Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Prosím o kontrolu, značne spomalené a niekedy nereaguje. Ďakujem

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
havranec
Návštěvník
Návštěvník
Příspěvky: 135
Registrován: 02 bře 2008 09:01

Prosím o kontrolu, značne spomalené a niekedy nereaguje. Ďakujem

#1 Příspěvek od havranec »

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 02-06-2021
Ran by User (administrator) on DESKTOP-H92TJ3T (LENOVO F0CM001FCK) (04-06-2021 07:17:00)
Running from C:\Users\User\Desktop
Loaded Profiles: User
Platform: Windows 10 Home Version 2004 19041.985 (X64) Language: Čeština (Česká republika) -> Slovenčina (Slovensko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.) C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe
(Farbar) [File not signed] C:\Users\User\Desktop\FRST64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <37>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler64.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_790c20683c3a62ec\igfxCUIService.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_790c20683c3a62ec\igfxEM.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_55bf1834336e8765\OneApp.IGCC.WinService.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_4357b4a62fdb1369\IntelCpHDCPSvc.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_4357b4a62fdb1369\IntelCpHeciSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_120314e52c04567c\RstMwService.exe
(Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.7.19.0\LenovoVantageService.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.Device.exe <2>
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.SettingsApp.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.CompanionApp.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe <2>
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(Lenovo) [File not signed] C:\Program Files (x86)\Lenovo\Lenovo Silver Silk Wireless Keyboard\skd8861.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\User\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2105.19601.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.BingWeather_4.46.31121.0_x64__8wekyb3d8bbwe\Microsoft.Msn.Weather.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.MicrosoftStickyNotes_3.8.8.0_x64__8wekyb3d8bbwe\Microsoft.Notes.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20920.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20920.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\NisSrv.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvla.inf_amd64_ef20e2a1f5032237\Display.NvContainer\NVDisplay.Container.exe <2>
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Wargaming.net Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\dlls\wgc_renderer_host.exe <3>
(Wargaming.net Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\wargamingerrormonitor.exe
(Wargaming.net Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\wgc.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [19677472 2020-06-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3618080 2020-06-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [Lenovo Silver Silk Wireless Keyboard] => C:\Program Files (x86)\Lenovo\Lenovo Silver Silk Wireless Keyboard\skd8861.exe [1742336 2013-08-14] (Lenovo) [File not signed]
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1496144255-991381806-58249036-1001\...\Run: [Wargaming.net Game Center] => C:\ProgramData\Wargaming.net\GameCenter\wgc.exe [2143168 2021-05-28] (Wargaming.net Limited -> Wargaming.net)
HKU\S-1-5-21-1496144255-991381806-58249036-1001\...\Run: [eyeBeam SIP Client] => C:\Program Files (x86)\CounterPath\X-Lite\x-lite.exe [18550784 2006-05-31] () [File not signed]
HKU\S-1-5-21-1496144255-991381806-58249036-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [33770112 2021-05-20] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\91.0.4472.77\Installer\chrmstp.exe [2021-06-04] (Google LLC -> Google LLC)
BootExecute: autocheck autochk * icarus_rvrt.exe
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {07B65ED8-A125-45CE-9BAB-530CCBC9BCF3} - System32\Tasks\Lenovo\Vantage\Schedule\VantageTelemetryAddinTask => C:\Program Files (x86)\Lenovo\VantageService\3.6.15.0\ScheduleEventAction.exe
Task: {07DB359D-074B-49E6-8108-A16D357854BA} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe [143888 2021-03-02] (Lenovo -> Lenovo Group Ltd.)
Task: {12B521BE-B003-4B1A-80E5-C85F90CC466B} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\388e3f3a-1ee2-47d5-84cf-bb1b933140e2 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81824 2021-03-14] (Lenovo -> Lenovo Group Ltd.)
Task: {2C98D543-B39A-4A68-869E-D8A2BB65759C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-06-05] (Google Inc -> Google LLC)
Task: {33A6F03E-0CB2-4443-9D12-3E5477AAFB0D} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [62392 2021-03-14] (Lenovo -> Lenovo Group Ltd.)
Task: {4C5EBE63-666A-4E57-8AE5-26E8D94A4731} - System32\Tasks\Microsoft\Windows\rempl\shell => C:\Program Files\rempl\sedlauncher.exe
Task: {5DE4F256-C57F-4940-86C9-A7621E5ED063} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1790184 2021-04-30] (Avast Software s.r.o. -> Avast Software)
Task: {79A9C1FC-4956-4B78-8F29-05F5002C8E21} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-06-05] (Google Inc -> Google LLC)
Task: {8CF8ABFB-29E6-42D4-A8F9-EFD64994437D} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\7d7404ab-ad19-4ce3-8920-03c9a9ee430f => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81824 2021-03-14] (Lenovo -> Lenovo Group Ltd.)
Task: {91F20676-55CC-4369-8781-8EBA88099674} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\3.7.19.0\ScheduleEventAction.exe [23968 2021-05-17] (Lenovo -> Lenovo Group Ltd.)
Task: {A655C4FB-9FFB-4B94-B1BE-F4EA6D84A52D} - System32\Tasks\Optimize Push Notification Data File-S-1-5-21-1496144255-991381806-58249036-1001 => {201600D8-6EFF-48CE-B842-E14D37A0682D} C:\WINDOWS\System32\wpninprc.dll [24064 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Task: {AF7BAD84-5EB4-4523-88C7-A9B17E0D175D} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {B2A2CCD2-CC9B-4B80-A184-4053D254E62A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [28158080 2021-05-20] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {BC36B622-2CB0-48CA-866D-803BB502A423} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => %systemroot%\system32\sc.exe start LenovoVantageService
Task: {BE1CD6D1-4C8A-420E-A80F-941B7844C89A} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-05-20] (Piriform Software Ltd -> Piriform)
Task: {C527471E-313A-474B-9EA2-63FBEB5DE3D0} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [668464 2017-02-25] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {C84A8166-3E1E-4153-9089-89DF03B49A83} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\31783053-e1dc-4bad-9248-fc9d341e944e => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81824 2021-03-14] (Lenovo -> Lenovo Group Ltd.)
Task: {CF8D520D-DF44-4698-B44E-DC2C975B0AD4} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => "%windir%\system32\sc.exe" START ImControllerService
Task: {DEE72ED6-E3AC-46E5-909E-F83A6D368E80} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {ECAEEF79-8032-417F-AFC9-041B8782DC65} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\60f2cc93-c459-4892-87b2-a431f488d1b9 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81824 2021-03-14] (Lenovo -> Lenovo Group Ltd.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{5c362e89-8288-4ab5-958b-95c3bff238f2}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{c8a8dfcb-a889-48f8-9307-d49bd92c8e62}: [DhcpNameServer] 192.168.0.1

Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge Profile: C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default [2021-06-04]

