Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Pri spustení počítaču sa mi otvárajú dve stránky v prehliadači

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
benkii
Návštěvník
Návštěvník
Příspěvky: 5
Registrován: 24 srp 2021 07:35

Pri spustení počítaču sa mi otvárajú dve stránky v prehliadači

#1 Příspěvek od benkii »

Dobrý deň, potrebovala by som pomoc... Zakaždým, keď zapnem počítač, prihlasím sa klasicky, tak na stotinu vybehne prázdne okno s príkazovým riadkom s názvom Update check..
Hneď na to sa mi otvoria v prehliadači dve stránky a to gestyy.com a pladollmo.com
.
.
Je nejaká možnosť zistiť čo to je, skadiaľ to je a ako to odstrániť? Neviem či potrebujete FRST alebo Addition..... Ďakujem za všetky tipy a rady
.
.
.
A poprípade ak by ste tiež vedeli druhú pomoc.... Malé error okno s textom:
"There was a problem starting StartupCheckLibrary.dll
The specified module could not be found."

Ďakujem druhý krár :)
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119390
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Pri spustení počítaču sa mi otvárajú dve stránky v prehliadači

#2 Příspěvek od Rudy »

Zdravím!
Dejte logy FRST+Addition: https://forum.viry.cz/viewtopic.php?f=13&t=154679 .
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
benkii
Návštěvník
Návštěvník
Příspěvky: 5
Registrován: 24 srp 2021 07:35

Re: Pri spustení počítaču sa mi otvárajú dve stránky v prehliadači

#3 Příspěvek od benkii »

