prosim okontrolu, spomaleny ntb
Napsal: 31 bře 2020 20:44
VIRY.CZ
Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/
prosim okontrolu, spomaleny ntb
Stránka 1 z 1
Re: prosim okontrolu, spomaleny ntb
Napsal: 31 bře 2020 20:53
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/
ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Re: prosim okontrolu, spomaleny ntb
Napsal: 31 bře 2020 21:35
# -------------------------------
# Malwarebytes AdwCleaner 8.0.3.0
# -------------------------------
# Build: 03-03-2020
# Database: 2020-03-23.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 03-31-2020
# Duration: 00:02:12
# OS: Windows 10 Home
# Scanned: 32067
# Detected: 72
***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
ALToolBar C:\Program Files (x86)\ESTsoft
ALToolBar C:\ProgramData\ESTsoft
ALToolBar C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESTsoft
ALToolBar C:\Users\Novakovi\AppData\Roaming\ESTsoft
Adware.pokki C:\Users\Public\Pokki
PUP.Adware.Heuristic C:\ProgramData\AVG_UPDATE_0215AV
PUP.Adware.Heuristic C:\ProgramData\AVG_UPDATE_0316AV
PUP.Adware.Heuristic C:\ProgramData\AVG_UPDATE_0415AV
PUP.Adware.Heuristic C:\ProgramData\AVG_UPDATE_0715AV
PUP.Adware.Heuristic C:\ProgramData\AVG_UPDATE_0814AV
PUP.Adware.Heuristic C:\ProgramData\AVG_UPDATE_0915AV
PUP.Adware.Heuristic C:\ProgramData\AVG_UPDATE_1015AV
PUP.Adware.Heuristic C:\ProgramData\AVG_UPDATE_1114AV
PUP.Adware.Heuristic C:\ProgramData\AVG_UPDATE_1214AV
PUP.Optional.Legacy C:\Users\Novakovi\AppData\Local\SweetLabs App Platform
***** [ Files ] *****
Adware.pokki C:\Users\Novakovi\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Pokki Start Menu.lnk
Adware.pokki C:\Users\Novakovi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pokki Start Menu.lnk
PUP.Optional.Legacy C:\Windows\System32\Tasks_Migrated\SweetLabs App Platform
PUP.Optional.PCAppStore C:\Users\Novakovi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
PUP.Adware.Heuristic C:\Windows\Tasks\0116avtUpdateInfo.job
PUP.Adware.Heuristic C:\Windows\Tasks\0215avUpdateInfo.job
PUP.Adware.Heuristic C:\Windows\Tasks\0316avUpdateInfo.job
PUP.Adware.Heuristic C:\Windows\Tasks\0415avUpdateInfo.job
PUP.Adware.Heuristic C:\Windows\Tasks\0715avUpdateInfo.job
PUP.Adware.Heuristic C:\Windows\Tasks\0814avUpdateInfo.job
PUP.Adware.Heuristic C:\Windows\Tasks\0915avUpdateInfo.job
PUP.Adware.Heuristic C:\Windows\Tasks\1015avUpdateInfo.job
PUP.Adware.Heuristic C:\Windows\Tasks\1114avUpdateInfo.job
PUP.Adware.Heuristic C:\Windows\Tasks\1214avUpdateInfo.job
PUP.Optional.Legacy C:\Windows\System32\Tasks\SWEETLABS APP PLATFORM
***** [ Registry ] *****
Adware.pokki HKCU\Software\Classes\AllFileSystemObjects\shell\pokki
Adware.pokki HKCU\Software\Classes\Directory\shell\pokki
Adware.pokki HKCU\Software\Classes\Drive\shell\pokki
Adware.pokki HKCU\Software\Classes\lnkfile\shell\pokki
Adware.pokki HKCU\Software\Classes\pokki
Adware.pokki HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|Pokki
Adware.pokki HKCU\Software\SweetLabs App Platform
PUP.Optional.Legacy HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SweetLabs_AP
PUP.Optional.Legacy HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SweetLabs_Start_Menu
PUP.Optional.Legacy HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{558ADE15-49D1-473A-8D46-BA0F6F7D164C}
PUP.Optional.Legacy HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SweetLabs App Platform
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries found.
***** [ Chromium URLs ] *****
No malicious Chromium URLs found.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries found.
