
FirewallRules: [{E72E3D40-E0A0-4812-8AEF-7748D0AAFBA5}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Restore Points =========================

08-08-2018 16:37:57 Plánovaný kontrolný bod
27-09-2018 18:55:04 Plánovaný kontrolný bod
12-10-2018 17:02:20 Plánovaný kontrolný bod

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (11/06/2018 01:23:37 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (11/05/2018 12:21:45 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (11/04/2018 04:38:50 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (11/02/2018 05:50:47 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (11/02/2018 01:01:02 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (11/01/2018 05:47:06 PM) (Source: SideBySide) (EventID: 63) (User: )
Description: Activation context generation failed for "C:\Program Files\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll".Error in manifest or policy file "C:\Program Files\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll" on line 3.
The value "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute "version" in element "assemblyIdentity" is invalid.

Error: (11/01/2018 05:17:19 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.

Error: (11/01/2018 05:17:19 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.


System errors:
=============
Error: (11/06/2018 01:22:34 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 6) (User: NT AUTHORITY)
Description: Some processor performance power management features have been disabled due to a known firmware problem. Check with the computer manufacturer for updated firmware.

Error: (11/05/2018 12:20:41 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 6) (User: NT AUTHORITY)
Description: Some processor performance power management features have been disabled due to a known firmware problem. Check with the computer manufacturer for updated firmware.

Error: (11/04/2018 04:37:46 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 6) (User: NT AUTHORITY)
Description: Some processor performance power management features have been disabled due to a known firmware problem. Check with the computer manufacturer for updated firmware.

Error: (11/02/2018 07:00:12 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: The server {995C996E-D918-4A8C-A302-45719A6F4EA7} did not register with DCOM within the required timeout.

Error: (11/02/2018 07:00:09 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Počas čakania na odpoveď transakcie od služby Netman bol dosiahnutý časový limit (30000 ms).

Error: (11/02/2018 05:49:44 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 6) (User: NT AUTHORITY)
Description: Some processor performance power management features have been disabled due to a known firmware problem. Check with the computer manufacturer for updated firmware.

Error: (11/02/2018 01:01:26 PM) (Source: WMPNetworkSvc) (EventID: 14332) (User: )
Description: Služba WMPNetworkSvc sa nespustila správne, pretože sa vo funkcii CoCreateInstance(CLSID_UPnPDeviceFinder) vyskytla chyba 0x80004005. Uistite sa, že je služba UPnPHost spustená a že je súčasť UPnPHost systému Windows správne nainštalovaná.

Error: (11/02/2018 01:00:02 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 6) (User: NT AUTHORITY)
Description: Some processor performance power management features have been disabled due to a known firmware problem. Check with the computer manufacturer for updated firmware.


CodeIntegrity:
===================================

Date: 2018-08-21 16:45:05.321
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Avira\Antivirus\AviraSecurityCenterAgent.exe because the set of per-page image hashes could not be found on the system.

Date: 2018-08-21 16:43:56.268
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Avira\Antivirus\AviraSecurityCenterAgent.exe because the set of per-page image hashes could not be found on the system.

Date: 2018-08-21 16:43:56.251
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Avira\Antivirus\AviraSecurityCenterAgent.exe because the set of per-page image hashes could not be found on the system.

Date: 2018-08-21 16:43:44.183
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Avira\Antivirus\AviraSecurityCenterAgent.exe because the set of per-page image hashes could not be found on the system.

Date: 2018-08-21 16:43:44.152
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Avira\Antivirus\AviraSecurityCenterAgent.exe because the set of per-page image hashes could not be found on the system.

Date: 2018-08-21 16:43:23.917
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Avira\Antivirus\AviraSecurityCenterAgent.exe because the set of per-page image hashes could not be found on the system.

Date: 2018-08-21 16:33:57.487
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Avira\Antivirus\AviraSecurityCenterAgent.exe because the set of per-page image hashes could not be found on the system.

Date: 2018-08-19 20:39:51.718
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Avira\Antivirus\AviraSecurityCenterAgent.exe because the set of per-page image hashes could not be found on the system.

