prosim o kontolu,zpomalen NTB

Zpráva

Odin41 · #1 Příspěvek od **Odin41** » 17 říj 2022 16:21

Procesor i HDD jede na 100%

Dekuji

==================== Memory info ===========================

BIOS: Insyde F.51 05/31/2019
Motherboard: HP 8330
Processor: AMD A6-9220 RADEON R4, 5 COMPUTE CORES 2C+3G
Percentage of memory in use: 83%
Total physical RAM: 3981.68 MB
Available physical RAM: 651.13 MB
Total Virtual: 5977.02 MB
Available Virtual: 910.03 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:916.17 GB) (Free:758.31 GB) (Model: ST1000LM035-1RK172) NTFS
Drive d: (RECOVERY) (Fixed) (Total:14.11 GB) (Free:2.1 GB) (Model: ST1000LM035-1RK172) NTFS ==>[system with boot components (obtained from drive)]

\\?\Volume{4bb35276-525d-4a5e-af4f-6dff738c2fb2}\ (Windows RE tools) (Fixed) (Total:0.96 GB) (Free:0.35 GB) NTFS
\\?\Volume{b9767039-5c29-4a82-b123-f370a333966f}\ () (Fixed) (Total:0.25 GB) (Free:0.17 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 3BC8DD49)

Partition: GPT.

==================== End of Addition.txt =======================

can result of Farbar Recovery Scan Tool (FRST) (x64) Version: 16-10-2022
Ran by HP (administrator) on LAPTOP-JOAP3JBE (HP HP Laptop 15-bw0xx) (17-10-2022 17:10:38)
Running from C:\Users\HP\Desktop
Loaded Profiles: HP
Platform: Microsoft Windows 10 Home Version 21H1 19043.2006 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(C:\Program Files\AVG\Antivirus\AVGSvc.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswEngSrv.exe
(C:\Program Files\AVG\Antivirus\AVGSvc.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGUI.exe <5>
(C:\Program Files\AVG\Secure VPN\VpnSvc.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Secure VPN\WireGuard\wireguardtun.exe
(CYBERLINKCOM CORP) C:\Program Files\WindowsApps\cyberlinkcorp.hs.powermediaplayer14forhpconsumerpc_14.2.9528.0_x86__06qsbagp91rvg\PowerDVD14\Movie\PowerDVDMovie.exe
(DriverStore\FileRepository\c0336994.inf_amd64_b976c53d8b210252\B336712\atiesrxx.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0336994.inf_amd64_b976c53d8b210252\B336712\atieclxx.exe
(explorer.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Secure VPN\Vpn.exe <3>
(explorer.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\TuneUp\TuneupUI.exe <3>
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <10>
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(services.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0336994.inf_amd64_b976c53d8b210252\B336712\atiesrxx.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AntiTrack\AntiTrackSvc.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\afwServ.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswidsagent.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGSvc.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\avgToolsSvc.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\wsc_proxy.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Secure VPN\VpnSvc.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\TuneUp\TuneupSvc.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPCommRecovery\HPCommRecovery.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnhService.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Office.Desktop_16051.15629.20156.0_x86__8wekyb3d8bbwe\Office16\SDXHelperBgt.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20970.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22082.111.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.1940_none_7dd80d767cb5c7b0\TiWorker.exe
(SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnh.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [11235928 2020-04-24] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [249088 2022-09-29] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [TuneupUI.exe] => C:\Program Files\AVG\TuneUp\TuneupUI.exe [4143360 2022-09-11] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe [709152 2018-03-22] (HP Inc. -> HP Inc.)
HKLM-x32\...\Run: [RtlS5Wake] => C:\Program Files (x86)\Realtek\PCIE Wireless LAN\RtlS5Wake\RtlS5Wake.exe [2097600 2018-02-23] (Realtek Semiconductor Corp. -> Realtek)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-1257516087-3470581175-2449549061-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [38502416 2022-09-12] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-1257516087-3470581175-2449549061-1001\...\Run: [MicrosoftEdgeAutoLaunch_AC3B7AF181558E407F159DB8A5D4AA84] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3852232 2022-10-10] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\106.0.5249.119\Installer\chrmstp.exe [2022-10-13] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AVG Secure VPN.lnk [2022-10-09]
ShortcutTarget: AVG Secure VPN.lnk -> C:\Program Files\AVG\Secure VPN\Vpn.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {071A0CAF-202C-479A-842A-14246E469140} - \Microsoft\Windows\UpdateOrchestrator\USO_Broker_Display -> No File <==== ATTENTION
Task: {08D8A9E3-5AE7-47D2-9E60-98DC652C2605} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [49032 2018-12-10] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {10E4196B-E8E5-48AC-972C-D0436513F348} - System32\Tasks\AVG\AVG Secure VPN Update => C:\Program Files\Common Files\AVG\Icarus\avg-vpn\icarus.exe [6718832 2022-09-29] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {2778BBA7-6581-4CD6-B01F-3EFA978D586C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Opt-in For HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF_Utils.exe [58736 2017-09-27] (HP Inc. -> HP Inc.)
Task: {27999E83-2A32-4AD7-AB9F-FDA0B68ED2EC} - System32\Tasks\AVG\AVG TuneUp BugReport => C:\Program Files\AVG\TuneUp\AvBugReport.exe [4737792 2022-09-11] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) -> --send "dumps|report" --silent --product 74 --programpath "C:\Program Files\AVG\TuneUp\Setup\.." --configpath "C:\Program Files\AVG\TuneUp\Setup" --path "C:\ProgramData\AVG\TuneUp\log" --path "C:\ProgramData\AVG\Icarus\Logs" --guid a03db551-fe04-4ec2-a9c5-78328beb0fd1