FireFox:
========
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-04-27] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Default [2021-06-04]
CHR Notifications: Default -> hxxps://mail.google.com; hxxps://metro-sk.os.tc; hxxps://optolov.ru; hxxps://web.whatsapp.com; hxxps://www.banggood.com; hxxps://www.facebook.com; hxxps://www.youtube.com; hxxps://xiaomiplanet.sk
CHR Session Restore: Default -> is enabled.
CHR Extension: (Prezentácie) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-06-05]
CHR Extension: (Dokumenty) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-06-05]
CHR Extension: (Disk Google) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-21]
CHR Extension: (YouTube) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-06-05]
CHR Extension: (Tabuľky) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-06-05]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-05-13]
CHR Extension: (AVG SafePrice | Porovnanie, ponuky, kupóny) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbckjcfnjmoiinpgddefodcighgikkgn [2020-07-22]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (Chrome Media Router) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-06-04]
CHR HKLM-x32\...\Chrome\Extension: [mbckjcfnjmoiinpgddefodcighgikkgn]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
R2 Dolby DAX2 API Service; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [189464 2020-06-02] (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81824 2021-03-14] (Lenovo -> Lenovo Group Ltd.)
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\3.7.19.0\LenovoVantageService.exe [28576 2021-05-17] (Lenovo -> Lenovo Group Ltd.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\NisSrv.exe [2624104 2021-04-11] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MsMpEng.exe [128376 2021-04-11] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvla.inf_amd64_ef20e2a1f5032237\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvla.inf_amd64_ef20e2a1f5032237\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159600 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 MpKsl628463b7; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{5EE24D0B-8984-41BB-B9B1-147819F1BED7}\MpKslDrv.sys [107744 2021-06-04] (Microsoft Windows -> Microsoft Corporation)
R3 RSP2STOR; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [329184 2017-04-14] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49560 2021-04-11] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [421088 2021-04-11] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [72928 2021-04-11] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-06-04 07:16 - 2021-06-04 07:16 - 002300416 ____C (Farbar) C:\Users\User\Desktop\FRST64 (2).exe
2021-06-04 05:25 - 2021-06-04 07:17 - 000018836 ____C C:\Users\User\Desktop\FRST.txt
2021-06-04 05:25 - 2021-06-04 07:13 - 000032753 ____C C:\Users\User\Desktop\Addition.txt
2021-06-04 05:22 - 2021-06-04 05:22 - 002300416 ____C (Farbar) C:\Users\User\Desktop\FRST64.exe
2021-06-03 10:37 - 2020-09-29 14:09 - 001781608 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2021-06-03 10:37 - 2020-09-29 14:09 - 001781608 _____ C:\WINDOWS\system32\vulkaninfo.exe
2021-06-03 10:37 - 2020-09-29 14:09 - 001377640 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2021-06-03 10:37 - 2020-09-29 14:09 - 001377640 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2021-06-03 10:37 - 2020-09-29 14:09 - 001087704 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2021-06-03 10:37 - 2020-09-29 14:09 - 001087704 _____ C:\WINDOWS\system32\vulkan-1.dll
2021-06-03 10:37 - 2020-09-29 14:09 - 000940760 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2021-06-03 10:37 - 2020-09-29 14:09 - 000940760 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2021-06-03 10:37 - 2020-09-29 14:09 - 000454040 _____ C:\WINDOWS\system32\ze_loader.dll
2021-06-03 10:37 - 2020-09-29 14:09 - 000294752 _____ C:\WINDOWS\system32\libmfxhw64.dll
2021-06-03 10:37 - 2020-09-29 14:09 - 000243712 _____ C:\WINDOWS\SysWOW64\libmfxhw32.dll
2021-06-03 10:37 - 2020-09-29 14:09 - 000161376 _____ (Intel Corporation) C:\WINDOWS\system32\intel_gfx_api-x64.dll
2021-06-03 10:37 - 2020-09-29 14:09 - 000140184 _____ C:\WINDOWS\system32\ze_validation_layer.dll
2021-06-03 10:37 - 2020-09-29 14:09 - 000136880 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\intel_gfx_api-x86.dll
2021-06-03 10:37 - 2020-09-29 14:08 - 026667928 _____ (Intel Corporation) C:\WINDOWS\system32\mfxplugin64_hw.dll
2021-06-03 10:37 - 2020-09-29 14:08 - 013511576 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\mfxplugin32_hw.dll
2021-06-03 10:37 - 2020-09-29 14:08 - 000499096 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2021-06-03 10:37 - 2020-09-29 14:08 - 000361880 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2021-06-03 10:36 - 2021-03-26 17:30 - 000134400 _____ (AVG Technologies) C:\WINDOWS\system32\icarus_rvrt.exe
2021-06-01 04:47 - 2021-06-01 04:47 - 000011180 ____C C:\Users\User\Downloads\[SkT]_Pontypool_(2008)(CZ)[TvRip][1080p].torrent
2021-06-01 04:43 - 2021-06-01 04:43 - 000074631 ____C C:\Users\User\Downloads\[SkT]Anatomia_zla_(2015)(CZ)[WebRip].torrent
2021-06-01 04:39 - 2021-06-01 04:39 - 000085219 ____C C:\Users\User\Downloads\[SkT]Stvanec___The_Hunted_(2003)(CZ_EN).torrent
2021-06-01 04:39 - 2021-06-01 04:39 - 000018280 ____C C:\Users\User\Downloads\[SkT]Balkanska_hranice___Balkanskij_rubez_(2019)(CZ).torrent
2021-05-30 18:35 - 2021-05-30 18:35 - 000000000 ___DC C:\Users\User\AppData\Local\Viber
2021-05-27 06:07 - 2021-05-27 06:07 - 000018581 ____C C:\Users\User\Downloads\[SkT]Hladova_hra___Hunger_(2009)(CZ)_=_CSFD_46%.torrent
2021-05-27 06:06 - 2021-05-27 06:06 - 000018534 ____C C:\Users\User\Downloads\[SkT]Nezvany_host___Breach_(2020)(CZ)[1080p].torrent
2021-05-27 06:06 - 2021-05-27 06:06 - 000014640 ____C C:\Users\User\Downloads\[SkT]Mrtvi_a_pohrbeni_-_Dead_&amp;_Buried.torrent
2021-05-27 06:05 - 2021-05-27 06:05 - 000020068 ____C C:\Users\User\Downloads\[SkT]Battle_Royale___Batoru_rowaiaru_(2000)_DVDrip_(CZ)_=_CSFD_77%.torrent
2021-05-27 06:05 - 2021-05-27 06:05 - 000020063 ____C C:\Users\User\Downloads\[SkT]Battle_Royale_II__Requiem___Batoru_rowaiaru_II__Chinkonka_(2003)_DVDrip_(CZ)_=_CSFD_50%.torrent
2021-05-27 06:03 - 2021-05-27 06:03 - 000086446 ____C C:\Users\User\Downloads\[SkT]Mine_(2016)(SK)[1080p].torrent
2021-05-27 06:03 - 2021-05-27 06:03 - 000010821 ____C C:\Users\User\Downloads\[SkT]Mizerove_navzdy_Bad_Boys_for_Life_(2020)(CZ_EN).torrent
2021-05-24 05:15 - 2021-05-24 05:15 - 000017152 ____C C:\Users\User\Downloads\[SkT]_BlacKkKlansman_(2018)(SK)_=_CSFD_75%.torrent
2021-05-22 04:53 - 2021-05-22 04:53 - 000018918 ____C C:\Users\User\Downloads\[SkT]Neco_za_neco___Quid_Pro_Quo_(2008)(CZ)[TvRip][1080p]_=_CSFD_68%.torrent
2021-05-22 04:52 - 2021-05-22 04:52 - 000013998 ____C C:\Users\User\Downloads\[SkT]__Vlak_do_Pusanu_2___Peninsula_(2020)(CZ)[TvRip][720p]_=_CSFD_49%.torrent
2021-05-22 04:52 - 2021-05-22 04:52 - 000011135 ____C C:\Users\User\Downloads\[SkT]Lidska_jatka___Slaughter_(2009)(CZ)[TvRip][1080p]_=_CSFD_34%.torrent
2021-05-17 02:21 - 2021-05-17 02:21 - 000015850 ____C C:\Users\User\Downloads\[SkT]Zena_v_okne___The_Woman_in_the_Window_2021_WEB_CZE.torrent
2021-05-17 02:18 - 2021-05-17 02:18 - 000017826 ____C C:\Users\User\Downloads\[SkT]Spojenec_2___Inside_Man__Most_Wanted_(2019)(CZ).torrent
2021-05-17 02:17 - 2021-05-17 02:17 - 000091401 ____C C:\Users\User\Downloads\[SkT]Maggie_(2015)(SK)[1080p]_=_CSFD_53%.torrent
2021-05-17 02:10 - 2021-05-17 02:10 - 000011839 ____C C:\Users\User\Downloads\[SkT]Relikvie___Relic_(2020)(CZ)_=_CSFD_52%.torrent
2021-05-15 09:44 - 2021-05-01 07:14 - 000013925 ____C C:\Users\User\Desktop\Kópia - Benefity_pre_zamestnancov.xlsx
2021-05-15 07:14 - 2021-05-27 15:27 - 000015899 ____C C:\Users\User\Desktop\Rastlinstvo.xlsx
2021-05-14 10:53 - 2021-05-14 10:53 - 000000000 ___DC C:\Users\User\Desktop\zubar
2021-05-14 10:47 - 2021-05-14 10:47 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-05-14 10:47 - 2021-05-14 10:47 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-05-14 10:47 - 2021-05-14 10:47 - 001687040 _____ C:\WINDOWS\system32\libcrypto.dll
2021-05-14 10:47 - 2021-05-14 10:47 - 001314120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-05-14 10:47 - 2021-05-14 10:47 - 000700928 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2021-05-14 10:47 - 2021-05-14 10:47 - 000011351 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-05-14 10:46 - 2021-05-14 10:46 - 001823816 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-05-14 10:46 - 2021-05-14 10:46 - 001393504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-05-14 10:46 - 2021-05-14 10:46 - 001163776 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-05-14 10:46 - 2021-05-14 10:46 - 000165888 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-05-14 10:46 - 2021-05-14 10:46 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-05-14 10:46 - 2021-05-14 10:46 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2021-05-14 05:21 - 2021-05-14 05:21 - 000019468 ____C C:\Users\User\Downloads\[SkT]Pro_balik_prachu___Honest_Thief_(2020)(CZ)[1080p]_=_CSFD_56%.torrent
2021-05-14 05:21 - 2021-05-14 05:21 - 000016259 ____C C:\Users\User\Downloads\[SkT]Kyslik___Oxygen_(2021)(CZ)[WebRip]_=_CSFD_76%.torrent
2021-05-09 06:31 - 2021-05-09 06:31 - 000020094 ____C C:\Users\User\Downloads\[SkT]Ztracena_minulost___The_Poison_Rose__(2019)(CZ)_=_CSFD_46%.torrent
2021-05-09 06:30 - 2021-05-09 06:30 - 000017942 ____C C:\Users\User\Downloads\[SkT]Prebehlik___Der_Uberlaufer_(2020)(CZ)[TvRip][720p]_=_CSFD_73%.torrent
2021-05-09 06:30 - 2021-05-09 06:30 - 000014935 ____C C:\Users\User\Downloads\[SkT]7500_(2019)(CZ)[WebRip]_=_CSFD_60%.torrent
2021-05-09 06:29 - 2021-05-09 06:29 - 000015095 ____C C:\Users\User\Downloads\[SkT]Nikdo___Nobody_(2021)[WebRip][1080p]_=_CSFD_77%.torrent
2021-05-09 06:28 - 2021-05-09 06:28 - 000015120 ____C C:\Users\User\Downloads\[SkT]Za_carou____Outside_the_Wire_(2021)(CZ)[WebRip]_=_CSFD_53% (1).torrent
2021-05-09 06:28 - 2021-05-09 06:28 - 000013534 ____C C:\Users\User\Downloads\[SkT]Za_carou____Outside_the_Wire_(2021)(CZ)[1080p][WebRip]_=_CSFD_51%.torrent
2021-05-09 06:19 - 2021-05-09 06:19 - 000019314 ____C C:\Users\User\Downloads\[SkT]The_Vast_of_Night_(2019)(CZ)[WebRip][1080p]_=_CSFD_61%.torrent
2021-05-09 06:18 - 2021-05-09 06:18 - 000022104 ____C C:\Users\User\Downloads\[SkT]Mortal_Kombat_(2021)[Webrip][1080p]_=_CSFD_77%.torrent
2021-05-09 06:18 - 2021-05-09 06:18 - 000019245 ____C C:\Users\User\Downloads\[SkT]Co_jsme_videli,_co_jsme_slyseli___Things_Heard_and_Seen_2021_NF_WEB_CZE (1).torrent
2021-05-09 06:17 - 2021-05-09 06:17 - 000020596 ____C C:\Users\User\Downloads\[SkT]Utajeny_pasazer___Stowaway_2021_1080p_WEBRip_CZ__=_CSFD_47%.torrent
2021-05-09 06:16 - 2021-05-09 06:16 - 000023295 ____C C:\Users\User\Downloads\[SkT]Coming_2_America_(2021)(CZ)[WEBRip][1080p]_=_CSFD_44%.torrent
2021-05-09 06:12 - 2021-05-09 06:12 - 000108987 ____C C:\Users\User\Downloads\[SkT]Without_Remorse_(2021)(CZ)[WebRip].torrent
2021-05-08 05:53 - 2021-05-08 05:53 - 000091917 ____C C:\Users\User\Downloads\[SkT]Hra_na_Schovavanou___Hide_and_Seek_(2005)(Cz_En)_=_CSFD_65%.torrent
2021-05-08 05:47 - 2021-05-08 05:47 - 000082674 ____C C:\Users\User\Downloads\[SkT]Nezahravej_si_s_ohnem___Fire_with_Fire._BDRip.x264.(2012)(CZ_EN)_=_CSFD_57%.torrent
2021-05-08 05:46 - 2021-05-08 05:46 - 000055895 ____C C:\Users\User\Downloads\[SkT]Collateral_(2004)(CZ_EN)_=_CSFD_80%.torrent
2021-05-06 05:05 - 2021-05-27 15:50 - 000000000 ___DC C:\Users\User\Desktop\MOM
2021-05-05 18:16 - 2021-05-05 18:16 - 000017470 ____C C:\Users\User\Downloads\[SkT]Boure_dusi___Dveselu_putenis_(2019)(CZ)[WebRip]_=_CSFD_77%.torrent

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-06-04 07:17 - 2019-10-07 16:08 - 000000000 ___DC C:\FRST
2021-06-04 07:13 - 2019-10-08 13:15 - 000000000 ____D C:\Program Files\CCleaner
2021-06-04 07:11 - 2020-12-06 08:56 - 001693346 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-06-04 07:11 - 2020-12-06 08:52 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-06-04 07:11 - 2020-12-06 08:46 - 000008192 ___SH C:\DumpStack.log.tmp
2021-06-04 07:11 - 2019-12-07 16:41 - 000716764 _____ C:\WINDOWS\system32\perfh005.dat
2021-06-04 07:11 - 2019-12-07 16:41 - 000144942 _____ C:\WINDOWS\system32\perfc005.dat
2021-06-04 07:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-06-04 07:11 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-06-04 07:11 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-06-04 07:11 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-06-04 07:11 - 2019-09-30 09:13 - 000000000 ____D C:\ProgramData\AVG
2021-06-04 07:11 - 2019-05-30 22:04 - 000000000 __RDC C:\Users\User\OneDrive
2021-06-04 07:11 - 2019-05-30 22:02 - 000000000 _SHDC C:\Users\User\IntelGraphicsProfiles
2021-06-04 07:11 - 2019-05-30 21:47 - 000000000 __HDC C:\Intel
2021-06-04 07:11 - 2019-05-30 21:42 - 000000000 ____D C:\ProgramData\NVIDIA
2021-06-04 05:17 - 2019-10-10 07:51 - 000000000 ____D C:\Users\User\AppData\Local\CrashDumps
2021-06-04 05:08 - 2019-06-05 11:06 - 000002320 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-06-04 05:06 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-06-03 10:40 - 2019-06-05 07:13 - 000000000 ____D C:\ProgramData\Packages
2021-06-03 10:40 - 2019-05-30 22:03 - 000000000 ___DC C:\Users\User\AppData\Local\Publishers
2021-06-03 10:40 - 2019-05-30 22:02 - 000000000 ___DC C:\Users\User\AppData\Local\Packages
2021-06-03 10:39 - 2020-03-27 11:22 - 000000000 ____D C:\WINDOWS\TempInst
2021-06-03 10:39 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-06-03 06:16 - 2020-12-06 08:46 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-06-02 18:09 - 2019-06-05 11:20 - 000000000 ___DC C:\Users\User\Documents\Faktúry , odpočty
2021-06-02 17:46 - 2019-06-05 03:10 - 000009113 _____ C:\WINDOWS\system32\InstallUtil.InstallLog
2021-06-01 15:42 - 2021-02-27 09:55 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-06-01 15:42 - 2021-02-05 04:28 - 000003400 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-06-01 15:42 - 2021-01-20 04:04 - 000003318 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6cb9c3c4b9fed
2021-06-01 15:42 - 2020-12-06 08:52 - 000003512 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-06-01 15:42 - 2020-12-06 08:52 - 000003288 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-06-01 15:42 - 2020-12-06 08:52 - 000003194 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-06-01 15:42 - 2020-12-06 08:52 - 000003176 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-06-01 15:42 - 2020-12-06 08:52 - 000003118 _____ C:\WINDOWS\system32\Tasks\Intel PTT EK Recertification
2021-06-01 15:42 - 2020-12-06 08:52 - 000002850 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1496144255-991381806-58249036-1001
2021-06-01 15:42 - 2020-12-06 08:52 - 000002764 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task v2
2021-06-01 15:42 - 2020-12-06 08:52 - 000002232 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2021-06-01 15:42 - 2020-12-06 08:52 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2021-06-01 05:06 - 2019-06-05 11:36 - 000000000 ___DC C:\Users\User\AppData\Roaming\uTorrent
2021-05-31 19:22 - 2019-06-05 11:35 - 000000000 ___DC C:\Users\User\AppData\Roaming\ViberPC
2021-05-29 18:24 - 2020-06-10 10:27 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-05-28 17:55 - 2019-06-05 11:20 - 000000000 ___DC C:\Users\User\Documents\ViberDownloads
2021-05-28 06:16 - 2020-12-06 08:48 - 000002351 ____C C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-05-27 15:49 - 2019-06-05 11:20 - 000000000 ___DC C:\Users\User\Documents\Osobné
2021-05-17 16:37 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-05-14 12:33 - 2020-12-06 08:46 - 000446080 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-05-14 12:32 - 2019-12-07 16:42 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2021-05-14 12:32 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-05-14 12:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-05-14 12:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-05-14 12:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-05-14 12:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2021-05-14 12:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-05-14 12:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-05-14 12:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-05-14 12:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-05-14 12:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-05-14 12:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-05-14 12:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-05-14 12:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-05-14 12:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-05-14 12:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-05-14 12:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\DiagTrack
2021-05-14 12:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-05-14 10:56 - 2019-06-05 08:52 - 000002143 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-05-14 10:49 - 2019-12-07 16:44 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2021-05-14 10:49 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-05-14 10:40 - 2019-06-05 03:17 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-05-14 10:39 - 2019-06-05 03:17 - 132732536 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