***** [ Firefox URLs ] *****
No malicious Firefox URLs found.
***** [ Hosts File Entries ] *****
No malicious hosts file entries found.
***** [ Preinstalled Software ] *****
Preinstalled.ACERClear.fiShellExtension Registry HKLM\Software\Classes\CLSID\{ED32C084-BABB-11E1-B491-D4D66088709B}
Preinstalled.ACERClear.fiShellExtension Registry HKLM\Software\Wow6432Node\\Classes\CLSID\{ED32C084-BABB-11E1-B491-D4D66088709B}
Preinstalled.AcerGames File C:\Users\Novakovi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Acer Games.lnk
Preinstalled.AcerIdentityCard Folder C:\Program Files (x86)\ACER\IDENTITY CARD
Preinstalled.AcerIdentityCard Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{3D9CB654-99AD-4301-89C6-0D12A790767C}
Preinstalled.AcerLiveUpdater Folder C:\Program Files (x86)\ACER\LIVE UPDATER
Preinstalled.AcerOfficeAddin Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{1FCC073B-CC01-4443-AD20-E559F66E6E83}
Preinstalled.AcerPortal Folder C:\Program Files (x86)\ACER\ACER PORTAL
Preinstalled.AcerPortal Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EEE0186E-C5A4-4DB4-BE5B-E709E78DCBA4}
Preinstalled.AcerPortal Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AcerCloud
Preinstalled.AcerPortal Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}
Preinstalled.AcerPortal Task C:\Windows\System32\Tasks\ACERCLOUD
Preinstalled.AcerPowerManagement Folder C:\Program Files\ACER\ACER POWER MANAGEMENT
Preinstalled.AcerabDocs Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{CA4FE8B0-298C-4E5D-A486-F33B126D6A0A}
Preinstalled.GatewayLiveUpdater Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3A8BA86F-F0AC-46B7-9EAF-6C6F9018C3CF}
Preinstalled.GatewayLiveUpdater Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3A8BA86F-F0AC-46B7-9EAF-6C6F9018C3CF}
Preinstalled.GatewayLiveUpdater Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6CB4A7EB-4198-4361-B5D3-2BD425FAD6F6}
Preinstalled.GatewayLiveUpdater Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ALU
Preinstalled.GatewayLiveUpdater Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ALUAgent
Preinstalled.GatewayLiveUpdater Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{EE26E302-876A-48D9-9058-3129E5B99999}
Preinstalled.GatewayLiveUpdater Task C:\Windows\System32\Tasks\ALU
Preinstalled.GatewayLiveUpdater Task C:\Windows\System32\Tasks\ALUAGENT
Preinstalled.GatewayPowerManagement Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BC388677-C55F-4409-A2E4-4D0EE2D0982C}
Preinstalled.GatewayPowerManagement Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Power Management
Preinstalled.GatewayPowerManagement Task C:\Windows\System32\Tasks\POWER MANAGEMENT
Preinstalled.LenovoPowerDVD Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}
Preinstalled.LenovoPowerDVD Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{B46BEA36-0B71-4A4E-AE41-87241643FA0A}
Preinstalled.PackardBellPowerManagement Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{91F52DE4-B789-42B0-9311-A349F10E5479}
Preinstalled.WildTangentGamesBundle Folder C:\Program Files (x86)\WILDTANGENT GAMES
Preinstalled.WildTangentGamesBundle Folder C:\Program Files (x86)\WILDTANGENT GAMES\APP
Preinstalled.WildTangentGamesBundle Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\WildTangentGameProvider-acer-genres
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########