Task: {2971DA93-BE8D-467E-B18A-B330A999973F} - System32\Tasks\AVG\AVG TuneUp Update => C:\Program Files\Common Files\AVG\Icarus\avg-tu\icarus.exe [6827776 2022-09-06] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {2BB692C1-F60F-479E-ADC2-1CAF9422A2AC} - \Microsoft\Windows\Shell\FamilySafetyMonitorToastTask -> No File <==== ATTENTION
Task: {31B65BE9-5E54-4513-9995-04943BA194A0} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [198696 2017-09-27] (HP Inc. -> HP Inc.)
Task: {5328F2EA-23B8-4B7B-88BF-3690F00A917C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Active Health Launcher => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [198696 2017-09-27] (HP Inc. -> HP Inc.)
Task: {5AD086A8-81A5-46B1-8369-66B6AAAC7CAF} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\dvrcmd.exe [63880 2018-12-10] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {63B5F1B4-32EC-4E92-8D25-126DB16AC268} - System32\Tasks\HPEA3JOBS => C:\Program [Argument = Files\HP\HP ePrint\hpeprint.exe /CheckJobs]
Task: {6AB2F21A-9E69-4563-85CA-A9DA39FB9311} - System32\Tasks\SmartShare => C:\Program Files (x86)\LG Software\LG Smart Share\SmartShareStart.exe tray (No File)
Task: {7A3C7DD2-B706-4650-B1D9-969433EFDCCB} - System32\Tasks\AVG\AVG Secure VPN Bug Report => C:\Program Files\AVG\Secure VPN\AvBugReport.exe [4684216 2022-10-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) -> --send "dumps|report" --silent --product 12 --programpath "C:\Program Files\AVG\Secure VPN" --configpath "C:\ProgramData\AVG\Secure VPN" --path "C:\ProgramData\AVG\Secure VPN\log" --path "C:\ProgramData\AVG\Icarus\Logs" --logpath "C:\ProgramData\AVG\Secure VPN\log" --guid 9782aa12-31b4-46af-8465-3756bad3a5db
Task: {8FCC1F4B-F8BE-4D66-8C8C-9C06AE99C52B} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-09-12] (Piriform Software Ltd -> Piriform)
Task: {9D248215-740A-4BEA-9B3A-32F42194EEEC} - \Microsoft\Windows\Windows Defender\Windows Defender Verification -> No File <==== ATTENTION
Task: {B6CF7CD3-32C4-4D7D-97BC-30AA8D4D4A70} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [2287472 2022-05-26] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {B6E67297-4E2A-4BAB-9C4A-63B62EDBF591} - \Microsoft\Windows\Management\Provisioning\PostResetBoot -> No File <==== ATTENTION
Task: {B909DD16-9888-4943-9949-F8A7EE724631} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [216432 2017-09-27] (HP Inc. -> HP Inc.)
Task: {BD0B3546-E6EB-4F6D-A850-036D14B8463D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2022-02-26] (Google Inc -> Google LLC)
Task: {C0A6DBCC-E531-454F-AA58-54CDBAB3B6E0} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1490800 2017-09-27] (HP Inc. -> HP Inc.)
Task: {C2098BE2-A29A-4EB1-97F6-F0C57E086D4F} - \Microsoft\Windows\Speech\HeadsetButtonPress -> No File <==== ATTENTION
Task: {C48D50E5-71A9-48D8-B7C1-3DA9AECBDEC3} - \Microsoft\Windows\WindowsUpdate\sih -> No File <==== ATTENTION
Task: {CCB44D57-C65F-41B5-B488-5EBAA1F7E572} - \Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan -> No File <==== ATTENTION
Task: {CE88DADF-01CB-4351-8D78-F81A58651A82} - \Microsoft\Windows\Windows Defender\Windows Defender Cleanup -> No File <==== ATTENTION
Task: {D7AB1398-4F97-4494-A12E-83D4500D3C32} - System32\Tasks\CCleanerSkipUAC - HP => C:\Program Files\CCleaner\CCleaner.exe [32204304 2022-09-12] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {E5957679-43BE-4D5A-BB67-F28216376FAE} - System32\Tasks\HPJumpStartLaunch => C:\Program Files (x86)\HP\HP JumpStart Launch\HPJumpStartLaunch.exe [461824 2017-10-06] (HP Inc. -> HP Inc.)
Task: {ECD9A9A8-4CA9-437C-9401-5F01378255E7} - System32\Tasks\AVG Secure VPN Update => C:\Program Files\AVG\Secure VPN\VpnUpdate.exe [1243576 2022-10-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
Task: {F02997A1-F384-412D-9BE3-E1C4CFB707DF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2022-02-26] (Google Inc -> Google LLC)
Task: {F59CDA69-A958-404A-9D11-4363277A977F} - System32\Tasks\HPAudioSwitch => C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe [1644960 2017-02-02] (HP Inc. -> HP Inc.)
Task: {FB27850E-1A74-4CA6-B8E9-4C5D08D766DC} - \Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance -> No File <==== ATTENTION
Task: {FC6BDC11-38A3-4F36-A2AA-438E90EF1161} - System32\Tasks\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe [4983040 2022-09-29] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
Task: {FD2AC08F-FAA8-40C7-8448-463172946D03} - System32\Tasks\Hewlett-Packard\HP Support Assistant\First Boot => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF_Utils.exe [58736 2017-09-27] (HP Inc. -> HP Inc.)
Task: {FD9747F6-512C-45EB-A40E-933357AD5FE7} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4666896 2022-09-12] (Piriform Software Ltd -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "61bfb8cd-c0ac-4919-ba46-5976f85e0cf1" --version "6.04.10044" --silent
Task: {FE6EFC5F-1D18-42A5-BEEE-AB82FF0CA02A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [651632 2017-09-27] (HP Inc. -> HP Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 07 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-30] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 109.108.107.106 109.108.109.108
Tcpip\..\Interfaces\{16dbc319-80cd-482a-bd12-86d7c18af153}: [NameServer] 100.120.89.1
Tcpip\..\Interfaces\{41766173-7453-6f66-7477-617265415357}: [NameServer] 100.126.0.1
Tcpip\..\Interfaces\{5939e378-f86e-4675-b0f7-337fd8ff2881}: [DhcpNameServer] 109.108.107.106 109.108.109.108
Tcpip\..\Interfaces\{99fc8789-4672-482e-9fe0-eed157355023}: [DhcpNameServer] 192.168.0.1