havranec
Návštěvník
Návštěvník
Příspěvky: 135
Registrován: 02 bře 2008 09:01

Re: Prosím o kontrolu, značne spomalené a niekedy nereaguje. Ďakujem

#2 Příspěvek od havranec »

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 02-06-2021
Ran by User (04-06-2021 07:17:53)
Running from C:\Users\User\Desktop
Windows 10 Home Version 2004 19041.985 (X64) (2020-12-06 06:52:43)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1496144255-991381806-58249036-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1496144255-991381806-58249036-503 - Limited - Disabled)
Guest (S-1-5-21-1496144255-991381806-58249036-501 - Limited - Disabled)
User (S-1-5-21-1496144255-991381806-58249036-1001 - Administrator - Enabled) => C:\Users\User
WDAGUtilityAccount (S-1-5-21-1496144255-991381806-58249036-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version: - )
Adobe Acrobat Reader DC - Slovak (HKLM-x32\...\{AC76BA86-7AD7-1051-7B44-AC0F074E4100}) (Version: 21.001.20155 - Adobe Systems Incorporated)
CCleaner (HKLM\...\CCleaner) (Version: 5.80 - Piriform)
Dolby Audio X2 Windows API SDK (HKLM\...\{FA0735B6-9E18-437A-A1CD-9152650FC52B}) (Version: 0.8.8.90 - Dolby Laboratories, Inc.)
Dolby Audio X2 Windows APP (HKLM\...\{D0D32569-4680-490A-905C-5117CEAAB3EF}) (Version: 0.8.8.76 - Dolby Laboratories, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 91.0.4472.77 - Google LLC)
Intel(R) Chipset Device Software (HKLM-x32\...\{17408817-d415-4768-a160-ae6d46d6bdb0}) (Version: 10.1.1.44 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1035 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 26.20.100.7757 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 17.7.0.1006 - Intel Corporation)
Intel® Optane™ Pinning Explorer Extensions (HKLM\...\{AA90D357-23D3-44C1-954D-7105B0C08F38}) (Version: 17.7.0.1006 - Intel Corporation)
Lenovo Silver Silk Wireless Keyboard (HKLM-x32\...\{B88AD4F5-58A6-425D-9282-92228FEB7067}) (Version: 1.05 - Lenovo) Hidden
Lenovo Silver Silk Wireless Keyboard (HKLM-x32\...\InstallShield_{B88AD4F5-58A6-425D-9282-92228FEB7067}) (Version: 1.05 - Lenovo)
Lenovo Vantage Service (HKLM-x32\...\VantageSRV_is1) (Version: 3.7.19.0 - Lenovo Group Ltd.)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 91.0.864.37 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1496144255-991381806-58249036-1001\...\OneDriveSetup.exe) (Version: 21.083.0425.0003 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{A0E1B43D-5F4A-46AF-9925-ABA3423325DC}) (Version: 2.77.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24123 (HKLM-x32\...\{2cbcedbb-f38c-48a3-a3e1-6c6fd821a7f4}) (Version: 14.0.24123.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24123 (HKLM-x32\...\{206898cc-4b41-4d98-ac28-9f9ae57f91fe}) (Version: 14.0.24123.0 - Microsoft Corporation)
NVIDIA Ovladače grafiky 457.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 457.65 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
Qualcomm Atheros 11ac Wireless LAN Installer (HKLM-x32\...\{20CA507E-24AA-4741-87CF-CC1B250790B7}) (Version: 11.0.10442 - Qualcomm)
Qualcomm Atheros Bluetooth Installer (64) (HKLM\...\{628988B4-3FA5-4EA6-BAA3-DA640F6718BD}) (Version: 10.0.0.318 - Qualcomm Atheros)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.15063.29094 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.19.627.2017 - Realtek)
Viber (HKLM-x32\...\{BCFF3282-3299-47F2-95C3-3C0165260EB2}) (Version: 10.3.0.36 - Viber Media S.a.r.l) Hidden
Viber (HKU\S-1-5-21-1496144255-991381806-58249036-1001\...\{8ce90cb2-6f65-4b26-bd5c-e9627995f807}) (Version: 10.3.0.36 - Viber Media S.a.r.l)
Vulkan Run Time Libraries 1.0.54.1 (HKLM\...\VulkanRT1.0.54.1) (Version: 1.0.54.1 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.54.1 (HKLM\...\VulkanRT1.0.54.1-2) (Version: 1.0.54.1 - LunarG, Inc.) Hidden
Wargaming.net Game Center (HKU\S-1-5-21-1496144255-991381806-58249036-1001\...\Wargaming.net Game Center) (Version: 21.3.0.5224 - Wargaming.net)
WhatsApp (HKU\S-1-5-21-1496144255-991381806-58249036-1001\...\WhatsApp) (Version: 2.2037.6 - WhatsApp)
WinRAR 5.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.00.0 - win.rar GmbH)
World of Tanks EU (HKU\S-1-5-21-1496144255-991381806-58249036-1001\...\WOT.EU.PRODUCTION) (Version: - Wargaming.net)
World_of_Warships (HKU\S-1-5-21-1496144255-991381806-58249036-1001\...\WOWS.WW.PRODUCTION) (Version: - Wargaming.net)
X-Lite 3.0 (HKLM-x32\...\X-Lite 1.5_is1) (Version: - CounterPath Solutions Inc.)

Packages:
=========
Doplnok mediálneho nástroja pre Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-02-16] (Microsoft Corporation)
Doplnok pre Fotografie -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-03-13] (Microsoft Corporation)
Lenovo Vantage -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2103.17.0_x64__k1h2ywk1493x8 [2021-04-12] (LENOVO INC.)
LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_2.1.7098.0_neutral__w1wdnht996qgy [2019-06-05] (LinkedIn)
Microsoft Access -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Access_16051.14026.20246.0_x86__8wekyb3d8bbwe [2021-05-29] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-06-05] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-06-05] (Microsoft Corporation) [MS Ad]
Microsoft Excel -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Excel_16051.14026.20246.0_x86__8wekyb3d8bbwe [2021-05-29] (Microsoft Corporation)
Microsoft Office Desktop Apps -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop_16051.14026.20246.0_x86__8wekyb3d8bbwe [2021-05-29] (Microsoft Corporation)
Microsoft Outlook -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.14026.20246.0_x86__8wekyb3d8bbwe [2021-05-29] (Microsoft Corporation)
Microsoft PowerPoint -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.PowerPoint_16051.14026.20246.0_x86__8wekyb3d8bbwe [2021-05-29] (Microsoft Corporation)
Microsoft Publisher -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Publisher_16051.14026.20246.0_x86__8wekyb3d8bbwe [2021-05-29] (Microsoft Corporation)
Microsoft Word -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Word_16051.14026.20246.0_x86__8wekyb3d8bbwe [2021-05-29] (Microsoft Corporation)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.961.0_x64__56jybvy8sckqj [2021-05-26] (NVIDIA Corp.)
Ovládacie centrum pre grafiku Intel® -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3325.0_x64__8j3eq9eme6ctt [2021-06-03] (INTEL CORP) [Startup Task]
Rozšírenie pre video MPEG-2 -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.22661.0_x64__8wekyb3d8bbwe [2019-09-24] (Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2210608 2006-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OptaneIconOverlay] -> {A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9} => C:\Program Files\Intel\OptaneShellExtensions\OptaneShellExt.dll [2019-08-07] (Intel(R) Rapid Storage Technology -> )
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2013-08-22] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2013-08-22] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:\Program Files\Intel\OptaneShellExtensions\OptaneShellExt.dll [2019-08-07] (Intel(R) Rapid Storage Technology -> )
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvla.inf_amd64_ef20e2a1f5032237\nvshext.dll [2021-01-21] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2013-08-22] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2013-08-22] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2011-11-03 20:48 - 2011-11-03 20:48 - 000056320 _____ () [File not signed] C:\Program Files (x86)\Lenovo\Lenovo Silver Silk Wireless Keyboard\skfunc.dll
2011-10-21 22:41 - 2011-10-21 22:41 - 000061952 _____ (LITE-ON Corp.) [File not signed] C:\Program Files (x86)\Lenovo\Lenovo Silver Silk Wireless Keyboard\skhooks.dll
2011-11-18 19:07 - 2011-11-18 19:07 - 000054272 _____ (LITE-ON TECHNOLOGY CORP.) [File not signed] C:\Program Files (x86)\Lenovo\Lenovo Silver Silk Wireless Keyboard\SKHidKbd.dll
2021-02-24 19:41 - 2020-05-30 15:58 - 001280000 _____ (Robert Simpson, et al.) [File not signed] C:\ProgramData\Lenovo\iMController\Plugins\GenericMessagingPlugin\x86\x86\SQLite.Interop.dll
2021-05-31 18:35 - 2020-11-03 05:08 - 000954864 _____ (SQLite Development Team) [File not signed] C:\ProgramData\Lenovo\iMController\Plugins\LenovoWiFiSecurityPlugin\x86\x86\e_sqlite3.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-1496144255-991381806-58249036-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://go.microsoft.com/fwlink/p/?LinkId=619797&pc=UE01&ocid=UE01DHP
HKU\S-1-5-21-1496144255-991381806-58249036-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo17win10.msn.com/?pc=LCTE
HKU\S-1-5-21-1496144255-991381806-58249036-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com/
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2017-09-29 15:46 - 2017-09-29 15:44 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-1496144255-991381806-58249036-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Lenovo\LenovoWallPaper.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKU\S-1-5-21-1496144255-991381806-58249036-1001\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_EA977365BF5B2185FA52414E130E9AF9"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{2A0F24BE-0417-4B7C-82E0-AEA49A5356A2}C:\users\user\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\user\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [TCP Query User{3EFEAA9B-8E1C-466F-9831-189CE8295854}C:\users\user\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\user\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{6080D66F-0A15-409F-B9A3-D282267C8458}C:\games\world_of_tanks_eu\win64\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\win64\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [TCP Query User{517FA03E-29DF-4BDE-95D1-91029A573004}C:\games\world_of_tanks_eu\win64\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\win64\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{FA7DBE6C-B9A9-4798-9DDE-6FC0E4FE169C}C:\program files (x86)\counterpath\x-lite\x-lite.exe] => (Allow) C:\program files (x86)\counterpath\x-lite\x-lite.exe () [File not signed]
FirewallRules: [TCP Query User{0F7A0131-4AEE-48A9-B4AB-F6A23E62E44D}C:\program files (x86)\counterpath\x-lite\x-lite.exe] => (Allow) C:\program files (x86)\counterpath\x-lite\x-lite.exe () [File not signed]
FirewallRules: [UDP Query User{019D165E-A783-4C39-86D3-0A8FD000C4D1}C:\games\world_of_tanks_eu\win64\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\win64\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [TCP Query User{D4A89DBE-2E5C-4FBE-93ED-9F06AF475218}C:\games\world_of_tanks_eu\win64\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\win64\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [TCP Query User{D7BB254C-3614-49B3-A3BB-BE7E93812E12}C:\users\user\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\user\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{9758F37C-1793-44E7-A5B7-D2D28DF780EF}C:\users\user\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\user\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [TCP Query User{CEDD63DE-AE5E-4D08-84FE-3220C65B3BB0}C:\games\world_of_tanks_eu\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{64DCF168-9DCF-4125-BDB5-E881E6203267}C:\games\world_of_tanks_eu\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [TCP Query User{331E87CE-36BC-47C6-9148-6B8C87826BA1}C:\program files (x86)\counterpath\x-lite\x-lite.exe] => (Allow) C:\program files (x86)\counterpath\x-lite\x-lite.exe () [File not signed]
FirewallRules: [UDP Query User{EA4170DF-452A-452C-A8C1-F23E2A456910}C:\program files (x86)\counterpath\x-lite\x-lite.exe] => (Allow) C:\program files (x86)\counterpath\x-lite\x-lite.exe () [File not signed]
FirewallRules: [TCP Query User{44905811-9B97-4AE0-B73F-958796A7B300}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{E5EA4172-128A-49AE-BD0F-4CA1CE87067D}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [{BC60B747-848A-47CF-B5BF-6089E8D7CFF4}] => (Block) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [{CFE743D3-8BF9-4736-B25C-C035E8E17071}] => (Block) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [TCP Query User{605ED459-90F6-4154-8240-19D04E9DBEAE}C:\games\world_of_tanks_eu\win32\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\win32\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{10E7DA12-E224-4476-9339-2E684D4ACB4C}C:\games\world_of_tanks_eu\win32\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\win32\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [{2CDA0559-4100-4CAD-855A-EBC361835A01}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{5E68759B-F18E-47B3-996F-98C45E782DCB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{6A417B2C-FD99-48C6-B053-3CDBF4D4E432}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{9C06B4E6-FB82-42E8-8FDE-F719EB161025}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{D50A21ED-BEFD-495C-9E92-52774C1256E6}C:\users\user\appdata\local\viber\viber.exe] => (Allow) C:\users\user\appdata\local\viber\viber.exe (Viber Media S.à r.l. -> Viber Media S.à r.l.)
FirewallRules: [UDP Query User{4C422C61-43B3-47DA-80B6-4B31EFA74A69}C:\users\user\appdata\local\viber\viber.exe] => (Allow) C:\users\user\appdata\local\viber\viber.exe (Viber Media S.à r.l. -> Viber Media S.à r.l.)
FirewallRules: [{45B4A31C-12F6-4576-87D5-549C80277250}] => (Allow) C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.14026.20246.0_x86__8wekyb3d8bbwe\Office16\OUTLOOK.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{05A1D3F1-1E70-4216-A338-EB305063F6B4}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

