Fix result of Farbar Recovery Scan Tool (x86) Version: 14.03.2018
Ran by Zdeněk (30-03-2018 13:02:45) Run:1
Running from C:\Users\Zdeněk\Desktop
Loaded Profiles: Zdeněk & (Available Profiles: Zdeněk)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
Task: {18AC8CA5-9F91-4C94-83D8-855F0A34AB4F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2016-05-29] (Google Inc.)
Task: {9E0CCFA5-1CF8-469A-A0CB-93FF9E1376F3} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {A1441673-8E1F-41E6-A2CA-72623BC9F395} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2016-05-29] (Google Inc.)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx <not found>
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <not found>
CHR HKU\S-1-5-21-3053463390-3481767629-2475232128-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] -
hxxps://clients2.google.com/service/update2/crxCHR HKU\S-1-5-21-3053463390-3481767629-2475232128-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03302018063527532\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] -
hxxps://clients2.google.com/service/update2/crxU3 idsvc; no ImagePath
C:\Users\Zden�k\AppData\Local\{120ECEA5-754B-4506-B675-AFF3662490A1}
EmptyTemp:
End
*****************
Processes closed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{18AC8CA5-9F91-4C94-83D8-855F0A34AB4F}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{18AC8CA5-9F91-4C94-83D8-855F0A34AB4F}" => removed successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{9E0CCFA5-1CF8-469A-A0CB-93FF9E1376F3}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9E0CCFA5-1CF8-469A-A0CB-93FF9E1376F3}" => removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UNP\RunCampaignManager => could not remove. Access Denied.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{A1441673-8E1F-41E6-A2CA-72623BC9F395}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A1441673-8E1F-41E6-A2CA-72623BC9F395}" => removed successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully.
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION => restored successfully
"HKLM\SOFTWARE\Google\Chrome\Extensions\eofcbnmajmjmplflapaojjnihcjkigck" => removed successfully.
"HKLM\SOFTWARE\Google\Chrome\Extensions\gomekmidlodglbbmalcneegieacbdmki" => removed successfully.
"HKU\S-1-5-21-3053463390-3481767629-2475232128-1000\SOFTWARE\Google\Chrome\Extensions\efaidnbmnnnibpcajpcglclefindmkaj" => removed successfully.
CHR HKU\S-1-5-21-3053463390-3481767629-2475232128-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-03302018063527532\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] -
hxxps://clients2.google.com/service/update2/crx => Error: No automatic fix found for this entry.
"HKLM\System\CurrentControlSet\Services\idsvc" => removed successfully.
idsvc => service removed successfully.
"C:\Users\Zden�k\AppData\Local\{120ECEA5-754B-4506-B675-AFF3662490A1}" => not found
=========== EmptyTemp: ==========
BITS transfer queue => 9199616 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 35150564 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 14174 B
Edge => 0 B
Chrome => 120942049 B
Firefox => 5392305 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
LocalService => 115134 B
NetworkService => 3548 B
Zdeněk => 57876503 B
RecycleBin => 0 B
EmptyTemp: => 218.1 MB temporary data Removed.
================================
Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 30-03-2018 13:21:16)
Result of scheduled keys to remove after reboot:
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UNP\RunCampaignManager => could not remove. Access Denied.
==== End of Fixlog 13:21:16 ====