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\HP\AppData\Local\Microsoft\Edge\User Data\Default [2022-10-17]
Edge StartupUrls: Default -> "hxxps://www.google.com/"
Edge Extension: (Překladač Google) - C:\Users\HP\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2022-03-24]
Edge Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\HP\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2022-10-14]

FireFox:
========
FF DefaultProfile: gqten5sz.default
FF ProfilePath: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\gqten5sz.default [2021-11-19]
FF ProfilePath: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\iydz36gc.default-release-1643187090265 [2022-10-09]
FF DownloadDir: C:\Users\HP\Desktop
FF Extension: (AdBlocker Ultimate) - C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\iydz36gc.default-release-1643187090265\Extensions\adblockultimate@adblockultimate.net.xpi [2022-02-04]
FF Extension: (No Name) - C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\iydz36gc.default-release-1643187090265\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2022-02-04]
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-09] (Google Inc -> Google, Inc.)

Chrome:
=======
CHR Profile: C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default [2022-10-17]
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR Extension: (Překladač Google) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2022-03-24]
CHR Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-10-13]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-02-26]

#2 Příspěvek od **Rudy** » 17 říj 2022 16:50

Zdravím!
Spusťte tuto utilitu:

Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

Odin41 · #3 Příspěvek od **Odin41** » 17 říj 2022 17:42

# -------------------------------
# Malwarebytes AdwCleaner 8.4.0.0
# -------------------------------
# Build: 08-30-2022
# Database: 2022-10-10.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 10-17-2022
# Duration: 00:01:47
# OS: Windows 10 (Build 19043.2130)
# Cleaned: 28
# Failed: 0

***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKCU\Software\Conduit
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\AVG Tuneup
Deleted HKLM\Software\Wow6432Node\Conduit

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

Deleted Preinstalled.HPAudioSwitch Folder C:\Program Files (x86)\HP\HPAUDIOSWITCH
Deleted Preinstalled.HPAudioSwitch Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F59CDA69-A958-404A-9D11-4363277A977F}
Deleted Preinstalled.HPAudioSwitch Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\HPAudioSwitch
Deleted Preinstalled.HPAudioSwitch Task C:\Windows\System32\Tasks\HPAUDIOSWITCH
Deleted Preinstalled.HPJumpStartBridge Folder C:\Program Files (x86)\HP\HP JUMPSTART BRIDGE
Deleted Preinstalled.HPJumpStartLaunch Folder C:\Program Files (x86)\HP\HP JUMPSTART LAUNCH
Deleted Preinstalled.HPJumpStartLaunch Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E5957679-43BE-4D5A-BB67-F28216376FAE}
Deleted Preinstalled.HPJumpStartLaunch Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\HPJumpStartLaunch
Deleted Preinstalled.HPJumpStartLaunch Task C:\Windows\System32\Tasks\HPJUMPSTARTLAUNCH
Deleted Preinstalled.HPRegistrationService Folder C:\Program Files (x86)\HP\HP REGISTRATION SERVICE
Deleted Preinstalled.HPRegistrationService Folder C:\ProgramData\HP\HP REGISTRATION SERVICE
Deleted Preinstalled.HPSupportAssistant Folder C:\HP\SUPPORT
Deleted Preinstalled.HPSupportAssistant Folder C:\Program Files (x86)\HEWLETT-PACKARD\HP CUSTOMER FEEDBACK
Deleted Preinstalled.HPSupportAssistant Folder C:\Program Files (x86)\HEWLETT-PACKARD\HP SUPPORT FRAMEWORK
Deleted Preinstalled.HPSupportAssistant Folder C:\Program Files (x86)\HEWLETT-PACKARD\HP SUPPORT SOLUTIONS
Deleted Preinstalled.HPSupportAssistant Folder C:\ProgramData\HEWLETT-PACKARD\HP SUPPORT FRAMEWORK
Deleted Preinstalled.HPSupportAssistant Folder C:\Users\HP\AppData\Local\HEWLETT-PACKARD\HP SUPPORT FRAMEWORK
Deleted Preinstalled.HPSupportAssistant Folder C:\Users\HP\AppData\Roaming\HEWLETT-PACKARD\HP SUPPORT FRAMEWORK
Deleted Preinstalled.HPSupportAssistant Registry HKLM\Software\Classes\CLSID\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}
Deleted Preinstalled.HPSupportAssistant Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}
Deleted Preinstalled.HPSupportAssistant Registry HKLM\Software\Wow6432Node\\Classes\CLSID\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}
Deleted Preinstalled.HPSupportAssistant Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}
Deleted Preinstalled.HPSupportAssistant Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{4AAC4B07-77EF-4BCF-88DC-D24E4DE683E8}
Deleted Preinstalled.HPSureConnect Folder C:\Program Files\HPCOMMRECOVERY
Deleted Preinstalled.HPSureConnect Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{6468C4A5-E47E-405F-B675-A70A70983EA6}