==================== Memory info ===========================

Processor: Intel(R) Celeron(R) D CPU 3.06GHz
Percentage of memory in use: 53%
Total physical RAM: 1919.55 MB
Available physical RAM: 888.92 MB
Total Virtual: 3839.11 MB
Available Virtual: 2514.11 MB

==================== Drives ================================

Drive c: (DISK2 Zdenuš 1) (Fixed) (Total:149.05 GB) (Free:19.2 GB) NTFS
Drive d: () (Fixed) (Total:58.59 GB) (Free:5.18 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive e: (Data) (Fixed) (Total:69.4 GB) (Free:13.62 GB) NTFS
Drive f: (DISK2-data2) (Fixed) (Total:21.06 GB) (Free:20.56 GB) NTFS


==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 149.1 GB) (Disk ID: DB42DB42)
Partition 1: (Active) - (Size=58.6 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=69.4 GB) - (Type=0F Extended)
Partition 3: (Not Active) - (Size=21.1 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 149.1 GB) (Disk ID: 14D314D2)
Partition 1: (Not Active) - (Size=149 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

[Rudy]

Zdravím!
Spusťte tuto utilitu:

Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

[Lillien]

hah! to mám chápať tak, že som mala len 2 vírusy a nič viac?


# -------------------------------
# Malwarebytes AdwCleaner 7.2.4.0
# -------------------------------
# Build: 09-25-2018
# Database: 2018-11-05.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 11-06-2018
# Duration: 00:00:07
# OS: Windows 7 Home Premium
# Cleaned: 2
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

Deleted C:\Users\Zdenka\Downloads\DriverToolkitInstaller.exe

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

No malicious registry entries cleaned.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

Deleted http://websearch.searchguru.info/?pid=3 ... K&unqvl=43

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [1414 octets] - [06/11/2018 17:37:50]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

[Rudy]

Dejte nový log FRST.

[Lillien]

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:05-03-2016 01
Ran by Zdenka (administrator) on ZDENKA-PC (07-11-2018 12:58:52)
Running from C:\Users\Zdenka\Downloads
Loaded Profiles: Zdenka (Available Profiles: Zdenka)
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) Language: Slovenčina (Slovensko)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Realtek Semiconductor Corp.) C:\Windows\SOUNDMAN.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Antivirus\sched.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.33.17\GoogleCrashHandler.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Antivirus\avguard.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Antivirus\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Launcher\Avira.Systray.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Antivirus\avgnt.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SoundMan] => C:\Windows\SOUNDMAN.EXE [604704 2009-04-14] (Realtek Semiconductor Corp.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500208 2010-03-06] (Adobe Systems Incorporated)
HKLM\...\Run: [SwitchBoard] => C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM\...\Run: [AdobeCS5ServiceManager] => C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [406992 2010-02-22] (Adobe Systems Incorporated)
HKLM\...\Run: [Avira SystrayStartTrigger] => C:\Program Files\Avira\Launcher\Avira.SystrayStartTrigger.exe [98024 2018-10-09] (Avira Operations GmbH & Co. KG)
HKU\S-1-5-21-4185987789-1860368903-3234318075-1000\...\MountPoints2: {17b3c0f7-5fb8-11e6-bc89-0015588ea988} - L:\LG_PC_Programs.exe
HKU\S-1-5-21-4185987789-1860368903-3234318075-1000\...\MountPoints2: {eafbe030-d9af-11e7-ba72-0015588ea988} - L:\Setup.exe
HKU\S-1-5-21-4185987789-1860368903-3234318075-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Mystify.scr [221184 2010-11-20] (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 82.118.16.11 8.8.8.8
Tcpip\..\Interfaces\{CB687F16-88D8-4CD2-8C06-CF5E31BD8ABA}: [DhcpNameServer] 82.118.16.11 8.8.8.8
Tcpip\..\Interfaces\{E5DB1D11-7F52-436D-9BB7-E06728DF3685}: [DhcpNameServer] 82.118.16.11 8.8.8.8

Internet Explorer:
==================
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-4185987789-1860368903-3234318075-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =

FireFox:
========
FF ProfilePath: C:\Users\Zdenka\AppData\Roaming\Mozilla\Firefox\Profiles\480mx98k.default
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-17] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-17] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-09-20] (Adobe Systems Inc.)
FF Extension: Avira Browser Safety - C:\Users\Zdenka\AppData\Roaming\Mozilla\Firefox\Profiles\480mx98k.default\Extensions\abs@avira.com [2018-10-15]
FF Extension: Default - C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi [2018-10-18] [not signed]

Chrome:
=======
CHR StartupUrls: Default -> "","hxxps://www.google.com/"
CHR Profile: C:\Users\Zdenka\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Seznam doplněk - Email) - C:\Users\Zdenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2018-09-08]
CHR Extension: (Seznam doplněk - Esko-) - C:\Users\Zdenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2018-09-08]
CHR Extension: (YouTube) - C:\Users\Zdenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-09-13]
CHR Extension: (Anna Sui) - C:\Users\Zdenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjohejgigkmiclpgnilojffhiohcglib [2017-09-14]
CHR Extension: (Adobe Acrobat) - C:\Users\Zdenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-09-11]
CHR Extension: (Avira Browser Safety) - C:\Users\Zdenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2018-10-27]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Zdenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-07]
CHR Extension: (Seznam doplněk - Esko) - C:\Users\Zdenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2018-09-08]
CHR Extension: (Gmail) - C:\Users\Zdenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-09-13]
CHR Extension: (Chrome Media Router) - C:\Users\Zdenka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-10-28]
CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 AntiVirMailService; C:\Program Files\Avira\Antivirus\avmailc7.exe [891472 2018-10-18] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files\Avira\Antivirus\sched.exe [248312 2018-10-18] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\Antivirus\avguard.exe [248312 2018-10-18] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files\Avira\Antivirus\avwebg7.exe [1162120 2018-10-18] (Avira Operations GmbH & Co. KG)
R2 Avira.ServiceHost; C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe [431688 2018-10-09] (Avira Operations GmbH & Co. KG)
S3 SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 ALCXWDM; C:\Windows\System32\drivers\RTKVAC.SYS [4172832 2009-06-18] (Realtek Semiconductor Corp.)
R2 Angelnt; C:\Windows\System32\Drivers\ANGELNT.SYS [51072 2017-02-15] (Identcode Ltd.) [File not signed]
R0 avdevprot; C:\Windows\System32\DRIVERS\avdevprot.sys [46440 2017-06-20] (Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [132448 2018-07-12] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [147880 2018-07-12] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [35840 2017-03-02] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [59000 2017-03-02] (Avira Operations GmbH & Co. KG)
R3 irsir; C:\Windows\System32\DRIVERS\irsir.sys [20992 2006-11-02] (Microsoft Corporation)
R3 SiS315; C:\Windows\System32\DRIVERS\sisgrp.sys [317952 2007-01-23] (Silicon Integrated Systems Corporation)
R1 SiSkp; C:\Windows\System32\DRIVERS\srvkp.sys [16896 2007-01-23] (Silicon Integrated Systems Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-11-06 17:36 - 2018-11-06 17:38 - 00000000 ____D C:\AdwCleaner
2018-11-06 17:36 - 2018-11-06 17:36 - 07592144 _____ (Malwarebytes) C:\Users\Zdenka\Downloads\adwcleaner_7.2.4.0.exe
2018-11-06 15:52 - 2018-11-06 15:53 - 00020121 _____ C:\Users\Zdenka\Downloads\Addition.txt
2018-11-06 15:50 - 2018-11-07 12:58 - 00009545 _____ C:\Users\Zdenka\Downloads\FRST.txt
2018-11-06 15:50 - 2018-11-07 12:58 - 00000000 ____D C:\FRST
2018-11-06 15:49 - 2018-11-06 15:49 - 01774592 _____ (Farbar) C:\Users\Zdenka\Downloads\FRST (1).exe
2018-11-05 20:07 - 2018-11-05 20:08 - 00333913 _____ C:\Users\Zdenka\Documents\Započet rokov FIT LINE.pdf
2018-11-02 19:22 - 2018-11-02 19:22 - 00019174 _____ C:\Users\Zdenka\Downloads\99182_00_7937_2018-11-01.pdf
2018-10-27 18:15 - 2018-10-27 18:26 - 00000000 ____D C:\Users\Zdenka\AppData\LocalLow\Mozilla
2018-10-24 15:58 - 2018-10-24 15:58 - 00014185 _____ C:\Users\Zdenka\Downloads\Camping-S01E02(0000305099).zip
2018-10-23 17:00 - 2018-10-23 17:00 - 01638538 _____ C:\Users\Zdenka\Downloads\Listky.pdf
2018-10-20 16:56 - 2018-10-20 16:56 - 00001088 _____ C:\Users\Public\Desktop\Avira.lnk
2018-10-20 16:56 - 2018-10-20 16:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2018-10-18 19:35 - 2018-10-18 19:36 - 01632669 _____ C:\Users\Zdenka\Downloads\HOMEticket_2933164.pdf
2018-10-18 19:21 - 2018-10-28 17:22 - 00000000 ____D C:\Program Files\Mozilla Firefox
2018-10-15 14:30 - 2018-10-15 14:31 - 01445888 _____ C:\Users\Zdenka\Downloads\Priloha_1_MKCH-NRSR.xls

