VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Pomalý PC

https://forum.viry.cz:443/viewtopic.php?t=156271

Stránka 1 z 1

Pomalý PC

Napsal: 24 srp 2019 16:59
od Petura
Dobrý den, prosím o kontrolu PC, je pomalé, stále šrotuje, a vypadává příjem pošty outlook.

Log RSFT:

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 01-01-2017 (ATTENTION: ====> FRSTversion is 965 days old and could be outdated)
Ran by Petr (administrator) on PETR-PC (24-08-2019 17:55:26)
Running from C:\Users\Petr\Desktop
Loaded Profiles: Petr (Available Profiles: Petr)
Platform: Microsoft Windows 7 Professional Service Pack 1 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Adobe Systems) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [232840 2019-07-21] (AVAST Software)
HKU\S-1-5-21-54223709-3085532525-3047887407-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner.exe [16585328 2019-08-15] (Piriform Ltd)
HKU\S-1-5-21-54223709-3085532525-3047887407-1000\...\Run: [Skype for Desktop] => C:\Program Files\Microsoft\Skype for Desktop\Skype.exe [49805376 2018-10-26] (Skype Technologies S.A.)
HKU\S-1-5-21-54223709-3085532525-3047887407-1000\...\MountPoints2: {54cae04e-ddba-11e8-a0ce-6cf049cbae7d} - F:\LGAutoRun.exe
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-07-21] (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{7F10E948-19EF-499E-BEF8-E480C119DCEC}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKU\S-1-5-21-54223709-3085532525-3047887407-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.dell.com/
SearchScopes: HKU\S-1-5-21-54223709-3085532525-3047887407-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)

FireFox:
========
FF DefaultProfile: rgvujyxt.default
FF ProfilePath: Profiles/rgvujyxt.default [not found]
FF ProfilePath: C:\Users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\rgvujyxt.default [2019-08-24]
FF Homepage: Mozilla\Firefox\Profiles\rgvujyxt.default -> www.seznam.cz/
FF Extension: (ETP Search Volume Study) - C:\Users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\rgvujyxt.default\Extensions\etp-search-volume-study@shield.mozilla.org.xpi [2019-05-15]
FF Extension: (Avast SafePrice
Comparison, deals, coupons) - C:\Users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\rgvujyxt.default\Extensions\sp@avast.com.xpi [2019-06-15]
FF Extension: (Avast Online Security) - C:\Users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\rgvujyxt.default\Extensions\wrc@avast.com.xpi [2019-07-22]
FF Extension: (Firefox Monitor) - C:\Program Files\Mozilla Firefox\browser\features\fxmonitor@mozilla.org.xpi [2019-07-14] [not signed]
FF Extension: (Firefox Screenshots) - C:\Program Files\Mozilla Firefox\browser\features\screenshots@mozilla.org.xpi [2019-07-14] [not signed]
FF Extension: (WebCompat Reporter) - C:\Program Files\Mozilla Firefox\browser\features\webcompat-reporter@mozilla.org.xpi [2019-07-14] [not signed]
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll [2015-10-09] (Google, Inc.)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google LLC)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google LLC)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-07-31] (Adobe Systems Inc.)

Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com
CHR Profile: C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default [2019-08-24]
CHR Extension: (Prezentace) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-12-23]
CHR Extension: (Dokumenty) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-12-23]
CHR Extension: (Disk Google) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-03-19]
CHR Extension: (YouTube) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-03-19]
CHR Extension: (Avast SafePrice
Srovnání, výhodné nabídky, kupóny) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2019-05-04]
CHR Extension: (Tabulky) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-12-23]
CHR Extension: (Dokumenty Google offline) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-12-14]
CHR Extension: (Avast Online Security) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2018-12-14]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-12-14]
CHR Extension: (Gmail) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-03-19]
CHR Extension: (Chrome Media Router) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-12-14]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [88136 2019-07-24] (Adobe Systems)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [5551168 2019-07-21] (AVAST Software)
S2 avast; C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-05] (AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [365048 2019-07-21] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [375976 2019-07-21] (AVAST Software)
S3 avastm; C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-05] (AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files\AVAST Software\Browser\Application\75.1.1528.100\elevation_service.exe [978720 2019-07-18] (AVAST Software)
S3 GoogleChromeElevationService; C:\Program Files\Google\Chrome\Application\76.0.3809.100\elevation_service.exe [952304 2019-08-06] (Google LLC)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [5394136 2019-06-26] (Malwarebytes)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [174472 2019-07-21] (AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [225816 2019-07-21] (AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [171216 2019-07-21] (AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [56504 2019-07-21] (AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [40904 2019-07-21] (AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [139864 2019-07-31] (AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [36104 2018-05-01] (AVAST Software)
R1 aswNetSec; C:\Windows\System32\drivers\aswNetSec.sys [405056 2019-07-21] (AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [101192 2019-07-21] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [73008 2019-07-21] (AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [783024 2019-07-31] (AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [403952 2019-07-21] (AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [167576 2019-07-21] (AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [312760 2019-08-05] (AVAST Software)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [241760 2019-08-24] (Malwarebytes)
R3 pfc; C:\Windows\System32\drivers\pfc.sys [10368 2017-05-01] (Padus, Inc.) [File not signed]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-08-24 17:44 - 2019-08-24 17:44 - 07623880 _____ (Malwarebytes) C:\Users\Petr\Desktop\adwcleaner_7.4.exe
2019-08-24 15:39 - 2019-08-24 15:39 - 00241760 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2019-08-17 06:58 - 2019-08-24 15:43 - 00000000 ____D C:\Program Files\Mozilla Firefox
2019-08-14 09:31 - 2019-08-05 23:55 - 00348800 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2019-08-14 09:31 - 2019-08-04 03:21 - 20291584 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2019-08-14 09:31 - 2019-08-04 03:15 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2019-08-14 09:31 - 2019-08-04 03:15 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2019-08-14 09:31 - 2019-08-04 03:04 - 00496128 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2019-08-14 09:31 - 2019-08-04 03:03 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2019-08-14 09:31 - 2019-08-04 03:03 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2019-08-14 09:31 - 2019-08-04 03:03 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2019-08-14 09:31 - 2019-08-04 03:02 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2019-08-14 09:31 - 2019-08-04 03:00 - 02301952 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2019-08-14 09:31 - 2019-08-04 02:57 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2019-08-14 09:31 - 2019-08-04 02:57 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2019-08-14 09:31 - 2019-08-04 02:55 - 00476160 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2019-08-14 09:31 - 2019-08-04 02:54 - 00663040 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2019-08-14 09:31 - 2019-08-04 02:54 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2019-08-14 09:31 - 2019-08-04 02:54 - 00104960 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2019-08-14 09:31 - 2019-08-04 02:53 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2019-08-14 09:31 - 2019-08-04 02:48 - 00668160 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2019-08-14 09:31 - 2019-08-04 02:45 - 00416256 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2019-08-14 09:31 - 2019-08-04 02:41 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2019-08-14 09:31 - 2019-08-04 02:41 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2019-08-14 09:31 - 2019-08-04 02:40 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2019-08-14 09:31 - 2019-08-04 02:38 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2019-08-14 09:31 - 2019-08-04 02:37 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2019-08-14 09:31 - 2019-08-04 02:36 - 00279040 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2019-08-14 09:31 - 2019-08-04 02:35 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2019-08-14 09:31 - 2019-08-04 02:32 - 04494848 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2019-08-14 09:31 - 2019-08-04 02:29 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2019-08-14 09:31 - 2019-08-04 02:28 - 02058752 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2019-08-14 09:31 - 2019-08-04 02:28 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2019-08-14 09:31 - 2019-08-04 02:27 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2019-08-14 09:31 - 2019-08-04 02:27 - 00692224 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2019-08-14 09:31 - 2019-08-04 02:23 - 13791744 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2019-08-14 09:31 - 2019-08-04 02:09 - 04387840 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2019-08-14 09:31 - 2019-08-04 02:06 - 01331200 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2019-08-14 09:31 - 2019-08-04 02:04 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2019-08-14 09:31 - 2019-07-30 04:19 - 04058848 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2019-08-14 09:31 - 2019-07-30 04:19 - 03965664 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2019-08-14 09:31 - 2019-07-30 04:19 - 00191200 _____ (Microsoft Corporation) C:\Windows\system32\halmacpi.dll
2019-08-14 09:31 - 2019-07-30 04:19 - 00191200 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2019-08-14 09:31 - 2019-07-30 04:19 - 00137952 _____ (Microsoft Corporation) C:\Windows\system32\halacpi.dll
2019-08-14 09:31 - 2019-07-30 04:19 - 00137440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2019-08-14 09:31 - 2019-07-30 04:19 - 00068832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2019-08-14 09:31 - 2019-07-30 04:17 - 01315904 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 01425920 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 01072640 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 00872448 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 00655360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 00583680 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 00555520 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 00380928 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 00294400 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 00261632 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 00171008 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 00167936 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\oleres.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 00644096 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 03:54 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\comcat.dll
2019-08-14 09:31 - 2019-07-30 03:53 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2019-08-14 09:31 - 2019-07-30 03:53 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2019-08-14 09:31 - 2019-07-30 03:53 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2019-08-14 09:31 - 2019-07-30 03:53 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2019-08-14 09:31 - 2019-07-30 03:53 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll
2019-08-14 09:31 - 2019-07-30 03:52 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2019-08-14 09:31 - 2019-07-30 03:51 - 00271360 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2019-08-14 09:31 - 2019-07-30 03:51 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\videoprt.sys
2019-08-14 09:31 - 2019-07-30 03:50 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2019-08-14 09:31 - 2019-07-30 03:48 - 00317440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2019-08-14 09:31 - 2019-07-30 03:48 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2019-08-14 09:31 - 2019-07-30 03:48 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2019-08-14 09:31 - 2019-07-30 03:48 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2019-08-14 09:31 - 2019-07-30 03:48 - 00117248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2019-08-14 09:31 - 2019-07-30 03:48 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2019-08-14 09:31 - 2019-07-30 03:47 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2019-08-14 09:31 - 2019-07-30 03:47 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys
2019-08-14 09:31 - 2019-07-30 03:47 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelppm.sys
2019-08-14 09:31 - 2019-07-30 03:47 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\viac7.sys
2019-08-14 09:31 - 2019-07-30 03:47 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdppm.sys
2019-08-14 09:31 - 2019-07-30 03:47 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys
2019-08-14 09:31 - 2019-07-30 03:47 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2019-08-14 09:31 - 2019-07-30 03:47 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\npfs.sys
2019-08-14 09:31 - 2019-07-30 03:47 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2019-08-14 09:31 - 2019-07-30 03:47 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2019-08-14 09:31 - 2019-07-30 03:47 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 03:47 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 03:47 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 03:47 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2019-08-14 09:31 - 2019-07-24 04:34 - 02752000 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2019-08-14 09:31 - 2019-07-19 05:34 - 02406912 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2019-08-14 09:31 - 2019-07-13 10:38 - 00242400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2019-08-14 09:31 - 2019-07-13 10:37 - 01312992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2019-08-14 09:31 - 2019-07-13 10:37 - 00311008 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2019-08-14 09:31 - 2019-07-13 10:37 - 00189152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2019-08-14 09:31 - 2019-07-13 10:34 - 01391616 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2019-08-14 09:31 - 2019-07-13 10:34 - 00836608 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2019-08-14 09:31 - 2019-07-13 10:34 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\P2PGraph.dll
2019-08-14 09:31 - 2019-07-13 10:34 - 00269824 _____ (Microsoft Corporation) C:\Windows\system32\pnrpsvc.dll
2019-08-14 09:31 - 2019-07-13 10:34 - 00217600 _____ (Microsoft Corporation) C:\Windows\system32\P2P.dll
2019-08-14 09:31 - 2019-07-13 10:34 - 00180736 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2019-08-14 09:31 - 2019-07-13 10:34 - 00162816 _____ (Microsoft Corporation) C:\Windows\system32\ssdpsrv.dll
2019-08-14 09:31 - 2019-07-13 10:34 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2019-08-14 09:31 - 2019-07-13 10:34 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\ssdpapi.dll
2019-08-14 09:31 - 2019-07-13 10:34 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2019-08-14 09:31 - 2019-07-13 10:34 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2019-08-14 09:31 - 2019-07-13 10:33 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2019-08-14 09:31 - 2019-07-13 10:33 - 00256512 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore.dll
2019-08-14 09:31 - 2019-07-13 10:33 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2019-08-14 09:31 - 2019-07-13 10:33 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2019-08-14 09:31 - 2019-07-13 10:33 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc.dll
2019-08-14 09:31 - 2019-07-13 10:33 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\Groupinghc.dll
2019-08-14 09:31 - 2019-07-13 10:33 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2019-08-14 09:31 - 2019-07-13 10:33 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2019-08-14 09:31 - 2019-07-13 10:22 - 00353280 _____ (Microsoft Corporation) C:\Windows\system32\msrd3x40.dll
2019-08-14 09:31 - 2019-07-13 10:22 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\msexcl40.dll
2019-08-14 09:31 - 2019-07-13 10:22 - 00313344 _____ (Microsoft Corporation) C:\Windows\system32\msrd2x40.dll
2019-08-14 09:31 - 2019-07-13 10:15 - 06135808 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2019-08-14 09:31 - 2019-07-13 10:13 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcmonitor.dll
2019-08-14 09:31 - 2019-07-13 10:07 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2019-08-14 09:31 - 2019-07-04 03:56 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-08-24 17:56 - 2017-01-05 18:14 - 00011391 _____ C:\Users\Petr\Desktop\FRST.txt
2019-08-24 17:55 - 2016-12-24 12:15 - 00000000 ____D C:\FRST
2019-08-24 17:51 - 2016-12-22 17:48 - 00000000 ____D C:\Users\Petr\AppData\LocalLow\Mozilla
2019-08-24 17:36 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\inf
2019-08-24 17:35 - 2016-12-22 18:28 - 00000965 _____ C:\Users\Public\Desktop\CCleaner.lnk
2019-08-24 17:35 - 2014-03-15 14:04 - 00000000 ____D C:\Stahování
2019-08-24 17:33 - 2016-12-22 21:34 - 00000000 ____D C:\Users\Petr\Documents\Soubory aplikace Outlook
2019-08-24 15:54 - 2016-12-22 18:15 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-08-24 15:52 - 2009-07-14 06:34 - 00035088 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-08-24 15:52 - 2009-07-14 06:34 - 00035088 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-08-24 15:43 - 2017-01-08 16:09 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2019-08-24 15:40 - 2018-04-05 09:58 - 00000000 ____D C:\Users\Petr\AppData\Local\AVAST Software
2019-08-24 15:38 - 2009-07-14 06:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2019-08-14 18:21 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\rescache
2019-08-14 10:27 - 2016-12-23 02:14 - 00668866 _____ C:\Windows\system32\perfh005.dat
2019-08-14 10:27 - 2016-12-23 02:14 - 00141526 _____ C:\Windows\system32\perfc005.dat
2019-08-14 10:27 - 2010-11-20 23:01 - 01584554 _____ C:\Windows\system32\PerfStringBackup.INI
2019-08-14 10:18 - 2009-07-14 06:33 - 00408240 _____ C:\Windows\system32\FNTCACHE.DAT
2019-08-14 10:15 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\PolicyDefinitions
2019-08-14 10:07 - 2016-12-25 11:05 - 00000000 ____D C:\Windows\system32\MRT
2019-08-14 10:01 - 2016-12-25 11:04 - 131096328 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2019-08-07 12:41 - 2017-03-19 15:18 - 00002170 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-08-07 12:41 - 2017-03-19 15:18 - 00002129 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-08-05 13:13 - 2016-12-22 18:47 - 00312760 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2019-08-01 21:37 - 2009-07-14 06:53 - 00032554 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2019-07-31 18:27 - 2019-07-21 21:12 - 00139864 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2019-07-31 18:27 - 2016-12-22 18:47 - 00783024 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2019-07-31 16:40 - 2016-12-22 21:26 - 00000000 ____D C:\Windows\AutoKMS