# Malwarebytes AdwCleaner 8.0.3.0
# -------------------------------
# Build: 03-03-2020
# Database: 2020-03-23.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 03-31-2020
# Duration: 00:02:12
# OS: Windows 10 Home
# Scanned: 32067
# Detected: 72
***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
ALToolBar C:\Program Files (x86)\ESTsoft
ALToolBar C:\ProgramData\ESTsoft
ALToolBar C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESTsoft
ALToolBar C:\Users\Novakovi\AppData\Roaming\ESTsoft
Adware.pokki C:\Users\Public\Pokki
PUP.Adware.Heuristic C:\ProgramData\AVG_UPDATE_0215AV
PUP.Adware.Heuristic C:\ProgramData\AVG_UPDATE_0316AV
PUP.Adware.Heuristic C:\ProgramData\AVG_UPDATE_0415AV
PUP.Adware.Heuristic C:\ProgramData\AVG_UPDATE_0715AV
PUP.Adware.Heuristic C:\ProgramData\AVG_UPDATE_0814AV
PUP.Adware.Heuristic C:\ProgramData\AVG_UPDATE_0915AV
PUP.Adware.Heuristic C:\ProgramData\AVG_UPDATE_1015AV
PUP.Adware.Heuristic C:\ProgramData\AVG_UPDATE_1114AV
PUP.Adware.Heuristic C:\ProgramData\AVG_UPDATE_1214AV
PUP.Optional.Legacy C:\Users\Novakovi\AppData\Local\SweetLabs App Platform
***** [ Files ] *****
Adware.pokki C:\Users\Novakovi\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Pokki Start Menu.lnk
Adware.pokki C:\Users\Novakovi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pokki Start Menu.lnk
PUP.Optional.Legacy C:\Windows\System32\Tasks_Migrated\SweetLabs App Platform
PUP.Optional.PCAppStore C:\Users\Novakovi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
PUP.Adware.Heuristic C:\Windows\Tasks\0116avtUpdateInfo.job
PUP.Adware.Heuristic C:\Windows\Tasks\0215avUpdateInfo.job
PUP.Adware.Heuristic C:\Windows\Tasks\0316avUpdateInfo.job
PUP.Adware.Heuristic C:\Windows\Tasks\0415avUpdateInfo.job
PUP.Adware.Heuristic C:\Windows\Tasks\0715avUpdateInfo.job
PUP.Adware.Heuristic C:\Windows\Tasks\0814avUpdateInfo.job
PUP.Adware.Heuristic C:\Windows\Tasks\0915avUpdateInfo.job
PUP.Adware.Heuristic C:\Windows\Tasks\1015avUpdateInfo.job
PUP.Adware.Heuristic C:\Windows\Tasks\1114avUpdateInfo.job
PUP.Adware.Heuristic C:\Windows\Tasks\1214avUpdateInfo.job
PUP.Optional.Legacy C:\Windows\System32\Tasks\SWEETLABS APP PLATFORM
***** [ Registry ] *****
Adware.pokki HKCU\Software\Classes\AllFileSystemObjects\shell\pokki
Adware.pokki HKCU\Software\Classes\Directory\shell\pokki
Adware.pokki HKCU\Software\Classes\Drive\shell\pokki
Adware.pokki HKCU\Software\Classes\lnkfile\shell\pokki
Adware.pokki HKCU\Software\Classes\pokki
Adware.pokki HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|Pokki
Adware.pokki HKCU\Software\SweetLabs App Platform
PUP.Optional.Legacy HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SweetLabs_AP
PUP.Optional.Legacy HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SweetLabs_Start_Menu
PUP.Optional.Legacy HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{558ADE15-49D1-473A-8D46-BA0F6F7D164C}
PUP.Optional.Legacy HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SweetLabs App Platform
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries found.
***** [ Chromium URLs ] *****
No malicious Chromium URLs found.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries found.
***** [ Firefox URLs ] *****
No malicious Firefox URLs found.
***** [ Hosts File Entries ] *****
No malicious hosts file entries found.