*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [4423 octets] - [17/10/2022 18:07:45]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

#4 Příspěvek od **Rudy** » 17 říj 2022 18:26

OK. Dejte nové logy FRST+Addition.

Odin41 · #5 Příspěvek od **Odin41** » 17 říj 2022 18:55

==================== Memory info ===========================

BIOS: Insyde F.51 05/31/2019
Motherboard: HP 8330
Processor: AMD A6-9220 RADEON R4, 5 COMPUTE CORES 2C+3G
Percentage of memory in use: 84%
Total physical RAM: 3981.68 MB
Available physical RAM: 623.23 MB
Total Virtual: 5581.68 MB
Available Virtual: 1779.26 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:916.17 GB) (Free:765.47 GB) (Model: ST1000LM035-1RK172) NTFS
Drive d: (RECOVERY) (Fixed) (Total:14.11 GB) (Free:2.1 GB) (Model: ST1000LM035-1RK172) NTFS ==>[system with boot components (obtained from drive)]

\\?\Volume{4bb35276-525d-4a5e-af4f-6dff738c2fb2}\ (Windows RE tools) (Fixed) (Total:0.96 GB) (Free:0.35 GB) NTFS
\\?\Volume{b9767039-5c29-4a82-b123-f370a333966f}\ () (Fixed) (Total:0.25 GB) (Free:0.17 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 3BC8DD49)

Partition: GPT.

==================== End of Addition.txt =======================

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AvBugReport.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGUI.exe <4>
(C:\Program Files\AVG\Antivirus\AVGSvc.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswEngSrv.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <10>
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AntiTrack\AntiTrackSvc.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\afwServ.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswidsagent.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGSvc.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\avgToolsSvc.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\wsc_proxy.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\TuneUp\TuneupSvc.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Office.Desktop_16051.15629.20156.0_x86__8wekyb3d8bbwe\Office16\SDXHelperBgt.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20970.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.1940_none_7dd80d767cb5c7b0\TiWorker.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [11235928 2020-04-24] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [249088 2022-09-29] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [TuneupUI.exe] => C:\Program Files\AVG\TuneUp\TuneupUI.exe [4143360 2022-09-11] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe [709152 2018-03-22] (HP Inc. -> HP Inc.)
HKLM-x32\...\Run: [RtlS5Wake] => C:\Program Files (x86)\Realtek\PCIE Wireless LAN\RtlS5Wake\RtlS5Wake.exe [2097600 2018-02-23] (Realtek Semiconductor Corp. -> Realtek)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-1257516087-3470581175-2449549061-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [38502416 2022-09-12] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-1257516087-3470581175-2449549061-1001\...\Run: [MicrosoftEdgeAutoLaunch_AC3B7AF181558E407F159DB8A5D4AA84] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3852232 2022-10-10] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\106.0.5249.119\Installer\chrmstp.exe [2022-10-13] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AVG Secure VPN.lnk [2022-10-09]
ShortcutTarget: AVG Secure VPN.lnk -> C:\Program Files\AVG\Secure VPN\Vpn.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {071A0CAF-202C-479A-842A-14246E469140} - \Microsoft\Windows\UpdateOrchestrator\USO_Broker_Display -> No File <==== ATTENTION
Task: {08D8A9E3-5AE7-47D2-9E60-98DC652C2605} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [49032 2018-12-10] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {10E4196B-E8E5-48AC-972C-D0436513F348} - System32\Tasks\AVG\AVG Secure VPN Update => C:\Program Files\Common Files\AVG\Icarus\avg-vpn\icarus.exe [6718832 2022-09-29] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {2778BBA7-6581-4CD6-B01F-3EFA978D586C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Opt-in For HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF_Utils.exe /SetTaskbarTask (No File)
Task: {27999E83-2A32-4AD7-AB9F-FDA0B68ED2EC} - System32\Tasks\AVG\AVG TuneUp BugReport => C:\Program Files\AVG\TuneUp\AvBugReport.exe [4737792 2022-09-11] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) -> --send "dumps|report" --silent --product 74 --programpath "C:\Program Files\AVG\TuneUp\Setup\.." --configpath "C:\Program Files\AVG\TuneUp\Setup" --path "C:\ProgramData\AVG\TuneUp\log" --path "C:\ProgramData\AVG\Icarus\Logs" --guid a03db551-fe04-4ec2-a9c5-78328beb0fd1
Task: {2971DA93-BE8D-467E-B18A-B330A999973F} - System32\Tasks\AVG\AVG TuneUp Update => C:\Program Files\Common Files\AVG\Icarus\avg-tu\icarus.exe [6827776 2022-09-06] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {2BB692C1-F60F-479E-ADC2-1CAF9422A2AC} - \Microsoft\Windows\Shell\FamilySafetyMonitorToastTask -> No File <==== ATTENTION
Task: {31B65BE9-5E54-4513-9995-04943BA194A0} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe -task -source HPSA (No File)
Task: {5328F2EA-23B8-4B7B-88BF-3690F00A917C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Active Health Launcher => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe -source HPSA --create-task (No File)
Task: {5AD086A8-81A5-46B1-8369-66B6AAAC7CAF} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\dvrcmd.exe [63880 2018-12-10] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {63B5F1B4-32EC-4E92-8D25-126DB16AC268} - System32\Tasks\HPEA3JOBS => C:\Program [Argument = Files\HP\HP ePrint\hpeprint.exe /CheckJobs]
Task: {6AB2F21A-9E69-4563-85CA-A9DA39FB9311} - System32\Tasks\SmartShare => C:\Program Files (x86)\LG Software\LG Smart Share\SmartShareStart.exe tray (No File)
Task: {7A3C7DD2-B706-4650-B1D9-969433EFDCCB} - System32\Tasks\AVG\AVG Secure VPN Bug Report => C:\Program Files\AVG\Secure VPN\AvBugReport.exe [4684216 2022-10-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) -> --send "dumps|report" --silent --product 12 --programpath "C:\Program Files\AVG\Secure VPN" --configpath "C:\ProgramData\AVG\Secure VPN" --path "C:\ProgramData\AVG\Secure VPN\log" --path "C:\ProgramData\AVG\Icarus\Logs" --logpath "C:\ProgramData\AVG\Secure VPN\log" --guid 9782aa12-31b4-46af-8465-3756bad3a5db
Task: {8FCC1F4B-F8BE-4D66-8C8C-9C06AE99C52B} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-09-12] (Piriform Software Ltd -> Piriform)
Task: {9606272F-8CF3-42EF-8FAC-235F0CDC51BD} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4666896 2022-09-12] (Piriform Software Ltd -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "61bfb8cd-c0ac-4919-ba46-5976f85e0cf1" --version "6.04.10044" --silent
Task: {9D248215-740A-4BEA-9B3A-32F42194EEEC} - \Microsoft\Windows\Windows Defender\Windows Defender Verification -> No File <==== ATTENTION
Task: {B6CF7CD3-32C4-4D7D-97BC-30AA8D4D4A70} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [2287472 2022-05-26] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {B6E67297-4E2A-4BAB-9C4A-63B62EDBF591} - \Microsoft\Windows\Management\Provisioning\PostResetBoot -> No File <==== ATTENTION
Task: {B909DD16-9888-4943-9949-F8A7EE724631} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe /noreport (No File)
Task: {BD0B3546-E6EB-4F6D-A850-036D14B8463D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2022-02-26] (Google Inc -> Google LLC)
Task: {C0A6DBCC-E531-454F-AA58-54CDBAB3B6E0} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe /taskrestart (No File)
Task: {C2098BE2-A29A-4EB1-97F6-F0C57E086D4F} - \Microsoft\Windows\Speech\HeadsetButtonPress -> No File <==== ATTENTION
Task: {C48D50E5-71A9-48D8-B7C1-3DA9AECBDEC3} - \Microsoft\Windows\WindowsUpdate\sih -> No File <==== ATTENTION
Task: {CCB44D57-C65F-41B5-B488-5EBAA1F7E572} - \Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan -> No File <==== ATTENTION
Task: {CE88DADF-01CB-4351-8D78-F81A58651A82} - \Microsoft\Windows\Windows Defender\Windows Defender Cleanup -> No File <==== ATTENTION
Task: {D7AB1398-4F97-4494-A12E-83D4500D3C32} - System32\Tasks\CCleanerSkipUAC - HP => C:\Program Files\CCleaner\CCleaner.exe [32204304 2022-09-12] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {DF39E4EE-890E-4285-9862-B6E5E5ED3B8B} - System32\Tasks\AVG Secure VPN Update => C:\Program Files\AVG\Secure VPN\VpnUpdate.exe [1243576 2022-10-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
Task: {F02997A1-F384-412D-9BE3-E1C4CFB707DF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2022-02-26] (Google Inc -> Google LLC)
Task: {FB27850E-1A74-4CA6-B8E9-4C5D08D766DC} - \Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance -> No File <==== ATTENTION
Task: {FC6BDC11-38A3-4F36-A2AA-438E90EF1161} - System32\Tasks\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe [4983040 2022-09-29] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
Task: {FD2AC08F-FAA8-40C7-8448-463172946D03} - System32\Tasks\Hewlett-Packard\HP Support Assistant\First Boot => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF_Utils.exe /SetSchedule true (No File)
Task: {FE6EFC5F-1D18-42A5-BEEE-AB82FF0CA02A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe /u (No File)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 07 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-30] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 109.108.107.106 109.108.109.108
Tcpip\..\Interfaces\{16dbc319-80cd-482a-bd12-86d7c18af153}: [NameServer] 100.120.89.1
Tcpip\..\Interfaces\{5939e378-f86e-4675-b0f7-337fd8ff2881}: [DhcpNameServer] 109.108.107.106 109.108.109.108
Tcpip\..\Interfaces\{99fc8789-4672-482e-9fe0-eed157355023}: [DhcpNameServer] 192.168.0.1