FRST:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 21-08-2021
Ran by Simona (administrator)
Running from C:\Users\Simona\Downloads
Loaded Profiles: Simona
Platform: Windows 10 Home Version 1903 18362.778 (X64) Language: Slovenčina (Slovensko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <4>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <30>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.102\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.102\GoogleCrashHandler64.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_9088b61921a6ff9f\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_9088b61921a6ff9f\IntelCpHeciSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_5061a185bda56841\RstMwService.exe
(Intel(R) Smart Sound Technology -> Intel) C:\Windows\System32\cAVS\Intel(R) Audio Service\IntelAudioService.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\browserhost.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.MicrosoftStickyNotes_3.7.124.0_x64__8wekyb3d8bbwe\Microsoft.Notes.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1910.0.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12004.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\usocoreworker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
(Slack Technologies, Inc. -> Slack Technologies Inc.) C:\Users\Simona\AppData\Local\slack\app-4.18.0\slack.exe <6>
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Toggl Ou -> Toggl) C:\Users\Simona\AppData\Local\TogglDesktop\TogglDesktop.exe
(Wacom Technology Corp. -> Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe
(Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
(Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe
(Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe
(Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVBg_ASC] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617568 2020-03-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [319520 2018-08-29] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [123672 2021-08-24] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412736 2021-07-14] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [19677472 2020-03-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [winlogui] => C:\Windows\system32\winlogui.exe [5120 2020-05-03] (Microsoft Corporation) [File not signed]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645648 2019-10-05] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [HPUsageTracking] => C:\Program Files (x86)\HP\HP UT\bin\hppusg.exe "C:\Program Files (x86)\HP\HP UT\"
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [779440 2021-04-16] (Adobe Inc. -> Adobe Inc.)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2021-02-21] (Adobe Inc. -> )
HKLM\...\Policies\Explorer: [HideSCAHealth] 1
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-4100036461-1423016816-3956434626-1001\...\Run: [Flvto Youtube Downloader] => "C:\Users\Simona\AppData\Local\Flvto Youtube Downloader\FlvtoYoutubeDownloader.Redesign.exe" /minimize
HKU\S-1-5-21-4100036461-1423016816-3956434626-1001\...\Run: [CCXProcess] => C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [680720 2021-04-16] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-4100036461-1423016816-3956434626-1001\...\Run: [omega] => C:\Omega\upgrade.exe /callWindows
HKU\S-1-5-21-4100036461-1423016816-3956434626-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4087528 2021-04-12] (Valve -> Valve Corporation)
HKU\S-1-5-21-4100036461-1423016816-3956434626-1001\...\Run: [Discord] => C:\Users\Simona\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub)
HKU\S-1-5-21-4100036461-1423016816-3956434626-1001\...\Run: [TogglDesktop] => C:\Users\Simona\AppData\Local\TogglDesktop\TogglDesktop.exe [1774656 2021-02-23] (Toggl Ou -> Toggl)
HKU\S-1-5-21-4100036461-1423016816-3956434626-1001\...\Run: [Google Update] => C:\Users\Simona\AppData\Local\Google\Update\1.3.36.102\GoogleUpdateCore.exe [223816 2021-08-04] (Google LLC -> Google LLC)
HKU\S-1-5-21-4100036461-1423016816-3956434626-1001\...\Run: [com.squirrel.slack.slack] => C:\Users\Simona\AppData\Local\slack\slack.exe [309568 2021-07-27] (Slack Technologies, Inc. -> Slack Technologies Inc.)
HKU\S-1-5-21-4100036461-1423016816-3956434626-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-4100036461-1423016816-3956434626-1001\...\MountPoints2: {4ff2cd79-6f96-11ea-a4d0-a0510bd67913} - "F:\Setup.exe"
HKLM\...\Windows x64\Print Processors\HP1006S: C:\Windows\System32\spool\prtprocs\x64\HP1006S.DLL [373760 2010-06-29] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard)
HKLM\...\Print\Monitors\HP LaserJet P1006 Language Monitor: C:\Windows\system32\HP1006LM.DLL [403968 2010-06-29] (Microsoft Windows Hardware Compatibility Publisher -> Software 2000 Limited)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\92.0.4515.159\Installer\chrmstp.exe [2021-08-19] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\update.bat [2020-01-12] () [File not signed] <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {034BE179-ACF2-432A-AF2E-AA8DBFE2DF44} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe [2935088 2019-07-03] (Acer Incorporated -> )
Task: {03C8B69C-18D7-44E3-B233-7432C5D66693} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [114048 2021-08-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {03E6FD61-259E-4F18-906B-5103DFF4A84B} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\637091F8-A15D-4706-BE3E-809C5432240F\OS Edition Upgrade event listener created by enrollment client => C:\Windows\system32\deviceenroller.exe [551424 2019-10-25] (Microsoft Windows -> Microsoft Corporation)
Task: {176A569C-6B5C-4DEA-9019-0A830883C23F} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23253888 2021-08-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {2C2EFA0C-22C5-4845-B24A-AFACA6B98F34} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4100036461-1423016816-3956434626-1001Core => C:\Users\Simona\AppData\Local\Google\Update\GoogleUpdate.exe [154456 2021-04-30] (Google LLC -> Google LLC)
Task: {3FBD542B-1177-42F1-943F-C5A66D193BFC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-10-25] (Google Inc -> Google Inc.)
Task: {5C838282-0A5D-439C-A27E-70ED9CC51154} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\637091F8-A15D-4706-BE3E-809C5432240F\Schedule #1 created by enrollment client => C:\Windows\system32\deviceenroller.exe [551424 2019-10-25] (Microsoft Windows -> Microsoft Corporation)
Task: {607F7006-FDC6-4B1F-94B5-A481839336E2} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\637091F8-A15D-4706-BE3E-809C5432240F\Provisioning initiated session => C:\Windows\system32\deviceenroller.exe [551424 2019-10-25] (Microsoft Windows -> Microsoft Corporation)
Task: {6750F1CE-3141-4EC7-91E9-BA9D4944E5A2} - System32\Tasks\ACCAgent => C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe [41776 2019-07-03] (Acer Incorporated -> )
Task: {69907A15-1F81-49BA-8657-6B5ACACA845C} - System32\Tasks\Quick Access => C:\Program Files\Acer\Acer Quick Access\QALauncher.exe [446256 2019-09-26] (Acer Incorporated -> Acer Incorporated)
Task: {6B18A859-8E00-4AA1-9CF6-D9AF2DC329DA} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\637091F8-A15D-4706-BE3E-809C5432240F\Schedule created by enrollment client for renewal of certificate warning => C:\Windows\system32\deviceenroller.exe [551424 2019-10-25] (Microsoft Windows -> Microsoft Corporation)
Task: {6FE89E40-C8DD-47B3-A4BC-E68EA5BBD38B} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412736 2021-07-14] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {80D8EC04-E53F-47BD-A205-831437BF6C36} - System32\Tasks\Power Button => C:\Program Files\Acer\Acer Quick Access\ePowerButton_NB.exe [2770736 2019-09-26] (Acer Incorporated -> Acer Incorporated)
Task: {9D1B3D39-3368-4889-8DD5-BBDF5970A982} - System32\Tasks\ACCBackgroundApplication => C:\Program Files (x86)\Acer\Care Center\ACCStd.exe [4798256 2019-07-03] (Acer Incorporated -> )
Task: {A492E909-23A7-42DA-AA00-EF6F7A8BA519} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {AA6D89FE-BA3E-4211-9ECC-9EFBA224C293} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [114048 2021-08-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {AC860C1F-EAF9-4937-A3C9-FD37EB7B5B08} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4100036461-1423016816-3956434626-1001UA => C:\Users\Simona\AppData\Local\Google\Update\GoogleUpdate.exe [154456 2021-04-30] (Google LLC -> Google LLC)
Task: {BA1A3CCA-7415-4EE5-BBC0-5AB211EE64D8} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23253888 2021-08-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {BCE083AE-D89C-4105-AD61-8EA3979ACEEC} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\637091F8-A15D-4706-BE3E-809C5432240F\Schedule #3 created by enrollment client => C:\Windows\system32\deviceenroller.exe [551424 2019-10-25] (Microsoft Windows -> Microsoft Corporation)
Task: {CD40A836-13EB-4594-981B-D93DCAF45392} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\637091F8-A15D-4706-BE3E-809C5432240F\PushRenewal => C:\Windows\system32\deviceenroller.exe [551424 2019-10-25] (Microsoft Windows -> Microsoft Corporation)
Task: {CF6EDC18-2D3F-4249-A839-C64EA6F7DC44} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4902680 2021-08-24] (Avast Software s.r.o. -> AVAST Software)
Task: {D1ABE443-86A3-4981-9BA9-4E9F06A7577B} - System32\Tasks\AdobeAAMUpdater-1.0-DESKTOP-IH454QU-Simona => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {D2C3567D-1C12-42F5-AA71-98BFE8ADEF52} - System32\Tasks\software update application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [474368 2019-09-25] (Acer Incorporated -> Acer Incorporated)
Task: {D341770C-3165-4F8B-9EE7-2EA7B2AFEF13} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\637091F8-A15D-4706-BE3E-809C5432240F\Passport for Work alert created by enrollment client => C:\Windows\system32\deviceenroller.exe [551424 2019-10-25] (Microsoft Windows -> Microsoft Corporation)
Task: {D4819631-6769-4628-9CF5-90A1AD83DC9C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-10-25] (Google Inc -> Google Inc.)
Task: {D92900E9-13B4-4F9F-A7D6-F403FEDA652E} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\637091F8-A15D-4706-BE3E-809C5432240F\Schedule to run OMADMClient by server => C:\Windows\system32\omadmclient.exe [330240 2020-04-16] (Microsoft Windows -> Microsoft Corporation)
Task: {E435A09B-C0E1-4DE9-A91D-A25E51A5D6B6} - System32\Tasks\Microsoft\Windows\Application Experience\StartupCheckLibrary => rundll32.exe StartupCheckLibrary.dll,DllMainRunLibrary <==== ATTENTION
Task: {E4C97D51-90CA-4565-A38D-CD88F83707E5} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1790184 2021-04-29] (Avast Software s.r.o. -> Avast Software)
Task: {E82B8DBF-B0A1-4279-B2D4-25D8F4B81E58} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\637091F8-A15D-4706-BE3E-809C5432240F\Schedule to run OMADMClient by client => C:\Windows\system32\omadmclient.exe [330240 2020-04-16] (Microsoft Windows -> Microsoft Corporation)
Task: {FCE04210-32B4-4C1E-8BD8-B0E67C1E3842} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\637091F8-A15D-4706-BE3E-809C5432240F\Schedule #2 created by enrollment client => C:\Windows\system32\deviceenroller.exe [551424 2019-10-25] (Microsoft Windows -> Microsoft Corporation)
Task: {FD652DFC-21B5-4AA8-B22A-D25769A56FE3} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\637091F8-A15D-4706-BE3E-809C5432240F\PushLaunch => C:\Windows\system32\deviceenroller.exe [551424 2019-10-25] (Microsoft Windows -> Microsoft Corporation)
Task: {FEB1175B-88DE-496B-BDED-EBE8463FDC96} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\637091F8-A15D-4706-BE3E-809C5432240F\Win10 S Mode event listener created by enrollment client => C:\Windows\system32\deviceenroller.exe [551424 2019-10-25] (Microsoft Windows -> Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 172.30.3.1
Tcpip\..\Interfaces\{fe580731-e0bf-4195-9ffc-d770a6003437}: [DhcpNameServer] 172.30.3.1