***** [ Preinstalled Software ] *****
Preinstalled.ACERClear.fiShellExtension Registry HKLM\Software\Classes\CLSID\{ED32C084-BABB-11E1-B491-D4D66088709B}
Preinstalled.ACERClear.fiShellExtension Registry HKLM\Software\Wow6432Node\\Classes\CLSID\{ED32C084-BABB-11E1-B491-D4D66088709B}
Preinstalled.AcerGames File C:\Users\Novakovi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Acer Games.lnk
Preinstalled.AcerIdentityCard Folder C:\Program Files (x86)\ACER\IDENTITY CARD
Preinstalled.AcerIdentityCard Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{3D9CB654-99AD-4301-89C6-0D12A790767C}
Preinstalled.AcerLiveUpdater Folder C:\Program Files (x86)\ACER\LIVE UPDATER
Preinstalled.AcerOfficeAddin Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{1FCC073B-CC01-4443-AD20-E559F66E6E83}
Preinstalled.AcerPortal Folder C:\Program Files (x86)\ACER\ACER PORTAL
Preinstalled.AcerPortal Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EEE0186E-C5A4-4DB4-BE5B-E709E78DCBA4}
Preinstalled.AcerPortal Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AcerCloud
Preinstalled.AcerPortal Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}
Preinstalled.AcerPortal Task C:\Windows\System32\Tasks\ACERCLOUD
Preinstalled.AcerPowerManagement Folder C:\Program Files\ACER\ACER POWER MANAGEMENT
Preinstalled.AcerabDocs Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{CA4FE8B0-298C-4E5D-A486-F33B126D6A0A}
Preinstalled.GatewayLiveUpdater Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3A8BA86F-F0AC-46B7-9EAF-6C6F9018C3CF}
Preinstalled.GatewayLiveUpdater Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3A8BA86F-F0AC-46B7-9EAF-6C6F9018C3CF}
Preinstalled.GatewayLiveUpdater Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6CB4A7EB-4198-4361-B5D3-2BD425FAD6F6}
Preinstalled.GatewayLiveUpdater Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ALU
Preinstalled.GatewayLiveUpdater Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ALUAgent
Preinstalled.GatewayLiveUpdater Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{EE26E302-876A-48D9-9058-3129E5B99999}
Preinstalled.GatewayLiveUpdater Task C:\Windows\System32\Tasks\ALU
Preinstalled.GatewayLiveUpdater Task C:\Windows\System32\Tasks\ALUAGENT
Preinstalled.GatewayPowerManagement Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BC388677-C55F-4409-A2E4-4D0EE2D0982C}
Preinstalled.GatewayPowerManagement Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Power Management
Preinstalled.GatewayPowerManagement Task C:\Windows\System32\Tasks\POWER MANAGEMENT
Preinstalled.LenovoPowerDVD Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}
Preinstalled.LenovoPowerDVD Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{B46BEA36-0B71-4A4E-AE41-87241643FA0A}
Preinstalled.PackardBellPowerManagement Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{91F52DE4-B789-42B0-9311-A349F10E5479}
Preinstalled.WildTangentGamesBundle Folder C:\Program Files (x86)\WILDTANGENT GAMES
Preinstalled.WildTangentGamesBundle Folder C:\Program Files (x86)\WILDTANGENT GAMES\APP
Preinstalled.WildTangentGamesBundle Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\WildTangentGameProvider-acer-genres
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########
Re: prosim okontrolu, spomaleny ntb
Napsal: 01 dub 2020 09:19
Nálezy ADW smažte a dejte nové logy FRST+Addition.
Re: prosim okontrolu, spomaleny ntb
Napsal: 01 dub 2020 10:00
Re: prosim okontrolu, spomaleny ntb
Napsal: 01 dub 2020 13:10
Otevřte poznámkový blok a zkopírujte do něj:
Uložte do C:\Users\Novakovi\Downloads jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CloseProcesses:
HKU\S-1-5-21-2523491809-2234054511-3698647058-1001\...\MountPoints2: {35d1f2df-2a8a-11ea-a2bd-201a0676714c} - "E:\Lenovo_Suite.exe"
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {00A4F6F0-1D97-4C20-88BB-364A7311FCBF} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {0615F7FA-016D-40EF-9216-74721091C21D} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {13784E0B-C66B-4D93-B3C2-EF2C89FB1405} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {21D94579-E4E8-496D-B71C-CCB6E19EAB5D} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {2B3A6714-6195-4503-9B06-CD34CDF831DB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc -> Google Inc.)
Task: {2BAEB71E-1080-4B3C-B4B1-61B6C7ABFFAB} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {2C7CC8C0-948C-440A-B9B6-6B4127BC4201} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> No File <==== ATTENTION
Task: {342185E2-4293-4079-A3AC-4B008049140D} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {34C7E893-8A24-4BB2-BCA9-EFC5B7D29557} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc -> Google Inc.)