ATTENTION: System Restore is disabled (Total:117.89 GB) (Free:8.68 GB) (7%)

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (06/04/2021 07:10:59 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, Probíhá vypnutí systému.
.

Error: (06/04/2021 07:10:59 AM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, Probíhá vypnutí systému.
]

Error: (06/02/2021 05:03:41 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiska nemohol dokončiť opakovat operaci trim v (D:), pretože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (06/01/2021 02:40:12 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: Microsoft.Notes.exe, verzia: 3.8.8.0, časová značka: 0x5ff8c7b6
Názov chybujúceho modulu: WindowManagementAPI.dll, verzia: 0.0.0.0, časová značka: 0xbbca9f6e
Kód výnimky: 0xc0000005
Odstup chyby: 0x0000000000056db9
Identifikácia chybujúceho procesu: 0x3a14
Čas spustenia chybujúcej aplikácie: 0x01d756e0ebe3afa4
Cesta chybujúcej aplikácie: C:\Program Files\WindowsApps\Microsoft.MicrosoftStickyNotes_3.8.8.0_x64__8wekyb3d8bbwe\Microsoft.Notes.exe
Cesta chybujúceho modulu: C:\WINDOWS\SYSTEM32\WindowManagementAPI.dll
Identifikácia hlásenia: 7b14a92c-e640-47a7-9e60-65671e3cd464
Celé meno chybujúceho balíka: Microsoft.MicrosoftStickyNotes_3.8.8.0_x64__8wekyb3d8bbwe
Identifikácia chybujúcej aplikácie vzhľadom na balík: App

Error: (06/01/2021 05:06:13 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: utorrent.exe, verzia: 2.2.1.25534, časová značka: 0x4e4594ce
Názov chybujúceho modulu: GDI32.dll, verzia: 10.0.19041.746, časová značka: 0x1baae673
Kód výnimky: 0xc000041d
Odstup chyby: 0x00005d67
Identifikácia chybujúceho procesu: 0x2e0c
Čas spustenia chybujúcej aplikácie: 0x01d7568f5589d8eb
Cesta chybujúcej aplikácie: C:\Users\User\AppData\Roaming\uTorrent\utorrent.exe
Cesta chybujúceho modulu: C:\WINDOWS\System32\GDI32.dll
Identifikácia hlásenia: 094929ef-6c94-4a9b-88ab-eca483c2c347
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (05/27/2021 04:25:29 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: NT AUTHORITY)
Description: User hive is loaded by another process (Registry Lock) Process name: C:\Program Files\AVG\Antivirus\avgToolsSvc.exe, PID: 4744, ProfSvc PID: 1720.

Error: (05/26/2021 06:30:02 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program CCleaner64.exe version 5.80.0.8743 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 56d0

Start Time: 01d7524c45c16a83

Termination Time: 4

Application Path: C:\Program Files\CCleaner\CCleaner64.exe

Report Id: d49f4277-bc51-4c87-b2c0-91d2b1bd7b3d

Faulting package full name:

Faulting package-relative application ID:

Hang type: Unknown

Error: (05/25/2021 06:42:40 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiska nemohol dokončiť opakovat operaci trim v (D:), pretože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)


System errors:
=============
Error: (06/04/2021 06:31:22 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-H92TJ3T)
Description: The server Microsoft.Windows.ContentDeliveryManager_10.0.19041.964_neutral_neutral_cw5n1h2txyewy!App.AppXw3qcpc7p849541dp39vvqd01bn7z9ybh.mca did not register with DCOM within the required timeout.

Error: (06/04/2021 06:31:22 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-H92TJ3T)
Description: The server Microsoft.MicrosoftOfficeHub_18.2104.12721.0_x64__8wekyb3d8bbwe!Microsoft.MicrosoftOfficeHub.AppXt4mh7c9swwc5cmd5jgmtmwcfmvkddpn1.mca did not register with DCOM within the required timeout.

Error: (06/04/2021 06:31:22 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-H92TJ3T)
Description: The server Microsoft.Windows.Search_1.14.1.19041_neutral_neutral_cw5n1h2txyewy!CortanaUI.AppX49we79s9ab0xp8xpjb6t6g31ep03r71y.mca did not register with DCOM within the required timeout.

Error: (06/03/2021 07:02:21 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba LenovoVantageService sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 1-krát.

Error: (06/03/2021 06:30:46 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-H92TJ3T)
Description: The server {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} did not register with DCOM within the required timeout.

Error: (06/02/2021 05:46:02 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba LenovoVantageService je označená ako interaktívna služba. Systém je však nakonfigurovaný tak, aby nepovolil interaktívne služby. Služba pravdepodobne nebude pracovať správne.

Error: (06/02/2021 05:45:56 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba LenovoVantageService sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 1-krát.

Error: (06/02/2021 07:03:59 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-H92TJ3T)
Description: The server {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} did not register with DCOM within the required timeout.


Windows Defender:
================
Date: 2021-04-30 06:16:00
Description:
Antivirová ochrana v programu Microsoft Defender scan has been stopped before completion.
Scan Type: Antimalwarový program
Scan Parameters: Rychlé prohledávání

Date: 2021-04-29 04:49:21
Description:
Antivirová ochrana v programu Microsoft Defender scan has been stopped before completion.
Scan Type: Antimalwarový program
Scan Parameters: Rychlé prohledávání

Date: 2021-04-28 09:40:26
Description:
Antivirová ochrana v programu Microsoft Defender scan has been stopped before completion.
Scan Type: Antimalwarový program
Scan Parameters: Rychlé prohledávání

Date: 2021-04-27 09:03:40
Description:
Antivirová ochrana v programu Microsoft Defender scan has been stopped before completion.
Scan Type: Antimalwarový program
Scan Parameters: Rychlé prohledávání

Date: 2021-04-26 19:30:27
Description:
Antivirová ochrana v programu Microsoft Defender scan has been stopped before completion.
Scan Type: Antimalwarový program
Scan Parameters: Rychlé prohledávání

Date: 2021-04-28 06:32:29
Description:
Antivirová ochrana v programu Microsoft Defender has encountered an error trying to update security intelligence.
New security intelligence Version: 1.337.35.0
Previous security intelligence Version: 1.335.1722.0
Update Source: Uživatel
Security intelligence Type: Antispywarový program
Update Type: Delta
Current Engine Version: 1.1.18100.5
Previous Engine Version: 1.1.18000.5
Error code: 0x80070666
Error description: Již je nainstalována jiná verze tohoto produktu. Instalaci této verze nelze dokončit. Chcete-li znovu nakonfigurovat nebo odebrat existující verzi produktu, použijte ovládací panel Přidat nebo odebrat programy.

Date: 2021-04-28 06:32:29
Description:
Antivirová ochrana v programu Microsoft Defender has encountered an error trying to update security intelligence.
New security intelligence Version: 1.337.35.0
Previous security intelligence Version: 1.335.1722.0
Update Source: Uživatel
Security intelligence Type: Antivirový program
Update Type: Delta
Current Engine Version: 1.1.18100.5
Previous Engine Version: 1.1.18000.5
Error code: 0x80070666
Error description: Již je nainstalována jiná verze tohoto produktu. Instalaci této verze nelze dokončit. Chcete-li znovu nakonfigurovat nebo odebrat existující verzi produktu, použijte ovládací panel Přidat nebo odebrat programy.

Date: 2021-04-28 06:32:29
Description:
Antivirová ochrana v programu Microsoft Defender has encountered an error trying to update the engine.
New Engine Version: 1.1.18100.5
Previous Engine Version: 1.1.18000.5
Error Code: 0x80070666
Error description: Již je nainstalována jiná verze tohoto produktu. Instalaci této verze nelze dokončit. Chcete-li znovu nakonfigurovat nebo odebrat existující verzi produktu, použijte ovládací panel Přidat nebo odebrat programy.

Date: 2021-04-27 13:35:09
Description:
Antivirová ochrana v programu Microsoft Defender has encountered an error trying to update security intelligence.
New security intelligence Version: 1.337.35.0
Previous security intelligence Version: 1.335.1722.0
Update Source: Uživatel
Security intelligence Type: Antispywarový program
Update Type: Delta
Current Engine Version: 1.1.18100.5
Previous Engine Version: 1.1.18000.5
Error code: 0x80070666
Error description: Již je nainstalována jiná verze tohoto produktu. Instalaci této verze nelze dokončit. Chcete-li znovu nakonfigurovat nebo odebrat existující verzi produktu, použijte ovládací panel Přidat nebo odebrat programy.