FireFox:
========
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2021-08-24] [UpdateUrl:hxxps://sadownload.mcafee.com/products/SA/Win/xpi/webadvisor/update.json]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Plugin: @java.com/DTPlugin,version=11.231.2 -> C:\Program Files\Java\jre1.8.0_231\bin\dtplugin\npDeployJava1.dll [2019-11-08] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.231.2 -> C:\Program Files\Java\jre1.8.0_231\bin\plugin2\npjp2.dll [2019-11-08] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2021-04-16] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-06-02] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-07-24] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2021-04-16] (Adobe Inc. -> Adobe Systems)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Simona\AppData\Local\Google\Chrome\User Data\Default [2021-08-24]
CHR Notifications: Default -> hxxps://akestrofst.info; hxxps://drive.google.com; hxxps://fbnotify.top; hxxps://ketormanch.pro; hxxps://mail.google.com; hxxps://mail.ovbmail.sk; hxxps://meet.google.com; hxxps://nesto.cc; hxxps://notification-centar.com; hxxps://planerny-ndv.ru; hxxps://refresher.sk; hxxps://uploadhaven.com; hxxps://www.abrokegamer.com; hxxps://www.facebook.com; hxxps://www.netflix.com; hxxps://www1a.debrahinton.pro; hxxps://www1a.lucienmann.pro
CHR Extension: (Prezentácie) - C:\Users\Simona\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-10-25]
CHR Extension: (Dokumenty) - C:\Users\Simona\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-10-25]
CHR Extension: (Disk Google) - C:\Users\Simona\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-22]
CHR Extension: (YouTube) - C:\Users\Simona\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-10-25]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\Simona\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-07-29]
CHR Extension: (Tabuľky) - C:\Users\Simona\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-10-25]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\Simona\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2021-08-17]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\Simona\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-06-24]
CHR Extension: (Full Page Screenshot) - C:\Users\Simona\AppData\Local\Google\Chrome\User Data\Default\Extensions\glgomjpomoahpeekneidkinhcfjnnhmb [2021-05-19]
CHR Extension: (Visual Effects for Google Meet) - C:\Users\Simona\AppData\Local\Google\Chrome\User Data\Default\Extensions\hodiladlefdpcbemnbbcpclbmknkiaem [2021-05-09]
CHR Extension: (Little Alchemy) - C:\Users\Simona\AppData\Local\Google\Chrome\User Data\Default\Extensions\knkapnclbofjjgicpkfoagdjohlfjhpd [2020-12-19]
CHR Extension: (Tipli do prehliadača) - C:\Users\Simona\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpijoellhiljjmeeloljbehhhjkpijpb [2021-05-02]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Simona\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30]
CHR Extension: (MultiHighlighter) - C:\Users\Simona\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocifbglmlbpgpbflnkfpclkmckoollbn [2020-06-09]
CHR Extension: (Netflix Party is now Teleparty) - C:\Users\Simona\AppData\Local\Google\Chrome\User Data\Default\Extensions\oocalimimngaihdkbihfgmpkcpnmlaoa [2021-08-13]
CHR Extension: (Gmail) - C:\Users\Simona\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-24]
CHR Extension: (Chrome Media Router) - C:\Users\Simona\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-07-24]
CHR Profile: C:\Users\Simona\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-08-07]
CHR Profile: C:\Users\Simona\AppData\Local\Google\Chrome\User Data\System Profile [2020-08-07]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ACCSvc; C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe [300336 2019-07-03] (Acer Incorporated -> Acer Incorporated)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [842416 2021-04-16] (Adobe Inc. -> Adobe Inc.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3779840 2021-07-14] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3547904 2021-07-14] (Adobe Inc. -> Adobe Systems, Incorporated)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8262736 2021-08-24] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [627480 2021-08-24] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [1616664 2021-08-24] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [374552 2021-08-24] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-08-24] (Avast Software s.r.o. -> AVAST Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9142128 2021-08-05] (Microsoft Corporation -> Microsoft Corporation)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [977824 2021-08-24] (McAfee, LLC -> McAfee, LLC)
S3 QALSvc; C:\Program Files\Acer\Acer Quick Access\QALSvc.exe [466224 2019-09-26] (Acer Incorporated -> Acer Incorporated)
S3 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [508208 2019-09-26] (Acer Incorporated -> Acer Incorporated)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13261608 2021-05-28] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\NisSrv.exe [3004048 2019-10-25] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 wuauserv; C:\Windows\system32\svchost.exe [53744 2019-03-19] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
S3 wuauserv; C:\Windows\SysWOW64\svchost.exe [45448 2019-03-19] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATTENTION (no ServiceDLL)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AcerAirplaneModeController; C:\Windows\System32\drivers\AcerAirplaneModeController.sys [29912 2019-05-03] (Acer Incorporated -> Acer Incorporated)
S3 AppleKmdfFilter; C:\Windows\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [218976 2021-08-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [367640 2021-08-24] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [250392 2021-08-24] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [99352 2021-08-24] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\Windows\System32\drivers\aswElam.sys [17344 2021-08-24] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [41352 2021-08-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [184648 2021-08-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [559816 2021-08-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [108408 2021-08-24] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [82904 2021-08-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [851704 2021-08-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [471920 2021-08-24] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [215392 2021-08-24] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [328568 2021-08-24] (Avast Software s.r.o. -> AVAST Software)
S3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [42256 2020-03-26] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [59360 2020-03-26] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 Netaapl; C:\Windows\System32\drivers\netaapl64.sys [32352 2017-11-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [46688 2019-10-25] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [350136 2019-10-25] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [54200 2019-10-25] (Microsoft Windows -> Microsoft Corporation)
U1 aswbdisk; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-08-24 08:46 - 2021-08-24 08:46 - 000029796 _____ C:\Users\Simona\Downloads\FRST.txt
2021-08-24 08:45 - 2021-08-24 08:46 - 000000000 ____D C:\FRST
2021-08-24 08:45 - 2021-08-24 08:45 - 002300928 _____ (Farbar) C:\Users\Simona\Downloads\FRST64.exe
2021-08-24 08:26 - 2021-08-24 08:26 - 000000000 ____D C:\Users\Simona\AppData\Roaming\Maxon
2021-08-24 07:58 - 2021-08-24 07:58 - 000000000 ____D C:\Users\Simona\AppData\Local\Avast Software
2021-08-24 07:57 - 2021-08-24 07:58 - 000002088 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Premium Security.lnk
2021-08-24 07:57 - 2021-08-24 07:58 - 000002076 _____ C:\Users\Public\Desktop\Avast Premium Security.lnk
2021-08-24 07:57 - 2021-08-24 07:46 - 000339736 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2021-08-24 07:46 - 2021-08-24 07:46 - 000215392 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2021-08-24 07:42 - 2021-08-24 07:43 - 000224552 _____ (AVAST Software) C:\Users\Simona\Downloads\avast_premium_security_setup_online.exe
2021-08-24 06:46 - 2021-08-24 06:59 - 000000000 ____D C:\Users\Simona\AppData\Roaming\ClickUp Desktop
2021-08-24 06:46 - 2021-08-24 06:46 - 000001836 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ClickUp.lnk
2021-08-24 06:46 - 2021-08-24 06:46 - 000001824 _____ C:\Users\Public\Desktop\ClickUp.lnk
2021-08-24 06:46 - 2021-08-24 06:46 - 000000000 ____D C:\Users\Simona\AppData\Local\clickup-desktop-updater
2021-08-24 06:46 - 2021-08-24 06:46 - 000000000 ____D C:\Program Files\ClickUp
2021-08-16 15:22 - 2021-08-16 15:22 - 000000000 ____D C:\Users\Simona\AppData\LocalLow\Dani
2021-08-08 21:46 - 2021-08-08 21:46 - 000000218 _____ C:\Users\Simona\AppData\Local\recently-used.xbel
2021-08-01 15:43 - 2021-08-01 15:43 - 000000000 ____D C:\Users\Simona\AppData\Roaming\3909
2021-08-01 15:42 - 2021-08-01 15:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Papers Please
2021-08-01 15:42 - 2021-08-01 15:42 - 000000000 ____D C:\Program Files (x86)\Papers Please