Task: {51A1C3B6-3D2E-4A07-A894-C81B3B3C17D7} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {5F4937FA-8D91-44AD-A385-79636E3884CA} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {66E4D823-9533-4FEE-9BCF-7D75F3F0564A} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {76C5FBD6-9A07-4E8A-BA25-84B2460BFC11} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {8D7CF022-EF01-4586-B59B-F5271D579CBA} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {A7A1B454-786D-41FF-942E-5172B42EC4DD} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {A8693990-2E4E-4DA4-A0D0-3684751B257F} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {BEE0A82A-5D66-4264-95BC-CD19C0F5DF4F} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
SearchScopes: HKU\S-1-5-21-2523491809-2234054511-3698647058-1001 -> DefaultScope {B5580050-3947-4100-B87D-7CAB6F71F07F} URL =
SearchScopes: HKU\S-1-5-21-2523491809-2234054511-3698647058-1001 -> {B5580050-3947-4100-B87D-7CAB6F71F07F} URL =
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
C:\Users\Novakovi\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
C:\Users\Novakovi\AppData\Local\{60951BC5-E29A-4F7A-9FF3-38DC6D34F898}
C:\Users\Novakovi\AppData\Local\{FC12D1C8-C57F-439D-94DF-178666487332}
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [ALZip] -> {4EB37360-49E8-11D3-95B5-004033382980} => C:\Program Files (x86)\ESTsoft\ALZip\AZCTM64.dll -> No File
ContextMenuHandlers2: [ALZip] -> {4EB37360-49E8-11D3-95B5-004033382980} => C:\Program Files (x86)\ESTsoft\ALZip\AZCTM64.dll -> No File
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers4: [ALZip] -> {4EB37360-49E8-11D3-95B5-004033382980} => C:\Program Files (x86)\ESTsoft\ALZip\AZCTM64.dll -> No File
ContextMenuHandlers5: [ALZip] -> {4EB37360-49E8-11D3-95B5-004033382980} => C:\Program Files (x86)\ESTsoft\ALZip\AZCTM64.dll -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
EmptyTemp:
End
Re: prosim okontrolu, spomaleny ntb
Napsal: 01 dub 2020 14:53
Fix result of Farbar Recovery Scan Tool (x64) Version: 29-03-2020
Ran by Novakovi (01-04-2020 15:28:23) Run:1
Running from C:\Users\Novakovi\Downloads
Loaded Profiles: Novakovi (Available Profiles: Novakovi)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKU\S-1-5-21-2523491809-2234054511-3698647058-1001\...\MountPoints2: {35d1f2df-2a8a-11ea-a2bd-201a0676714c} - "E:\Lenovo_Suite.exe"
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {00A4F6F0-1D97-4C20-88BB-364A7311FCBF} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {0615F7FA-016D-40EF-9216-74721091C21D} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {13784E0B-C66B-4D93-B3C2-EF2C89FB1405} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {21D94579-E4E8-496D-B71C-CCB6E19EAB5D} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {2B3A6714-6195-4503-9B06-CD34CDF831DB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc -> Google Inc.)
Task: {2BAEB71E-1080-4B3C-B4B1-61B6C7ABFFAB} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {2C7CC8C0-948C-440A-B9B6-6B4127BC4201} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> No File <==== ATTENTION
Task: {342185E2-4293-4079-A3AC-4B008049140D} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {34C7E893-8A24-4BB2-BCA9-EFC5B7D29557} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc -> Google Inc.)
Task: {51A1C3B6-3D2E-4A07-A894-C81B3B3C17D7} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {5F4937FA-8D91-44AD-A385-79636E3884CA} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {66E4D823-9533-4FEE-9BCF-7D75F3F0564A} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {76C5FBD6-9A07-4E8A-BA25-84B2460BFC11} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {8D7CF022-EF01-4586-B59B-F5271D579CBA} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {A7A1B454-786D-41FF-942E-5172B42EC4DD} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {A8693990-2E4E-4DA4-A0D0-3684751B257F} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {BEE0A82A-5D66-4264-95BC-CD19C0F5DF4F} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
SearchScopes: HKU\S-1-5-21-2523491809-2234054511-3698647058-1001 -> DefaultScope {B5580050-3947-4100-B87D-7CAB6F71F07F} URL =
SearchScopes: HKU\S-1-5-21-2523491809-2234054511-3698647058-1001 -> {B5580050-3947-4100-B87D-7CAB6F71F07F} URL =
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
C:\Users\Novakovi\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
C:\Users\Novakovi\AppData\Local\{60951BC5-E29A-4F7A-9FF3-38DC6D34F898}
C:\Users\Novakovi\AppData\Local\{FC12D1C8-C57F-439D-94DF-178666487332}
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [ALZip] -> {4EB37360-49E8-11D3-95B5-004033382980} => C:\Program Files (x86)\ESTsoft\ALZip\AZCTM64.dll -> No File
ContextMenuHandlers2: [ALZip] -> {4EB37360-49E8-11D3-95B5-004033382980} => C:\Program Files (x86)\ESTsoft\ALZip\AZCTM64.dll -> No File
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers4: [ALZip] -> {4EB37360-49E8-11D3-95B5-004033382980} => C:\Program Files (x86)\ESTsoft\ALZip\AZCTM64.dll -> No File
ContextMenuHandlers5: [ALZip] -> {4EB37360-49E8-11D3-95B5-004033382980} => C:\Program Files (x86)\ESTsoft\ALZip\AZCTM64.dll -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
EmptyTemp:
End
*****************
Processes closed successfully.