Date: 2021-04-27 13:35:09
Description:
Antivirová ochrana v programu Microsoft Defender has encountered an error trying to update security intelligence.
New security intelligence Version: 1.337.35.0
Previous security intelligence Version: 1.335.1722.0
Update Source: Uživatel
Security intelligence Type: Antivirový program
Update Type: Delta
Current Engine Version: 1.1.18100.5
Previous Engine Version: 1.1.18000.5
Error code: 0x80070666
Error description: Již je nainstalována jiná verze tohoto produktu. Instalaci této verze nelze dokončit. Chcete-li znovu nakonfigurovat nebo odebrat existující verzi produktu, použijte ovládací panel Přidat nebo odebrat programy.

CodeIntegrity:
===============
Date: 2021-06-04 07:10:42
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\AVG\Antivirus\AVGSvc.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2021-06-04 07:06:18
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2021-06-04 07:05:21
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVG\Antivirus\aswAMSI.dll that did not meet the Microsoft signing level requirements.


==================== Memory info ===========================

BIOS: LENOVO O2NKT14A 12/06/2016
Motherboard: LENOVO 0x36BF
Processor: Intel(R) Core(TM) i7-7700 CPU @ 3.60GHz
Percentage of memory in use: 72%
Total physical RAM: 8091.23 MB
Available physical RAM: 2216.75 MB
Total Virtual: 14747.23 MB
Available Virtual: 7907.76 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:117.89 GB) (Free:8.67 GB) NTFS
Drive d: () (Fixed) (Total:931.51 GB) (Free:203.67 GB) NTFS

\\?\Volume{4bac9e1f-892f-4d84-8532-a01cb260de31}\ (WinRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.49 GB) NTFS
\\?\Volume{003ce010-b35e-46c2-9700-b79d3c51d944}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 119.2 GB) (Disk ID: FB131764)

Partition: GPT.

==========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: FB131755)

Partition: GPT.

==================== End of Addition.txt =======================

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosím o kontrolu, značne spomalené a niekedy nereaguje. Ďakujem

#3 Příspěvek od Rudy »

Zdravím!
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

havranec
Návštěvník
Návštěvník
Příspěvky: 135
Registrován: 02 bře 2008 09:01

Re: Prosím o kontrolu, značne spomalené a niekedy nereaguje. Ďakujem

#4 Příspěvek od havranec »

# -------------------------------
# Malwarebytes AdwCleaner 8.2.0.0
# -------------------------------
# Build: 03-22-2021
# Database: 2021-05-17.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 06-06-2021
# Duration: 00:00:00
# OS: Windows 10 Home
# Cleaned: 1
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

No malicious registry entries cleaned.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

Deleted banggood.com

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner_Debug.log - [47028 octets] - [08/10/2019 13:07:38]
AdwCleaner[S00].txt - [3772 octets] - [08/10/2019 13:07:58]
AdwCleaner[C00].txt - [2896 octets] - [08/10/2019 13:08:22]
AdwCleaner[S01].txt - [2162 octets] - [08/10/2019 14:51:32]
AdwCleaner[S02].txt - [2223 octets] - [08/10/2019 15:07:15]
AdwCleaner[S03].txt - [2178 octets] - [29/12/2020 16:20:16]
AdwCleaner[C03].txt - [2411 octets] - [29/12/2020 16:21:19]
AdwCleaner[S04].txt - [2153 octets] - [30/01/2021 11:14:42]
AdwCleaner[S05].txt - [2214 octets] - [30/01/2021 11:17:11]
AdwCleaner[C05].txt - [2608 octets] - [30/01/2021 11:17:38]
AdwCleaner[S06].txt - [2483 octets] - [06/06/2021 04:21:12]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C06].txt ##########

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosím o kontrolu, značne spomalené a niekedy nereaguje. Ďakujem

#5 Příspěvek od Rudy »

Dejte nové logy FRST+Addition.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

havranec
Návštěvník
Návštěvník
Příspěvky: 135
Registrován: 02 bře 2008 09:01

Re: Prosím o kontrolu, značne spomalené a niekedy nereaguje. Ďakujem

#6 Příspěvek od havranec »

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 06-06-2021
Ran by User (06-06-2021 14:29:18)
Running from C:\Users\User\Desktop
Windows 10 Home Version 21H1 19043.985 (X64) (2020-12-06 06:52:43)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1496144255-991381806-58249036-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1496144255-991381806-58249036-503 - Limited - Disabled)
Guest (S-1-5-21-1496144255-991381806-58249036-501 - Limited - Disabled)
User (S-1-5-21-1496144255-991381806-58249036-1001 - Administrator - Enabled) => C:\Users\User
WDAGUtilityAccount (S-1-5-21-1496144255-991381806-58249036-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version: - )
Adobe Acrobat Reader DC - Slovak (HKLM-x32\...\{AC76BA86-7AD7-1051-7B44-AC0F074E4100}) (Version: 21.001.20155 - Adobe Systems Incorporated)
CCleaner (HKLM\...\CCleaner) (Version: 5.80 - Piriform)
Dolby Audio X2 Windows API SDK (HKLM\...\{FA0735B6-9E18-437A-A1CD-9152650FC52B}) (Version: 0.8.8.90 - Dolby Laboratories, Inc.)
Dolby Audio X2 Windows APP (HKLM\...\{D0D32569-4680-490A-905C-5117CEAAB3EF}) (Version: 0.8.8.76 - Dolby Laboratories, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 91.0.4472.77 - Google LLC)
Intel(R) Chipset Device Software (HKLM-x32\...\{17408817-d415-4768-a160-ae6d46d6bdb0}) (Version: 10.1.1.44 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1035 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 26.20.100.7757 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 17.7.0.1006 - Intel Corporation)
Intel® Optane™ Pinning Explorer Extensions (HKLM\...\{AA90D357-23D3-44C1-954D-7105B0C08F38}) (Version: 17.7.0.1006 - Intel Corporation)
Lenovo Silver Silk Wireless Keyboard (HKLM-x32\...\{B88AD4F5-58A6-425D-9282-92228FEB7067}) (Version: 1.05 - Lenovo) Hidden
Lenovo Silver Silk Wireless Keyboard (HKLM-x32\...\InstallShield_{B88AD4F5-58A6-425D-9282-92228FEB7067}) (Version: 1.05 - Lenovo)
Lenovo Vantage Service (HKLM-x32\...\VantageSRV_is1) (Version: 3.7.19.0 - Lenovo Group Ltd.)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 91.0.864.41 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1496144255-991381806-58249036-1001\...\OneDriveSetup.exe) (Version: 21.083.0425.0003 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{A0E1B43D-5F4A-46AF-9925-ABA3423325DC}) (Version: 2.77.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24123 (HKLM-x32\...\{2cbcedbb-f38c-48a3-a3e1-6c6fd821a7f4}) (Version: 14.0.24123.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24123 (HKLM-x32\...\{206898cc-4b41-4d98-ac28-9f9ae57f91fe}) (Version: 14.0.24123.0 - Microsoft Corporation)
NVIDIA Ovladače grafiky 457.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 457.65 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
Qualcomm Atheros 11ac Wireless LAN Installer (HKLM-x32\...\{20CA507E-24AA-4741-87CF-CC1B250790B7}) (Version: 11.0.10442 - Qualcomm)
Qualcomm Atheros Bluetooth Installer (64) (HKLM\...\{628988B4-3FA5-4EA6-BAA3-DA640F6718BD}) (Version: 10.0.0.318 - Qualcomm Atheros)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.15063.29094 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.19.627.2017 - Realtek)
Viber (HKLM-x32\...\{BCFF3282-3299-47F2-95C3-3C0165260EB2}) (Version: 10.3.0.36 - Viber Media S.a.r.l) Hidden
Viber (HKU\S-1-5-21-1496144255-991381806-58249036-1001\...\{8ce90cb2-6f65-4b26-bd5c-e9627995f807}) (Version: 10.3.0.36 - Viber Media S.a.r.l)
Vulkan Run Time Libraries 1.0.54.1 (HKLM\...\VulkanRT1.0.54.1) (Version: 1.0.54.1 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.54.1 (HKLM\...\VulkanRT1.0.54.1-2) (Version: 1.0.54.1 - LunarG, Inc.) Hidden
Wargaming.net Game Center (HKU\S-1-5-21-1496144255-991381806-58249036-1001\...\Wargaming.net Game Center) (Version: 21.3.0.5224 - Wargaming.net)
WhatsApp (HKU\S-1-5-21-1496144255-991381806-58249036-1001\...\WhatsApp) (Version: 2.2037.6 - WhatsApp)
WinRAR 5.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.00.0 - win.rar GmbH)
World of Tanks EU (HKU\S-1-5-21-1496144255-991381806-58249036-1001\...\WOT.EU.PRODUCTION) (Version: - Wargaming.net)
World_of_Warships (HKU\S-1-5-21-1496144255-991381806-58249036-1001\...\WOWS.WW.PRODUCTION) (Version: - Wargaming.net)
X-Lite 3.0 (HKLM-x32\...\X-Lite 1.5_is1) (Version: - CounterPath Solutions Inc.)