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2019-08-24 16:54

==================== End of FRST.txt ============================

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 01-01-2017
Ran by Petr (24-08-2019 17:57:12)
Running from C:\Users\Petr\Desktop
Microsoft Windows 7 Professional Service Pack 1 (X86) (2016-12-22 15:36:45)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-54223709-3085532525-3047887407-500 - Administrator - Disabled)
Guest (S-1-5-21-54223709-3085532525-3047887407-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-54223709-3085532525-3047887407-1002 - Limited - Enabled)
Petr (S-1-5-21-54223709-3085532525-3047887407-1000 - Administrator - Enabled) => C:\Users\Petr

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
FW: Avast Antivirus (Enabled) {B693136B-F6EE-DD1C-A0EF-229B8B0B29C4}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 19.012.20040 - Adobe Systems Incorporated)
Avast Internet Security (HKLM\...\Avast Antivirus) (Version: 19.6.2383 - AVAST Software)
Avast Secure Browser (HKLM\...\Avast Secure Browser) (Version: 75.1.1528.100 - Autoři prohlížeče Avast Secure Browser)
Canon MP250 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP250_series) (Version: - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.61 - Piriform)
FreeCommander 2009.02b (HKLM\...\FreeCommander_is1) (Version: 2009.02 - Marek Jasinski)
Google Chrome (HKLM\...\Google Chrome) (Version: 76.0.3809.100 - Google LLC)
Google Update Helper (Version: 1.3.21.123 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.34.11 - Google LLC) Hidden
Malwarebytes verze 3.8.3.2965 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.8.3.2965 - Malwarebytes)
Microsoft .NET Framework 4 Client Profile CSY Language Pack (HKLM\...\Microsoft .NET Framework 4 Client Profile CSY Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended CSY Language Pack (HKLM\...\Microsoft .NET Framework 4 Extended CSY Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft Office Professional 2010 (HKLM\...\Office14.SingleImage) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
MozBackup 1.5.1 (HKLM\...\MozBackup) (Version: - Pavel Cvrcek)
Mozilla Firefox 68.0.2 (x86 cs) (HKLM\...\Mozilla Firefox 68.0.2 (x86 cs)) (Version: 68.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 68.0.2.7164 - Mozilla)
Picasa 3 (HKLM\...\Picasa 3) (Version: 3.9.141.255 - Google, Inc.)
Skype verze 8.33 (HKLM\...\Skype_is1) (Version: 8.33 - Skype Technologies S.A.)
SysTools DBX Converter version 4.3 (HKLM\...\{0BDF5B3B-040E-4355-BAF5-DA626D01A1F8}_is1) (Version: 4.3 - SysTools Software)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {07C419DD-49D0-4C9F-8E5E-7F68DB243BCB} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2019-07-24] (Adobe Systems)
Task: {1119EE64-F50A-43BB-8AF6-410045247D7A} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2019-08-24] (AVAST Software)
Task: {3CA1841F-8DBC-4714-A85A-B2F5ED4D1468} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [2019-07-18] (AVAST Software)
Task: {55887A39-2DC9-4FBC-8E91-873161F12FA0} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {71D79223-316C-4B3C-AE1B-EA651960A4D1} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2019-08-15] (Piriform Ltd)
Task: {735BDB63-3214-4A7F-973C-4800B4974EBC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2017-03-19] (Google Inc.)
Task: {73E5B2F6-F89F-476C-8854-E3C86021AA3B} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-04-05] (AVAST Software) <==== ATTENTION
Task: {797BDC53-7AA9-4BE9-9EEB-0C545B79DCE1} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-04-05] (AVAST Software) <==== ATTENTION
Task: {89C8A54F-2DF8-47B1-B9BE-FE9EFBE69D1C} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [2019-07-18] (AVAST Software)
Task: {AB794B44-FE2A-4BF4-826D-2048F918F685} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2019-07-21] (AVAST Software)
Task: {B9BAB631-7881-46E9-8F8E-871AFB8BAC3A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2017-03-19] (Google Inc.)
Task: {D4E069F5-B500-40E1-95C4-B326B1C25EDB} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2019-08-15] (Piriform Software Ltd)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2019-07-21 21:12 - 2019-07-21 21:12 - 00568200 _____ () C:\Program Files\AVAST Software\Avast\streamback.dll
2019-07-21 21:12 - 2019-07-21 21:13 - 00542600 _____ () C:\Program Files\AVAST Software\Avast\gui_cache.dll
2019-07-21 21:12 - 2019-07-21 21:12 - 00221576 _____ () C:\Program Files\AVAST Software\Avast\features_manager.dll
2019-07-21 21:12 - 2019-07-21 21:12 - 01052552 _____ () C:\Program Files\AVAST Software\Avast\hns_tools.dll
2019-07-21 21:12 - 2019-07-21 21:13 - 02018696 _____ () C:\Program Files\AVAST Software\Avast\shepherdsync.dll
2018-03-13 13:19 - 2018-03-13 13:19 - 67126928 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2019-07-21 21:41 - 2019-06-21 06:30 - 02239848 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
2019-07-21 21:12 - 2019-07-21 21:12 - 00568200 _____ () c:\Program Files\AVAST Software\Avast\StreamBack.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:04 - 2019-01-04 10:29 - 00000841 ____A C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 localhost
::1 localhost