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\HP\AppData\Local\Microsoft\Edge\User Data\Default [2022-10-17]
Edge StartupUrls: Default -> "hxxps://www.google.com/"
Edge Extension: (Překladač Google) - C:\Users\HP\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2022-03-24]
Edge Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\HP\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2022-10-14]

FireFox:
========
FF DefaultProfile: gqten5sz.default
FF ProfilePath: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\gqten5sz.default [2021-11-19]
FF ProfilePath: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\iydz36gc.default-release-1643187090265 [2022-10-09]
FF DownloadDir: C:\Users\HP\Desktop
FF Extension: (AdBlocker Ultimate) - C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\iydz36gc.default-release-1643187090265\Extensions\adblockultimate@adblockultimate.net.xpi [2022-02-04]
FF Extension: (No Name) - C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\iydz36gc.default-release-1643187090265\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2022-02-04]
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-09] (Google Inc -> Google, Inc.)

Chrome:
=======
CHR Profile: C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default [2022-10-17]
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR Extension: (Překladač Google) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2022-03-24]
CHR Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-10-13]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-02-26]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [628992 2022-09-29] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AVG Firewall; C:\Program Files\AVG\Antivirus\afwServ.exe [2091776 2022-09-29] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AVG Tools; C:\Program Files\AVG\Antivirus\avgToolsSvc.exe [628480 2022-09-29] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AVGAntiTrackSvc; C:\Program Files (x86)\AVG\AntiTrack\AntiTrackSvc.exe [1780024 2021-11-19] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\aswidsagent.exe [8549936 2022-10-05] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AvgWscReporter; C:\Program Files\AVG\Antivirus\wsc_proxy.exe [109480 2021-11-19] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S4 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [679400 2018-04-02] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1082896 2022-09-12] (Piriform Software Ltd -> Piriform Software Ltd)
R2 CleanupPSvc; C:\Program Files\AVG\TuneUp\TuneupSvc.exe [15471872 2022-09-11] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [228344 2022-10-13] (HP Inc. -> HP Inc.)
S4 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1031704 2016-06-03] (Hewlett-Packard Company -> HP)
S4 HPWMISVC; c:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [628768 2017-07-13] (HP Inc. -> HP Inc.)
S4 mfevtp; C:\windows\system32\mfevtps.exe [1216296 2021-09-24] (McAfee, Inc. -> McAfee, LLC)
S2 SecureVPN; C:\Program Files\AVG\Secure VPN\VpnSvc.exe [9327032 2022-10-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 HP Comm Recover; "C:\Program Files\HPCommRecovery\HPCommRecovery.exe" [X]
S4 HPJumpStartBridge; "c:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartBridge.exe" [X]
S4 HPSupportSolutionsFrameworkService; "C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe" [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [238280 2022-09-29] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdriver.sys [390152 2022-09-29] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\WINDOWS\System32\drivers\avgbidsh.sys [258576 2022-09-29] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\WINDOWS\System32\drivers\avgbuniv.sys [106512 2022-09-29] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgElam; C:\WINDOWS\System32\drivers\avgElam.sys [25064 2022-10-14] (Microsoft Windows Early Launch Anti-malware Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgKbd; C:\WINDOWS\System32\drivers\avgKbd.sys [48640 2022-09-29] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [276640 2022-09-29] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgNetHub; C:\WINDOWS\System32\drivers\avgNetHub.sys [558688 2022-09-29] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\WINDOWS\System32\drivers\avgRdr2.sys [114624 2022-09-29] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [90144 2022-09-29] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [863088 2022-09-29] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [671864 2022-09-29] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 avgStm; C:\WINDOWS\System32\drivers\avgStm.sys [222104 2022-09-29] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S3 avgTap; C:\WINDOWS\System32\drivers\avgTap.sys [54888 2021-11-15] (AVG Technologies CZ, s.r.o. -> The OpenVPN Project)
R0 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [328064 2022-09-29] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R3 avgWintun; C:\WINDOWS\System32\drivers\avgWintun.sys [37136 2021-11-15] (AVG Technologies USA, LLC -> WireGuard LLC)
S3 avgWireGuard; C:\WINDOWS\System32\drivers\avgWireguard.sys [499048 2022-08-24] (AVG Technologies USA, LLC -> WireGuard LLC)
R2 ekbdflt; C:\WINDOWS\System32\drivers\ekbdflt.sys [43920 2021-10-27] (ESET, spol. s r.o. -> ESET)
R1 netfilter2; C:\WINDOWS\System32\drivers\netfilter2.sys [108304 2021-11-19] (AVG Technologies USA, LLC -> Windows (R) Win 7 DDK provider)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [40104 2022-06-17] (HP Inc. -> HP)
U3 aspnet_state; no ImagePath
U1 avgbdisk; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-10-17 19:28 - 2022-10-17 19:35 - 000021185 _____ C:\Users\HP\Desktop\FRST.txt
2022-10-17 18:05 - 2022-10-17 18:31 - 000000000 ____D C:\AdwCleaner
2022-10-17 17:59 - 2022-10-17 17:59 - 008791352 _____ (Malwarebytes) C:\Users\HP\Desktop\adwcleaner.exe
2022-10-17 16:22 - 2022-10-17 19:33 - 000000000 ____D C:\FRST
2022-10-17 16:19 - 2022-10-17 16:19 - 002373632 _____ (Farbar) C:\Users\HP\Desktop\FRST64.exe
2022-10-17 15:25 - 2022-10-17 15:25 - 000000000 ____D C:\Users\Public\CyberLink
2022-10-17 14:25 - 2022-10-17 18:26 - 000003416 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2022-10-16 13:02 - 2022-10-17 15:10 - 000000000 ____D C:\Users\HP\AppData\Local\Zoner
2022-10-16 13:02 - 2022-10-16 13:02 - 000001873 _____ C:\Users\HP\Desktop\ZPS 19 CZ.lnk
2022-10-16 13:02 - 2022-10-16 13:02 - 000000000 ____D C:\Users\HP\AppData\Roaming\Zoner
2022-10-16 12:57 - 2022-10-16 12:58 - 000000000 ____D C:\Nainstalovane programy
2022-10-16 12:27 - 2022-10-16 12:28 - 000000000 ____D C:\Programy
2022-10-16 11:54 - 2022-10-16 11:54 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2022-10-16 11:54 - 2022-10-16 11:54 - 000039936 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2022-10-16 11:54 - 2022-10-16 11:54 - 000012253 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-10-16 11:52 - 2022-10-16 11:52 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2022-10-16 11:52 - 2022-10-16 11:52 - 000048640 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2022-10-16 11:50 - 2022-10-16 11:50 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2022-10-16 11:50 - 2022-10-16 11:50 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-10-16 11:03 - 2022-10-16 11:03 - 000000000 ___HD C:\$WinREAgent
2022-10-14 18:47 - 2022-10-14 18:47 - 000000000 ____D C:\Users\HP\AppData\Local\ElevatedDiagnostics
2022-10-14 15:05 - 2022-10-14 15:05 - 000001190 _____ C:\Users\Public\Desktop\Picasa 3.lnk
2022-10-14 15:05 - 2022-10-14 15:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3
2022-10-14 08:56 - 2022-10-14 08:56 - 000025064 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgElam.sys
2022-10-13 17:55 - 2022-10-13 17:55 - 000000000 ____D C:\Program Files\HPPrintScanDoctor
2022-10-09 12:42 - 2022-10-09 12:42 - 000001991 _____ C:\Users\Public\Desktop\AVG Secure VPN.lnk
2022-10-07 19:47 - 2022-10-07 19:47 - 000204233 _____ C:\Users\HP\Downloads\Vyúčtování.pdf
2022-10-07 19:42 - 2022-10-07 19:42 - 000107605 _____ C:\Users\HP\Downloads\Rozpis záloh.pdf
2022-10-04 00:46 - 2022-10-04 00:46 - 000235191 _____ C:\Users\HP\Downloads\VY__32_INOVACE_3258_SUDÁ_A_LICHÁ_ČÍSLA.pptx
2022-10-04 00:10 - 2022-10-04 00:10 - 000266680 _____ C:\Users\HP\Downloads\Měkké_tvrdé souhlásky_mimoni.pdf
2022-10-03 23:58 - 2022-10-13 21:34 - 000000000 ____D C:\Users\HP\Desktop\asistence
2022-10-03 23:58 - 2022-10-03 23:58 - 000000000 ____D C:\Users\HP\AppData\Local\HP
2022-10-03 23:43 - 2022-10-03 23:43 - 000000000 ____D C:\Users\HP\HP
2022-10-03 23:43 - 2022-10-03 23:43 - 000000000 _____ C:\Users\HP\Documents\HP ePrint
2022-09-30 10:31 - 2022-10-17 17:43 - 000712576 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-09-30 09:59 - 2022-09-30 09:59 - 000000000 ____D C:\ProgramData\Piriform
2022-09-29 22:27 - 2022-10-17 18:25 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2022-09-29 22:24 - 2022-09-29 22:26 - 000000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 7.3
2022-09-29 22:24 - 2022-09-29 22:24 - 000001165 _____ C:\Users\Public\Desktop\LibreOffice 7.3.lnk
2022-09-29 22:20 - 2022-09-29 22:23 - 000000000 ____D C:\Program Files\LibreOffice
2022-09-29 22:16 - 2022-09-29 22:15 - 000270592 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\avgBoot.exe
2022-09-29 22:16 - 2022-09-29 22:15 - 000222104 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgStm.sys
2022-09-19 20:00 - 2022-09-19 20:00 - 000001212 _____ C:\ProgramData\Microsoft\Windows\Start Menu\BS.Player FREE.lnk
2022-09-19 19:59 - 2022-09-19 20:01 - 000000000 ____D C:\Users\HP\AppData\Roaming\BSplayer
2022-09-19 19:59 - 2022-09-19 19:59 - 000000000 ____D C:\Users\HP\AppData\Roaming\BSplayer Pro
2022-09-19 19:59 - 2022-09-19 19:59 - 000000000 ____D C:\Program Files (x86)\Webteh
2022-09-19 16:45 - 2022-09-19 16:45 - 000413696 _____ C:\WINDOWS\system32\AzureCheck.dll
2022-09-19 16:45 - 2022-09-19 16:45 - 000098816 _____ C:\WINDOWS\system32\Drivers\cimfs.sys