HKU\S-1-5-21-2523491809-2234054511-3698647058-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{35d1f2df-2a8a-11ea-a2bd-201a0676714c} => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{00A4F6F0-1D97-4C20-88BB-364A7311FCBF}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{00A4F6F0-1D97-4C20-88BB-364A7311FCBF}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{0615F7FA-016D-40EF-9216-74721091C21D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0615F7FA-016D-40EF-9216-74721091C21D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{13784E0B-C66B-4D93-B3C2-EF2C89FB1405}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{13784E0B-C66B-4D93-B3C2-EF2C89FB1405}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{21D94579-E4E8-496D-B71C-CCB6E19EAB5D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{21D94579-E4E8-496D-B71C-CCB6E19EAB5D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{2B3A6714-6195-4503-9B06-CD34CDF831DB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2B3A6714-6195-4503-9B06-CD34CDF831DB}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2BAEB71E-1080-4B3C-B4B1-61B6C7ABFFAB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2BAEB71E-1080-4B3C-B4B1-61B6C7ABFFAB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2C7CC8C0-948C-440A-B9B6-6B4127BC4201}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2C7CC8C0-948C-440A-B9B6-6B4127BC4201}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OfficeSoftwareProtectionPlatform\SvcRestartTask" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{342185E2-4293-4079-A3AC-4B008049140D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{342185E2-4293-4079-A3AC-4B008049140D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{34C7E893-8A24-4BB2-BCA9-EFC5B7D29557}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{34C7E893-8A24-4BB2-BCA9-EFC5B7D29557}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{51A1C3B6-3D2E-4A07-A894-C81B3B3C17D7}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{51A1C3B6-3D2E-4A07-A894-C81B3B3C17D7}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UNP\RunCampaignManager" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5F4937FA-8D91-44AD-A385-79636E3884CA}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5F4937FA-8D91-44AD-A385-79636E3884CA}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{66E4D823-9533-4FEE-9BCF-7D75F3F0564A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{66E4D823-9533-4FEE-9BCF-7D75F3F0564A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{76C5FBD6-9A07-4E8A-BA25-84B2460BFC11}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{76C5FBD6-9A07-4E8A-BA25-84B2460BFC11}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8D7CF022-EF01-4586-B59B-F5271D579CBA}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8D7CF022-EF01-4586-B59B-F5271D579CBA}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A7A1B454-786D-41FF-942E-5172B42EC4DD}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A7A1B454-786D-41FF-942E-5172B42EC4DD}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A8693990-2E4E-4DA4-A0D0-3684751B257F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A8693990-2E4E-4DA4-A0D0-3684751B257F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{BEE0A82A-5D66-4264-95BC-CD19C0F5DF4F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BEE0A82A-5D66-4264-95BC-CD19C0F5DF4F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d" => removed successfully
"HKU\S-1-5-21-2523491809-2234054511-3698647058-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
HKU\S-1-5-21-2523491809-2234054511-3698647058-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B5580050-3947-4100-B87D-7CAB6F71F07F} => removed successfully
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat => moved successfully
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore" => not found
C:\Users\Novakovi\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini => moved successfully
C:\Users\Novakovi\AppData\Local\{60951BC5-E29A-4F7A-9FF3-38DC6D34F898} => moved successfully
C:\Users\Novakovi\AppData\Local\{FC12D1C8-C57F-439D-94DF-178666487332} => moved successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avg => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ALZip => removed successfully