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-54223709-3085532525-3047887407-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Petr\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [SPPSVC-In-TCP] => %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{9421E7B2-F7A9-4A35-8B95-D4A9483F1020}] => C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [TCP Query User{9A92F8CF-3D62-4D92-855B-8899CC7A094D}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe
FirewallRules: [UDP Query User{23BD3E6A-355C-4B29-AB06-EA1F0D535073}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe
FirewallRules: [{EC48A628-51C4-4520-B3AA-1F68D54233F4}] => C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{3CF3DDA8-F3E2-465A-966E-D734796E53FB}] => C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{1CDB625C-8722-42B9-8E56-F5CA10B354B8}] => C:\Program Files\CCleaner\CCUpdate.exe
FirewallRules: [{DB07A551-80AF-4405-9C89-D2AEA9306CF5}] => C:\Program Files\CCleaner\CCUpdate.exe
FirewallRules: [{606E4EE8-36E6-4C59-8D94-0570B482B7BD}] => C:\Program Files\Microsoft\Skype for Desktop\Skype.exe
FirewallRules: [{3FDDED19-1784-49B5-95E3-59B87A9D794A}] => C:\Program Files\Microsoft\Skype for Desktop\Skype.exe
FirewallRules: [{684A06EB-6090-4058-A31B-DB8155C949DC}] => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe
FirewallRules: [{D5C561EB-CAC1-4678-AE47-DDB1D8F388A8}] => C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Restore Points =========================

06-08-2019 11:09:11 Naplánovaný kontrolní bod
13-08-2019 18:03:49 Naplánovaný kontrolní bod
14-08-2019 10:00:18 Windows Update
24-08-2019 17:00:55 Naplánovaný kontrolní bod

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (08/24/2019 05:04:03 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (08/24/2019 04:04:02 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (08/24/2019 03:49:14 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (08/24/2019 03:39:13 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (08/17/2019 07:04:39 AM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (08/17/2019 07:04:04 AM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (08/17/2019 06:54:53 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (08/16/2019 10:04:03 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (08/16/2019 09:04:07 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (08/16/2019 08:04:03 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.


System errors:
=============
Error: (08/14/2019 10:19:47 AM) (Source: Microsoft-Windows-LanguagePackSetup) (EventID: 1000) (User: NT AUTHORITY)
Description: Nepodařilo se inicializovat klienta CBS. Poslední chyba: 0x8007045b

Error: (08/09/2019 10:10:51 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {F9717507-6651-4EDB-BFF7-AE615179BCCF} se v daném časovém limitu neregistroval u služby DCOM.

Error: (08/04/2019 10:41:22 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: Byla vygenerována následující výstraha o závažné chybě: 10. Stav interní chyby: 10

Error: (08/04/2019 10:41:21 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: Byla vygenerována následující výstraha o závažné chybě: 10. Stav interní chyby: 10

Error: (08/04/2019 10:30:49 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: Byla vygenerována následující výstraha o závažné chybě: 10. Stav interní chyby: 10

Error: (08/04/2019 10:30:48 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: Byla vygenerována následující výstraha o závažné chybě: 10. Stav interní chyby: 10

Error: (08/04/2019 10:30:43 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: Byla vygenerována následující výstraha o závažné chybě: 10. Stav interní chyby: 10

Error: (08/04/2019 10:30:42 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: Byla vygenerována následující výstraha o závažné chybě: 10. Stav interní chyby: 10

Error: (08/03/2019 09:08:39 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {F9717507-6651-4EDB-BFF7-AE615179BCCF} se v daném časovém limitu neregistroval u služby DCOM.

Error: (08/01/2019 09:36:57 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (21:31:03, ‎1.‎8.‎2019) bylo neočekávané.


==================== Memory info ===========================

Processor: Intel(R) Celeron(R) CPU E3300 @ 2.50GHz
Percentage of memory in use: 75%
Total physical RAM: 2046.49 MB
Available physical RAM: 504.94 MB
Total Virtual: 4092.98 MB
Available Virtual: 2749.85 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:465.66 GB) (Free:388.57 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: (Data) (Fixed) (Total:232.88 GB) (Free:168.37 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 54D22AD4)
Partition 1: (Active) - (Size=465.7 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 232.9 GB) (Disk ID: C46FBD09)
Partition 1: (Not Active) - (Size=232.9 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

Re: Pomalý PC

Napsal: 24 srp 2019 17:43
od Petura
Trošku mi trvalo než se podařilo stáhnout novou verzi RSFT...musel jsem vypnout štít avastu...přikládám nové logy

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 22-08-2019
Ran by Petr (administrator) on PETR-PC (Gigabyte Technology Co., Ltd. G31M-ES2L) (24-08-2019 18:40:06)
Running from C:\Stahování
Loaded Profiles: Petr (Available Profiles: Petr)
Platform: Microsoft Windows 7 Professional Service Pack 1 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Systems) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Marek Jasinski -> Marek Jasinski - www.FreeCommander.com) [File not signed] C:\Program Files\FreeCommander\FreeCommander.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Piriform Software Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [232840 2019-07-21] (AVAST Software s.r.o. -> AVAST Software)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-54223709-3085532525-3047887407-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner.exe [16585328 2019-08-15] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-54223709-3085532525-3047887407-1000\...\Run: [Skype for Desktop] => C:\Program Files\Microsoft\Skype for Desktop\Skype.exe [49805376 2018-10-26] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-54223709-3085532525-3047887407-1000\...\MountPoints2: {54cae04e-ddba-11e8-a0ce-6cf049cbae7d} - F:\LGAutoRun.exe
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKLM\...\Drivers32: [VIDC.ACDV] => C:\Windows\system32\ACDV.dll [462848 2005-06-20] (ACD Systems) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> C:\Program Files\AVAST Software\Browser\Application\75.1.1528.100\Installer\chrmstp.exe [2019-07-24] (AVAST Software s.r.o. -> AVAST Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\76.0.3809.100\Installer\chrmstp.exe [2019-08-07] (Google LLC -> Google LLC)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {07C419DD-49D0-4C9F-8E5E-7F68DB243BCB} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1236048 2019-07-24] (Adobe Inc. -> Adobe Systems)
Task: {1119EE64-F50A-43BB-8AF6-410045247D7A} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1693064 2019-08-24] (AVAST Software s.r.o. -> AVAST Software)
Task: {3CA1841F-8DBC-4714-A85A-B2F5ED4D1468} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [1815792 2019-07-18] (AVAST Software s.r.o. -> AVAST Software)
Task: {55887A39-2DC9-4FBC-8E91-873161F12FA0} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {71D79223-316C-4B3C-AE1B-EA651960A4D1} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16585328 2019-08-15] (Piriform Software Ltd -> Piriform Ltd)
Task: {735BDB63-3214-4A7F-973C-4800B4974EBC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [153752 2017-03-19] (Google Inc -> Google Inc.)
Task: {73E5B2F6-F89F-476C-8854-E3C86021AA3B} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-05] (AVAST Software s.r.o. -> AVAST Software)
Task: {797BDC53-7AA9-4BE9-9EEB-0C545B79DCE1} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-05] (AVAST Software s.r.o. -> AVAST Software)
Task: {89C8A54F-2DF8-47B1-B9BE-FE9EFBE69D1C} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [1815792 2019-07-18] (AVAST Software s.r.o. -> AVAST Software)
Task: {AB794B44-FE2A-4BF4-826D-2048F918F685} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3228552 2019-07-21] (AVAST Software s.r.o. -> AVAST Software)
Task: {B9BAB631-7881-46E9-8F8E-871AFB8BAC3A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [153752 2017-03-19] (Google Inc -> Google Inc.)
Task: {D4E069F5-B500-40E1-95C4-B326B1C25EDB} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-08-15] (Piriform Software Ltd -> Piriform Software Ltd)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{7F10E948-19EF-499E-BEF8-E480C119DCEC}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKU\S-1-5-21-54223709-3085532525-3047887407-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.dell.com/
SearchScopes: HKU\S-1-5-21-54223709-3085532525-3047887407-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation -> Microsoft Corporation)