Packages:
=========
Doplnok mediálneho nástroja pre Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-02-16] (Microsoft Corporation)
Doplnok pre Fotografie -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-03-13] (Microsoft Corporation)
Lenovo Vantage -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2103.17.0_x64__k1h2ywk1493x8 [2021-04-12] (LENOVO INC.)
LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_2.1.7098.0_neutral__w1wdnht996qgy [2019-06-05] (LinkedIn)
Microsoft Access -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Access_16051.14026.20246.0_x86__8wekyb3d8bbwe [2021-05-29] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-06-05] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-06-05] (Microsoft Corporation) [MS Ad]
Microsoft Excel -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Excel_16051.14026.20246.0_x86__8wekyb3d8bbwe [2021-05-29] (Microsoft Corporation)
Microsoft Office Desktop Apps -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop_16051.14026.20246.0_x86__8wekyb3d8bbwe [2021-05-29] (Microsoft Corporation)
Microsoft Outlook -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.14026.20246.0_x86__8wekyb3d8bbwe [2021-05-29] (Microsoft Corporation)
Microsoft PowerPoint -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.PowerPoint_16051.14026.20246.0_x86__8wekyb3d8bbwe [2021-05-29] (Microsoft Corporation)
Microsoft Publisher -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Publisher_16051.14026.20246.0_x86__8wekyb3d8bbwe [2021-05-29] (Microsoft Corporation)
Microsoft Word -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Word_16051.14026.20246.0_x86__8wekyb3d8bbwe [2021-05-29] (Microsoft Corporation)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.961.0_x64__56jybvy8sckqj [2021-05-26] (NVIDIA Corp.)
Ovládacie centrum pre grafiku Intel® -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3325.0_x64__8j3eq9eme6ctt [2021-06-03] (INTEL CORP) [Startup Task]
Rozšírenie pre video MPEG-2 -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.22661.0_x64__8wekyb3d8bbwe [2019-09-24] (Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2210608 2006-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OptaneIconOverlay] -> {A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9} => C:\Program Files\Intel\OptaneShellExtensions\OptaneShellExt.dll [2019-08-07] (Intel(R) Rapid Storage Technology -> )
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2013-08-22] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2013-08-22] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:\Program Files\Intel\OptaneShellExtensions\OptaneShellExt.dll [2019-08-07] (Intel(R) Rapid Storage Technology -> )
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvla.inf_amd64_ef20e2a1f5032237\nvshext.dll [2021-01-21] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2013-08-22] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2013-08-22] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2011-11-03 20:48 - 2011-11-03 20:48 - 000056320 _____ () [File not signed] C:\Program Files (x86)\Lenovo\Lenovo Silver Silk Wireless Keyboard\skfunc.dll
2011-10-21 22:41 - 2011-10-21 22:41 - 000061952 _____ (LITE-ON Corp.) [File not signed] C:\Program Files (x86)\Lenovo\Lenovo Silver Silk Wireless Keyboard\skhooks.dll
2011-11-18 19:07 - 2011-11-18 19:07 - 000054272 _____ (LITE-ON TECHNOLOGY CORP.) [File not signed] C:\Program Files (x86)\Lenovo\Lenovo Silver Silk Wireless Keyboard\SKHidKbd.dll
2021-02-24 19:41 - 2020-05-30 15:58 - 001280000 _____ (Robert Simpson, et al.) [File not signed] C:\ProgramData\Lenovo\iMController\Plugins\GenericMessagingPlugin\x86\x86\SQLite.Interop.dll
2021-05-31 18:35 - 2020-11-03 05:08 - 000954864 _____ (SQLite Development Team) [File not signed] C:\ProgramData\Lenovo\iMController\Plugins\LenovoWiFiSecurityPlugin\x86\x86\e_sqlite3.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-1496144255-991381806-58249036-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://go.microsoft.com/fwlink/p/?LinkId=619797&pc=UE01&ocid=UE01DHP
HKU\S-1-5-21-1496144255-991381806-58249036-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo17win10.msn.com/?pc=LCTE
HKU\S-1-5-21-1496144255-991381806-58249036-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com/
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2017-09-29 15:46 - 2017-09-29 15:44 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-1496144255-991381806-58249036-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Lenovo\LenovoWallPaper.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKU\S-1-5-21-1496144255-991381806-58249036-1001\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_EA977365BF5B2185FA52414E130E9AF9"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{2A0F24BE-0417-4B7C-82E0-AEA49A5356A2}C:\users\user\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\user\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [TCP Query User{3EFEAA9B-8E1C-466F-9831-189CE8295854}C:\users\user\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\user\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{6080D66F-0A15-409F-B9A3-D282267C8458}C:\games\world_of_tanks_eu\win64\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\win64\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [TCP Query User{517FA03E-29DF-4BDE-95D1-91029A573004}C:\games\world_of_tanks_eu\win64\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\win64\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{FA7DBE6C-B9A9-4798-9DDE-6FC0E4FE169C}C:\program files (x86)\counterpath\x-lite\x-lite.exe] => (Allow) C:\program files (x86)\counterpath\x-lite\x-lite.exe () [File not signed]
FirewallRules: [TCP Query User{0F7A0131-4AEE-48A9-B4AB-F6A23E62E44D}C:\program files (x86)\counterpath\x-lite\x-lite.exe] => (Allow) C:\program files (x86)\counterpath\x-lite\x-lite.exe () [File not signed]
FirewallRules: [UDP Query User{019D165E-A783-4C39-86D3-0A8FD000C4D1}C:\games\world_of_tanks_eu\win64\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\win64\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [TCP Query User{D4A89DBE-2E5C-4FBE-93ED-9F06AF475218}C:\games\world_of_tanks_eu\win64\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\win64\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [TCP Query User{D7BB254C-3614-49B3-A3BB-BE7E93812E12}C:\users\user\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\user\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{9758F37C-1793-44E7-A5B7-D2D28DF780EF}C:\users\user\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\user\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [TCP Query User{CEDD63DE-AE5E-4D08-84FE-3220C65B3BB0}C:\games\world_of_tanks_eu\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{64DCF168-9DCF-4125-BDB5-E881E6203267}C:\games\world_of_tanks_eu\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [TCP Query User{331E87CE-36BC-47C6-9148-6B8C87826BA1}C:\program files (x86)\counterpath\x-lite\x-lite.exe] => (Allow) C:\program files (x86)\counterpath\x-lite\x-lite.exe () [File not signed]
FirewallRules: [UDP Query User{EA4170DF-452A-452C-A8C1-F23E2A456910}C:\program files (x86)\counterpath\x-lite\x-lite.exe] => (Allow) C:\program files (x86)\counterpath\x-lite\x-lite.exe () [File not signed]
FirewallRules: [TCP Query User{44905811-9B97-4AE0-B73F-958796A7B300}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{E5EA4172-128A-49AE-BD0F-4CA1CE87067D}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [{BC60B747-848A-47CF-B5BF-6089E8D7CFF4}] => (Block) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [{CFE743D3-8BF9-4736-B25C-C035E8E17071}] => (Block) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [TCP Query User{605ED459-90F6-4154-8240-19D04E9DBEAE}C:\games\world_of_tanks_eu\win32\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\win32\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{10E7DA12-E224-4476-9339-2E684D4ACB4C}C:\games\world_of_tanks_eu\win32\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\win32\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [{2CDA0559-4100-4CAD-855A-EBC361835A01}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{5E68759B-F18E-47B3-996F-98C45E782DCB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{6A417B2C-FD99-48C6-B053-3CDBF4D4E432}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{9C06B4E6-FB82-42E8-8FDE-F719EB161025}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{D50A21ED-BEFD-495C-9E92-52774C1256E6}C:\users\user\appdata\local\viber\viber.exe] => (Allow) C:\users\user\appdata\local\viber\viber.exe (Viber Media S.à r.l. -> Viber Media S.à r.l.)
FirewallRules: [UDP Query User{4C422C61-43B3-47DA-80B6-4B31EFA74A69}C:\users\user\appdata\local\viber\viber.exe] => (Allow) C:\users\user\appdata\local\viber\viber.exe (Viber Media S.à r.l. -> Viber Media S.à r.l.)
FirewallRules: [{45B4A31C-12F6-4576-87D5-549C80277250}] => (Allow) C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.14026.20246.0_x86__8wekyb3d8bbwe\Office16\OUTLOOK.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{05A1D3F1-1E70-4216-A338-EB305063F6B4}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

ATTENTION: System Restore is disabled (Total:117.89 GB) (Free:10.85 GB) (9%)

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (06/04/2021 07:10:59 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, Probíhá vypnutí systému.
.

Error: (06/04/2021 07:10:59 AM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, Probíhá vypnutí systému.
]

Error: (06/02/2021 05:03:41 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiska nemohol dokončiť opakovat operaci trim v (D:), pretože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (06/01/2021 02:40:12 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: Microsoft.Notes.exe, verzia: 3.8.8.0, časová značka: 0x5ff8c7b6
Názov chybujúceho modulu: WindowManagementAPI.dll, verzia: 0.0.0.0, časová značka: 0xbbca9f6e
Kód výnimky: 0xc0000005
Odstup chyby: 0x0000000000056db9
Identifikácia chybujúceho procesu: 0x3a14
Čas spustenia chybujúcej aplikácie: 0x01d756e0ebe3afa4
Cesta chybujúcej aplikácie: C:\Program Files\WindowsApps\Microsoft.MicrosoftStickyNotes_3.8.8.0_x64__8wekyb3d8bbwe\Microsoft.Notes.exe
Cesta chybujúceho modulu: C:\WINDOWS\SYSTEM32\WindowManagementAPI.dll
Identifikácia hlásenia: 7b14a92c-e640-47a7-9e60-65671e3cd464
Celé meno chybujúceho balíka: Microsoft.MicrosoftStickyNotes_3.8.8.0_x64__8wekyb3d8bbwe
Identifikácia chybujúcej aplikácie vzhľadom na balík: App

Error: (06/01/2021 05:06:13 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: utorrent.exe, verzia: 2.2.1.25534, časová značka: 0x4e4594ce
Názov chybujúceho modulu: GDI32.dll, verzia: 10.0.19041.746, časová značka: 0x1baae673
Kód výnimky: 0xc000041d
Odstup chyby: 0x00005d67
Identifikácia chybujúceho procesu: 0x2e0c
Čas spustenia chybujúcej aplikácie: 0x01d7568f5589d8eb
Cesta chybujúcej aplikácie: C:\Users\User\AppData\Roaming\uTorrent\utorrent.exe
Cesta chybujúceho modulu: C:\WINDOWS\System32\GDI32.dll
Identifikácia hlásenia: 094929ef-6c94-4a9b-88ab-eca483c2c347
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (05/27/2021 04:25:29 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: NT AUTHORITY)
Description: User hive is loaded by another process (Registry Lock) Process name: C:\Program Files\AVG\Antivirus\avgToolsSvc.exe, PID: 4744, ProfSvc PID: 1720.

Error: (05/26/2021 06:30:02 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program CCleaner64.exe version 5.80.0.8743 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 56d0

Start Time: 01d7524c45c16a83

Termination Time: 4

Application Path: C:\Program Files\CCleaner\CCleaner64.exe

Report Id: d49f4277-bc51-4c87-b2c0-91d2b1bd7b3d

Faulting package full name:

Faulting package-relative application ID:

Hang type: Unknown

Error: (05/25/2021 06:42:40 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiska nemohol dokončiť opakovat operaci trim v (D:), pretože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)


System errors:
=============
Error: (06/06/2021 04:23:19 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba System Interface Foundation Service sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 1-krát.

Error: (06/06/2021 04:23:19 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Dolby DAX2 API Service sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 1-krát.

Error: (06/06/2021 04:23:19 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) Dynamic Application Loader Host Interface Service sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 1-krát.

Error: (06/06/2021 04:23:19 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba LenovoVantageService sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 1-krát.

Error: (06/06/2021 04:23:19 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) Content Protection HECI Service sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 1-krát.

Error: (06/06/2021 04:23:19 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Presentation Foundation Font Cache 3.0.0.0 sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 1 krát. O 0 ms bude vykonaná nasledujúca opravná akcia: Restartovat službu.

Error: (06/06/2021 04:23:19 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) Graphics Command Center Service sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 1-krát.

Error: (06/06/2021 04:23:19 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Adobe Acrobat Update Service sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 1-krát.


Windows Defender:
================
Date: 2021-04-30 06:16:00
Description:
Antivirová ochrana v programu Microsoft Defender scan has been stopped before completion.
Scan Type: Antimalwarový program
Scan Parameters: Rychlé prohledávání

Date: 2021-04-29 04:49:21
Description:
Antivirová ochrana v programu Microsoft Defender scan has been stopped before completion.
Scan Type: Antimalwarový program
Scan Parameters: Rychlé prohledávání

Date: 2021-04-28 09:40:26
Description:
Antivirová ochrana v programu Microsoft Defender scan has been stopped before completion.
Scan Type: Antimalwarový program
Scan Parameters: Rychlé prohledávání

Date: 2021-04-27 09:03:40
Description:
Antivirová ochrana v programu Microsoft Defender scan has been stopped before completion.
Scan Type: Antimalwarový program
Scan Parameters: Rychlé prohledávání

Date: 2021-04-26 19:30:27
Description:
Antivirová ochrana v programu Microsoft Defender scan has been stopped before completion.
Scan Type: Antimalwarový program
Scan Parameters: Rychlé prohledávání

Date: 2021-04-28 06:32:29
Description:
Antivirová ochrana v programu Microsoft Defender has encountered an error trying to update security intelligence.
New security intelligence Version: 1.337.35.0
Previous security intelligence Version: 1.335.1722.0
Update Source: Uživatel
Security intelligence Type: Antispywarový program
Update Type: Delta
Current Engine Version: 1.1.18100.5
Previous Engine Version: 1.1.18000.5
Error code: 0x80070666
Error description: Již je nainstalována jiná verze tohoto produktu. Instalaci této verze nelze dokončit. Chcete-li znovu nakonfigurovat nebo odebrat existující verzi produktu, použijte ovládací panel Přidat nebo odebrat programy.

Date: 2021-04-28 06:32:29
Description:
Antivirová ochrana v programu Microsoft Defender has encountered an error trying to update security intelligence.
New security intelligence Version: 1.337.35.0
Previous security intelligence Version: 1.335.1722.0
Update Source: Uživatel
Security intelligence Type: Antivirový program
Update Type: Delta
Current Engine Version: 1.1.18100.5
Previous Engine Version: 1.1.18000.5
Error code: 0x80070666
Error description: Již je nainstalována jiná verze tohoto produktu. Instalaci této verze nelze dokončit. Chcete-li znovu nakonfigurovat nebo odebrat existující verzi produktu, použijte ovládací panel Přidat nebo odebrat programy.