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-08-24 08:40 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-08-24 08:35 - 2021-03-17 20:26 - 000000000 ____D C:\Users\Simona\AppData\Roaming\Slack
2021-08-24 08:17 - 2019-10-31 13:04 - 000004264 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2021-08-24 08:17 - 2019-10-25 14:50 - 000000000 ____D C:\Program Files (x86)\Google
2021-08-24 08:15 - 2019-11-08 14:58 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2021-08-24 08:15 - 2019-10-31 13:03 - 000000000 ____D C:\ProgramData\AVAST Software
2021-08-24 08:15 - 2019-10-30 14:59 - 000000000 ____D C:\Users\Simona\AppData\Roaming\WTablet
2021-08-24 08:15 - 2019-10-25 12:52 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-08-24 08:15 - 2019-03-19 06:37 - 000786432 _____ C:\Windows\system32\config\BBI
2021-08-24 08:13 - 2019-10-25 13:01 - 000002922 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4100036461-1423016816-3956434626-1001
2021-08-24 07:57 - 2019-03-19 06:52 - 000000000 ___HD C:\Windows\ELAMBKUP
2021-08-24 07:46 - 2020-04-21 14:26 - 000559816 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2021-08-24 07:46 - 2020-04-21 14:26 - 000184648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2021-08-24 07:46 - 2019-10-31 13:04 - 000851704 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2021-08-24 07:46 - 2019-10-31 13:04 - 000471920 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2021-08-24 07:46 - 2019-10-31 13:04 - 000367640 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2021-08-24 07:46 - 2019-10-31 13:04 - 000328568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2021-08-24 07:46 - 2019-10-31 13:04 - 000250392 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2021-08-24 07:46 - 2019-10-31 13:04 - 000218976 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2021-08-24 07:46 - 2019-10-31 13:04 - 000108408 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2021-08-24 07:46 - 2019-10-31 13:04 - 000099352 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2021-08-24 07:46 - 2019-10-31 13:04 - 000082904 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2021-08-24 07:46 - 2019-10-31 13:04 - 000041352 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2021-08-24 07:46 - 2019-10-31 13:04 - 000017344 _____ (AVAST Software) C:\Windows\system32\Drivers\aswElam.sys
2021-08-24 07:37 - 2019-11-15 11:15 - 000000000 ____D C:\Users\Simona\AppData\Local\CrashDumps
2021-08-24 07:30 - 2019-11-11 11:47 - 000000000 ____D C:\Users\Simona\AppData\Local\D3DSCache
2021-08-24 07:18 - 2019-10-25 12:54 - 000000000 ____D C:\Windows\minidump
2021-08-24 07:13 - 2019-03-19 06:50 - 000000000 ____D C:\Windows\INF
2021-08-24 07:06 - 2021-03-17 23:04 - 000000000 ___RD C:\Users\Simona\Desktop\Files.zip
2021-08-24 07:04 - 2020-03-21 20:57 - 000000000 ___RD C:\Users\Simona\Desktop\Random stuff
2021-08-24 07:02 - 2019-10-25 13:20 - 000000000 ____D C:\Users\Simona\AppData\Roaming\vlc
2021-08-24 06:15 - 2019-10-25 12:52 - 000000000 ____D C:\Windows\system32\SleepStudy
2021-08-23 23:19 - 2020-08-07 01:10 - 000000000 ___RD C:\Users\Simona\Desktop\Media Work
2021-08-23 21:48 - 2020-03-19 10:07 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2021-08-23 14:48 - 2019-10-25 12:58 - 000002374 _____ C:\Users\Simona\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-08-23 12:22 - 2021-03-17 20:22 - 000000000 ____D C:\Users\Simona\AppData\Local\TogglDesktop
2021-08-23 11:29 - 2021-03-23 16:27 - 000000000 ____D C:\Users\Simona\Desktop\LHMS
2021-08-23 10:25 - 2019-10-25 12:59 - 000000000 ____D C:\Users\Simona\AppData\Local\Packages
2021-08-22 22:38 - 2021-03-17 22:28 - 000000000 ___RD C:\Users\Simona\Desktop\Games
2021-08-21 13:23 - 2020-12-01 16:11 - 000000000 ____D C:\Users\Simona\AppData\Roaming\discord
2021-08-19 08:02 - 2019-10-25 14:52 - 000002313 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-08-18 16:47 - 2020-11-11 14:21 - 000000000 ____D C:\Program Files (x86)\Steam
2021-08-18 15:03 - 2020-12-01 16:11 - 000000000 ____D C:\Users\Simona\AppData\Local\Discord
2021-08-16 10:20 - 2020-03-10 19:13 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2021-08-12 13:41 - 2020-03-19 10:07 - 000003522 _____ C:\Windows\system32\Tasks\AdobeGCInvoker-1.0
2021-08-11 13:19 - 2019-10-25 13:01 - 000000000 ___RD C:\Users\Simona\OneDrive
2021-08-08 20:34 - 2020-05-28 14:42 - 000000000 ____D C:\Users\Simona\.dbus-keyrings
2021-08-04 23:59 - 2019-10-25 14:50 - 000003458 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2021-08-04 23:59 - 2019-10-25 14:50 - 000003334 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2021-08-04 19:11 - 2021-04-30 08:24 - 000003724 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-4100036461-1423016816-3956434626-1001UA
2021-08-04 19:11 - 2021-04-30 08:24 - 000003456 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-4100036461-1423016816-3956434626-1001Core
2021-08-01 15:42 - 2020-03-13 14:51 - 000000000 ___HD C:\Windows\msdownld.tmp
2021-08-01 15:42 - 2020-03-13 14:44 - 000000000 ____D C:\Windows\SysWOW64\directx
2021-07-30 22:06 - 2019-10-25 13:08 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-07-27 20:08 - 2021-03-17 20:26 - 000002208 _____ C:\Users\Simona\Desktop\Slack.lnk
2021-07-27 20:08 - 2021-03-17 20:26 - 000000000 ____D C:\Users\Simona\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Slack Technologies Inc
2021-07-27 20:08 - 2021-03-17 20:26 - 000000000 ____D C:\Users\Simona\AppData\Local\slack
2021-07-27 20:03 - 2020-12-01 16:11 - 000000000 ____D C:\Users\Simona\AppData\Local\SquirrelTemp

==================== Files in the root of some directories ========

2019-11-22 17:00 - 2020-04-13 18:02 - 000110931 _____ () C:\Users\Simona\AppData\Roaming\downloads.json
2020-09-24 22:19 - 2020-09-24 22:19 - 000000128 ____H () C:\Users\Simona\AppData\Roaming\ecf00c38dc807e105d881c433a6b455dd2c606b6
2020-12-16 02:52 - 2020-12-16 02:52 - 000000002 _____ () C:\Users\Simona\AppData\Roaming\ExplorerFavorites.txt
2020-04-08 01:04 - 2020-04-08 01:04 - 000000112 _____ () C:\Users\Simona\AppData\Roaming\JP2K CS6 Prefs
2020-08-08 17:34 - 2020-08-08 21:27 - 000000000 _____ () C:\Users\Simona\AppData\Roaming\MCVi2UserDetail.ini
2020-09-04 22:40 - 2021-06-11 13:57 - 000001456 _____ () C:\Users\Simona\AppData\Local\Adobe Save for Web 13.0 Prefs
2019-11-11 23:15 - 2019-11-11 23:15 - 000000356 _____ () C:\Users\Simona\AppData\Local\karboncalligraphyrc
2019-10-29 13:43 - 2020-03-22 18:20 - 001120278 _____ () C:\Users\Simona\AppData\Local\krita.log
2019-11-25 14:58 - 2020-01-18 23:45 - 000105740 _____ () C:\Users\Simona\AppData\Local\kritacrash.log
2020-03-22 18:20 - 2020-03-22 18:20 - 000000039 _____ () C:\Users\Simona\AppData\Local\kritadisplayrc
2019-10-29 13:43 - 2020-03-22 18:20 - 000026124 _____ () C:\Users\Simona\AppData\Local\kritarc
2020-03-19 10:06 - 2020-03-19 10:06 - 000000410 _____ () C:\Users\Simona\AppData\Local\oobelibMkey.log
2021-08-08 21:46 - 2021-08-08 21:46 - 000000218 _____ () C:\Users\Simona\AppData\Local\recently-used.xbel
2020-04-01 21:43 - 2020-04-01 21:43 - 000000017 _____ () C:\Users\Simona\AppData\Local\resmon.resmoncfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================
Nahoru
benkii
Návštěvník
Návštěvník
Příspěvky: 5
Registrován: 24 srp 2021 07:35