FireFox:
========
FF DefaultProfile: rgvujyxt.default
FF ProfilePath: C:\Users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\rgvujyxt.default [2019-08-24]
FF DownloadDir: C:\Stahování
FF Homepage: Mozilla\Firefox\Profiles\rgvujyxt.default -> www.seznam.cz/
FF Extension: (ETP Search Volume Study) - C:\Users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\rgvujyxt.default\Extensions\etp-search-volume-study@shield.mozilla.org.xpi [2019-05-15]
FF Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\rgvujyxt.default\Extensions\sp@avast.com.xpi [2019-06-15]
FF Extension: (Avast Online Security) - C:\Users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\rgvujyxt.default\Extensions\wrc@avast.com.xpi [2019-07-22]
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll [2015-10-09] (Google Inc -> Google, Inc.)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-07-31] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com
CHR Profile: C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default [2019-08-24]
CHR Extension: (Prezentace) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-12-23]
CHR Extension: (Dokumenty) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-12-23]
CHR Extension: (Disk Google) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-03-19]
CHR Extension: (YouTube) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-03-19]
CHR Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2019-05-04]
CHR Extension: (Tabulky) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-12-23]
CHR Extension: (Dokumenty Google offline) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-12-14]
CHR Extension: (Avast Online Security) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2018-12-14]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-12-14]
CHR Extension: (Gmail) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-03-19]
CHR Extension: (Chrome Media Router) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-12-14]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [88136 2019-07-24] (Adobe Inc. -> Adobe Systems)
S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [5551168 2019-07-21] (AVAST Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-05] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [365048 2019-07-21] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [375976 2019-07-21] (AVAST Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-05] (AVAST Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files\AVAST Software\Browser\Application\75.1.1528.100\elevation_service.exe [978720 2019-07-18] (AVAST Software s.r.o. -> AVAST Software)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [5394136 2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Windows -> Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [174472 2019-07-21] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [225816 2019-07-21] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [171216 2019-07-21] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [56504 2019-07-21] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [40904 2019-07-21] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [139864 2019-07-31] (AVAST Software s.r.o. -> AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [36104 2018-05-01] (AVAST Software s.r.o. -> AVAST Software)
R1 aswNetSec; C:\Windows\System32\drivers\aswNetSec.sys [405056 2019-07-21] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [101192 2019-07-21] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [73008 2019-07-21] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [783024 2019-07-31] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [403952 2019-07-21] (AVAST Software s.r.o. -> AVAST Software)
S2 aswStm; C:\Windows\System32\drivers\aswStm.sys [167576 2019-07-21] (AVAST Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [312760 2019-08-05] (AVAST Software s.r.o. -> AVAST Software)
R3 AtiHDAudioService; C:\Windows\System32\drivers\AtihdW73.sys [87568 2016-03-01] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R3 L1C; C:\Windows\System32\DRIVERS\L1C62x86.sys [50688 2009-07-14] (Microsoft Windows -> Atheros Communications, Inc.)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [241760 2019-08-24] (Malwarebytes Corporation -> Malwarebytes)
R3 pfc; C:\Windows\System32\drivers\pfc.sys [10368 2017-05-01] (Padus, Inc.) [File not signed]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-08-24 17:44 - 2019-08-24 17:44 - 007623880 _____ (Malwarebytes) C:\Users\Petr\Desktop\adwcleaner_7.4.exe
2019-08-24 15:39 - 2019-08-24 15:39 - 000241760 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2019-08-17 06:58 - 2019-08-24 15:43 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-08-14 09:31 - 2019-08-05 23:55 - 000348800 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2019-08-14 09:31 - 2019-08-04 03:21 - 020291584 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2019-08-14 09:31 - 2019-08-04 03:15 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2019-08-14 09:31 - 2019-08-04 03:15 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2019-08-14 09:31 - 2019-08-04 03:04 - 000496128 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2019-08-14 09:31 - 2019-08-04 03:03 - 000341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2019-08-14 09:31 - 2019-08-04 03:03 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2019-08-14 09:31 - 2019-08-04 03:03 - 000047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2019-08-14 09:31 - 2019-08-04 03:02 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2019-08-14 09:31 - 2019-08-04 03:00 - 002301952 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2019-08-14 09:31 - 2019-08-04 02:57 - 000047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2019-08-14 09:31 - 2019-08-04 02:57 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2019-08-14 09:31 - 2019-08-04 02:55 - 000476160 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2019-08-14 09:31 - 2019-08-04 02:54 - 000663040 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2019-08-14 09:31 - 2019-08-04 02:54 - 000115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2019-08-14 09:31 - 2019-08-04 02:54 - 000104960 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2019-08-14 09:31 - 2019-08-04 02:53 - 000620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2019-08-14 09:31 - 2019-08-04 02:48 - 000668160 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2019-08-14 09:31 - 2019-08-04 02:45 - 000416256 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2019-08-14 09:31 - 2019-08-04 02:41 - 000073216 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2019-08-14 09:31 - 2019-08-04 02:41 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2019-08-14 09:31 - 2019-08-04 02:40 - 000091136 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2019-08-14 09:31 - 2019-08-04 02:38 - 000168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2019-08-14 09:31 - 2019-08-04 02:37 - 000076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2019-08-14 09:31 - 2019-08-04 02:36 - 000279040 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2019-08-14 09:31 - 2019-08-04 02:35 - 000130048 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2019-08-14 09:31 - 2019-08-04 02:32 - 004494848 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2019-08-14 09:31 - 2019-08-04 02:29 - 000230400 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2019-08-14 09:31 - 2019-08-04 02:28 - 002058752 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2019-08-14 09:31 - 2019-08-04 02:28 - 000696320 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2019-08-14 09:31 - 2019-08-04 02:27 - 001155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2019-08-14 09:31 - 2019-08-04 02:27 - 000692224 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2019-08-14 09:31 - 2019-08-04 02:23 - 013791744 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2019-08-14 09:31 - 2019-08-04 02:09 - 004387840 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2019-08-14 09:31 - 2019-08-04 02:06 - 001331200 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2019-08-14 09:31 - 2019-08-04 02:04 - 000710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2019-08-14 09:31 - 2019-07-30 04:19 - 004058848 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2019-08-14 09:31 - 2019-07-30 04:19 - 003965664 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2019-08-14 09:31 - 2019-07-30 04:19 - 000191200 _____ (Microsoft Corporation) C:\Windows\system32\halmacpi.dll
2019-08-14 09:31 - 2019-07-30 04:19 - 000191200 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2019-08-14 09:31 - 2019-07-30 04:19 - 000137952 _____ (Microsoft Corporation) C:\Windows\system32\halacpi.dll
2019-08-14 09:31 - 2019-07-30 04:19 - 000137440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2019-08-14 09:31 - 2019-07-30 04:19 - 000068832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2019-08-14 09:31 - 2019-07-30 04:17 - 001315904 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 001425920 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 001072640 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 000872448 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 000655360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 000583680 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 000555520 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 000400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 000380928 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 000294400 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 000261632 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 000254464 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 000223232 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 000172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 000171008 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 000167936 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 000141312 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 000099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 000070144 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 000043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\oleres.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000644096 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000082432 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 03:54 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\comcat.dll
2019-08-14 09:31 - 2019-07-30 03:53 - 000097792 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2019-08-14 09:31 - 2019-07-30 03:53 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2019-08-14 09:31 - 2019-07-30 03:53 - 000029696 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2019-08-14 09:31 - 2019-07-30 03:53 - 000016896 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2019-08-14 09:31 - 2019-07-30 03:53 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll
2019-08-14 09:31 - 2019-07-30 03:52 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2019-08-14 09:31 - 2019-07-30 03:51 - 000271360 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2019-08-14 09:31 - 2019-07-30 03:51 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\videoprt.sys
2019-08-14 09:31 - 2019-07-30 03:50 - 000262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2019-08-14 09:31 - 2019-07-30 03:48 - 000317440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2019-08-14 09:31 - 2019-07-30 03:48 - 000314880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2019-08-14 09:31 - 2019-07-30 03:48 - 000226304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2019-08-14 09:31 - 2019-07-30 03:48 - 000126464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2019-08-14 09:31 - 2019-07-30 03:48 - 000117248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2019-08-14 09:31 - 2019-07-30 03:48 - 000098816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2019-08-14 09:31 - 2019-07-30 03:47 - 000069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2019-08-14 09:31 - 2019-07-30 03:47 - 000055296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys
2019-08-14 09:31 - 2019-07-30 03:47 - 000053760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelppm.sys
2019-08-14 09:31 - 2019-07-30 03:47 - 000053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\viac7.sys
2019-08-14 09:31 - 2019-07-30 03:47 - 000052736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdppm.sys
2019-08-14 09:31 - 2019-07-30 03:47 - 000052224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys
2019-08-14 09:31 - 2019-07-30 03:47 - 000036352 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2019-08-14 09:31 - 2019-07-30 03:47 - 000035328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\npfs.sys
2019-08-14 09:31 - 2019-07-30 03:47 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2019-08-14 09:31 - 2019-07-30 03:47 - 000015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2019-08-14 09:31 - 2019-07-30 03:47 - 000006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 03:47 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 03:47 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 03:47 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2019-08-14 09:31 - 2019-07-24 04:34 - 002752000 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2019-08-14 09:31 - 2019-07-19 05:34 - 002406912 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2019-08-14 09:31 - 2019-07-13 10:38 - 000242400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2019-08-14 09:31 - 2019-07-13 10:37 - 001312992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2019-08-14 09:31 - 2019-07-13 10:37 - 000311008 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2019-08-14 09:31 - 2019-07-13 10:37 - 000189152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2019-08-14 09:31 - 2019-07-13 10:34 - 001391616 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2019-08-14 09:31 - 2019-07-13 10:34 - 000836608 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2019-08-14 09:31 - 2019-07-13 10:34 - 000335360 _____ (Microsoft Corporation) C:\Windows\system32\P2PGraph.dll
2019-08-14 09:31 - 2019-07-13 10:34 - 000269824 _____ (Microsoft Corporation) C:\Windows\system32\pnrpsvc.dll
2019-08-14 09:31 - 2019-07-13 10:34 - 000217600 _____ (Microsoft Corporation) C:\Windows\system32\P2P.dll
2019-08-14 09:31 - 2019-07-13 10:34 - 000180736 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2019-08-14 09:31 - 2019-07-13 10:34 - 000162816 _____ (Microsoft Corporation) C:\Windows\system32\ssdpsrv.dll
2019-08-14 09:31 - 2019-07-13 10:34 - 000111616 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2019-08-14 09:31 - 2019-07-13 10:34 - 000039936 _____ (Microsoft Corporation) C:\Windows\system32\ssdpapi.dll
2019-08-14 09:31 - 2019-07-13 10:34 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2019-08-14 09:31 - 2019-07-13 10:34 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2019-08-14 09:31 - 2019-07-13 10:33 - 000307200 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2019-08-14 09:31 - 2019-07-13 10:33 - 000256512 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore.dll
2019-08-14 09:31 - 2019-07-13 10:33 - 000194560 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2019-08-14 09:31 - 2019-07-13 10:33 - 000071680 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2019-08-14 09:31 - 2019-07-13 10:33 - 000061440 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc.dll
2019-08-14 09:31 - 2019-07-13 10:33 - 000055808 _____ (Microsoft Corporation) C:\Windows\system32\Groupinghc.dll
2019-08-14 09:31 - 2019-07-13 10:33 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2019-08-14 09:31 - 2019-07-13 10:33 - 000010240 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2019-08-14 09:31 - 2019-07-13 10:22 - 000353280 _____ (Microsoft Corporation) C:\Windows\system32\msrd3x40.dll
2019-08-14 09:31 - 2019-07-13 10:22 - 000341504 _____ (Microsoft Corporation) C:\Windows\system32\msexcl40.dll
2019-08-14 09:31 - 2019-07-13 10:22 - 000313344 _____ (Microsoft Corporation) C:\Windows\system32\msrd2x40.dll
2019-08-14 09:31 - 2019-07-13 10:15 - 006135808 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2019-08-14 09:31 - 2019-07-13 10:13 - 000011264 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcmonitor.dll
2019-08-14 09:31 - 2019-07-13 10:07 - 000034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2019-08-14 09:31 - 2019-07-04 03:56 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-08-24 18:40 - 2016-12-24 12:15 - 000000000 ____D C:\FRST
2019-08-24 18:40 - 2014-03-15 14:04 - 000000000 ____D C:\Stahování
2019-08-24 17:58 - 2017-01-05 18:15 - 000016641 _____ C:\Users\Petr\Desktop\Addition.txt
2019-08-24 17:58 - 2017-01-05 18:14 - 000034143 _____ C:\Users\Petr\Desktop\FRST.txt
2019-08-24 17:51 - 2016-12-22 17:48 - 000000000 ____D C:\Users\Petr\AppData\LocalLow\Mozilla
2019-08-24 17:36 - 2009-07-14 04:37 - 000000000 ____D C:\Windows\inf
2019-08-24 17:35 - 2016-12-22 18:28 - 000000965 _____ C:\Users\Public\Desktop\CCleaner.lnk
2019-08-24 17:33 - 2016-12-22 21:34 - 000000000 ____D C:\Users\Petr\Documents\Soubory aplikace Outlook
2019-08-24 15:54 - 2016-12-22 18:15 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-08-24 15:52 - 2009-07-14 06:34 - 000035088 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-08-24 15:52 - 2009-07-14 06:34 - 000035088 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-08-24 15:43 - 2017-01-08 16:09 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service
2019-08-24 15:40 - 2018-04-05 09:58 - 000000000 ____D C:\Users\Petr\AppData\Local\AVAST Software
2019-08-24 15:38 - 2009-07-14 06:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-08-14 18:21 - 2009-07-14 04:37 - 000000000 ____D C:\Windows\rescache
2019-08-14 10:27 - 2016-12-23 02:14 - 000668866 _____ C:\Windows\system32\perfh005.dat
2019-08-14 10:27 - 2016-12-23 02:14 - 000141526 _____ C:\Windows\system32\perfc005.dat
2019-08-14 10:27 - 2010-11-20 23:01 - 001584554 _____ C:\Windows\system32\PerfStringBackup.INI
2019-08-14 10:18 - 2009-07-14 06:33 - 000408240 _____ C:\Windows\system32\FNTCACHE.DAT
2019-08-14 10:15 - 2009-07-14 04:37 - 000000000 ____D C:\Windows\PolicyDefinitions
2019-08-14 10:07 - 2016-12-25 11:05 - 000000000 ____D C:\Windows\system32\MRT
2019-08-14 10:01 - 2016-12-25 11:04 - 131096328 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2019-08-07 12:41 - 2017-03-19 15:18 - 000002170 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-08-07 12:41 - 2017-03-19 15:18 - 000002129 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-08-05 13:13 - 2016-12-22 18:47 - 000312760 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2019-08-01 21:37 - 2009-07-14 06:53 - 000032554 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2019-07-31 18:27 - 2019-07-21 21:12 - 000139864 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2019-07-31 18:27 - 2016-12-22 18:47 - 000783024 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2019-07-31 16:40 - 2016-12-22 21:26 - 000000000 ____D C:\Windows\AutoKMS