Date: 2021-04-28 06:32:29
Description:
Antivirová ochrana v programu Microsoft Defender has encountered an error trying to update the engine.
New Engine Version: 1.1.18100.5
Previous Engine Version: 1.1.18000.5
Error Code: 0x80070666
Error description: Již je nainstalována jiná verze tohoto produktu. Instalaci této verze nelze dokončit. Chcete-li znovu nakonfigurovat nebo odebrat existující verzi produktu, použijte ovládací panel Přidat nebo odebrat programy.

Date: 2021-04-27 13:35:09
Description:
Antivirová ochrana v programu Microsoft Defender has encountered an error trying to update security intelligence.
New security intelligence Version: 1.337.35.0
Previous security intelligence Version: 1.335.1722.0
Update Source: Uživatel
Security intelligence Type: Antispywarový program
Update Type: Delta
Current Engine Version: 1.1.18100.5
Previous Engine Version: 1.1.18000.5
Error code: 0x80070666
Error description: Již je nainstalována jiná verze tohoto produktu. Instalaci této verze nelze dokončit. Chcete-li znovu nakonfigurovat nebo odebrat existující verzi produktu, použijte ovládací panel Přidat nebo odebrat programy.

Date: 2021-04-27 13:35:09
Description:
Antivirová ochrana v programu Microsoft Defender has encountered an error trying to update security intelligence.
New security intelligence Version: 1.337.35.0
Previous security intelligence Version: 1.335.1722.0
Update Source: Uživatel
Security intelligence Type: Antivirový program
Update Type: Delta
Current Engine Version: 1.1.18100.5
Previous Engine Version: 1.1.18000.5
Error code: 0x80070666
Error description: Již je nainstalována jiná verze tohoto produktu. Instalaci této verze nelze dokončit. Chcete-li znovu nakonfigurovat nebo odebrat existující verzi produktu, použijte ovládací panel Přidat nebo odebrat programy.

CodeIntegrity:
===============
Date: 2021-06-04 07:10:42
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\AVG\Antivirus\AVGSvc.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2021-06-04 07:06:18
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2021-06-04 07:05:21
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVG\Antivirus\aswAMSI.dll that did not meet the Microsoft signing level requirements.


==================== Memory info ===========================

BIOS: LENOVO O2NKT14A 12/06/2016
Motherboard: LENOVO 0x36BF
Processor: Intel(R) Core(TM) i7-7700 CPU @ 3.60GHz
Percentage of memory in use: 44%
Total physical RAM: 8091.23 MB
Available physical RAM: 4458.05 MB
Total Virtual: 14747.23 MB
Available Virtual: 10370.92 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:117.89 GB) (Free:10.85 GB) NTFS
Drive d: () (Fixed) (Total:931.51 GB) (Free:203.67 GB) NTFS

\\?\Volume{4bac9e1f-892f-4d84-8532-a01cb260de31}\ (WinRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.49 GB) NTFS
\\?\Volume{003ce010-b35e-46c2-9700-b79d3c51d944}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 119.2 GB) (Disk ID: FB131764)

Partition: GPT.

==========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: FB131755)

Partition: GPT.

==================== End of Addition.txt =======================

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 06-06-2021
Ran by User (administrator) on DESKTOP-H92TJ3T (LENOVO F0CM001FCK) (06-06-2021 14:28:27)
Running from C:\Users\User\Desktop
Loaded Profiles: User
Platform: Windows 10 Home Version 21H1 19043.985 (X64) Language: Čeština (Česká republika) -> Slovenčina (Slovensko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.) C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler64.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_790c20683c3a62ec\igfxCUIService.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_790c20683c3a62ec\igfxEM.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_55bf1834336e8765\OneApp.IGCC.WinService.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_4357b4a62fdb1369\IntelCpHDCPSvc.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_4357b4a62fdb1369\IntelCpHeciSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_120314e52c04567c\RstMwService.exe
(Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.7.19.0\LenovoVantageService.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.Device.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.SettingsApp.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.CompanionApp.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe <2>
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(Lenovo) [File not signed] C:\Program Files (x86)\Lenovo\Lenovo Silver Silk Wireless Keyboard\skd8861.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\User\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2105.19601.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.BingWeather_4.46.31121.0_x64__8wekyb3d8bbwe\Microsoft.Msn.Weather.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.MicrosoftStickyNotes_3.8.8.0_x64__8wekyb3d8bbwe\Microsoft.Notes.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20920.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20920.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.4-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.4-0\NisSrv.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvla.inf_amd64_ef20e2a1f5032237\Display.NvContainer\NVDisplay.Container.exe <2>
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Wargaming.net Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\dlls\wgc_renderer_host.exe <3>
(Wargaming.net Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\wargamingerrormonitor.exe
(Wargaming.net Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\wgc.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [19677472 2020-06-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3618080 2020-06-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [Lenovo Silver Silk Wireless Keyboard] => C:\Program Files (x86)\Lenovo\Lenovo Silver Silk Wireless Keyboard\skd8861.exe [1742336 2013-08-14] (Lenovo) [File not signed]
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1496144255-991381806-58249036-1001\...\Run: [Wargaming.net Game Center] => C:\ProgramData\Wargaming.net\GameCenter\wgc.exe [2143168 2021-05-28] (Wargaming.net Limited -> Wargaming.net)
HKU\S-1-5-21-1496144255-991381806-58249036-1001\...\Run: [eyeBeam SIP Client] => C:\Program Files (x86)\CounterPath\X-Lite\x-lite.exe [18550784 2006-05-31] () [File not signed]
HKU\S-1-5-21-1496144255-991381806-58249036-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [33770112 2021-05-20] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\91.0.4472.77\Installer\chrmstp.exe [2021-06-04] (Google LLC -> Google LLC)
BootExecute: autocheck autochk * icarus_rvrt.exe
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {07B65ED8-A125-45CE-9BAB-530CCBC9BCF3} - System32\Tasks\Lenovo\Vantage\Schedule\VantageTelemetryAddinTask => C:\Program Files (x86)\Lenovo\VantageService\3.6.15.0\ScheduleEventAction.exe
Task: {07DB359D-074B-49E6-8108-A16D357854BA} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe [143888 2021-03-02] (Lenovo -> Lenovo Group Ltd.)
Task: {12B521BE-B003-4B1A-80E5-C85F90CC466B} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\388e3f3a-1ee2-47d5-84cf-bb1b933140e2 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81824 2021-03-14] (Lenovo -> Lenovo Group Ltd.)
Task: {237F89CC-3501-4E58-9161-087291CC5751} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.4-0\MpCmdRun.exe [644888 2021-06-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2716C869-E973-4360-AF14-3CE87611DA9C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.4-0\MpCmdRun.exe [644888 2021-06-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2C98D543-B39A-4A68-869E-D8A2BB65759C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-06-05] (Google Inc -> Google LLC)
Task: {33A6F03E-0CB2-4443-9D12-3E5477AAFB0D} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [62392 2021-03-14] (Lenovo -> Lenovo Group Ltd.)
Task: {3DAB4313-3D2C-4460-BEEE-6036B89B2D2F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.4-0\MpCmdRun.exe [644888 2021-06-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4C5EBE63-666A-4E57-8AE5-26E8D94A4731} - System32\Tasks\Microsoft\Windows\rempl\shell => C:\Program Files\rempl\sedlauncher.exe
Task: {5DE4F256-C57F-4940-86C9-A7621E5ED063} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1790184 2021-04-30] (Avast Software s.r.o. -> Avast Software)
Task: {6F52A213-A8B1-4F34-A0CC-A4A36FC3ADB6} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.4-0\MpCmdRun.exe [644888 2021-06-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {79A9C1FC-4956-4B78-8F29-05F5002C8E21} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-06-05] (Google Inc -> Google LLC)
Task: {8CF8ABFB-29E6-42D4-A8F9-EFD64994437D} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\7d7404ab-ad19-4ce3-8920-03c9a9ee430f => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81824 2021-03-14] (Lenovo -> Lenovo Group Ltd.)
Task: {91F20676-55CC-4369-8781-8EBA88099674} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\3.7.19.0\ScheduleEventAction.exe [23968 2021-05-17] (Lenovo -> Lenovo Group Ltd.)
Task: {A655C4FB-9FFB-4B94-B1BE-F4EA6D84A52D} - System32\Tasks\Optimize Push Notification Data File-S-1-5-21-1496144255-991381806-58249036-1001 => {201600D8-6EFF-48CE-B842-E14D37A0682D} C:\WINDOWS\System32\wpninprc.dll [24064 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Task: {AF7BAD84-5EB4-4523-88C7-A9B17E0D175D} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {B2A2CCD2-CC9B-4B80-A184-4053D254E62A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [28158080 2021-05-20] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {BC36B622-2CB0-48CA-866D-803BB502A423} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => %systemroot%\system32\sc.exe start LenovoVantageService
Task: {BE1CD6D1-4C8A-420E-A80F-941B7844C89A} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-05-20] (Piriform Software Ltd -> Piriform)
Task: {C527471E-313A-474B-9EA2-63FBEB5DE3D0} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [668464 2017-02-25] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {C84A8166-3E1E-4153-9089-89DF03B49A83} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\31783053-e1dc-4bad-9248-fc9d341e944e => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81824 2021-03-14] (Lenovo -> Lenovo Group Ltd.)
Task: {CF8D520D-DF44-4698-B44E-DC2C975B0AD4} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => "%windir%\system32\sc.exe" START ImControllerService
Task: {DEE72ED6-E3AC-46E5-909E-F83A6D368E80} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {ECAEEF79-8032-417F-AFC9-041B8782DC65} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\60f2cc93-c459-4892-87b2-a431f488d1b9 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81824 2021-03-14] (Lenovo -> Lenovo Group Ltd.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{5c362e89-8288-4ab5-958b-95c3bff238f2}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{c8a8dfcb-a889-48f8-9307-d49bd92c8e62}: [DhcpNameServer] 192.168.0.1

Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge Profile: C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default [2021-06-06]