Re: Pri spustení počítaču sa mi otvárajú dve stránky v prehliadači

#4 Příspěvek od benkii »

Add:

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 21-08-2021
Ran by Simona (24-08-2021 08:47:07)
Running from C:\Users\Simona\Downloads
Windows 10 Home Version 1903 18362.778 (X64) (2019-10-25 10:54:10)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-4100036461-1423016816-3956434626-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-4100036461-1423016816-3956434626-503 - Limited - Disabled)
Guest (S-1-5-21-4100036461-1423016816-3956434626-501 - Limited - Disabled)
Simona (S-1-5-21-4100036461-1423016816-3956434626-1001 - Administrator - Enabled) => C:\Users\Simona
WDAGUtilityAccount (S-1-5-21-4100036461-1423016816-3956434626-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
FW: Avast Antivirus (Enabled) {D322394B-73F7-C65E-BBB0-3B81E063D6D4}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 19.02 alpha (x64) (HKLM\...\7-Zip) (Version: 19.02 alpha - Igor Pavlov)
Acer Quick Access (HKLM\...\{8BBF04F1-C68A-441C-B5EF-446EE9960EAF}) (Version: 2.01.3028 - Acer Incorporated)
Adobe Acrobat Reader DC - Slovak (HKLM-x32\...\{AC76BA86-7AD7-1051-7B44-AC0F074E4100}) (Version: 21.005.20060 - Adobe Systems Incorporated)
Adobe After Effects 2020 (HKLM-x32\...\AEFT_17_5_1) (Version: 17.5.1 - Adobe Inc.)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 5.4.3.544 - Adobe Inc.)
Adobe Genuine Service (HKLM-x32\...\AdobeGenuineService) (Version: - Adobe)
Adobe Illustrator CC 2019 (HKLM-x32\...\ILST_23_0_1) (Version: 23.0.1 - Adobe Inc.)
Adobe InDesign 2020 (HKLM-x32\...\IDSN_15_1_2) (Version: 15.1.2 - Adobe Inc.)
Adobe Lightroom (HKLM-x32\...\LRCC_4_1) (Version: 4.1 - Adobe Inc.)
Adobe Media Encoder 2020 (HKLM-x32\...\AME_14_7) (Version: 14.7 - Adobe Inc.)
Adobe Photoshop CC 2017 (HKLM-x32\...\PHSP_18_0) (Version: 18.0.0 - Adobe Systems Incorporated)
Adobe Premiere Pro 2020 (HKLM-x32\...\PPRO_14_5) (Version: 14.5 - Adobe Inc.)
Avast Premium Security (HKLM\...\Avast Antivirus) (Version: 21.6.2474 - Avast Software)
Care Center Service (HKLM\...\{AFB52E98-7597-4484-9202-58F0FD3512ED}) (Version: 4.00.3010 - Acer Incorporated)
ClickUp 2.0.22 (HKLM\...\c74c0073-61c4-5f5c-aa1c-6722d538bc46) (Version: 2.0.22 - ClickUp)
CodeTwo QR Code Desktop Reader & Generator (HKLM-x32\...\{AF7E31D6-980C-4788-B80C-47F1837CF44C}) (Version: 1.1.2.4 - CodeTwo)
Discord (HKU\S-1-5-21-4100036461-1423016816-3956434626-1001\...\Discord) (Version: 0.0.309 - Discord Inc.)
DriverSetupUtility (HKLM\...\{2B51C83A-465D-4EA9-9CDC-1ED95ED09AC6}) (Version: 1.00.3020 - Acer Incorporated)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 92.0.4515.159 - Google LLC)
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.99.0 - Google Inc.) Hidden
Google Video Support Plugin (HKU\S-1-5-21-4100036461-1423016816-3956434626-1001\...\{F9B579C2-D854-300A-BE62-A09EB9D722E4}) (Version: 19.12.1000.0 - Google, LLC.)
HP LaserJet P1000 series (HKLM-x32\...\HP LaserJet P1000 series) (Version: - )
HPSSupply (HKLM-x32\...\{7902E313-FF0F-4493-ACB1-A8147B78DCD0}) (Version: 2.1.1.0000 - Hewlett Packard Development Company L.P.)
Inkscape (HKLM-x32\...\Inkscape) (Version: 1.0.0- - Inkscape)
Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{F70BCE36-25F2-4475-A918-6209B3D85BF3}) (Version: 15.0.179 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 23.20.16.4973 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 16.7.1.1012 - Intel Corporation)
Intel® Chipset Device Software (HKLM-x32\...\{44ded3eb-1686-46a6-9770-fd79096c29f7}) (Version: 10.1.1.45 - Intel(R) Corporation) Hidden
Java 8 Update 231 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180231F0}) (Version: 8.0.2310.11 - Oracle Corporation)
LibreOffice 6.3 Help Pack (Slovak) (HKLM\...\{CDACD5ED-A946-4EF1-8603-1867DD033800}) (Version: 6.3.2.2 - The Document Foundation)
LibreOffice 6.3.2.2 (HKLM\...\{6110D2CC-70B4-415E-AF5A-7BB496AB264B}) (Version: 6.3.2.2 - The Document Foundation)
Maxon Cinema 4D R21 (HKLM\...\Maxon Cinema 4D R21) (Version: R21 - Maxon)
Microsoft Access database engine 2010 (English) (HKLM-x32\...\{90140000-00D1-0409-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Professional 2019 - cs-cz (HKLM\...\Professional2019Retail - cs-cz) (Version: 16.0.14228.20250 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-4100036461-1423016816-3956434626-1001\...\OneDriveSetup.exe) (Version: 21.150.0725.0001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable - x64 8.0.61000 (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable - x86 8.0.61001 (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{a2199617-3609-410f-a8e8-e8806c73545b}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{f0080ca2-80ae-4958-b6eb-e8fa916d744a}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.23.27820 (HKLM-x32\...\{852adda4-4c78-4a38-b583-c0b360a329d6}) (Version: 14.23.27820.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.23.27820 (HKLM-x32\...\{45231ab4-69fd-486a-859d-7a59fcd11013}) (Version: 14.23.27820.0 - Microsoft Corporation)
Microsoft Visual Studio Code (User) (HKU\S-1-5-21-4100036461-1423016816-3956434626-1001\...\{771FD6B0-FA20-440A-A002-3B3BAC16DC50}_is1) (Version: 1.45.1 - Microsoft Corporation)
Minecraft Launcher (HKLM-x32\...\{27B34E47-68AE-4802-822A-9F0C187AF84A}) (Version: 1.0.0.0 - Mojang)
MrvlUsgTracking (HKLM-x32\...\{A82D052A-0806-42DF-80CD-1730A1AC0ED3}) (Version: 1.0.7 - Marvell)
MrvlUsgTracking64 (HKLM\...\{42F0FD29-7EB3-4CAA-AF10-BC2619B96D80}) (Version: 1.0.1 - Marvell Semiconductor Pvt Ltd)
NVIDIA PhysX (HKLM-x32\...\{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}) (Version: 9.10.0513 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.14228.20250 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.14228.20222 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.14228.20250 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden
Papers Please version 1.1.60-S (HKLM-x32\...\Papers Please_is1) (Version: 1.1.60-S - )
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8924.1 - Realtek Semiconductor Corp.)
Roblox Player for Simona (HKU\S-1-5-21-4100036461-1423016816-3956434626-1001\...\roblox-player) (Version: - Roblox Corporation)
Slack (HKU\S-1-5-21-4100036461-1423016816-3956434626-1001\...\slack) (Version: 4.18.0 - Slack Technologies Inc.)
Spark AR Studio (HKLM\...\{AE3D20A6-8C32-483A-9551-BBFB05E8C33A}) (Version: 98.0.17 - Facebook Inc.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.5.6 - TeamSpeak Systems GmbH)
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.18.5 - TeamViewer)
The Sims 4 v.1.59.73.1020 (HKLM-x32\...\The Sims 4_is1) (Version: - )
Toggl Track (HKU\S-1-5-21-4100036461-1423016816-3956434626-1001\...\TogglDesktop) (Version: - Toggl)
VEGAS Pro 16.0 (HKLM\...\{D1319B1E-615E-11E9-8C4C-00155D6302F2}) (Version: 16.0.424 - VEGAS)
VEGAS Pro 16.0 (HKLM-x32\...\VEGAS Pro 16.0 16.0.0.424) (Version: 16.0.0.424 - Sony)
VirtualDJ 2020 (HKLM\...\{549F492B-B52D-4B83-86B3-B239BBD8816D}) (Version: 8.4.5352.0 - Atomix Productions)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.8 - VideoLAN)
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
Wacom Tablet (HKLM\...\Wacom Tablet Driver) (Version: 6.3.36-1 - Wacom Technology Corp.)
WebAdvisor od McAfee (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.1.621 - McAfee, LLC)
Windows Boot Genius (HKLM-x32\...\Windows Boot Genius) (Version: - Tenorshare, Inc.)
WinRAR 5.71 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)
WinRAR 5.71 64-bit (HKLM-x32\...\WinRAR 5.71 64-bit 5.71) (Version: 5.71 - RARLAB)