==================== SigCheck ===============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2019-08-24 16:54
==================== End of FRST.txt ============================

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 22-08-2019
Ran by Petr (24-08-2019 18:41:21)
Running from C:\Stahování
Microsoft Windows 7 Professional Service Pack 1 (X86) (2016-12-22 15:36:45)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-54223709-3085532525-3047887407-500 - Administrator - Disabled)
Guest (S-1-5-21-54223709-3085532525-3047887407-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-54223709-3085532525-3047887407-1002 - Limited - Enabled)
Petr (S-1-5-21-54223709-3085532525-3047887407-1000 - Administrator - Enabled) => C:\Users\Petr

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Disabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Disabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
FW: Avast Antivirus (Disabled) {B693136B-F6EE-DD1C-A0EF-229B8B0B29C4}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 19.012.20040 - Adobe Systems Incorporated)
Avast Internet Security (HKLM\...\Avast Antivirus) (Version: 19.6.2383 - AVAST Software)
Avast Secure Browser (HKLM\...\Avast Secure Browser) (Version: 75.1.1528.100 - Autoři prohlížeče Avast Secure Browser)
Canon MP250 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP250_series) (Version: - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.61 - Piriform)
FreeCommander 2009.02b (HKLM\...\FreeCommander_is1) (Version: 2009.02 - Marek Jasinski)
Google Chrome (HKLM\...\Google Chrome) (Version: 76.0.3809.100 - Google LLC)
Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.11 - Google LLC) Hidden
Google Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.123 - Google Inc.) Hidden
Malwarebytes verze 3.8.3.2965 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.8.3.2965 - Malwarebytes)
Microsoft .NET Framework 4 Client Profile CSY Language Pack (HKLM\...\Microsoft .NET Framework 4 Client Profile CSY Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended CSY Language Pack (HKLM\...\Microsoft .NET Framework 4 Extended CSY Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft Office Professional 2010 (HKLM\...\Office14.SingleImage) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
MozBackup 1.5.1 (HKLM\...\MozBackup) (Version: - Pavel Cvrcek)
Mozilla Firefox 68.0.2 (x86 cs) (HKLM\...\Mozilla Firefox 68.0.2 (x86 cs)) (Version: 68.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 68.0.2.7164 - Mozilla)
Picasa 3 (HKLM\...\Picasa 3) (Version: 3.9.141.255 - Google, Inc.)
Skype verze 8.33 (HKLM\...\Skype_is1) (Version: 8.33 - Skype Technologies S.A.)
SysTools DBX Converter version 4.3 (HKLM\...\{0BDF5B3B-040E-4355-BAF5-DA626D01A1F8}_is1) (Version: 4.3 - SysTools Software)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-07-21] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-07-21] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-07-21] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-07-21] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]

==================== Loaded Modules (Whitelisted) ==============


==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:04 - 2019-01-04 10:29 - 000000841 _____ C:\Windows\system32\drivers\etc\hosts

127.0.0.1 localhost

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-54223709-3085532525-3047887407-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Petr\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{9421E7B2-F7A9-4A35-8B95-D4A9483F1020}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{9A92F8CF-3D62-4D92-855B-8899CC7A094D}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Allow) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{23BD3E6A-355C-4B29-AB06-EA1F0D535073}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Allow) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{EC48A628-51C4-4520-B3AA-1F68D54233F4}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{3CF3DDA8-F3E2-465A-966E-D734796E53FB}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{1CDB625C-8722-42B9-8E56-F5CA10B354B8}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{DB07A551-80AF-4405-9C89-D2AEA9306CF5}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{606E4EE8-36E6-4C59-8D94-0570B482B7BD}] => (Allow) C:\Program Files\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{3FDDED19-1784-49B5-95E3-59B87A9D794A}] => (Allow) C:\Program Files\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{684A06EB-6090-4058-A31B-DB8155C949DC}] => (Allow) C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe (AVAST Software s.r.o. -> AVAST Software)
FirewallRules: [{D5C561EB-CAC1-4678-AE47-DDB1D8F388A8}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

06-08-2019 11:09:11 Naplánovaný kontrolní bod
13-08-2019 18:03:49 Naplánovaný kontrolní bod
14-08-2019 10:00:18 Windows Update
24-08-2019 17:00:55 Naplánovaný kontrolní bod

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (08/24/2019 06:04:04 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (08/24/2019 05:04:03 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (08/24/2019 04:04:02 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (08/24/2019 03:49:14 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (08/24/2019 03:39:13 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (08/17/2019 07:04:39 AM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (08/17/2019 07:04:04 AM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (08/17/2019 06:54:53 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.


System errors:
=============
Error: (08/14/2019 10:19:47 AM) (Source: Microsoft-Windows-LanguagePackSetup) (EventID: 1000) (User: NT AUTHORITY)
Description: Nepodařilo se inicializovat klienta CBS. Poslední chyba: 0x8007045b

Error: (08/09/2019 10:10:51 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {F9717507-6651-4EDB-BFF7-AE615179BCCF} se v daném časovém limitu neregistroval u služby DCOM.

Error: (08/04/2019 10:41:22 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: Byla vygenerována následující výstraha o závažné chybě: 10. Stav interní chyby: 10

Error: (08/04/2019 10:41:21 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: Byla vygenerována následující výstraha o závažné chybě: 10. Stav interní chyby: 10

Error: (08/04/2019 10:30:49 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: Byla vygenerována následující výstraha o závažné chybě: 10. Stav interní chyby: 10

Error: (08/04/2019 10:30:48 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: Byla vygenerována následující výstraha o závažné chybě: 10. Stav interní chyby: 10

Error: (08/04/2019 10:30:43 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: Byla vygenerována následující výstraha o závažné chybě: 10. Stav interní chyby: 10

Error: (08/04/2019 10:30:42 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: Byla vygenerována následující výstraha o závažné chybě: 10. Stav interní chyby: 10


==================== Memory info ===========================

BIOS: Award Software International, Inc. FH 04/30/2010
Motherboard: Gigabyte Technology Co., Ltd. G31M-ES2L
Processor: Intel(R) Celeron(R) CPU E3300 @ 2.50GHz
Percentage of memory in use: 91%
Total physical RAM: 2046.49 MB
Available physical RAM: 180.08 MB
Total Virtual: 4092.98 MB
Available Virtual: 1725.94 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:465.66 GB) (Free:388.53 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: (Data) (Fixed) (Total:232.88 GB) (Free:168.37 GB) NTFS


==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 54D22AD4)
Partition 1: (Active) - (Size=465.7 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 232.9 GB) (Disk ID: C46FBD09)
Partition 1: (Not Active) - (Size=232.9 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

Re: Pomalý PC

Napsal: 24 srp 2019 17:54
od Rudy
Zdravím!
Stáhněte si nový FRST: https://forum.viry.cz/viewtopic.php?f=13&t=154679 , tento je již 3roky prošlý a dejte nové logy FRST+Addition.