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-11-07 12:53 - 2009-07-14 05:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2018-11-06 17:51 - 2009-07-14 05:34 - 00021072 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-11-06 17:51 - 2009-07-14 05:34 - 00021072 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-11-01 17:17 - 2010-11-20 22:01 - 00781298 _____ C:\Windows\system32\PerfStringBackup.INI
2018-11-01 17:17 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\inf
2018-10-28 17:22 - 2016-06-21 07:53 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2018-10-27 18:22 - 2017-06-20 13:04 - 00002196 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-10-27 18:22 - 2017-06-20 13:04 - 00002155 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2018-10-24 19:39 - 2016-06-22 13:35 - 00000000 ____D C:\Users\Zdenka\AppData\Roaming\BitTorrent
2018-10-24 19:28 - 2017-02-15 13:47 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2018-10-24 16:29 - 2016-08-12 14:16 - 00000000 ____D C:\Users\Zdenka\AppData\Roaming\vlc
2018-10-24 15:56 - 2018-09-10 15:53 - 00000000 ____D C:\Users\Zdenka\AppData\LocalLow\BitTorrent
2018-10-24 15:56 - 2016-06-22 13:38 - 00000000 ___SD C:\Users\Zdenka\AppData\LocalLow\Temp
2018-10-23 16:56 - 2016-07-22 16:03 - 00000000 ____D C:\Users\Zdenka\AppData\LocalLow\Adobe
2018-10-20 16:56 - 2016-06-21 07:51 - 00000000 ____D C:\ProgramData\Package Cache

==================== Files in the root of some directories =======

2016-07-21 18:54 - 2016-07-21 18:54 - 0000132 _____ () C:\Users\Zdenka\AppData\Roaming\Adobe PNG Format CS5 Prefs
2016-08-12 14:15 - 2016-08-12 14:15 - 0002828 _____ () C:\Users\Zdenka\AppData\Local\config.dat

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2018-10-28 18:35

==================== End of FRST.txt ============================

[Rudy]

Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
HKU\S-1-5-21-4185987789-1860368903-3234318075-1000\...\MountPoints2: {17b3c0f7-5fb8-11e6-bc89-0015588ea988} - L:\LG_PC_Programs.exe
HKU\S-1-5-21-4185987789-1860368903-3234318075-1000\...\MountPoints2: {eafbe030-d9af-11e7-ba72-0015588ea988} - L:\Setup.exe
HKU\S-1-5-21-4185987789-1860368903-3234318075-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Mystify.scr [221184 2010-11-20] (Microsoft Corporation)
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-4185987789-1860368903-3234318075-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =

EmptyTemp:
End

Uložte do C:\Users\Zdenka\Downloads jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

[Lillien]