Packages:
=========
Adobe Notification Client -> C:\Program Files\WindowsApps\AdobeNotificationClient_2.0.1.8_x86__enpm4xejd91yc [2020-11-05] (Adobe Systems Incorporated)
Care Center S -> C:\Program Files\WindowsApps\AcerIncorporated.AcerCareCenterS_4.0.3010.0_x64__48frkmn4z8aw4 [2019-10-25] (Acer Incorporated)
Doplnok mediálneho nástroja pre Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-04-05] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-10-30] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-10-30] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.4282.0_x64__8wekyb3d8bbwe [2020-04-30] (Microsoft Studios) [MS Ad]
MSN Počasie -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-26] (Microsoft Corporation) [MS Ad]
Skype -> C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c [2020-02-09] (Skype)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-4100036461-1423016816-3956434626-1001_Classes\CLSID\{2F81B25E-7507-4844-BFF2-77D2CC24CED4}\localserver32 -> C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Inc. -> Adobe Inc.)
CustomCLSID: HKU\S-1-5-21-4100036461-1423016816-3956434626-1001_Classes\CLSID\{85D8EE2F-794F-41F0-BB03-49D56A23BEF4}\InprocServer32 -> C:\Users\Simona\AppData\Local\Google\Update\1.3.36.102\psuser_64.dll (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-4100036461-1423016816-3956434626-1001_Classes\CLSID\{8B480070-D37D-4090-A063-7A429F849652}\InprocServer32 -> C:\Users\Simona\AppData\Local\Google\Update\1.3.36.92\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-4100036461-1423016816-3956434626-1001_Classes\CLSID\{BE5C2E39-090F-46A2-AFAA-47540743B4FE}\InprocServer32 -> C:\Users\Simona\AppData\Local\Google\Update\1.3.36.102\psuser_64.dll (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-4100036461-1423016816-3956434626-1001_Classes\CLSID\{CA8FA699-91CD-412F-9D13-9B1222F4370E}\InprocServer32 -> C:\Users\Simona\AppData\Local\Google\Update\1.3.36.82\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-4100036461-1423016816-3956434626-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems)
CustomCLSID: HKU\S-1-5-21-4100036461-1423016816-3956434626-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Simona\AppData\Local\Google\Update\1.3.36.102\psuser_64.dll (Google LLC -> Google LLC)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-04-16] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-04-16] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-04-16] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-08-24] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-08-24] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-04-16] (Adobe Inc. -> )
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll -> No File
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-08-24] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-08-24] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_9088b61921a6ff9f\igfxDTCM.dll [2018-03-08] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-04-16] (Adobe Inc. -> )
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-08-24] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData:iSpring Solutions [128]
AlternateDataStreams: C:\Users\All Users:iSpring Solutions [128]
AlternateDataStreams: C:\ProgramData\Application Data:iSpring Solutions [128]
AlternateDataStreams: C:\Users\Simona\Application Data:iSpring Solutions [128]
AlternateDataStreams: C:\Users\Simona\AppData\Roaming:iSpring Solutions [128]

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2021-06-02] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_231\bin\ssv.dll [2019-11-08] (Oracle America, Inc. -> Oracle Corporation)
BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2021-08-24] (McAfee, LLC -> McAfee, LLC)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_231\bin\jp2ssv.dll [2019-11-08] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2021-08-24] (McAfee, LLC -> McAfee, LLC)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-08-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-08-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-08-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-08-01] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-4100036461-1423016816-3956434626-1001\...\sharepoint.com -> hxxps://ucmtt-files.sharepoint.com

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-03-19 06:49 - 2021-02-04 21:23 - 000000901 ____N C:\Windows\system32\drivers\etc\hosts
35.156.90.191 authserver.mojang.com
35.156.90.191 sessionserver.mojang.com

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> %INTEL_DEV_REDIST%redist\intel64\compiler;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-4100036461-1423016816-3956434626-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Simona\Desktop\Random stuff\plocha.png
DNS Servers: 172.30.3.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