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-10-17 19:41 - 2021-11-18 13:31 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-10-17 19:31 - 2021-11-18 13:11 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-10-17 19:24 - 2021-11-18 15:05 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-10-17 18:57 - 2021-11-18 13:31 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-10-17 18:33 - 2018-06-15 10:40 - 000000000 ____D C:\ProgramData\Hewlett-Packard
2022-10-17 18:33 - 2018-06-15 10:40 - 000000000 ____D C:\Program Files (x86)\HP
2022-10-17 18:33 - 2018-06-15 10:39 - 000000000 ____D C:\Program Files (x86)\Hewlett-Packard
2022-10-17 18:33 - 2018-04-21 02:05 - 000000000 ___HD C:\hp
2022-10-17 18:32 - 2021-11-19 17:22 - 000000000 ____D C:\Users\HP\AppData\Roaming\Hewlett-Packard
2022-10-17 18:32 - 2021-11-19 17:21 - 000000000 ____D C:\Users\HP\AppData\Local\Hewlett-Packard
2022-10-17 18:32 - 2018-06-15 10:40 - 000000000 ____D C:\ProgramData\HP
2022-10-17 18:25 - 2021-11-19 16:37 - 000000000 ____D C:\Program Files\CCleaner
2022-10-17 18:17 - 2022-02-26 09:10 - 000000000 ____D C:\Program Files (x86)\Google
2022-10-17 17:51 - 2021-11-18 18:40 - 001738478 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-10-17 17:51 - 2021-11-18 13:44 - 000718024 _____ C:\WINDOWS\system32\perfh005.dat
2022-10-17 17:51 - 2021-11-18 13:44 - 000145166 _____ C:\WINDOWS\system32\perfc005.dat
2022-10-17 17:51 - 2021-11-18 13:26 - 000000000 ____D C:\WINDOWS\INF
2022-10-17 17:43 - 2021-11-19 17:31 - 000003974 _____ C:\WINDOWS\system32\Tasks\AVG Secure VPN Update
2022-10-17 17:43 - 2021-11-19 16:40 - 000000000 ____D C:\ProgramData\AVG
2022-10-17 17:42 - 2021-11-18 15:51 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-10-17 17:41 - 2020-11-05 00:33 - 000008192 ___SH C:\DumpStack.log.tmp
2022-10-17 17:40 - 2021-11-18 15:56 - 000065536 _____ C:\WINDOWS\psp_storage.bin
2022-10-17 17:40 - 2021-11-18 12:44 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2022-10-17 17:35 - 2021-11-18 13:31 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-10-17 17:35 - 2021-11-18 13:31 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-10-17 17:35 - 2021-11-18 13:31 - 000000000 ____D C:\WINDOWS\SystemResources
2022-10-17 17:35 - 2021-11-18 13:31 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2022-10-17 17:35 - 2021-11-18 13:31 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-10-17 17:35 - 2021-11-18 13:31 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-10-17 17:35 - 2021-11-18 13:31 - 000000000 ____D C:\WINDOWS\Provisioning
2022-10-17 17:35 - 2021-11-18 13:31 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2022-10-17 17:34 - 2021-11-18 13:31 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-10-17 15:31 - 2021-11-26 13:21 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2022-10-17 15:31 - 2021-11-19 16:46 - 000003250 _____ C:\WINDOWS\system32\Tasks\Antivirus Emergency Update
2022-10-17 15:31 - 2021-11-19 16:38 - 000002248 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - HP
2022-10-17 15:31 - 2021-11-19 16:37 - 000002988 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2022-10-17 15:31 - 2021-11-18 15:55 - 000003568 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-10-17 15:31 - 2021-11-18 15:55 - 000003344 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-10-17 15:09 - 2022-01-26 10:46 - 000007598 _____ C:\Users\HP\AppData\Local\Resmon.ResmonCfg
2022-10-17 15:02 - 2021-11-19 20:38 - 000000000 ____D C:\Users\HP\AppData\Local\CrashDumps
2022-10-16 13:15 - 2021-11-18 17:41 - 000000000 ____D C:\Users\HP
2022-10-16 13:03 - 2021-11-18 21:17 - 000000000 ____D C:\Users\HP\AppData\Local\D3DSCache
2022-10-16 13:03 - 2020-10-02 09:15 - 000000000 ____D C:\Users\HP\Desktop\Dokumenty
2022-10-16 12:18 - 2021-11-18 13:33 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2022-10-16 12:18 - 2021-11-18 13:33 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2022-10-16 11:50 - 2021-11-18 15:54 - 003015168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-10-14 15:05 - 2022-02-26 09:23 - 000000000 ____D C:\Users\HP\AppData\Local\Google
2022-10-14 11:07 - 2021-11-19 15:23 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-10-14 11:05 - 2021-11-19 15:22 - 147398024 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-10-14 08:52 - 2021-11-18 21:28 - 000000000 ____D C:\Users\HP\AppData\Local\PlaceholderTileLogoFolder
2022-10-13 19:06 - 2022-02-26 09:19 - 000002254 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-10-13 19:06 - 2022-02-26 09:19 - 000002213 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2022-10-13 18:07 - 2021-11-18 13:31 - 000000000 ___HD C:\Program Files\WindowsApps
2022-10-13 17:56 - 2021-11-18 21:17 - 000000000 ____D C:\Users\HP\AppData\Local\Packages
2022-10-13 17:54 - 2021-11-18 21:22 - 000000000 ____D C:\ProgramData\Packages
2022-10-13 17:52 - 2021-11-18 15:57 - 000002281 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2022-10-13 17:52 - 2020-06-16 22:02 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-09-30 16:04 - 2021-11-19 17:22 - 000000000 ____D C:\Users\HP\AppData\Roaming\hpqLog
2022-09-30 10:24 - 2021-11-19 20:37 - 000002622 _____ C:\WINDOWS\system32\Tasks\SmartShare
2022-09-30 10:23 - 2022-02-26 09:12 - 000003462 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2022-09-30 10:23 - 2022-02-26 09:12 - 000003238 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2022-09-30 10:23 - 2021-11-26 13:21 - 000002562 _____ C:\WINDOWS\system32\Tasks\HPEA3JOBS
2022-09-29 22:27 - 2021-11-19 16:37 - 000000870 _____ C:\Users\Public\Desktop\CCleaner.lnk
2022-09-29 22:16 - 2021-11-18 13:31 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-09-29 22:15 - 2021-11-19 16:45 - 000671864 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSP.sys
2022-09-29 22:15 - 2021-11-19 16:45 - 000558688 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgNetHub.sys
2022-09-29 22:15 - 2021-11-19 16:45 - 000328064 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgVmm.sys
2022-09-29 22:15 - 2021-11-19 16:45 - 000276640 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgMonFlt.sys
2022-09-29 22:15 - 2021-11-19 16:45 - 000258576 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsh.sys
2022-09-29 22:15 - 2021-11-19 16:45 - 000114624 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRdr2.sys
2022-09-29 22:15 - 2021-11-19 16:45 - 000106512 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbuniv.sys
2022-09-29 22:15 - 2021-11-19 16:45 - 000090144 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRvrt.sys
2022-09-29 22:15 - 2021-11-19 16:45 - 000048640 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgKbd.sys
2022-09-29 22:14 - 2021-11-19 16:45 - 000863088 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSnx.sys
2022-09-29 22:14 - 2021-11-19 16:45 - 000390152 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsdriver.sys
2022-09-29 22:14 - 2021-11-19 16:45 - 000238280 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgArPot.sys
2022-09-19 22:53 - 2019-10-24 14:18 - 000000000 ____D C:\Users\HP\Desktop\Kauf
2022-09-19 20:00 - 2021-10-03 12:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BS.Player
2022-09-19 18:35 - 2021-11-18 13:31 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2022-09-19 18:35 - 2021-11-18 13:31 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2022-09-19 18:35 - 2021-11-18 13:31 - 000000000 ____D C:\WINDOWS\system32\setup
2022-09-19 18:35 - 2021-11-18 13:31 - 000000000 ____D C:\WINDOWS\system32\DDFs
2022-09-19 18:31 - 2022-07-17 19:48 - 000000000 ___HD C:\ProgramData\CyberLink

==================== Files in the root of some directories ========

2022-01-26 10:46 - 2022-10-17 15:09 - 000007598 _____ () C:\Users\HP\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

#6 Příspěvek od **Rudy** » 17 říj 2022 19:03

Ještě poprosím o log Addition. Ke ve stejném adresáři, jako FRST v souboru addition.txt. Děkuji.