Re: Pomalý PC

Napsal: 24 srp 2019 18:51
od Petura
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 22-08-2019
Ran by Petr (administrator) on PETR-PC (Gigabyte Technology Co., Ltd. G31M-ES2L) (24-08-2019 19:49:10)
Running from C:\Users\Petr\Desktop
Loaded Profiles: Petr (Available Profiles: Petr)
Platform: Microsoft Windows 7 Professional Service Pack 1 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Systems) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Marek Jasinski -> Marek Jasinski - www.FreeCommander.com) [File not signed] C:\Program Files\FreeCommander\FreeCommander.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Piriform Software Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [232840 2019-07-21] (AVAST Software s.r.o. -> AVAST Software)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-54223709-3085532525-3047887407-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner.exe [16585328 2019-08-15] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-54223709-3085532525-3047887407-1000\...\Run: [Skype for Desktop] => C:\Program Files\Microsoft\Skype for Desktop\Skype.exe [49805376 2018-10-26] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-54223709-3085532525-3047887407-1000\...\MountPoints2: {54cae04e-ddba-11e8-a0ce-6cf049cbae7d} - F:\LGAutoRun.exe
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKLM\...\Drivers32: [VIDC.ACDV] => C:\Windows\system32\ACDV.dll [462848 2005-06-20] (ACD Systems) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> C:\Program Files\AVAST Software\Browser\Application\75.1.1528.100\Installer\chrmstp.exe [2019-07-24] (AVAST Software s.r.o. -> AVAST Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\76.0.3809.100\Installer\chrmstp.exe [2019-08-07] (Google LLC -> Google LLC)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {07C419DD-49D0-4C9F-8E5E-7F68DB243BCB} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1236048 2019-07-24] (Adobe Inc. -> Adobe Systems)
Task: {1119EE64-F50A-43BB-8AF6-410045247D7A} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1693064 2019-08-24] (AVAST Software s.r.o. -> AVAST Software)
Task: {3CA1841F-8DBC-4714-A85A-B2F5ED4D1468} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [1815792 2019-07-18] (AVAST Software s.r.o. -> AVAST Software)
Task: {55887A39-2DC9-4FBC-8E91-873161F12FA0} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {71D79223-316C-4B3C-AE1B-EA651960A4D1} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16585328 2019-08-15] (Piriform Software Ltd -> Piriform Ltd)
Task: {735BDB63-3214-4A7F-973C-4800B4974EBC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [153752 2017-03-19] (Google Inc -> Google Inc.)
Task: {73E5B2F6-F89F-476C-8854-E3C86021AA3B} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-05] (AVAST Software s.r.o. -> AVAST Software)
Task: {797BDC53-7AA9-4BE9-9EEB-0C545B79DCE1} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-05] (AVAST Software s.r.o. -> AVAST Software)
Task: {89C8A54F-2DF8-47B1-B9BE-FE9EFBE69D1C} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [1815792 2019-07-18] (AVAST Software s.r.o. -> AVAST Software)
Task: {AB794B44-FE2A-4BF4-826D-2048F918F685} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3228552 2019-07-21] (AVAST Software s.r.o. -> AVAST Software)
Task: {B9BAB631-7881-46E9-8F8E-871AFB8BAC3A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [153752 2017-03-19] (Google Inc -> Google Inc.)
Task: {D4E069F5-B500-40E1-95C4-B326B1C25EDB} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-08-15] (Piriform Software Ltd -> Piriform Software Ltd)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{7F10E948-19EF-499E-BEF8-E480C119DCEC}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKU\S-1-5-21-54223709-3085532525-3047887407-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.dell.com/
SearchScopes: HKU\S-1-5-21-54223709-3085532525-3047887407-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation -> Microsoft Corporation)