Po skončení sa nič automaticky neotvorilo, ale v priečinku som našla uložený Log po Fixe tak dúfam, že je to práve toto


Fix result of Farbar Recovery Scan Tool (x86) Version:05-03-2016 01
Ran by Zdenka (2018-11-07 15:05:05) Run:1
Running from C:\Users\Zdenka\Downloads
Loaded Profiles: Zdenka (Available Profiles: Zdenka)
Boot Mode: Normal

==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKU\S-1-5-21-4185987789-1860368903-3234318075-1000\...\MountPoints2: {17b3c0f7-5fb8-11e6-bc89-0015588ea988} - L:\LG_PC_Programs.exe
HKU\S-1-5-21-4185987789-1860368903-3234318075-1000\...\MountPoints2: {eafbe030-d9af-11e7-ba72-0015588ea988} - L:\Setup.exe
HKU\S-1-5-21-4185987789-1860368903-3234318075-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Mystify.scr [221184 2010-11-20] (Microsoft Corporation)
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-4185987789-1860368903-3234318075-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =

EmptyTemp:
End
*****************

Processes closed successfully.
"HKU\S-1-5-21-4185987789-1860368903-3234318075-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{17b3c0f7-5fb8-11e6-bc89-0015588ea988}" => key removed successfully.
HKCR\CLSID\{17b3c0f7-5fb8-11e6-bc89-0015588ea988} => key not found.
"HKU\S-1-5-21-4185987789-1860368903-3234318075-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{eafbe030-d9af-11e7-ba72-0015588ea988}" => key removed successfully.
HKCR\CLSID\{eafbe030-d9af-11e7-ba72-0015588ea988} => key not found.
HKU\S-1-5-21-4185987789-1860368903-3234318075-1000\Control Panel\Desktop\\SCRNSAVE.EXE => value removed successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
HKU\S-1-5-21-4185987789-1860368903-3234318075-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully.
EmptyTemp: => 768.3 MB temporary data Removed.


The system needed a reboot.

==== End of Fixlog 15:06:38 ====

[Rudy]

Ano, je to ono, občas se stane, že se log sám neotevře. Nastala nějaká změna?

[Lillien]

Myslím, že nastala vôbec už nemrzne, aj tie stránky sa dokážu načítať rýchlejšie ako predtým, takže sa z toho tešíím ... rýchlosť internetu asi neovplyvním takže super?

[Rudy]

Rychlost internetu je dána hlavně rychlostí připojení. Na www.dsl.cz si můžete rychlost změřit a porovnat se smlouvou o připojení k internetu. Jsem rád, že se PC zrychlil.

[Lillien]

Ďakujem Vám krásne za pomoc s počítačom, veľmi si to cením

A čo sa týka internetu v zmluve mám napísanú rýchlosť : 100Mbit/s (1Gbit/s) ale podľa výsledkov merania z tej stránky to vyzerá nejako takto Rychlost stahování
10.59 Mb/s
Rychlost nahrávání
52.43 Mb/s

môže byť chyba v počítači že je to starší typ?

[Rudy]

Nutno rozlišovat Bit a Bajt. 1Bajt=8bitů. Čili rychlost Internetu je cca 90MBit/s (rychlost stahování se udává v bajtech). Nevím, jak mám rozumět 100Mbit/s (1Gbit/s). Buď je 100Mb/s, nebo 1Gb/s. V prvém případě je to v pořádku (nějaká tolerance tam je), v tom druhém je více než 10x pomalejší, než by měl být. Za vyčištění nemáte zač!

[Lillien]

Ja som len skopírovala čo je v zmluve, viem že kedysi bola taká ponuka že môžeme mať 1G internet ale neviem či to dali už automaticky alebo nie, čo som počula vraj na to treba nový router ktorý to vie utiahnúť.

Čiže ja s tým asi nič nespravím

[Rudy]

Pokud máte rychlost 100Mb/s, pak ne. V opačném případě ano. Informaci by vám měl na dotaz dát poskytovatel.

[Lillien]

Tak to vidím na návštevu antiku
Ďakujem krásne za info a ešte raz za pomoc s PC