HKLM\Software\Classes\CLSID\{4EB37360-49E8-11D3-95B5-004033382980} => removed successfully
HKLM\Software\Classes\Drive\ShellEx\ContextMenuHandlers\ALZip => removed successfully
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\00avg => removed successfully
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\ALZip => removed successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\ALZip => removed successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
=========== EmptyTemp: ==========
BITS transfer queue => 9199616 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 18128359 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 298745 B
Edge => 173969 B
Chrome => 228104371 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 8300 B
NetworkService => 8008500 B
Novakovi => 18855926 B
RecycleBin => 31348 B
EmptyTemp: => 269.7 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 15:30:27 ====
Ran by Novakovi (01-04-2020 15:28:23) Run:1
Running from C:\Users\Novakovi\Downloads
Loaded Profiles: Novakovi (Available Profiles: Novakovi)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKU\S-1-5-21-2523491809-2234054511-3698647058-1001\...\MountPoints2: {35d1f2df-2a8a-11ea-a2bd-201a0676714c} - "E:\Lenovo_Suite.exe"
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {00A4F6F0-1D97-4C20-88BB-364A7311FCBF} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {0615F7FA-016D-40EF-9216-74721091C21D} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {13784E0B-C66B-4D93-B3C2-EF2C89FB1405} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {21D94579-E4E8-496D-B71C-CCB6E19EAB5D} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {2B3A6714-6195-4503-9B06-CD34CDF831DB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc -> Google Inc.)
Task: {2BAEB71E-1080-4B3C-B4B1-61B6C7ABFFAB} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {2C7CC8C0-948C-440A-B9B6-6B4127BC4201} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> No File <==== ATTENTION
Task: {342185E2-4293-4079-A3AC-4B008049140D} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {34C7E893-8A24-4BB2-BCA9-EFC5B7D29557} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc -> Google Inc.)
Task: {51A1C3B6-3D2E-4A07-A894-C81B3B3C17D7} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {5F4937FA-8D91-44AD-A385-79636E3884CA} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {66E4D823-9533-4FEE-9BCF-7D75F3F0564A} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {76C5FBD6-9A07-4E8A-BA25-84B2460BFC11} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {8D7CF022-EF01-4586-B59B-F5271D579CBA} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {A7A1B454-786D-41FF-942E-5172B42EC4DD} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {A8693990-2E4E-4DA4-A0D0-3684751B257F} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {BEE0A82A-5D66-4264-95BC-CD19C0F5DF4F} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
SearchScopes: HKU\S-1-5-21-2523491809-2234054511-3698647058-1001 -> DefaultScope {B5580050-3947-4100-B87D-7CAB6F71F07F} URL =
SearchScopes: HKU\S-1-5-21-2523491809-2234054511-3698647058-1001 -> {B5580050-3947-4100-B87D-7CAB6F71F07F} URL =
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
C:\Users\Novakovi\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
C:\Users\Novakovi\AppData\Local\{60951BC5-E29A-4F7A-9FF3-38DC6D34F898}
C:\Users\Novakovi\AppData\Local\{FC12D1C8-C57F-439D-94DF-178666487332}
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [ALZip] -> {4EB37360-49E8-11D3-95B5-004033382980} => C:\Program Files (x86)\ESTsoft\ALZip\AZCTM64.dll -> No File
ContextMenuHandlers2: [ALZip] -> {4EB37360-49E8-11D3-95B5-004033382980} => C:\Program Files (x86)\ESTsoft\ALZip\AZCTM64.dll -> No File
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers4: [ALZip] -> {4EB37360-49E8-11D3-95B5-004033382980} => C:\Program Files (x86)\ESTsoft\ALZip\AZCTM64.dll -> No File
ContextMenuHandlers5: [ALZip] -> {4EB37360-49E8-11D3-95B5-004033382980} => C:\Program Files (x86)\ESTsoft\ALZip\AZCTM64.dll -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
EmptyTemp:
End
*****************
Processes closed successfully.
HKU\S-1-5-21-2523491809-2234054511-3698647058-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{35d1f2df-2a8a-11ea-a2bd-201a0676714c} => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{00A4F6F0-1D97-4C20-88BB-364A7311FCBF}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{00A4F6F0-1D97-4C20-88BB-364A7311FCBF}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{0615F7FA-016D-40EF-9216-74721091C21D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0615F7FA-016D-40EF-9216-74721091C21D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{13784E0B-C66B-4D93-B3C2-EF2C89FB1405}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{13784E0B-C66B-4D93-B3C2-EF2C89FB1405}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{21D94579-E4E8-496D-B71C-CCB6E19EAB5D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{21D94579-E4E8-496D-B71C-CCB6E19EAB5D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{2B3A6714-6195-4503-9B06-CD34CDF831DB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2B3A6714-6195-4503-9B06-CD34CDF831DB}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2BAEB71E-1080-4B3C-B4B1-61B6C7ABFFAB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2BAEB71E-1080-4B3C-B4B1-61B6C7ABFFAB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2C7CC8C0-948C-440A-B9B6-6B4127BC4201}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2C7CC8C0-948C-440A-B9B6-6B4127BC4201}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OfficeSoftwareProtectionPlatform\SvcRestartTask" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{342185E2-4293-4079-A3AC-4B008049140D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{342185E2-4293-4079-A3AC-4B008049140D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{34C7E893-8A24-4BB2-BCA9-EFC5B7D29557}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{34C7E893-8A24-4BB2-BCA9-EFC5B7D29557}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{51A1C3B6-3D2E-4A07-A894-C81B3B3C17D7}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{51A1C3B6-3D2E-4A07-A894-C81B3B3C17D7}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UNP\RunCampaignManager" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5F4937FA-8D91-44AD-A385-79636E3884CA}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5F4937FA-8D91-44AD-A385-79636E3884CA}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{66E4D823-9533-4FEE-9BCF-7D75F3F0564A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{66E4D823-9533-4FEE-9BCF-7D75F3F0564A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{76C5FBD6-9A07-4E8A-BA25-84B2460BFC11}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{76C5FBD6-9A07-4E8A-BA25-84B2460BFC11}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8D7CF022-EF01-4586-B59B-F5271D579CBA}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8D7CF022-EF01-4586-B59B-F5271D579CBA}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A7A1B454-786D-41FF-942E-5172B42EC4DD}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A7A1B454-786D-41FF-942E-5172B42EC4DD}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A8693990-2E4E-4DA4-A0D0-3684751B257F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A8693990-2E4E-4DA4-A0D0-3684751B257F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{BEE0A82A-5D66-4264-95BC-CD19C0F5DF4F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BEE0A82A-5D66-4264-95BC-CD19C0F5DF4F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d" => removed successfully
"HKU\S-1-5-21-2523491809-2234054511-3698647058-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
HKU\S-1-5-21-2523491809-2234054511-3698647058-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B5580050-3947-4100-B87D-7CAB6F71F07F} => removed successfully
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat => moved successfully
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore" => not found
C:\Users\Novakovi\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini => moved successfully
C:\Users\Novakovi\AppData\Local\{60951BC5-E29A-4F7A-9FF3-38DC6D34F898} => moved successfully
C:\Users\Novakovi\AppData\Local\{FC12D1C8-C57F-439D-94DF-178666487332} => moved successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avg => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ALZip => removed successfully
HKLM\Software\Classes\CLSID\{4EB37360-49E8-11D3-95B5-004033382980} => removed successfully
HKLM\Software\Classes\Drive\ShellEx\ContextMenuHandlers\ALZip => removed successfully
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\00avg => removed successfully
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\ALZip => removed successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\ALZip => removed successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
=========== EmptyTemp: ==========
BITS transfer queue => 9199616 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 18128359 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 298745 B
Edge => 173969 B
Chrome => 228104371 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 8300 B
NetworkService => 8008500 B
Novakovi => 18855926 B
RecycleBin => 31348 B
EmptyTemp: => 269.7 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 15:30:27 ====
Re: prosim okontrolu, spomaleny ntb
Napsal: 01 dub 2020 14:57
Smazáno. Nastala nějaká změna?
Re: prosim okontrolu, spomaleny ntb
Napsal: 01 dub 2020 15:10
rozhodne, jde to mnohem plynuleji.
Velke diki, ste frajeri.
Tady ste mne vzdy pomohli. Mejte se abudte zdravi.
Velke diki, ste frajeri.
Tady ste mne vzdy pomohli. Mejte se abudte zdravi.
Re: prosim okontrolu, spomaleny ntb
Napsal: 01 dub 2020 15:53
Nemáte zač! 