FireFox:
========
FF DefaultProfile: rgvujyxt.default
FF ProfilePath: C:\Users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\rgvujyxt.default [2019-08-24]
FF DownloadDir: C:\Stahování
FF Homepage: Mozilla\Firefox\Profiles\rgvujyxt.default -> www.seznam.cz/
FF Extension: (ETP Search Volume Study) - C:\Users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\rgvujyxt.default\Extensions\etp-search-volume-study@shield.mozilla.org.xpi [2019-05-15]
FF Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\rgvujyxt.default\Extensions\sp@avast.com.xpi [2019-06-15]
FF Extension: (Avast Online Security) - C:\Users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\rgvujyxt.default\Extensions\wrc@avast.com.xpi [2019-07-22]
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll [2015-10-09] (Google Inc -> Google, Inc.)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-07-31] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com
CHR Profile: C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default [2019-08-24]
CHR Extension: (Prezentace) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-12-23]
CHR Extension: (Dokumenty) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-12-23]
CHR Extension: (Disk Google) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-03-19]
CHR Extension: (YouTube) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-03-19]
CHR Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2019-05-04]
CHR Extension: (Tabulky) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-12-23]
CHR Extension: (Dokumenty Google offline) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-12-14]
CHR Extension: (Avast Online Security) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2018-12-14]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-12-14]
CHR Extension: (Gmail) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-03-19]
CHR Extension: (Chrome Media Router) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-12-14]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [88136 2019-07-24] (Adobe Inc. -> Adobe Systems)
S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [5551168 2019-07-21] (AVAST Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-05] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [365048 2019-07-21] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [375976 2019-07-21] (AVAST Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-05] (AVAST Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files\AVAST Software\Browser\Application\75.1.1528.100\elevation_service.exe [978720 2019-07-18] (AVAST Software s.r.o. -> AVAST Software)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [5394136 2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Windows -> Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [174472 2019-07-21] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [225816 2019-07-21] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [171216 2019-07-21] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [56504 2019-07-21] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [40904 2019-07-21] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [139864 2019-07-31] (AVAST Software s.r.o. -> AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [36104 2018-05-01] (AVAST Software s.r.o. -> AVAST Software)
R1 aswNetSec; C:\Windows\System32\drivers\aswNetSec.sys [405056 2019-07-21] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [101192 2019-07-21] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [73008 2019-07-21] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [783024 2019-07-31] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [403952 2019-07-21] (AVAST Software s.r.o. -> AVAST Software)
S2 aswStm; C:\Windows\System32\drivers\aswStm.sys [167576 2019-07-21] (AVAST Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [312760 2019-08-05] (AVAST Software s.r.o. -> AVAST Software)
R3 AtiHDAudioService; C:\Windows\System32\drivers\AtihdW73.sys [87568 2016-03-01] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R3 L1C; C:\Windows\System32\DRIVERS\L1C62x86.sys [50688 2009-07-14] (Microsoft Windows -> Atheros Communications, Inc.)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [241760 2019-08-24] (Malwarebytes Corporation -> Malwarebytes)
R3 pfc; C:\Windows\System32\drivers\pfc.sys [10368 2017-05-01] (Padus, Inc.) [File not signed]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-08-24 19:48 - 2019-08-24 19:48 - 001448960 _____ (Farbar) C:\Users\Petr\Desktop\FRST(2).exe
2019-08-24 17:44 - 2019-08-24 17:44 - 007623880 _____ (Malwarebytes) C:\Users\Petr\Desktop\adwcleaner_7.4.exe
2019-08-24 15:39 - 2019-08-24 15:39 - 000241760 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2019-08-17 06:58 - 2019-08-24 15:43 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-08-14 09:31 - 2019-08-05 23:55 - 000348800 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2019-08-14 09:31 - 2019-08-04 03:21 - 020291584 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2019-08-14 09:31 - 2019-08-04 03:15 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2019-08-14 09:31 - 2019-08-04 03:15 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2019-08-14 09:31 - 2019-08-04 03:04 - 000496128 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2019-08-14 09:31 - 2019-08-04 03:03 - 000341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2019-08-14 09:31 - 2019-08-04 03:03 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2019-08-14 09:31 - 2019-08-04 03:03 - 000047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2019-08-14 09:31 - 2019-08-04 03:02 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2019-08-14 09:31 - 2019-08-04 03:00 - 002301952 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2019-08-14 09:31 - 2019-08-04 02:57 - 000047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2019-08-14 09:31 - 2019-08-04 02:57 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2019-08-14 09:31 - 2019-08-04 02:55 - 000476160 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2019-08-14 09:31 - 2019-08-04 02:54 - 000663040 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2019-08-14 09:31 - 2019-08-04 02:54 - 000115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2019-08-14 09:31 - 2019-08-04 02:54 - 000104960 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2019-08-14 09:31 - 2019-08-04 02:53 - 000620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2019-08-14 09:31 - 2019-08-04 02:48 - 000668160 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2019-08-14 09:31 - 2019-08-04 02:45 - 000416256 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2019-08-14 09:31 - 2019-08-04 02:41 - 000073216 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2019-08-14 09:31 - 2019-08-04 02:41 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2019-08-14 09:31 - 2019-08-04 02:40 - 000091136 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2019-08-14 09:31 - 2019-08-04 02:38 - 000168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2019-08-14 09:31 - 2019-08-04 02:37 - 000076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2019-08-14 09:31 - 2019-08-04 02:36 - 000279040 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2019-08-14 09:31 - 2019-08-04 02:35 - 000130048 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2019-08-14 09:31 - 2019-08-04 02:32 - 004494848 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2019-08-14 09:31 - 2019-08-04 02:29 - 000230400 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2019-08-14 09:31 - 2019-08-04 02:28 - 002058752 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2019-08-14 09:31 - 2019-08-04 02:28 - 000696320 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2019-08-14 09:31 - 2019-08-04 02:27 - 001155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2019-08-14 09:31 - 2019-08-04 02:27 - 000692224 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2019-08-14 09:31 - 2019-08-04 02:23 - 013791744 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2019-08-14 09:31 - 2019-08-04 02:09 - 004387840 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2019-08-14 09:31 - 2019-08-04 02:06 - 001331200 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2019-08-14 09:31 - 2019-08-04 02:04 - 000710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2019-08-14 09:31 - 2019-07-30 04:19 - 004058848 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2019-08-14 09:31 - 2019-07-30 04:19 - 003965664 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2019-08-14 09:31 - 2019-07-30 04:19 - 000191200 _____ (Microsoft Corporation) C:\Windows\system32\halmacpi.dll
2019-08-14 09:31 - 2019-07-30 04:19 - 000191200 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2019-08-14 09:31 - 2019-07-30 04:19 - 000137952 _____ (Microsoft Corporation) C:\Windows\system32\halacpi.dll
2019-08-14 09:31 - 2019-07-30 04:19 - 000137440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2019-08-14 09:31 - 2019-07-30 04:19 - 000068832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2019-08-14 09:31 - 2019-07-30 04:17 - 001315904 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 001425920 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 001072640 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 000872448 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 000655360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 000583680 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 000555520 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 000400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 000380928 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 000294400 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 000261632 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 000254464 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 000223232 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 000172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 000171008 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 000167936 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 000141312 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 000099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 000070144 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 000043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\oleres.dll
2019-08-14 09:31 - 2019-07-30 04:16 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000644096 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000082432 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 03:54 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\comcat.dll
2019-08-14 09:31 - 2019-07-30 03:53 - 000097792 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2019-08-14 09:31 - 2019-07-30 03:53 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2019-08-14 09:31 - 2019-07-30 03:53 - 000029696 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2019-08-14 09:31 - 2019-07-30 03:53 - 000016896 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2019-08-14 09:31 - 2019-07-30 03:53 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll
2019-08-14 09:31 - 2019-07-30 03:52 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2019-08-14 09:31 - 2019-07-30 03:51 - 000271360 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2019-08-14 09:31 - 2019-07-30 03:51 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\videoprt.sys
2019-08-14 09:31 - 2019-07-30 03:50 - 000262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2019-08-14 09:31 - 2019-07-30 03:48 - 000317440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2019-08-14 09:31 - 2019-07-30 03:48 - 000314880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2019-08-14 09:31 - 2019-07-30 03:48 - 000226304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2019-08-14 09:31 - 2019-07-30 03:48 - 000126464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2019-08-14 09:31 - 2019-07-30 03:48 - 000117248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2019-08-14 09:31 - 2019-07-30 03:48 - 000098816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2019-08-14 09:31 - 2019-07-30 03:47 - 000069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2019-08-14 09:31 - 2019-07-30 03:47 - 000055296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys
2019-08-14 09:31 - 2019-07-30 03:47 - 000053760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelppm.sys
2019-08-14 09:31 - 2019-07-30 03:47 - 000053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\viac7.sys
2019-08-14 09:31 - 2019-07-30 03:47 - 000052736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdppm.sys
2019-08-14 09:31 - 2019-07-30 03:47 - 000052224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys
2019-08-14 09:31 - 2019-07-30 03:47 - 000036352 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2019-08-14 09:31 - 2019-07-30 03:47 - 000035328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\npfs.sys
2019-08-14 09:31 - 2019-07-30 03:47 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2019-08-14 09:31 - 2019-07-30 03:47 - 000015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2019-08-14 09:31 - 2019-07-30 03:47 - 000006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 03:47 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 03:47 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2019-08-14 09:31 - 2019-07-30 03:47 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2019-08-14 09:31 - 2019-07-24 04:34 - 002752000 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2019-08-14 09:31 - 2019-07-19 05:34 - 002406912 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2019-08-14 09:31 - 2019-07-13 10:38 - 000242400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2019-08-14 09:31 - 2019-07-13 10:37 - 001312992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2019-08-14 09:31 - 2019-07-13 10:37 - 000311008 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2019-08-14 09:31 - 2019-07-13 10:37 - 000189152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2019-08-14 09:31 - 2019-07-13 10:34 - 001391616 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2019-08-14 09:31 - 2019-07-13 10:34 - 000836608 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2019-08-14 09:31 - 2019-07-13 10:34 - 000335360 _____ (Microsoft Corporation) C:\Windows\system32\P2PGraph.dll
2019-08-14 09:31 - 2019-07-13 10:34 - 000269824 _____ (Microsoft Corporation) C:\Windows\system32\pnrpsvc.dll
2019-08-14 09:31 - 2019-07-13 10:34 - 000217600 _____ (Microsoft Corporation) C:\Windows\system32\P2P.dll
2019-08-14 09:31 - 2019-07-13 10:34 - 000180736 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2019-08-14 09:31 - 2019-07-13 10:34 - 000162816 _____ (Microsoft Corporation) C:\Windows\system32\ssdpsrv.dll
2019-08-14 09:31 - 2019-07-13 10:34 - 000111616 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2019-08-14 09:31 - 2019-07-13 10:34 - 000039936 _____ (Microsoft Corporation) C:\Windows\system32\ssdpapi.dll
2019-08-14 09:31 - 2019-07-13 10:34 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2019-08-14 09:31 - 2019-07-13 10:34 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2019-08-14 09:31 - 2019-07-13 10:33 - 000307200 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2019-08-14 09:31 - 2019-07-13 10:33 - 000256512 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore.dll
2019-08-14 09:31 - 2019-07-13 10:33 - 000194560 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2019-08-14 09:31 - 2019-07-13 10:33 - 000071680 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2019-08-14 09:31 - 2019-07-13 10:33 - 000061440 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc.dll
2019-08-14 09:31 - 2019-07-13 10:33 - 000055808 _____ (Microsoft Corporation) C:\Windows\system32\Groupinghc.dll
2019-08-14 09:31 - 2019-07-13 10:33 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2019-08-14 09:31 - 2019-07-13 10:33 - 000010240 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2019-08-14 09:31 - 2019-07-13 10:22 - 000353280 _____ (Microsoft Corporation) C:\Windows\system32\msrd3x40.dll
2019-08-14 09:31 - 2019-07-13 10:22 - 000341504 _____ (Microsoft Corporation) C:\Windows\system32\msexcl40.dll
2019-08-14 09:31 - 2019-07-13 10:22 - 000313344 _____ (Microsoft Corporation) C:\Windows\system32\msrd2x40.dll
2019-08-14 09:31 - 2019-07-13 10:15 - 006135808 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2019-08-14 09:31 - 2019-07-13 10:13 - 000011264 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcmonitor.dll
2019-08-14 09:31 - 2019-07-13 10:07 - 000034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2019-08-14 09:31 - 2019-07-04 03:56 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-08-24 19:49 - 2017-01-05 18:14 - 000015885 _____ C:\Users\Petr\Desktop\FRST.txt
2019-08-24 19:49 - 2016-12-24 12:15 - 000000000 ____D C:\FRST
2019-08-24 19:48 - 2014-03-15 14:04 - 000000000 ____D C:\Stahování
2019-08-24 19:41 - 2017-01-05 18:15 - 000016641 _____ C:\Users\Petr\Desktop\Addition.txt
2019-08-24 17:51 - 2016-12-22 17:48 - 000000000 ____D C:\Users\Petr\AppData\LocalLow\Mozilla
2019-08-24 17:36 - 2009-07-14 04:37 - 000000000 ____D C:\Windows\inf
2019-08-24 17:35 - 2016-12-22 18:28 - 000000965 _____ C:\Users\Public\Desktop\CCleaner.lnk
2019-08-24 17:33 - 2016-12-22 21:34 - 000000000 ____D C:\Users\Petr\Documents\Soubory aplikace Outlook
2019-08-24 15:54 - 2016-12-22 18:15 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-08-24 15:52 - 2009-07-14 06:34 - 000035088 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-08-24 15:52 - 2009-07-14 06:34 - 000035088 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-08-24 15:43 - 2017-01-08 16:09 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service
2019-08-24 15:40 - 2018-04-05 09:58 - 000000000 ____D C:\Users\Petr\AppData\Local\AVAST Software
2019-08-24 15:38 - 2009-07-14 06:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-08-14 18:21 - 2009-07-14 04:37 - 000000000 ____D C:\Windows\rescache
2019-08-14 10:27 - 2016-12-23 02:14 - 000668866 _____ C:\Windows\system32\perfh005.dat
2019-08-14 10:27 - 2016-12-23 02:14 - 000141526 _____ C:\Windows\system32\perfc005.dat
2019-08-14 10:27 - 2010-11-20 23:01 - 001584554 _____ C:\Windows\system32\PerfStringBackup.INI
2019-08-14 10:18 - 2009-07-14 06:33 - 000408240 _____ C:\Windows\system32\FNTCACHE.DAT
2019-08-14 10:15 - 2009-07-14 04:37 - 000000000 ____D C:\Windows\PolicyDefinitions
2019-08-14 10:07 - 2016-12-25 11:05 - 000000000 ____D C:\Windows\system32\MRT
2019-08-14 10:01 - 2016-12-25 11:04 - 131096328 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2019-08-07 12:41 - 2017-03-19 15:18 - 000002170 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-08-07 12:41 - 2017-03-19 15:18 - 000002129 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-08-05 13:13 - 2016-12-22 18:47 - 000312760 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2019-08-01 21:37 - 2009-07-14 06:53 - 000032554 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2019-07-31 18:27 - 2019-07-21 21:12 - 000139864 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2019-07-31 18:27 - 2016-12-22 18:47 - 000783024 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2019-07-31 16:40 - 2016-12-22 21:26 - 000000000 ____D C:\Windows\AutoKMS

==================== SigCheck ===============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2019-08-24 16:54
==================== End of FRST.txt ============================


Additional scan result of Farbar Recovery Scan Tool (x86) Version: 22-08-2019
Ran by Petr (24-08-2019 19:50:16)
Running from C:\Users\Petr\Desktop
Microsoft Windows 7 Professional Service Pack 1 (X86) (2016-12-22 15:36:45)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-54223709-3085532525-3047887407-500 - Administrator - Disabled)
Guest (S-1-5-21-54223709-3085532525-3047887407-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-54223709-3085532525-3047887407-1002 - Limited - Enabled)
Petr (S-1-5-21-54223709-3085532525-3047887407-1000 - Administrator - Enabled) => C:\Users\Petr