Odin41 · #7 Příspěvek od **Odin41** » 17 říj 2022 19:12

tady je

==================== Memory info ===========================

BIOS: Insyde F.51 05/31/2019
Motherboard: HP 8330
Processor: AMD A6-9220 RADEON R4, 5 COMPUTE CORES 2C+3G
Percentage of memory in use: 84%
Total physical RAM: 3981.68 MB
Available physical RAM: 623.23 MB
Total Virtual: 5581.68 MB
Available Virtual: 1779.26 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:916.17 GB) (Free:765.47 GB) (Model: ST1000LM035-1RK172) NTFS
Drive d: (RECOVERY) (Fixed) (Total:14.11 GB) (Free:2.1 GB) (Model: ST1000LM035-1RK172) NTFS ==>[system with boot components (obtained from drive)]

\\?\Volume{4bb35276-525d-4a5e-af4f-6dff738c2fb2}\ (Windows RE tools) (Fixed) (Total:0.96 GB) (Free:0.35 GB) NTFS
\\?\Volume{b9767039-5c29-4a82-b123-f370a333966f}\ () (Fixed) (Total:0.25 GB) (Free:0.17 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 3BC8DD49)

Partition: GPT.

==================== End of Addition.txt =======================

#8 Příspěvek od **Rudy** » 17 říj 2022 20:13

OK. Log je nějaký divný. Měl by vypadat asi takto: https://forum.viry.cz/viewtopic.php?p=1548173#p1548173 . Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:

HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {071A0CAF-202C-479A-842A-14246E469140} - \Microsoft\Windows\UpdateOrchestrator\USO_Broker_Display -> No File <==== ATTENTION
Task: {2778BBA7-6581-4CD6-B01F-3EFA978D586C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Opt-in For HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF_Utils.exe /SetTaskbarTask (No File)
Task: {2BB692C1-F60F-479E-ADC2-1CAF9422A2AC} - \Microsoft\Windows\Shell\FamilySafetyMonitorToastTask -> No File <==== ATTENTION
Task: {31B65BE9-5E54-4513-9995-04943BA194A0} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe -task -source HPSA (No File)
Task: {5328F2EA-23B8-4B7B-88BF-3690F00A917C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Active Health Launcher => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe -source HPSA --create-task (No File)
Task: {6AB2F21A-9E69-4563-85CA-A9DA39FB9311} - System32\Tasks\SmartShare => C:\Program Files (x86)\LG Software\LG Smart Share\SmartShareStart.exe tray (No File)
Task: {9D248215-740A-4BEA-9B3A-32F42194EEEC} - \Microsoft\Windows\Windows Defender\Windows Defender Verification -> No File <==== ATTENTION
Task: {B6E67297-4E2A-4BAB-9C4A-63B62EDBF591} - \Microsoft\Windows\Management\Provisioning\PostResetBoot -> No File <==== ATTENTION
Task: {BD0B3546-E6EB-4F6D-A850-036D14B8463D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2022-02-26] (Google Inc -> Google LLC)
Task: {C0A6DBCC-E531-454F-AA58-54CDBAB3B6E0} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe /taskrestart (No File)
Task: {C2098BE2-A29A-4EB1-97F6-F0C57E086D4F} - \Microsoft\Windows\Speech\HeadsetButtonPress -> No File <==== ATTENTION
Task: {C48D50E5-71A9-48D8-B7C1-3DA9AECBDEC3} - \Microsoft\Windows\WindowsUpdate\sih -> No File <==== ATTENTION
Task: {CCB44D57-C65F-41B5-B488-5EBAA1F7E572} - \Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan -> No File <==== ATTENTION
Task: {CE88DADF-01CB-4351-8D78-F81A58651A82} - \Microsoft\Windows\Windows Defender\Windows Defender Cleanup -> No File <==== ATTENTION
Task: {F02997A1-F384-412D-9BE3-E1C4CFB707DF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2022-02-26] (Google Inc -> Google LLC)
Task: {FB27850E-1A74-4CA6-B8E9-4C5D08D766DC} - \Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance -> No File <==== ATTENTION
Task: {FD2AC08F-FAA8-40C7-8448-463172946D03} - System32\Tasks\Hewlett-Packard\HP Support Assistant\First Boot => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF_Utils.exe /SetSchedule true (No File)
Task: {FE6EFC5F-1D18-42A5-BEEE-AB82FF0CA02A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe /u (No File)
U3 aspnet_state; no ImagePath
U1 avgbdisk; no ImagePath
C:\DumpStack.log.tmp
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore

EmptyTemp:
End

Uložte do stejného adresáře, v němž máte FRST jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Odin41 · #9 Příspěvek od **Odin41** » 18 říj 2022 08:09

fixlist.txt. mam ulozen ve stejnem adresari ,program mi vsak pise No fixlist.txt found.Neco asi delam spatne

#10 Příspěvek od **JaRon** » 18 říj 2022 08:40

ak ho ukladas ako textovy dokument, uloz ho ako fixlist
je mozne, ze sa ulozil ako fixlist.txt.txt

Odin41 · #11 Příspěvek od **Odin41** » 18 říj 2022 09:17

Diky,ted uz to slo.

Fix result of Farbar Recovery Scan Tool (x64) Version: 16-10-2022
Ran by HP (18-10-2022 09:51:21) Run:1
Running from C:\Users\HP\Desktop
Loaded Profiles: HP
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:

HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {071A0CAF-202C-479A-842A-14246E469140} - \Microsoft\Windows\UpdateOrchestrator\USO_Broker_Display -> No File <==== ATTENTION
Task: {2778BBA7-6581-4CD6-B01F-3EFA978D586C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Opt-in For HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF_Utils.exe /SetTaskbarTask (No File)
Task: {2BB692C1-F60F-479E-ADC2-1CAF9422A2AC} - \Microsoft\Windows\Shell\FamilySafetyMonitorToastTask -> No File <==== ATTENTION
Task: {31B65BE9-5E54-4513-9995-04943BA194A0} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe -task -source HPSA (No File)
Task: {5328F2EA-23B8-4B7B-88BF-3690F00A917C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Active Health Launcher => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe -source HPSA --create-task (No File)
Task: {6AB2F21A-9E69-4563-85CA-A9DA39FB9311} - System32\Tasks\SmartShare => C:\Program Files (x86)\LG Software\LG Smart Share\SmartShareStart.exe tray (No File)
Task: {9D248215-740A-4BEA-9B3A-32F42194EEEC} - \Microsoft\Windows\Windows Defender\Windows Defender Verification -> No File <==== ATTENTION
Task: {B6E67297-4E2A-4BAB-9C4A-63B62EDBF591} - \Microsoft\Windows\Management\Provisioning\PostResetBoot -> No File <==== ATTENTION
Task: {BD0B3546-E6EB-4F6D-A850-036D14B8463D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2022-02-26] (Google Inc -> Google LLC)
Task: {C0A6DBCC-E531-454F-AA58-54CDBAB3B6E0} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe /taskrestart (No File)
Task: {C2098BE2-A29A-4EB1-97F6-F0C57E086D4F} - \Microsoft\Windows\Speech\HeadsetButtonPress -> No File <==== ATTENTION
Task: {C48D50E5-71A9-48D8-B7C1-3DA9AECBDEC3} - \Microsoft\Windows\WindowsUpdate\sih -> No File <==== ATTENTION
Task: {CCB44D57-C65F-41B5-B488-5EBAA1F7E572} - \Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan -> No File <==== ATTENTION
Task: {CE88DADF-01CB-4351-8D78-F81A58651A82} - \Microsoft\Windows\Windows Defender\Windows Defender Cleanup -> No File <==== ATTENTION
Task: {F02997A1-F384-412D-9BE3-E1C4CFB707DF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2022-02-26] (Google Inc -> Google LLC)
Task: {FB27850E-1A74-4CA6-B8E9-4C5D08D766DC} - \Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance -> No File <==== ATTENTION
Task: {FD2AC08F-FAA8-40C7-8448-463172946D03} - System32\Tasks\Hewlett-Packard\HP Support Assistant\First Boot => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF_Utils.exe /SetSchedule true (No File)
Task: {FE6EFC5F-1D18-42A5-BEEE-AB82FF0CA02A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe /u (No File)
U3 aspnet_state; no ImagePath
U1 avgbdisk; no ImagePath
C:\DumpStack.log.tmp
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore

EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiSpyware"="0" => value restored successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiVirus"="0" => value restored successfully
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => removed successfully
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{071A0CAF-202C-479A-842A-14246E469140}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{071A0CAF-202C-479A-842A-14246E469140}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UpdateOrchestrator\USO_Broker_Display" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{2778BBA7-6581-4CD6-B01F-3EFA978D586C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2778BBA7-6581-4CD6-B01F-3EFA978D586C}" => removed successfully
C:\WINDOWS\System32\Tasks\Hewlett-Packard\HP Support Assistant\Opt-in For HP Support Assistant Quick Start => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Hewlett-Packard\HP Support Assistant\Opt-in For HP Support Assistant Quick Start" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2BB692C1-F60F-479E-ADC2-1CAF9422A2AC}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2BB692C1-F60F-479E-ADC2-1CAF9422A2AC}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Shell\FamilySafetyMonitorToastTask" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{31B65BE9-5E54-4513-9995-04943BA194A0}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{31B65BE9-5E54-4513-9995-04943BA194A0}" => removed successfully
C:\WINDOWS\System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA)" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5328F2EA-23B8-4B7B-88BF-3690F00A917C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5328F2EA-23B8-4B7B-88BF-3690F00A917C}" => removed successfully
C:\WINDOWS\System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Active Health Launcher => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Hewlett-Packard\HP Support Assistant\HP Active Health Launcher" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{6AB2F21A-9E69-4563-85CA-A9DA39FB9311}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6AB2F21A-9E69-4563-85CA-A9DA39FB9311}" => removed successfully
C:\WINDOWS\System32\Tasks\SmartShare => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SmartShare" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{9D248215-740A-4BEA-9B3A-32F42194EEEC}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9D248215-740A-4BEA-9B3A-32F42194EEEC}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Windows Defender\Windows Defender Verification" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{B6E67297-4E2A-4BAB-9C4A-63B62EDBF591}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B6E67297-4E2A-4BAB-9C4A-63B62EDBF591}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Management\Provisioning\PostResetBoot" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{BD0B3546-E6EB-4F6D-A850-036D14B8463D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BD0B3546-E6EB-4F6D-A850-036D14B8463D}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{C0A6DBCC-E531-454F-AA58-54CDBAB3B6E0}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C0A6DBCC-E531-454F-AA58-54CDBAB3B6E0}" => removed successfully
C:\WINDOWS\System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C2098BE2-A29A-4EB1-97F6-F0C57E086D4F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C2098BE2-A29A-4EB1-97F6-F0C57E086D4F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Speech\HeadsetButtonPress" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C48D50E5-71A9-48D8-B7C1-3DA9AECBDEC3}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C48D50E5-71A9-48D8-B7C1-3DA9AECBDEC3}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\WindowsUpdate\sih" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CCB44D57-C65F-41B5-B488-5EBAA1F7E572}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CCB44D57-C65F-41B5-B488-5EBAA1F7E572}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CE88DADF-01CB-4351-8D78-F81A58651A82}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CE88DADF-01CB-4351-8D78-F81A58651A82}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Windows Defender\Windows Defender Cleanup" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{F02997A1-F384-412D-9BE3-E1C4CFB707DF}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F02997A1-F384-412D-9BE3-E1C4CFB707DF}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FB27850E-1A74-4CA6-B8E9-4C5D08D766DC}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FB27850E-1A74-4CA6-B8E9-4C5D08D766DC}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{FD2AC08F-FAA8-40C7-8448-463172946D03}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FD2AC08F-FAA8-40C7-8448-463172946D03}" => removed successfully
C:\WINDOWS\System32\Tasks\Hewlett-Packard\HP Support Assistant\First Boot => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Hewlett-Packard\HP Support Assistant\First Boot" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FE6EFC5F-1D18-42A5-BEEE-AB82FF0CA02A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FE6EFC5F-1D18-42A5-BEEE-AB82FF0CA02A}" => removed successfully
C:\WINDOWS\System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater" => removed successfully
HKLM\System\CurrentControlSet\Services\aspnet_state => removed successfully
aspnet_state => service removed successfully
HKLM\System\CurrentControlSet\Services\avgbdisk => could not remove, key could be protected
Could not move "C:\DumpStack.log.tmp" => Scheduled to move on reboot.
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore" => not found

=========== EmptyTemp: ==========

FlushDNS => completed
BITS transfer queue => 1310720 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 232366066 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 0 B
Windows/system/drivers => 373793832 B
Edge => 0 B
Chrome => 520454415 B
Firefox => 15678692 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 6656 B
ProgramData => 6656 B
Public => 6656 B
systemprofile => 151312 B
systemprofile32 => 151312 B
LocalService => 241820 B
NetworkService => 116519920 B
HP => 620480972 B

RecycleBin => 416082621 B
EmptyTemp: => 2.1 GB temporary data Removed.

================================

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 18-10-2022 10:00:59)

C:\DumpStack.log.tmp => Could not move

Result of scheduled keys to remove after reboot:

HKLM\System\CurrentControlSet\Services\avgbdisk => could not remove, key could be protected

==== End of Fixlog 10:00:59 ====

#12 Příspěvek od **Rudy** » 18 říj 2022 09:23

Smazáno. Nastala něhjaká změna?

Odin41 · #13 Příspěvek od **Odin41** » 18 říj 2022 09:42

Je to o neco lepsi.Start systemu je ale pomalejsi kdy cekam treba 5 minut nez mohu s NTB pracovat.Ve spravci uloh mi procesor jede na 80% ale HDD stale na 100%,mozna to bude tim,ze uz i ten NTB neco pamatuje

Ale lepsi to urcite je

#14 Příspěvek od **Rudy** » 18 říj 2022 14:29

Zkuste ještě:

1. defragmentovat disk
2. Příkazem msconfig z přík. řádku spusťte systémové konfigurační okno a na záložkách "Služby" a "Po spuštění" zrušte zatržítka u všech ne-microsoftích položek s vylímkou ovladačů a bezpečnostního softwaru. Nastavení uložte a restartujte.

Odin41 · #15 Příspěvek od **Odin41** » 18 říj 2022 17:02

Defragmentaci jsem mel zakazanou,ono mi prijde,ze moc nefunguje,nebo ze je mozna ten HDD poskozen.Defragmentace trva strasne dlouho(jednou to bylo zaple celou noc, a rano pouhych 6% a to ten disk je zaplneny asi tak z 30%)Ale zapnu ji a uvidim.

V konfiguraci systemu jsem vypl co se dalo,procesor 75% a HDD neprekroci 20% a to do toho jede ta defragmentace.

Diky za pomoc

pc funguje o dost lip

VIRY.CZ

prosim o kontolu,zpomalen NTB

prosim o kontolu,zpomalen NTB

Re: prosim o kontolu,zpomalen NTB

Re: prosim o kontolu,zpomalen NTB

Re: prosim o kontolu,zpomalen NTB

Re: prosim o kontolu,zpomalen NTB

Re: prosim o kontolu,zpomalen NTB

Re: prosim o kontolu,zpomalen NTB

Re: prosim o kontolu,zpomalen NTB

Re: prosim o kontolu,zpomalen NTB

Re: prosim o kontolu,zpomalen NTB

Re: prosim o kontolu,zpomalen NTB

Re: prosim o kontolu,zpomalen NTB

Re: prosim o kontolu,zpomalen NTB

Re: prosim o kontolu,zpomalen NTB

Re: prosim o kontolu,zpomalen NTB