MSCONFIG\Services: TeamViewer => 2
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "RtHDVBg_ASC"
HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "RTHDVCPL"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKLM\...\StartupApproved\Run32: => "Adobe CCXProcess"
HKU\S-1-5-21-4100036461-1423016816-3956434626-1001\...\StartupApproved\Run: => "Flvto Youtube Downloader"
HKU\S-1-5-21-4100036461-1423016816-3956434626-1001\...\StartupApproved\Run: => "CCXProcess"
HKU\S-1-5-21-4100036461-1423016816-3956434626-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-4100036461-1423016816-3956434626-1001\...\StartupApproved\Run: => "Discord"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{951BCFD4-78D6-49BD-A3FA-6BDD7DA89362}] => (Allow) C:\Users\Simona\AppData\Roaming\uTorrent\uTorrent.exe => No File
FirewallRules: [{5BCADE2E-796F-4211-ADAE-E997132898FE}] => (Allow) C:\Users\Simona\AppData\Roaming\uTorrent\uTorrent.exe => No File
FirewallRules: [{15B089CD-7F2B-4D93-9F67-0FF4BA2C3E0D}] => (Allow) C:\Windows\System32\spool\drivers\x64\3\HP1006MC.EXE (Microsoft Windows Hardware Compatibility Publisher -> Software 2000 Limited)
FirewallRules: [{0ABADC12-CEB5-4869-BE54-BB1D6ABE8E10}] => (Allow) C:\Windows\System32\spool\drivers\x64\3\HP1006MC.EXE (Microsoft Windows Hardware Compatibility Publisher -> Software 2000 Limited)
FirewallRules: [TCP Query User{2F350C54-3DF1-4F48-B4A1-6CD0FB8CC54E}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{A4B138CD-395B-4076-B627-9B7E0F3B1CC4}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [TCP Query User{E266A022-00CE-44E7-BDE7-CFDBC1B5B44F}C:\games\the sims 4\game\bin\ts4_x64.exe] => (Allow) C:\games\the sims 4\game\bin\ts4_x64.exe (Electronic Arts Inc.) [File not signed]
FirewallRules: [UDP Query User{10A36EBA-EBD7-45DC-9AE2-FB6ED4B40075}C:\games\the sims 4\game\bin\ts4_x64.exe] => (Allow) C:\games\the sims 4\game\bin\ts4_x64.exe (Electronic Arts Inc.) [File not signed]
FirewallRules: [TCP Query User{9278BAB2-9F42-477A-AE06-99F75D3FA848}C:\counter-strike 1.6\hl.exe] => (Allow) C:\counter-strike 1.6\hl.exe => No File
FirewallRules: [UDP Query User{79014B28-D77A-4EA1-8A16-C62FDD07925E}C:\counter-strike 1.6\hl.exe] => (Allow) C:\counter-strike 1.6\hl.exe => No File
FirewallRules: [TCP Query User{CB95ED8B-59F1-49BA-B007-6B29ABDF8074}C:\games\the sims 4\game\bin\ts4_x64.exe] => (Block) C:\games\the sims 4\game\bin\ts4_x64.exe (Electronic Arts Inc.) [File not signed]
FirewallRules: [UDP Query User{203394E1-2246-474B-A39E-7D097D8508F0}C:\games\the sims 4\game\bin\ts4_x64.exe] => (Block) C:\games\the sims 4\game\bin\ts4_x64.exe (Electronic Arts Inc.) [File not signed]
FirewallRules: [TCP Query User{17944604-F89F-44DC-8304-C9045D86D458}C:\program files\spark ar studio\v98\resources\node-win-x64.exe] => (Allow) C:\program files\spark ar studio\v98\resources\node-win-x64.exe (Facebook, Inc. -> Node.js)
FirewallRules: [UDP Query User{92FB63C2-4D86-4440-A4BC-D01F6F5AAC5B}C:\program files\spark ar studio\v98\resources\node-win-x64.exe] => (Allow) C:\program files\spark ar studio\v98\resources\node-win-x64.exe (Facebook, Inc. -> Node.js)
FirewallRules: [{E987860F-54DE-4B2D-BC94-48A512BD9C9F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{B7667D71-6B14-404D-A335-75D7D53F82B7}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{65614F79-B032-40C6-BE6B-403960B18A50}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{92542E27-A615-45C6-99E4-A82ED75491AA}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{E71BC73B-727C-427E-AF68-701B822592F8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{4CDDE547-2623-4825-9EDE-494A882EAABF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{F894ACD6-B742-40A7-964A-6C75DD6F0132}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Among Us\Among Us.exe () [File not signed]
FirewallRules: [{148169A0-EE74-4318-B308-A979CFE53B0D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Among Us\Among Us.exe () [File not signed]
FirewallRules: [{5FD1E20D-60C4-4192-8918-5DFD352E2C1E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{4E7A853B-4E71-401A-BCB0-BD1A760F0114}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{313CA017-C3BB-4847-84D6-D00FF7D43D9C}C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe
FirewallRules: [UDP Query User{F7DDAADD-A781-431D-82F6-C81971D754E3}C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe
FirewallRules: [TCP Query User{0D550ED3-B00E-4D72-94D6-74FC6B94B67A}C:\program files\java\jre1.8.0_231\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_231\bin\javaw.exe
FirewallRules: [UDP Query User{D601A233-995F-4632-82E5-A3E31B9A7F25}C:\program files\java\jre1.8.0_231\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_231\bin\javaw.exe
FirewallRules: [{B7E357BF-3276-4314-A35E-DD693985F77D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Business Tour\BusinessTour.exe () [File not signed]
FirewallRules: [{7CB29C54-40BC-4B70-9BD1-B1F74FEF4A2A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Business Tour\BusinessTour.exe () [File not signed]
FirewallRules: [{2E0D18D6-9EE0-44DF-ABBE-6047CB627355}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Catan Universe\CatanUniverse.exe () [File not signed]
FirewallRules: [{08A1BBB2-D116-4FE9-8AFB-156B1B366E73}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Catan Universe\CatanUniverse.exe () [File not signed]
FirewallRules: [{7F1EF1EE-1F93-45CA-8723-359A79F64E94}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{AADE7FF1-8D07-4BCF-B2EF-B1D569C2E59C}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{FEAA93D8-6647-421F-98E2-E413B8590529}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{933736EC-14E1-4CC2-9D5E-D29BB98871A7}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{5F26DC9F-6E50-4258-8E1C-FF97B96DA593}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{FE072B93-C71D-4979-B7A0-DC49284101BA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe () [File not signed]
FirewallRules: [{F5A7CA0A-101F-49BF-B4B7-41BC653E93B6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe () [File not signed]
FirewallRules: [{7E61BBF2-71AD-42C6-8A35-3E65EC81D67D}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

ATTENTION: System Restore is disabled (Total:476.31 GB) (Free:126.95 GB) (27%)

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (08/24/2021 07:58:19 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program Microsoft.Notes.exe version 3.7.124.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 2190

Start Time: 01d798acda3c100e

Termination Time: 4294967295

Application Path: C:\Program Files\WindowsApps\Microsoft.MicrosoftStickyNotes_3.7.124.0_x64__8wekyb3d8bbwe\Microsoft.Notes.exe

Report Id: 370333f9-d3e9-474d-95dd-82eab5327f00

Faulting package full name: Microsoft.MicrosoftStickyNotes_3.7.124.0_x64__8wekyb3d8bbwe

Faulting package-relative application ID: App

Hang type: Cross-process

Error: (08/24/2021 07:37:28 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: SecHealthUI.exe, verzia: 10.0.18362.752, časová značka: 0x5e70487e
Názov chybujúceho modulu: SecHealthUIViewModels.dll, verzia: 10.0.18362.752, časová značka: 0x5e704823
Kód výnimky: 0xc000041d
Odstup chyby: 0x00000000000088d8
Identifikácia chybujúceho procesu: 0x760
Čas spustenia chybujúcej aplikácie: 0x01d798a9eab08fbe
Cesta chybujúcej aplikácie: C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe
Cesta chybujúceho modulu: C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUIViewModels.dll
Identifikácia hlásenia: 06bee826-0bde-4399-9079-c90f5569b6dd
Celé meno chybujúceho balíka: Microsoft.Windows.SecHealthUI_10.0.18362.449_neutral__cw5n1h2txyewy
Identifikácia chybujúcej aplikácie vzhľadom na balík: SecHealthUI

Error: (08/24/2021 07:37:26 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: SecHealthUI.exe, verzia: 10.0.18362.752, časová značka: 0x5e70487e
Názov chybujúceho modulu: SecHealthUIViewModels.dll, verzia: 10.0.18362.752, časová značka: 0x5e704823
Kód výnimky: 0xc0000005
Odstup chyby: 0x00000000000088d8
Identifikácia chybujúceho procesu: 0x760
Čas spustenia chybujúcej aplikácie: 0x01d798a9eab08fbe
Cesta chybujúcej aplikácie: C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe
Cesta chybujúceho modulu: C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUIViewModels.dll
Identifikácia hlásenia: 8a7387b2-0691-428a-bdc2-77106446f22a
Celé meno chybujúceho balíka: Microsoft.Windows.SecHealthUI_10.0.18362.449_neutral__cw5n1h2txyewy
Identifikácia chybujúcej aplikácie vzhľadom na balík: SecHealthUI

Error: (08/24/2021 07:35:40 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: SecHealthUI.exe, verzia: 10.0.18362.752, časová značka: 0x5e70487e
Názov chybujúceho modulu: SecHealthUIViewModels.dll, verzia: 10.0.18362.752, časová značka: 0x5e704823
Kód výnimky: 0xc000041d
Odstup chyby: 0x00000000000088d8
Identifikácia chybujúceho procesu: 0x9a8
Čas spustenia chybujúcej aplikácie: 0x01d798a9d6e77c8d
Cesta chybujúcej aplikácie: C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe
Cesta chybujúceho modulu: C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUIViewModels.dll
Identifikácia hlásenia: 4f5e5128-ba3c-48e9-ac7a-555b815545fb
Celé meno chybujúceho balíka: Microsoft.Windows.SecHealthUI_10.0.18362.449_neutral__cw5n1h2txyewy
Identifikácia chybujúcej aplikácie vzhľadom na balík: SecHealthUI

Error: (08/24/2021 07:35:30 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: SecHealthUI.exe, verzia: 10.0.18362.752, časová značka: 0x5e70487e
Názov chybujúceho modulu: SecHealthUIViewModels.dll, verzia: 10.0.18362.752, časová značka: 0x5e704823
Kód výnimky: 0xc0000005
Odstup chyby: 0x00000000000088d8
Identifikácia chybujúceho procesu: 0x9a8
Čas spustenia chybujúcej aplikácie: 0x01d798a9d6e77c8d
Cesta chybujúcej aplikácie: C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe
Cesta chybujúceho modulu: C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUIViewModels.dll
Identifikácia hlásenia: 3bd6a450-f551-4707-b6d0-cad745700f01
Celé meno chybujúceho balíka: Microsoft.Windows.SecHealthUI_10.0.18362.449_neutral__cw5n1h2txyewy
Identifikácia chybujúcej aplikácie vzhľadom na balík: SecHealthUI

Error: (08/24/2021 07:27:54 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, A system shutdown is in progress.
.

Error: (08/24/2021 07:27:54 AM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
]

Error: (08/24/2021 07:27:54 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, A system shutdown is in progress.
.


System errors:
=============
Error: (08/24/2021 08:47:49 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba wuauserv bola ukončená s nasledujúcou chybou:
The system cannot find the file specified.

Error: (08/24/2021 08:47:49 AM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: The server {E60687F7-01A1-40AA-86AC-DB1CBF673334} did not register with DCOM within the required timeout.

Error: (08/24/2021 08:45:49 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba wuauserv bola ukončená s nasledujúcou chybou:
The system cannot find the file specified.

Error: (08/24/2021 08:45:49 AM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: The server {E60687F7-01A1-40AA-86AC-DB1CBF673334} did not register with DCOM within the required timeout.

Error: (08/24/2021 08:43:49 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba wuauserv bola ukončená s nasledujúcou chybou:
The system cannot find the file specified.

Error: (08/24/2021 08:43:49 AM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: The server {E60687F7-01A1-40AA-86AC-DB1CBF673334} did not register with DCOM within the required timeout.

Error: (08/24/2021 08:41:49 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba wuauserv bola ukončená s nasledujúcou chybou:
The system cannot find the file specified.

Error: (08/24/2021 08:41:49 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-IH454QU)
Description: The server {E60687F7-01A1-40AA-86AC-DB1CBF673334} did not register with DCOM within the required timeout.


==================== Memory info ===========================

BIOS: American Megatrends Inc. V1.08 12/21/2018
Motherboard: KBL Erdinger_KL
Processor: Intel(R) Core(TM) i5-8250U CPU @ 1.60GHz
Percentage of memory in use: 64%
Total physical RAM: 8073.95 MB
Available physical RAM: 2868 MB
Total Virtual: 9353.95 MB
Available Virtual: 3743.74 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:476.31 GB) (Free:126.95 GB) (Protected) NTFS

\\?\Volume{76d6f5d1-a696-4a23-8b30-0f0280dbabf9}\ (Obnovenie) (Fixed) (Total:0.52 GB) (Free:0.13 GB) NTFS
\\?\Volume{1cb16a70-c427-4587-a4df-458bf4ea695b}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 476.9 GB) (Disk ID: 4600E5E5)

Partition: GPT.

==================== End of Addition.txt =======================
Nahoru
Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15655
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Pri spustení počítaču sa mi otvárajú dve stránky v prehliadači

#5 Příspěvek od JaRon »

zaskocim:
1. najdi a ZMAZ subor C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\update.bat
2. vycisti PC s CCleanerom
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Nahoru
benkii
Návštěvník
Návštěvník
Příspěvky: 5
Registrován: 24 srp 2021 07:35

Re: Pri spustení počítaču sa mi otvárajú dve stránky v prehliadači

#6 Příspěvek od benkii »

Supeeeeer :) Ďakujem moc, robilo mi to neplechu pár mesiacov .... a náhdou ešte tip na ten druhý problém s error oknom ?
Nahoru
Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15655
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Pri spustení počítaču sa mi otvárajú dve stránky v prehliadači

#7 Příspěvek od JaRon »

Zrus task
Task: {E435A09B-C0E1-4DE9-A91D-A25E51A5D6B6} - System32\Tasks\Microsoft\Windows\Application Experience\StartupCheckLibrary => rundll32.exe StartupCheckLibrary.dll,DllMainRunLibrary <==== ATTENTION
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Nahoru
benkii
Návštěvník
Návštěvník
Příspěvky: 5
Registrován: 24 srp 2021 07:35

Re: Pri spustení počítaču sa mi otvárajú dve stránky v prehliadači

#8 Příspěvek od benkii »

Ďakujem mnohokrát!
Nahoru
Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15655
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Pri spustení počítaču sa mi otvárajú dve stránky v prehliadači

#9 Příspěvek od JaRon »

Rado sa stalo :)
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Nahoru
Zamčeno

Zpět na „Řešení problémů, logy“