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Disabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Disabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
FW: Avast Antivirus (Disabled) {B693136B-F6EE-DD1C-A0EF-229B8B0B29C4}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 19.012.20040 - Adobe Systems Incorporated)
Avast Internet Security (HKLM\...\Avast Antivirus) (Version: 19.6.2383 - AVAST Software)
Avast Secure Browser (HKLM\...\Avast Secure Browser) (Version: 75.1.1528.100 - Autoři prohlížeče Avast Secure Browser)
Canon MP250 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP250_series) (Version: - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.61 - Piriform)
FreeCommander 2009.02b (HKLM\...\FreeCommander_is1) (Version: 2009.02 - Marek Jasinski)
Google Chrome (HKLM\...\Google Chrome) (Version: 76.0.3809.100 - Google LLC)
Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.11 - Google LLC) Hidden
Google Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.123 - Google Inc.) Hidden
Malwarebytes verze 3.8.3.2965 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.8.3.2965 - Malwarebytes)
Microsoft .NET Framework 4 Client Profile CSY Language Pack (HKLM\...\Microsoft .NET Framework 4 Client Profile CSY Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended CSY Language Pack (HKLM\...\Microsoft .NET Framework 4 Extended CSY Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft Office Professional 2010 (HKLM\...\Office14.SingleImage) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
MozBackup 1.5.1 (HKLM\...\MozBackup) (Version: - Pavel Cvrcek)
Mozilla Firefox 68.0.2 (x86 cs) (HKLM\...\Mozilla Firefox 68.0.2 (x86 cs)) (Version: 68.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 68.0.2.7164 - Mozilla)
Picasa 3 (HKLM\...\Picasa 3) (Version: 3.9.141.255 - Google, Inc.)
Skype verze 8.33 (HKLM\...\Skype_is1) (Version: 8.33 - Skype Technologies S.A.)
SysTools DBX Converter version 4.3 (HKLM\...\{0BDF5B3B-040E-4355-BAF5-DA626D01A1F8}_is1) (Version: 4.3 - SysTools Software)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-07-21] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-07-21] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-07-21] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-07-21] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]

==================== Loaded Modules (Whitelisted) ==============


==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:04 - 2019-01-04 10:29 - 000000841 _____ C:\Windows\system32\drivers\etc\hosts

127.0.0.1 localhost

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-54223709-3085532525-3047887407-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Petr\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{9421E7B2-F7A9-4A35-8B95-D4A9483F1020}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{9A92F8CF-3D62-4D92-855B-8899CC7A094D}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Allow) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{23BD3E6A-355C-4B29-AB06-EA1F0D535073}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Allow) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{EC48A628-51C4-4520-B3AA-1F68D54233F4}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{3CF3DDA8-F3E2-465A-966E-D734796E53FB}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{1CDB625C-8722-42B9-8E56-F5CA10B354B8}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{DB07A551-80AF-4405-9C89-D2AEA9306CF5}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{606E4EE8-36E6-4C59-8D94-0570B482B7BD}] => (Allow) C:\Program Files\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{3FDDED19-1784-49B5-95E3-59B87A9D794A}] => (Allow) C:\Program Files\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{684A06EB-6090-4058-A31B-DB8155C949DC}] => (Allow) C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe (AVAST Software s.r.o. -> AVAST Software)
FirewallRules: [{D5C561EB-CAC1-4678-AE47-DDB1D8F388A8}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

06-08-2019 11:09:11 Naplánovaný kontrolní bod
13-08-2019 18:03:49 Naplánovaný kontrolní bod
14-08-2019 10:00:18 Windows Update
24-08-2019 17:00:55 Naplánovaný kontrolní bod

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (08/24/2019 07:47:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: ntvdm.exe, verze: 6.1.7600.16385, časové razítko: 0x4a5bc158
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x0000011b
ID chybujícího procesu: 0xe00
Čas spuštění chybující aplikace: 0x01d55aa4054412ba
Cesta k chybující aplikaci: C:\Windows\system32\ntvdm.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: 430f8f7e-c697-11e9-802a-6cf049cbae7d

Error: (08/24/2019 07:04:05 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (08/24/2019 06:04:04 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (08/24/2019 05:04:03 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (08/24/2019 04:04:02 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (08/24/2019 03:49:14 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (08/24/2019 03:39:13 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (08/17/2019 07:04:39 AM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.


System errors:
=============
Error: (08/14/2019 10:19:47 AM) (Source: Microsoft-Windows-LanguagePackSetup) (EventID: 1000) (User: NT AUTHORITY)
Description: Nepodařilo se inicializovat klienta CBS. Poslední chyba: 0x8007045b

Error: (08/09/2019 10:10:51 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {F9717507-6651-4EDB-BFF7-AE615179BCCF} se v daném časovém limitu neregistroval u služby DCOM.

Error: (08/04/2019 10:41:22 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: Byla vygenerována následující výstraha o závažné chybě: 10. Stav interní chyby: 10

Error: (08/04/2019 10:41:21 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: Byla vygenerována následující výstraha o závažné chybě: 10. Stav interní chyby: 10

Error: (08/04/2019 10:30:49 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: Byla vygenerována následující výstraha o závažné chybě: 10. Stav interní chyby: 10

Error: (08/04/2019 10:30:48 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: Byla vygenerována následující výstraha o závažné chybě: 10. Stav interní chyby: 10

Error: (08/04/2019 10:30:43 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: Byla vygenerována následující výstraha o závažné chybě: 10. Stav interní chyby: 10

Error: (08/04/2019 10:30:42 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: Byla vygenerována následující výstraha o závažné chybě: 10. Stav interní chyby: 10


==================== Memory info ===========================

BIOS: Award Software International, Inc. FH 04/30/2010
Motherboard: Gigabyte Technology Co., Ltd. G31M-ES2L
Processor: Intel(R) Celeron(R) CPU E3300 @ 2.50GHz
Percentage of memory in use: 94%
Total physical RAM: 2046.49 MB
Available physical RAM: 106.39 MB
Total Virtual: 4092.98 MB
Available Virtual: 1600.89 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:465.66 GB) (Free:388.51 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: (Data) (Fixed) (Total:232.88 GB) (Free:168.37 GB) NTFS


==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 54D22AD4)
Partition 1: (Active) - (Size=465.7 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 232.9 GB) (Disk ID: C46FBD09)
Partition 1: (Not Active) - (Size=232.9 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

Re: Pomalý PC

Napsal: 24 srp 2019 18:53
od Rudy
Teď spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

Re: Pomalý PC

Napsal: 24 srp 2019 19:10
od Petura
# -------------------------------
# Malwarebytes AdwCleaner 7.4.0.0
# -------------------------------
# Build: 07-23-2019
# Database: 2019-08-21.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 08-24-2019
# Duration: 00:00:05
# OS: Windows 7 Professional
# Cleaned: 0
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

No malicious registry entries cleaned.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [1257 octets] - [15/12/2018 12:34:34]
AdwCleaner[S01].txt - [1318 octets] - [15/12/2018 12:40:35]
AdwCleaner[C01].txt - [1504 octets] - [15/12/2018 12:41:01]
AdwCleaner[S02].txt - [1516 octets] - [24/08/2019 17:45:22]
AdwCleaner[S03].txt - [1577 octets] - [24/08/2019 20:06:38]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C03].txt ##########

Re: Pomalý PC

Napsal: 24 srp 2019 19:55
od Rudy
Toto je OK. Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-54223709-3085532525-3047887407-1000\...\MountPoints2: {54cae04e-ddba-11e8-a0ce-6cf049cbae7d} - F:\LGAutoRun.exe
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {735BDB63-3214-4A7F-973C-4800B4974EBC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [153752 2017-03-19] (Google Inc -> Google Inc.)
Task: {B9BAB631-7881-46E9-8F8E-871AFB8BAC3A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [153752 2017-03-19] (Google Inc -> Google Inc.)
C:\Windows\AutoKMS

EmptyTemp:
Emd
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Re: Pomalý PC

Napsal: 24 srp 2019 20:15
od Petura
Fix result of Farbar Recovery Scan Tool (x86) Version: 22-08-2019
Ran by Petr (24-08-2019 21:12:45) Run:1
Running from C:\Users\Petr\Desktop
Loaded Profiles: Petr (Available Profiles: Petr)
Boot Mode: Normal

==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-54223709-3085532525-3047887407-1000\...\MountPoints2: {54cae04e-ddba-11e8-a0ce-6cf049cbae7d} - F:\LGAutoRun.exe
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {735BDB63-3214-4A7F-973C-4800B4974EBC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [153752 2017-03-19] (Google Inc -> Google Inc.)
Task: {B9BAB631-7881-46E9-8F8E-871AFB8BAC3A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [153752 2017-03-19] (Google Inc -> Google Inc.)
C:\Windows\AutoKMS

EmptyTemp:
Emd
*****************

Processes closed successfully.
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => removed successfully.
HKU\S-1-5-21-54223709-3085532525-3047887407-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{54cae04e-ddba-11e8-a0ce-6cf049cbae7d} => removed successfully.
HKLM\Software\Classes\CLSID\{54cae04e-ddba-11e8-a0ce-6cf049cbae7d} => not found
"HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE" => removed successfully.
HKLM\SOFTWARE\Policies\Mozilla => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{735BDB63-3214-4A7F-973C-4800B4974EBC}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{735BDB63-3214-4A7F-973C-4800B4974EBC}" => removed successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{B9BAB631-7881-46E9-8F8E-871AFB8BAC3A}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B9BAB631-7881-46E9-8F8E-871AFB8BAC3A}" => removed successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully.
C:\Windows\AutoKMS => moved successfully
Emd => Error: No automatic fix found for this entry.

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 11292070 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 11240491 B
Edge => 0 B
Chrome => 148772 B
Firefox => 82651013 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 11547597 B
LocalService => 33125 B
NetworkService => 37577 B
Petr => 8738331 B

RecycleBin => 1819854 B
EmptyTemp: => 129.6 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 21:13:07 ====

Re: Pomalý PC

Napsal: 24 srp 2019 20:53
od Rudy
Smazáno. Nastala nějaká změna?

Re: Pomalý PC

Napsal: 24 srp 2019 21:01
od Petura
Počítač je rodičů, tak uvidíme a kdyžtak se pak ozvu, zatím díky.

Re: Pomalý PC

Napsal: 25 srp 2019 10:04
od Rudy
OK, nechám to tu otevřené. Zatím nemáte zač! :)
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz