Dobrý den,
v poslední době je PC zpomaleno, projel jsem antivirem (Avast - našel nějaké viry), ale stále mi čas o času vyskočí pop-up okno, které zablokuje windows defender. Rovněž se mi odstranil ESET, který jsem původně používal, nejde znovu nainstalovat a musel jsem tedy provést instal Avastu.
Log:
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18384352 2017-10-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1493984 2017-10-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1493984 2017-10-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322472 2015-07-27] (Intel Corporation - Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [824240 2019-09-23] (Acronis International GmbH -> Acronis International GmbH)
HKLM\...\Run: [LenovoUtility] => C:\ProgramData\Lenovo\ImController\Plugins\IdeaOSDPackage\x64\utility.exe [911272 2017-07-27] (LENOVO -> Lenovo(beijing) Limited)
HKLM\...\Run: [egui] => "C:\Program Files\ESET\ESET NOD32 Antivirus\ecmdS.exe" /run /hide /proxy
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3402832 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [DAX2_APP] => C:\Program Files\Dolby\Dolby DAX2\DAX2_APP\DolbyDAX2TrayIcon.exe [849928 2016-09-19] (Dolby Laboratories, Inc. -> )
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3942864 2016-10-13] (Logitech -> Logitech, Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [117344 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [5035416 2019-09-23] (Acronis International GmbH -> )
HKLM-x32\...\Run: [PDFPrint] => D:\Program Files (x86)\PDF24\pdf24.exe [483976 2020-08-13] (Geek Software GmbH -> Geek Software GmbH)
HKLM-x32\...\Run: [Opera Browser Assistant] => C:\Program Files (x86)\Opera\assistant\browser_assistant.exe [3154456 2020-11-25] (Opera Software AS -> Opera Software)
HKLM\...\Policies\Explorer: [HideSCAHealth] 1
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-79153872-2729706706-3879174829-1001\...\Run: [] => [X]
HKU\S-1-5-21-79153872-2729706706-3879174829-1001\...\Run: [OPENVPN-GUI] => C:\Program Files\OpenVPN\bin\openvpn-gui.exe [638592 2017-07-14] (OpenVPN Technologies, Inc. -> )
HKU\S-1-5-21-79153872-2729706706-3879174829-1001\...\Run: [DAEMON Tools Lite Automount] => D:\Program Files\DAEMON Tools Lite\DTAgent.exe [4836032 2017-08-17] (Disc Soft Ltd -> Disc Soft Ltd)
HKU\S-1-5-21-79153872-2729706706-3879174829-1001\...\Run: [uTorrent] => C:\Users\matej\AppData\Roaming\uTorrent\uTorrent.exe [2113240 2020-11-22] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-79153872-2729706706-3879174829-1001\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [6113328 2019-08-21] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-79153872-2729706706-3879174829-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [50010064 2020-11-03] (Google LLC -> )
HKU\S-1-5-21-79153872-2729706706-3879174829-1001\...\RunOnce: [FlashPlayerUpdate] => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_453_pepper.exe [1498680 2020-11-11] (Adobe Inc. -> Adobe)
HKU\S-1-5-21-79153872-2729706706-3879174829-1001\...\MountPoints2: {86a5f194-ec9b-11e7-af4f-54ee759de4a1} - "E:\Setup.exe"
HKLM\...\Windows x64\Print Processors\hpcpp103: C:\Windows\System32\spool\prtprocs\x64\hpcpp103.dll [323584 2010-10-13] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\Windows\system32\AdobePDF.dll [65096 2019-08-21] (Adobe Systems, Incorporated -> Adobe Systems Inc)
HKLM\...\Print\Monitors\SHARP SS0E PCL6 Language Monitor: C:\Windows\system32\SS0ELMON.DLL [82432 2008-10-29] (Microsoft Windows Hardware Compatibility Publisher -> SHARP CORPORATION)
HKLM\...\Print\Monitors\Software602 XPS port monitor: C:\Windows\system32\602localmon.dll [54864 2018-05-31] (Software602 a.s. -> Windows (R) Win 7 DDK provider)
HKLM\...\Print\Monitors\sxr3x Langmon: C:\Windows\system32\sxr3xlm.dll [34304 2011-08-05] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\us008 Langmon: C:\Windows\system32\us008lm.dll [31256 2016-02-15] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\ux003 Langmon: C:\Windows\system32\ux003lm.dll [22528 2015-03-12] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\86.0.4240.198\Installer\chrmstp.exe [2020-11-13] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\86.1.6938.199\Installer\chrmstp.exe [2020-12-02] (Avast Software s.r.o. -> AVAST Software)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0115A7F3-84FD-46C2-AA51-F5622B5111BC} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
Task: {02444058-B2A1-4F85-80CB-F52505BCFDB1} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2118392 2020-11-12] (Avast Software s.r.o. -> AVAST Software)
Task: {0454F649-6F6E-4F13-BC8D-E7D90D829E10} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe
Task: {0538A58E-5892-46A6-818E-ECDDC336E659} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [10157392 2016-08-24] (LENOVO -> Lenovo)
Task: {072174BC-B3CA-4C26-A0E7-63699E9A34FB} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [816960 2017-10-11] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {076DC02D-87D5-4A47-BE19-C71D8713C2D6} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [876912 2019-04-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {09D14DEE-39D3-472F-B1FC-692D8572F04C} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-11-11] (Adobe Inc. -> Adobe)
Task: {0B09D1EC-C701-4367-804A-1A67DE82F998} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1149336 2020-12-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {0B4FBEDC-1389-4312-9CBE-E2B43D02982D} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [781680 2019-04-02] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {1474895F-67BF-4026-9915-4148FAB2890D} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-79153872-2729706706-3879174829-1001 => C:\Users\matej\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe [87848 2020-10-29] (Lenovo (Beijing) Limited -> Lenovo Group Limited)
Task: {15FC9C1A-1430-4386-ABA6-BBB56A8D46D3} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4010416 2020-12-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {1A698F8F-86D5-4AAF-9813-E7E9313F1306} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4010416 2020-12-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {251191F1-BA81-4348-A73A-202ECAB4ADF8} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => %systemroot%\system32\sc.exe start LenovoVantageService
Task: {292369E4-9636-4CE7-9D91-6C6A4182CF54} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => "%windir%\system32\sc.exe" START ImControllerService
Task: {2C973E05-60B4-4D1E-8B8B-D354624C85B1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-02-04] (Google Inc -> Google Inc.)
Task: {2CC20575-04D1-4ED1-946F-AC11D09ADEFC} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [590704 2019-04-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {30F8D24B-251F-403F-A9D6-A27915C55578} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-02-04] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {32F1696C-D960-4DC6-866C-27BCC62356CF} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [648048 2019-04-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {34B68759-0AA0-4FDB-86D3-744E663EDEDD} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23054216 2020-12-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {3B9CCC5B-AD24-4D28-B122-EBAE90038CFC} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2118392 2020-11-12] (Avast Software s.r.o. -> AVAST Software)
Task: {3D18372B-7DE9-436B-AF83-E607728AD3CE} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [849264 2019-04-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {40054AB4-0DDE-4C22-84CC-944E57CD00E6} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [62280 2020-09-24] (Lenovo -> Lenovo Group Ltd.)
Task: {414DA997-C098-4C3D-90E7-10FC00B24C8F} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [849264 2019-04-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {48BF9526-3E0B-4E83-804D-8DD89CA51BF8} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3402832 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {51E6EE2D-7246-4884-83E5-3B3CAEA0A227} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3728752 2019-04-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {527E05B5-5BD2-44BC-AC8C-D0002E56906D} - System32\Tasks\Microsoft\Windows\Application Experience\StartupCheckLibrary => rundll32.exe StartupCheckLibrary.dll,DllMainRunLibrary <==== ATTENTION
Task: {573F66B2-83A2-402D-B976-083468927B85} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe [1321296 2016-08-24] (LENOVO -> Lenovo)
Task: {57ABD3FC-6A70-4E2D-B997-81D005175735} - System32\Tasks\{40262EE6-33FA-4F65-A6A1-1E83A2F42CA6} => C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\Uplay.exe" -c uplay://uninstall/895
Task: {6108255C-3DC6-453D-923F-27DB511B3299} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\6b26b29d-a59d-4fff-be6f-93b25d8850d6 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81744 2020-09-24] (Lenovo -> Lenovo Group Ltd.)
Task: {645C308E-C9DC-4571-BC96-E3BF3305B6AB} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [116584 2020-12-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {66FDA840-9DD1-4EE7-ADCD-AF8E110450C0} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1349200 2020-11-03] (Adobe Inc. -> Adobe Inc.)
Task: {68D44D6E-36A4-4FDB-97F3-5AD9E179B54A} - System32\Tasks\Intel\Intel Telemetry 2 => C:\Program Files\Intel\Telemetry 2.0\lrio.exe [1741576 2016-03-17] (Intel(R) Software -> Intel Corporation)
Task: {6BB995B2-07EE-4636-935C-80C5E326EA06} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_453_pepper.exe [1498680 2020-11-11] (Adobe Inc. -> Adobe)
Task: {723E7302-2FBC-456D-B6F5-1004EE090E3E} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [876912 2019-04-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {736DE262-07A8-472D-B8BD-357AD168C229} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => "C:\WINDOWS\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\task.vbs"
Task: {81F79195-A05C-4B50-A495-617737515E4F} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [781680 2019-04-02] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {8415A8AC-9C9C-488E-96B3-4551FA3FED53} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.UpdateStatusService.exe [264016 2016-08-24] (LENOVO -> )
Task: {8B99B0CA-D0FE-4552-8D4D-99BE6158CE9E} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {8C1A309B-0440-4C80-9C39-AE8A97343E24} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {90872940-7373-4806-9812-E305E935FC18} - System32\Tasks\Nvbackend_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
Task: {909301A7-1698-4068-ACEE-2298392FCDB4} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [14554696 2018-11-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {9C474C43-438C-45EA-BA11-E8D9D7303499} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\7cdf0a61-140b-4c6b-846b-27e0e6038982 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81744 2020-09-24] (Lenovo -> Lenovo Group Ltd.)
Task: {9DDB179D-DB47-4110-A304-8CCDC0CF9B77} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => C:\Windows\system32\rundll32.exe C:\Windows\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
Task: {A6A3FBAE-4C28-4F9F-BC88-C4C406AB739F} - System32\Tasks\App Explorer => C:\Users\matej\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe <==== ATTENTION
Task: {A8C4487B-1697-44BF-9E53-33907100B7A8} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
Task: {AAC00DAB-E10E-4FAA-860C-C3A40DA09B1C} - System32\Tasks\Lenovo\LSC\LSCHardwareScanPostpone => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [10157392 2016-08-24] (LENOVO -> Lenovo)
Task: {ADF52FA0-1ACD-4542-B5B2-4911C856D2A8} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [876912 2019-04-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B523922E-9D0D-4EC0-9FDB-A4FD24CB2EEB} - System32\Tasks\Nvbackend => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
Task: {BECE6F47-8835-4035-87D3-4E1D55B3CD9C} - System32\Tasks\Lenovo\Vantage\Schedule\VantageTelemetryAddinTask => C:\Program Files (x86)\Lenovo\VantageService\3.4.16.0\ScheduleEventAction.exe [24408 2020-11-05] (Lenovo -> Lenovo Group Ltd.)
Task: {BF9FEFA1-A72A-49EF-8AF8-98110C197649} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1741416 2020-12-02] (Avast Software s.r.o. -> Avast Software)
Task: {BFDCBA1E-03B1-45A4-8363-BC0134CA4328} - System32\Tasks\Sken => D:\Users\matej\Downloads\ScanAssistant_1.05.07.exe
Task: {C0CFAFBC-C848-4D8C-B83D-E4AD7CAD01AF} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\fd223c33-2d22-4300-93dc-d3cd98a26034 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81744 2020-09-24] (Lenovo -> Lenovo Group Ltd.)
Task: {D502E810-99D0-46E1-BAF2-36F2302EB5B4} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe [144312 2020-09-15] (Lenovo -> Lenovo Group Ltd.)
Task: {D8C501F9-E63A-4777-B72A-7C8BD71D6F3E} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23054216 2020-12-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {DADDE2A8-D0DB-4169-8B0E-456885A84428} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe
Task: {DC6EF314-7AAF-491F-B313-B761A6BED7DF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-02-04] (Google Inc -> Google Inc.)
Task: {DDC69D47-27C9-44EE-BAF5-C10488598447} - System32\Tasks\Opera scheduled assistant Autoupdate 1582740167 => C:\Program Files (x86)\Opera\launcher.exe [1721368 2020-11-25] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Program Files (x86)\Opera\assistant" $(Arg0)
Task: {E3C07D20-2F82-4121-B349-CE68ED466BE7} - System32\Tasks\PPI Update => C:\WINDOWS\explorer.exe "http://windowsdefender.site/download/do ... hp?mn=9996" <==== ATTENTION
Task: {EB4BD5DA-43C9-472A-AC16-ABEA87B1935A} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4617832 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
Task: {EDCC8B55-B8DB-4A95-AC75-ACF6B830E33A} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [116584 2020-12-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {F5B3EF9B-F167-4E4A-B921-497D8ABE4AFC} - System32\Tasks\Opera scheduled Autoupdate 1479922982 => C:\Program Files (x86)\Opera\launcher.exe [1721368 2020-11-25] (Opera Software AS -> Opera Software)
Task: {FC8FC676-1C52-4440-830F-6798DFA7C0D6} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\5290a031-d06a-41cd-bab7-7464da7b9ba2 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81744 2020-09-24] (Lenovo -> Lenovo Group Ltd.)
Task: {FF33444C-5851-4EF5-8236-6240277E6F0B} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [876912 2019-04-02] (NVIDIA Corporation -> NVIDIA Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 213.46.172.38 213.46.172.39
Tcpip\..\Interfaces\{1CD3DEDE-BAC9-440F-BAC1-C11D2722D93B}: [DhcpNameServer] 192.168.90.236
Tcpip\..\Interfaces\{663d150c-a514-40c5-bcd4-6a5309b15a02}: [DhcpNameServer] 213.46.172.38 213.46.172.39
Tcpip\..\Interfaces\{8F339DD8-9CCD-45A9-916D-99DC28D54A7A}: [DhcpNameServer] 192.168.90.236
Tcpip\..\Interfaces\{e2f0caf1-4a1e-483f-8c7e-f31244a52cef}: [DhcpNameServer] 172.168.137.2
Edge:
======
Edge DefaultProfile: Default
Edge Profile: C:\Users\matej\AppData\Local\Microsoft\Edge\User Data\Default [2020-12-04]
FireFox:
========
FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2019-08-21]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\Office16\NPSPWRAP.DLL [No File]
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-01-23] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2020-09-12] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-09-12] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @software602.cz/602XML Filler -> D:\Program Files (x86)\Software602\602XML\Filler\npfiller.dll [2018-01-08] (Software602 a.s. -> Software602 a.s.)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-12-02] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-12-02] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> D:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> D:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> D:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> D:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> D:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> D:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> D:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2019-08-21] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-01-23] (Adobe Systems Incorporated -> Adobe Systems)
Chrome:
=======
CHR Profile: C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default [2020-12-01]
CHR HomePage: Default -> hxxp://www.google.com
CHR StartupUrls: Default -> "hxxp://www.google.com","hxxp://www.msn.com/?pc=AV01","hxxps://www.google.com/?trackid=sp-006"
CHR Session Restore: Default -> is enabled.
CHR Extension: (Prezentace) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-02-04]
CHR Extension: (DocHub - Edit and Sign PDF Documents) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\adgncicbhbjfpijkdmbijninnhnmiblj [2018-02-04]
CHR Extension: (Dokumenty) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-02-04]
CHR Extension: (Disk Google) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-24]
CHR Extension: (Seznam doplněk - Email) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2020-04-27]
CHR Extension: (Seznam doplněk - Esko-) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2019-12-24]
CHR Extension: (YouTube) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-02-04]
CHR Extension: (Adobe Acrobat) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2020-10-17]
CHR Extension: (Tabulky) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-02-04]
CHR Extension: (Video Downloader PLUS) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhplmmllnpjjlncfjpbbpjadoeijkogc [2020-08-23]
CHR Extension: (Dokumenty Google offline) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-26]
CHR Extension: (Hola Free VPN Proxy Unblocker - Best VPN) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2020-12-01]
CHR Extension: (Google Kalendář) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmbgaklkmjakoegficnlkhebmhkjfich [2020-06-15]
CHR Extension: (Google Keep – poznámky a seznamy) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmjkmjkepdijhoojdojkdfohbdgmmhki [2020-11-26]
CHR Extension: (Cisco Webex Extension) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlhmfgmfgeifomenelglieieghnjghma [2020-07-26]
CHR Extension: (Grammarly for Chrome) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2020-11-29]
CHR Extension: (DotVPN — a Better way to VPN) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpiecbcckbofpmkkkdibbllpinceiihk [2020-04-27]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-01-25]
CHR Extension: (Gmail) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-24]
CHR Extension: (Chrome Media Router) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-10-23]
CHR Extension: (RSS Feed Reader) - C:\Users\matej\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp [2020-10-23]
CHR HKU\S-1-5-21-79153872-2729706706-3879174829-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
Opera:
=======
OPR Notifications: hxxps://calendar.google.com; hxxps://cs.aviarydecor.com; hxxps://cs.soringpcrepair.com; hxxps://www.agatinsvet.cz; hxxps://www.cestujlevne.com; hxxps://www.instagram.com; hxxps://www.mesec.cz; hxxps://www.similarweb.com; hxxps://www.slevomat.cz
OPR Extension: (Tipli do prohlížeče) - C:\Users\matej\AppData\Roaming\Opera Software\Opera Stable\Extensions\dbnfnbehhjknomdbfhcobpgpphnlnikp [2020-11-26]
OPR Extension: (SurfEasy VPN - Security, Privacy, Unblock) - C:\Users\matej\AppData\Roaming\Opera Software\Opera Stable\Extensions\ebpielhlnnpkiddeeacoephkilopgblc [2018-10-23]
OPR Extension: (Rich Hints Agent) - C:\Users\matej\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2020-10-23]
OPR Extension: (Install Chrome Extensions) - C:\Users\matej\AppData\Roaming\Opera Software\Opera Stable\Extensions\kipjbhgniklcnglfaldilecjomjaddfi [2020-02-23]
OPR Extension: (Smart RSS) - C:\Users\matej\AppData\Roaming\Opera Software\Opera Stable\Extensions\nncgmpcdlilgbepbfpeidpjlcdfhmcfp [2018-02-03]
OPR Extension: (Adblock Plus - free ad blocker) - C:\Users\matej\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2020-11-18]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 602XML Updater; C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [85344 2011-10-10] (Software602 a.s. -> Software602 a.s.)
S4 AcronisActiveProtectionService; C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe [10316304 2019-09-23] (Acronis International GmbH -> )
R2 AcrSch2Svc; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [1254784 2019-09-23] (Acronis International GmbH -> Acronis International GmbH)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-11-11] (Adobe Inc. -> Adobe)
R2 afcdpsrv; C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [6399680 2020-04-28] (Acronis International GmbH -> )
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3739728 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3511376 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8454552 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [365648 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [3096160 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\86.1.6938.199\elevation_service.exe [1348304 2020-11-12] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [58048 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
R2 Backupper Service; C:\Program Files (x86)\AOMEI\AOMEI Backupper 6.2.0\ABService.exe [898216 2020-11-17] (AOMEI International Network Limited -> AOMEI International Network Limited)
S3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [282112 2013-09-25] (Brother Industries, Ltd.) [File not signed]
S2 CCSDK; C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe [688992 2017-02-27] (LENOVO -> Lenovo)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9105800 2020-11-23] (Microsoft Corporation -> Microsoft Corporation)
R2 connect2hotspot; C:\Program Files (x86)\Lenovo\Connect2\Connect2.Service.exe [100680 2017-02-08] (Lenovo -> Lenovo)
S3 Disc Soft Lite Bus Service; D:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2291392 2017-08-17] (Disc Soft Ltd -> Disc Soft Ltd)
R2 Dolby DAX2 API Service; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [197120 2017-07-13] (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.)
R2 GDCAgent; C:\Program Files (x86)\Lenovo\GDCAgentSetupRed\GDCAgent.exe [1155512 2015-07-30] (LENOVO -> Lenovo)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81744 2020-09-24] (Lenovo -> Lenovo Group Ltd.)
S3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [File not signed]
R2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [File not signed]
R2 ktupdaterservice; C:\Program Files (x86)\Kerio\UpdaterService\ktupdaterservice.exe [1095624 2020-11-30] (GFI Software Development Ltd. -> Kerio Technologies Inc.)
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\3.4.16.0\LenovoVantageService.exe [29520 2020-11-05] (Lenovo -> Lenovo Group Ltd.)
S3 LSC.Services.SystemService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe [273232 2016-08-24] (LENOVO -> Lenovo)
R2 mmsminisrv; C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe [4808088 2019-09-23] (Acronis International GmbH -> Acronis International GmbH)
S3 mobile_backup_server; C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe [3004128 2019-09-23] (Acronis International GmbH -> Acronis International GmbH)
S3 mobile_backup_status_server; C:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe [1912488 2019-09-23] (Acronis International GmbH -> )
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-01-18] (Hewlett-Packard) [File not signed]
S3 OpenVPNService; C:\Program Files\OpenVPN\bin\openvpnserv2.exe [15872 2016-11-25] () [File not signed]
R2 OpenVPNServiceInteractive; C:\Program Files\OpenVPN\bin\openvpnserv.exe [72832 2017-07-14] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 OpenVPNServiceLegacy; C:\Program Files\OpenVPN\bin\openvpnserv.exe [72832 2017-07-14] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R2 PDF24; D:\Program Files (x86)\PDF24\pdf24.exe [483976 2020-08-13] (Geek Software GmbH -> Geek Software GmbH)
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-01-18] (Hewlett-Packard) [File not signed]
S4 syncagentsrv; C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [7395256 2019-09-23] (Acronis International GmbH -> )
R2 TeamViewer; D:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [12720144 2020-11-18] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 Tib Mounter Service; C:\Program Files (x86)\Common Files\Acronis\TibMounter64\tib_mounter_service.exe [7095824 2019-09-23] (Acronis International GmbH -> Acronis International GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4098056 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
S3 wuauserv; C:\WINDOWS\system32\svchost.exe [53744 2019-03-19] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
S3 wuauserv; C:\WINDOWS\SysWOW64\svchost.exe [45448 2019-03-19] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
S2 ekrn; "C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe" [X]
S3 ekrnEpfw; "C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe" [X]
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 ambakdrv; C:\WINDOWS\System32\ambakdrv.sys [51120 2016-12-21] (CHENGDU AOMEI Tech Co., Ltd. -> )
R2 ammntdrv; C:\WINDOWS\system32\ammntdrv.sys [171952 2016-12-21] (CHENGDU AOMEI Tech Co., Ltd. -> )
R2 amwrtdrv; C:\WINDOWS\system32\amwrtdrv.sys [31248 2020-12-02] (AOMEI International Network Limited -> )
S3 AndNetDiag; C:\WINDOWS\system32\DRIVERS\lgandnetdiag64.sys [30720 2015-01-26] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
S3 ANDNetModem; C:\WINDOWS\system32\DRIVERS\lgandnetmodem64.sys [37376 2015-01-26] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37152 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [206408 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [332368 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [247888 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [97352 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16816 2020-12-02] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42784 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [176744 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [521752 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [109280 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [84856 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [851608 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [469832 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [217336 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [326416 2020-12-02] (Avast Software s.r.o. -> AVAST Software)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [231936 2019-09-11] (Microsoft Corporation) [File not signed]
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2016-11-23] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2016-11-23] (Disc Soft Ltd -> Disc Soft Ltd)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [154336 2020-04-25] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [106840 2020-04-25] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15800 2019-12-21] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [188872 2020-04-25] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [115960 2020-04-25] (ESET, spol. s r.o. -> ESET)
R2 file_protector; C:\WINDOWS\System32\DRIVERS\file_protector.sys [687768 2020-04-28] (Acronis International GmbH -> Acronis International GmbH)
R0 file_tracker; C:\WINDOWS\System32\DRIVERS\file_tracker.sys [390592 2020-04-28] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
S3 GeneStor; C:\WINDOWS\System32\drivers\GeneStor.sys [115704 2015-07-15] (GENESYS LOGIC, INC. -> GenesysLogic)
R2 speedfan; C:\WINDOWS\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 tib; C:\WINDOWS\system32\DRIVERS\tib.sys [883256 2020-04-28] (Acronis International GmbH -> Acronis International GmbH)
R2 tib_mounter; C:\WINDOWS\system32\DRIVERS\tib_mounter.sys [171968 2020-04-28] (Acronis International GmbH -> Acronis International GmbH)
S3 tnd; C:\WINDOWS\system32\DRIVERS\tnd.sys [693768 2020-04-28] (Acronis International GmbH -> Acronis International GmbH)
R2 virtual_file; C:\WINDOWS\System32\DRIVERS\virtual_file.sys [330176 2020-04-28] (Acronis International GmbH -> Acronis International GmbH)
R0 volume_tracker; C:\WINDOWS\System32\DRIVERS\volume_tracker.sys [243472 2020-04-28] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [46472 2019-03-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [333784 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [62432 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
R3 WinDriver1411; C:\WINDOWS\system32\drivers\windrvr1411.sys [271184 2019-12-06] (Jungo Connectivity Ltd. -> Jungo Connectivity)
S3 WinDriver6; C:\WINDOWS\system32\drivers\windrvr6.sys [254464 2019-07-19] (Jungo) [File not signed]
S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-13] (CyberLink -> "CyberLink)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
Error(1) reading file: "C:\WINDOWS\system32\StartupCheckLibrary.dll"
2020-12-05 11:11 - 2020-12-05 11:12 - 000042739 ____C C:\Users\matej\Desktop\FRST.txt
2020-12-05 11:10 - 2020-12-05 11:12 - 000000000 ____D C:\FRST
2020-12-05 11:10 - 2020-12-05 11:10 - 002288640 ____C (Farbar) C:\Users\matej\Desktop\FRST64.exe
2020-12-05 10:54 - 2020-12-05 10:54 - 000000000 ___DC C:\Users\matej\AppData\LocalLow\uTorrent
2020-12-04 16:27 - 2020-12-04 16:27 - 000656636 ____C C:\Users\matej\Desktop\Czech_Republic_Labour_Code_2006_am2011_en.pdf
2020-12-04 09:53 - 2020-12-04 09:14 - 133570560 ____C C:\Users\matej\Desktop\matej.ricanek@legalite.cz (1)(2).ost
2020-12-03 21:54 - 2020-12-01 15:34 - 2843010048 ____C C:\Users\matej\Desktop\backup_nejnovejsiLEGALIT0.pst
2020-12-03 21:53 - 2020-12-03 21:53 - 000000000 ____D C:\Users\matej\AppData\Roaming\CDTPL
2020-12-03 21:52 - 2020-12-03 21:53 - 000000000 ____D C:\Program Files\SysTools Outlook Attachment Extractor
2020-12-03 21:52 - 2020-12-03 21:52 - 000001056 _____ C:\Users\Public\Desktop\SysTools Outlook Attachment Extractor.lnk
2020-12-03 21:52 - 2020-12-03 21:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SysTools Outlook Attachment Extractor
2020-12-03 21:51 - 2020-12-03 21:51 - 014886672 ____C (SysTools Software Pvt Ltd. ) C:\Users\matej\Desktop\outlook-attachment-extractor-64-bit.exe
2020-12-03 09:18 - 2020-12-03 09:14 - 000194712 ____C C:\Users\matej\Desktop\zadost o odroceni jednani.pdf
2020-12-03 09:18 - 2020-12-03 09:10 - 000122105 ____C C:\Users\matej\Desktop\Potvrzeni_Legalite_IT.pdf
2020-12-02 16:22 - 2020-12-05 10:53 - 000000208 _____ C:\WINDOWS\SysWOW64\AbBakConfig.dat
2020-12-02 16:22 - 2020-12-05 10:53 - 000000150 _____ C:\WINDOWS\SysWOW64\winsevr.dat
2020-12-02 16:22 - 2020-12-02 16:36 - 000001024 ____H C:\SYSTAG.BIN
2020-12-02 16:22 - 2020-12-02 16:22 - 000001291 _____ C:\Users\Public\Desktop\AOMEI Backupper.lnk
2020-12-02 16:22 - 2020-12-02 16:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AOMEI Backupper
2020-12-02 16:22 - 2020-12-02 16:22 - 000000000 ____D C:\ProgramData\Aomei
2020-12-02 16:21 - 2020-12-02 19:30 - 000000000 ____D C:\ProgramData\AomeiBR
2020-12-02 16:21 - 2020-12-02 16:22 - 000031248 _____ C:\WINDOWS\system32\amwrtdrv.sys
2020-12-02 16:21 - 2020-12-02 16:21 - 000000000 ____D C:\Program Files (x86)\AOMEI
2020-12-02 16:21 - 2016-12-21 22:54 - 000051120 _____ C:\WINDOWS\system32\ambakdrv.sys
2020-12-02 16:21 - 2016-12-21 22:52 - 000171952 _____ C:\WINDOWS\system32\ammntdrv.sys
2020-12-02 13:54 - 2020-12-02 13:54 - 000003856 _____ C:\WINDOWS\system32\Tasks\Avast Secure Browser Heartbeat Task (Hourly)
2020-12-02 13:54 - 2020-12-02 13:54 - 000003272 _____ C:\WINDOWS\system32\Tasks\Avast Secure Browser Heartbeat Task (Logon)
2020-12-02 13:54 - 2020-12-02 13:54 - 000002577 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2020-12-02 13:54 - 2020-12-02 13:54 - 000002542 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2020-12-02 13:54 - 2020-12-02 13:54 - 000000000 ____D C:\Users\matej\AppData\Local\AVAST Software
2020-12-02 13:48 - 2020-12-02 13:48 - 000003510 _____ C:\WINDOWS\system32\Tasks\AvastUpdateTaskMachineUA
2020-12-02 13:48 - 2020-12-02 13:48 - 000003386 _____ C:\WINDOWS\system32\Tasks\AvastUpdateTaskMachineCore
2020-12-02 13:48 - 2020-12-02 13:48 - 000000000 ___HD C:\$AV_ASW
2020-12-02 13:48 - 2020-12-02 13:48 - 000000000 ____D C:\Program Files (x86)\AVAST Software
2020-12-02 13:47 - 2020-12-02 13:47 - 000002167 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2020-12-02 13:47 - 2020-12-02 13:47 - 000002155 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2020-12-02 13:47 - 2020-12-02 13:47 - 000000000 ____D C:\Users\matej\AppData\Roaming\Avast Software
2020-12-02 13:46 - 2020-12-02 13:54 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2020-12-02 13:46 - 2020-12-02 13:46 - 000851608 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2020-12-02 13:46 - 2020-12-02 13:46 - 000521752 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2020-12-02 13:46 - 2020-12-02 13:46 - 000469832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2020-12-02 13:46 - 2020-12-02 13:46 - 000339552 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2020-12-02 13:46 - 2020-12-02 13:46 - 000332368 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2020-12-02 13:46 - 2020-12-02 13:46 - 000326416 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2020-12-02 13:46 - 2020-12-02 13:46 - 000247888 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2020-12-02 13:46 - 2020-12-02 13:46 - 000217336 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2020-12-02 13:46 - 2020-12-02 13:46 - 000206408 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2020-12-02 13:46 - 2020-12-02 13:46 - 000176744 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2020-12-02 13:46 - 2020-12-02 13:46 - 000109280 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2020-12-02 13:46 - 2020-12-02 13:46 - 000097352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2020-12-02 13:46 - 2020-12-02 13:46 - 000084856 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2020-12-02 13:46 - 2020-12-02 13:46 - 000042784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2020-12-02 13:46 - 2020-12-02 13:46 - 000037152 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2020-12-02 13:46 - 2020-12-02 13:46 - 000016816 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswElam.sys
2020-12-02 13:46 - 2020-12-02 13:46 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2020-12-02 13:46 - 2020-12-02 13:46 - 000000000 ____D C:\Program Files\Common Files\Avast Software
2020-12-02 13:46 - 2020-12-02 13:46 - 000000000 ____D C:\Program Files\Avast Software
2020-12-02 13:45 - 2020-12-05 11:03 - 000000000 ____D C:\ProgramData\Avast Software
2020-12-02 09:06 - 2020-12-02 09:06 - 001317080 ____C (Google LLC) C:\Users\matej\Desktop\installbackupandsync.exe
2020-12-02 09:06 - 2020-12-02 09:06 - 000002080 _____ C:\Users\Public\Desktop\Google Slides.lnk
2020-12-02 09:06 - 2020-12-02 09:06 - 000002078 _____ C:\Users\Public\Desktop\Google Sheets.lnk
2020-12-02 09:06 - 2020-12-02 09:06 - 000002068 _____ C:\Users\Public\Desktop\Google Docs.lnk
2020-12-02 09:06 - 2020-12-02 09:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2020-12-02 09:06 - 2020-12-02 09:06 - 000000000 ____D C:\Program Files\Google
2020-11-24 19:14 - 2020-11-24 19:14 - 000239157 ____C C:\Users\matej\Desktop\zadost o zapis.pdf
2020-11-24 16:32 - 2020-11-24 16:35 - 000000000 ___DC C:\Users\matej\Desktop\ÚKOL
2020-11-24 12:09 - 2020-11-24 12:09 - 013936128 ____C C:\Users\matej\Desktop\RE_ NonStop Consulting - Potential fraud case.msg
2020-11-24 12:08 - 2020-11-24 12:08 - 000071680 ____C C:\Users\matej\Desktop\NonStop Consulting - Potential fraud case.msg
2020-11-22 12:03 - 2020-11-22 12:03 - 000000000 ___DC C:\Users\matej\Desktop\Fota
2020-11-09 11:19 - 2020-11-09 11:19 - 000000000 ____D C:\Users\matej\AppData\Roaming\Teams
2020-11-08 14:37 - 2020-11-08 14:37 - 000000917 ____C C:\Users\matej\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Tor Browser.lnk
2020-11-05 16:57 - 2020-11-05 16:57 - 000000000 ___DC C:\Users\matej\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2020-11-05 16:57 - 2020-11-05 16:57 - 000000000 ____D C:\Users\matej\AppData\Roaming\Zoom
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-12-05 11:13 - 2019-03-28 20:14 - 000000000 ___DC C:\Users\matej\AppData\Local\BitTorrentHelper
2020-12-05 11:12 - 2018-11-09 13:39 - 000000000 ___DC C:\Users\matej\AppData\Roaming\uTorrent
2020-12-05 11:09 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-12-05 11:07 - 2017-08-26 20:25 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2020-12-05 11:01 - 2020-09-19 09:44 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-12-05 11:01 - 2020-09-19 09:44 - 000002281 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2020-12-05 11:00 - 2019-08-29 18:18 - 001693850 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-12-05 11:00 - 2019-03-19 12:55 - 000718198 _____ C:\WINDOWS\system32\perfh005.dat
2020-12-05 11:00 - 2019-03-19 12:55 - 000145242 _____ C:\WINDOWS\system32\perfc005.dat
2020-12-05 11:00 - 2019-03-19 05:50 - 000000000 ____D C:\WINDOWS\INF
2020-12-05 10:55 - 2016-11-28 17:55 - 000000000 ___DC C:\ProgramData\NVIDIA
2020-12-05 10:54 - 2016-11-23 18:12 - 000000000 __RDC C:\Users\matej\OneDrive
2020-12-05 10:53 - 2019-08-29 18:20 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-12-05 10:53 - 2016-11-23 18:10 - 000000000 _SHDC C:\Users\matej\IntelGraphicsProfiles
2020-12-04 16:38 - 2019-08-29 18:12 - 000000000 ____D C:\Users\matej
2020-12-04 16:38 - 2019-03-19 05:37 - 001310720 _____ C:\WINDOWS\system32\config\BBI
2020-12-04 16:38 - 2017-08-15 18:23 - 000000000 ___DC C:\ProgramData\firebird
2020-12-04 15:44 - 2017-12-16 14:32 - 000000000 ___DC C:\Users\matej\AppData\Local\Packages
2020-12-04 15:40 - 2019-08-30 18:42 - 000000000 ____D C:\Users\matej\AppData\Local\Deployment
2020-12-04 14:02 - 2016-11-23 18:59 - 000000000 ___DC C:\Users\matej\AppData\Roaming\TeamViewer
2020-12-04 13:28 - 2019-08-29 18:07 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-12-04 12:53 - 2019-08-29 18:20 - 000003472 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-12-04 12:53 - 2019-08-29 18:20 - 000003348 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-12-02 19:04 - 2020-05-11 18:22 - 000002368 ____C C:\Users\matej\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-12-02 19:04 - 2019-08-29 18:20 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-79153872-2729706706-3879174829-1001
2020-12-02 13:46 - 2019-03-19 05:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-12-02 12:03 - 2016-11-23 18:47 - 000000000 ___DC C:\Users\matej\AppData\Roaming\KeePass
2020-12-02 09:06 - 2018-02-04 08:41 - 000000000 ___DC C:\Users\matej\AppData\Local\Google
2020-12-02 08:27 - 2019-12-14 11:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kerio
2020-12-02 08:15 - 2020-10-18 10:30 - 000000024 _____ C:\WINDOWS\system32\perfdish001.dat
2020-12-01 17:28 - 2016-11-23 18:42 - 000000000 ____D C:\Program Files (x86)\Opera
2020-12-01 11:44 - 2019-08-29 18:20 - 000003970 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1479922982
2020-12-01 11:44 - 2017-07-03 16:42 - 000001162 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2020-11-30 19:06 - 2020-09-19 09:44 - 000003584 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-11-30 19:06 - 2020-09-19 09:44 - 000003460 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-11-25 17:17 - 2020-02-26 19:02 - 000004194 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1582740167
2020-11-24 19:50 - 2016-11-23 18:41 - 000000000 ___DC C:\Users\matej\AppData\Roaming\vlc
2020-11-24 10:44 - 2016-11-26 10:08 - 000689357 _____ C:\WINDOWS\system32\InstallUtil.InstallLog
2020-11-23 23:07 - 2019-08-29 18:20 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2020-11-22 12:03 - 2019-07-28 12:58 - 000000000 ___DC C:\Users\matej\Desktop\Nespor Kudy Do Pohody
2020-11-22 10:02 - 2018-08-12 19:12 - 000000000 ___DC C:\Users\matej\AppData\Local\D3DSCache
2020-11-21 22:17 - 2020-10-04 19:41 - 000000000 ____D C:\Users\matej\AppData\Roaming\WeMod
2020-11-21 16:32 - 2017-12-04 08:31 - 000000000 ___DC C:\Users\matej\AppData\Local\TogglDesktop
2020-11-18 16:22 - 2016-11-23 18:41 - 000000834 _____ C:\Users\Public\Desktop\VLC media player.lnk
2020-11-18 14:20 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-11-13 07:55 - 2018-02-04 08:41 - 000002308 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-11-11 12:38 - 2019-08-29 18:20 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-11-11 08:02 - 2019-08-29 18:20 - 000004618 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player PPAPI Notifier
2020-11-11 08:02 - 2019-08-29 18:20 - 000004470 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player Updater
2020-11-11 08:02 - 2019-03-19 05:56 - 000842296 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2020-11-11 08:02 - 2019-03-19 05:56 - 000175160 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2020-11-11 08:02 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2020-11-11 08:02 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\Macromed
2020-11-09 11:19 - 2020-05-15 10:17 - 000002371 ____C C:\Users\matej\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk
2020-11-09 11:19 - 2020-03-25 11:43 - 000002363 ____C C:\Users\matej\Desktop\Microsoft Teams.lnk
2020-11-08 15:05 - 2018-01-28 15:26 - 000000000 ___DC C:\Users\matej\AppData\LocalLow\Mozilla
2020-11-08 14:37 - 2017-02-25 22:31 - 000000869 ____C C:\Users\matej\Desktop\Start Tor Browser.lnk
2020-11-06 21:30 - 2020-10-04 19:41 - 000002162 ____C C:\Users\matej\Desktop\WeMod.lnk
2020-11-06 21:30 - 2020-10-04 19:41 - 000000000 ___DC C:\Users\matej\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WeMod
2020-11-06 21:30 - 2020-10-04 19:41 - 000000000 ____D C:\Users\matej\AppData\Local\WeMod
2020-11-06 21:30 - 2016-11-27 09:56 - 000000000 ___DC C:\Users\matej\AppData\Local\SquirrelTemp
2020-11-06 18:58 - 2016-12-06 19:58 - 000000000 ___DC C:\Users\matej\AppData\Local\Intel
2020-11-05 14:45 - 2020-04-07 13:28 - 000000000 ____D C:\Users\matej\AppData\Roaming\WhatsApp
2020-11-05 08:04 - 2019-09-13 10:02 - 000000000 ____D C:\Users\matej\AppData\Local\LenovoServiceBridge
==================== Files in the root of some directories ========
2018-09-29 08:39 - 2020-02-02 20:18 - 000001435 ____C () C:\Users\matej\AppData\Local\oobelibMkey.log
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Zpomalený PC
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119418
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zpomalený PC
Zdravím!
Logu chybí hlavička a log Addition chybí zcela. Spusťte ale tuto utilitu:
Logu chybí hlavička a log Addition chybí zcela. Spusťte ale tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/
ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?