FireFox:
========
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-04-27] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Default [2021-06-06]
CHR Notifications: Default -> hxxps://mail.google.com; hxxps://metro-sk.os.tc; hxxps://optolov.ru; hxxps://web.whatsapp.com; hxxps://www.banggood.com; hxxps://www.facebook.com; hxxps://www.youtube.com; hxxps://xiaomiplanet.sk
CHR Session Restore: Default -> is enabled.
CHR Extension: (Prezentácie) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-06-05]
CHR Extension: (Dokumenty) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-06-05]
CHR Extension: (Disk Google) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-21]
CHR Extension: (YouTube) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-06-05]
CHR Extension: (Tabuľky) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-06-05]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-05-13]
CHR Extension: (AVG SafePrice | Porovnanie, ponuky, kupóny) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbckjcfnjmoiinpgddefodcighgikkgn [2020-07-22]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (Chrome Media Router) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-06-04]
CHR HKLM-x32\...\Chrome\Extension: [mbckjcfnjmoiinpgddefodcighgikkgn]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
R2 Dolby DAX2 API Service; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [189464 2020-06-02] (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81824 2021-03-14] (Lenovo -> Lenovo Group Ltd.)
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\3.7.19.0\LenovoVantageService.exe [28576 2021-05-17] (Lenovo -> Lenovo Group Ltd.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.4-0\NisSrv.exe [2644760 2021-06-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.4-0\MsMpEng.exe [136656 2021-06-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvla.inf_amd64_ef20e2a1f5032237\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvla.inf_amd64_ef20e2a1f5032237\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159600 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 RSP2STOR; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [329184 2017-04-14] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49560 2021-06-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [425208 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [76008 2021-06-05] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-06-06 14:28 - 2021-06-06 14:28 - 000019540 ____C C:\Users\User\Desktop\FRST.txt
2021-06-06 14:27 - 2021-06-06 14:27 - 002300416 ____C (Farbar) C:\Users\User\Desktop\FRST64 (1).exe
2021-06-06 14:21 - 2021-06-06 14:21 - 002300416 ____C (Farbar) C:\Users\User\Desktop\FRST64.exe
2021-06-06 04:18 - 2021-06-06 04:18 - 008534696 ____C (Malwarebytes) C:\Users\User\Desktop\adwcleaner_8.2.exe
2021-06-03 10:37 - 2020-09-29 14:09 - 001781608 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2021-06-03 10:37 - 2020-09-29 14:09 - 001781608 _____ C:\WINDOWS\system32\vulkaninfo.exe
2021-06-03 10:37 - 2020-09-29 14:09 - 001377640 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2021-06-03 10:37 - 2020-09-29 14:09 - 001377640 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2021-06-03 10:37 - 2020-09-29 14:09 - 001087704 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2021-06-03 10:37 - 2020-09-29 14:09 - 001087704 _____ C:\WINDOWS\system32\vulkan-1.dll
2021-06-03 10:37 - 2020-09-29 14:09 - 000940760 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2021-06-03 10:37 - 2020-09-29 14:09 - 000940760 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2021-06-03 10:37 - 2020-09-29 14:09 - 000454040 _____ C:\WINDOWS\system32\ze_loader.dll
2021-06-03 10:37 - 2020-09-29 14:09 - 000294752 _____ C:\WINDOWS\system32\libmfxhw64.dll
2021-06-03 10:37 - 2020-09-29 14:09 - 000243712 _____ C:\WINDOWS\SysWOW64\libmfxhw32.dll
2021-06-03 10:37 - 2020-09-29 14:09 - 000161376 _____ (Intel Corporation) C:\WINDOWS\system32\intel_gfx_api-x64.dll
2021-06-03 10:37 - 2020-09-29 14:09 - 000140184 _____ C:\WINDOWS\system32\ze_validation_layer.dll
2021-06-03 10:37 - 2020-09-29 14:09 - 000136880 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\intel_gfx_api-x86.dll
2021-06-03 10:37 - 2020-09-29 14:08 - 026667928 _____ (Intel Corporation) C:\WINDOWS\system32\mfxplugin64_hw.dll
2021-06-03 10:37 - 2020-09-29 14:08 - 013511576 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\mfxplugin32_hw.dll
2021-06-03 10:37 - 2020-09-29 14:08 - 000499096 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2021-06-03 10:37 - 2020-09-29 14:08 - 000361880 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2021-06-03 10:36 - 2021-03-26 17:30 - 000134400 _____ (AVG Technologies) C:\WINDOWS\system32\icarus_rvrt.exe
2021-06-01 04:47 - 2021-06-01 04:47 - 000011180 ____C C:\Users\User\Downloads\[SkT]_Pontypool_(2008)(CZ)[TvRip][1080p].torrent
2021-06-01 04:43 - 2021-06-01 04:43 - 000074631 ____C C:\Users\User\Downloads\[SkT]Anatomia_zla_(2015)(CZ)[WebRip].torrent
2021-06-01 04:39 - 2021-06-01 04:39 - 000085219 ____C C:\Users\User\Downloads\[SkT]Stvanec___The_Hunted_(2003)(CZ_EN).torrent
2021-06-01 04:39 - 2021-06-01 04:39 - 000018280 ____C C:\Users\User\Downloads\[SkT]Balkanska_hranice___Balkanskij_rubez_(2019)(CZ).torrent
2021-05-30 18:35 - 2021-05-30 18:35 - 000000000 ___DC C:\Users\User\AppData\Local\Viber
2021-05-27 06:07 - 2021-05-27 06:07 - 000018581 ____C C:\Users\User\Downloads\[SkT]Hladova_hra___Hunger_(2009)(CZ)_=_CSFD_46%.torrent
2021-05-27 06:06 - 2021-05-27 06:06 - 000018534 ____C C:\Users\User\Downloads\[SkT]Nezvany_host___Breach_(2020)(CZ)[1080p].torrent
2021-05-27 06:06 - 2021-05-27 06:06 - 000014640 ____C C:\Users\User\Downloads\[SkT]Mrtvi_a_pohrbeni_-_Dead_&amp;_Buried.torrent
2021-05-27 06:05 - 2021-05-27 06:05 - 000020068 ____C C:\Users\User\Downloads\[SkT]Battle_Royale___Batoru_rowaiaru_(2000)_DVDrip_(CZ)_=_CSFD_77%.torrent
2021-05-27 06:05 - 2021-05-27 06:05 - 000020063 ____C C:\Users\User\Downloads\[SkT]Battle_Royale_II__Requiem___Batoru_rowaiaru_II__Chinkonka_(2003)_DVDrip_(CZ)_=_CSFD_50%.torrent
2021-05-27 06:03 - 2021-05-27 06:03 - 000086446 ____C C:\Users\User\Downloads\[SkT]Mine_(2016)(SK)[1080p].torrent
2021-05-27 06:03 - 2021-05-27 06:03 - 000010821 ____C C:\Users\User\Downloads\[SkT]Mizerove_navzdy_Bad_Boys_for_Life_(2020)(CZ_EN).torrent
2021-05-24 05:15 - 2021-05-24 05:15 - 000017152 ____C C:\Users\User\Downloads\[SkT]_BlacKkKlansman_(2018)(SK)_=_CSFD_75%.torrent
2021-05-22 04:53 - 2021-05-22 04:53 - 000018918 ____C C:\Users\User\Downloads\[SkT]Neco_za_neco___Quid_Pro_Quo_(2008)(CZ)[TvRip][1080p]_=_CSFD_68%.torrent
2021-05-22 04:52 - 2021-05-22 04:52 - 000013998 ____C C:\Users\User\Downloads\[SkT]__Vlak_do_Pusanu_2___Peninsula_(2020)(CZ)[TvRip][720p]_=_CSFD_49%.torrent
2021-05-22 04:52 - 2021-05-22 04:52 - 000011135 ____C C:\Users\User\Downloads\[SkT]Lidska_jatka___Slaughter_(2009)(CZ)[TvRip][1080p]_=_CSFD_34%.torrent
2021-05-17 02:21 - 2021-05-17 02:21 - 000015850 ____C C:\Users\User\Downloads\[SkT]Zena_v_okne___The_Woman_in_the_Window_2021_WEB_CZE.torrent
2021-05-17 02:18 - 2021-05-17 02:18 - 000017826 ____C C:\Users\User\Downloads\[SkT]Spojenec_2___Inside_Man__Most_Wanted_(2019)(CZ).torrent
2021-05-17 02:17 - 2021-05-17 02:17 - 000091401 ____C C:\Users\User\Downloads\[SkT]Maggie_(2015)(SK)[1080p]_=_CSFD_53%.torrent
2021-05-17 02:10 - 2021-05-17 02:10 - 000011839 ____C C:\Users\User\Downloads\[SkT]Relikvie___Relic_(2020)(CZ)_=_CSFD_52%.torrent
2021-05-15 09:44 - 2021-05-01 07:14 - 000013925 ____C C:\Users\User\Desktop\Kópia - Benefity_pre_zamestnancov.xlsx
2021-05-15 07:14 - 2021-05-27 15:27 - 000015899 ____C C:\Users\User\Desktop\Rastlinstvo.xlsx
2021-05-14 10:53 - 2021-05-14 10:53 - 000000000 ___DC C:\Users\User\Desktop\zubar
2021-05-14 10:47 - 2021-05-14 10:47 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-05-14 10:47 - 2021-05-14 10:47 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-05-14 10:47 - 2021-05-14 10:47 - 001687040 _____ C:\WINDOWS\system32\libcrypto.dll
2021-05-14 10:47 - 2021-05-14 10:47 - 001314120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-05-14 10:47 - 2021-05-14 10:47 - 000700928 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2021-05-14 10:47 - 2021-05-14 10:47 - 000011351 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-05-14 10:46 - 2021-05-14 10:46 - 001823816 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-05-14 10:46 - 2021-05-14 10:46 - 001393504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-05-14 10:46 - 2021-05-14 10:46 - 001163776 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-05-14 10:46 - 2021-05-14 10:46 - 000165888 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-05-14 10:46 - 2021-05-14 10:46 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-05-14 10:46 - 2021-05-14 10:46 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2021-05-14 05:21 - 2021-05-14 05:21 - 000019468 ____C C:\Users\User\Downloads\[SkT]Pro_balik_prachu___Honest_Thief_(2020)(CZ)[1080p]_=_CSFD_56%.torrent
2021-05-14 05:21 - 2021-05-14 05:21 - 000016259 ____C C:\Users\User\Downloads\[SkT]Kyslik___Oxygen_(2021)(CZ)[WebRip]_=_CSFD_76%.torrent
2021-05-09 06:31 - 2021-05-09 06:31 - 000020094 ____C C:\Users\User\Downloads\[SkT]Ztracena_minulost___The_Poison_Rose__(2019)(CZ)_=_CSFD_46%.torrent
2021-05-09 06:30 - 2021-05-09 06:30 - 000017942 ____C C:\Users\User\Downloads\[SkT]Prebehlik___Der_Uberlaufer_(2020)(CZ)[TvRip][720p]_=_CSFD_73%.torrent
2021-05-09 06:30 - 2021-05-09 06:30 - 000014935 ____C C:\Users\User\Downloads\[SkT]7500_(2019)(CZ)[WebRip]_=_CSFD_60%.torrent
2021-05-09 06:29 - 2021-05-09 06:29 - 000015095 ____C C:\Users\User\Downloads\[SkT]Nikdo___Nobody_(2021)[WebRip][1080p]_=_CSFD_77%.torrent
2021-05-09 06:28 - 2021-05-09 06:28 - 000015120 ____C C:\Users\User\Downloads\[SkT]Za_carou____Outside_the_Wire_(2021)(CZ)[WebRip]_=_CSFD_53% (1).torrent
2021-05-09 06:28 - 2021-05-09 06:28 - 000013534 ____C C:\Users\User\Downloads\[SkT]Za_carou____Outside_the_Wire_(2021)(CZ)[1080p][WebRip]_=_CSFD_51%.torrent
2021-05-09 06:19 - 2021-05-09 06:19 - 000019314 ____C C:\Users\User\Downloads\[SkT]The_Vast_of_Night_(2019)(CZ)[WebRip][1080p]_=_CSFD_61%.torrent
2021-05-09 06:18 - 2021-05-09 06:18 - 000022104 ____C C:\Users\User\Downloads\[SkT]Mortal_Kombat_(2021)[Webrip][1080p]_=_CSFD_77%.torrent
2021-05-09 06:18 - 2021-05-09 06:18 - 000019245 ____C C:\Users\User\Downloads\[SkT]Co_jsme_videli,_co_jsme_slyseli___Things_Heard_and_Seen_2021_NF_WEB_CZE (1).torrent
2021-05-09 06:17 - 2021-05-09 06:17 - 000020596 ____C C:\Users\User\Downloads\[SkT]Utajeny_pasazer___Stowaway_2021_1080p_WEBRip_CZ__=_CSFD_47%.torrent
2021-05-09 06:16 - 2021-05-09 06:16 - 000023295 ____C C:\Users\User\Downloads\[SkT]Coming_2_America_(2021)(CZ)[WEBRip][1080p]_=_CSFD_44%.torrent
2021-05-09 06:12 - 2021-05-09 06:12 - 000108987 ____C C:\Users\User\Downloads\[SkT]Without_Remorse_(2021)(CZ)[WebRip].torrent
2021-05-08 05:53 - 2021-05-08 05:53 - 000091917 ____C C:\Users\User\Downloads\[SkT]Hra_na_Schovavanou___Hide_and_Seek_(2005)(Cz_En)_=_CSFD_65%.torrent
2021-05-08 05:47 - 2021-05-08 05:47 - 000082674 ____C C:\Users\User\Downloads\[SkT]Nezahravej_si_s_ohnem___Fire_with_Fire._BDRip.x264.(2012)(CZ_EN)_=_CSFD_57%.torrent
2021-05-08 05:46 - 2021-05-08 05:46 - 000055895 ____C C:\Users\User\Downloads\[SkT]Collateral_(2004)(CZ_EN)_=_CSFD_80%.torrent

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-06-06 14:28 - 2019-10-07 16:08 - 000000000 ___DC C:\FRST
2021-06-06 14:25 - 2019-10-08 13:15 - 000000000 ____D C:\Program Files\CCleaner
2021-06-06 14:22 - 2020-12-06 08:56 - 001693346 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-06-06 14:22 - 2019-12-07 16:41 - 000716764 _____ C:\WINDOWS\system32\perfh005.dat
2021-06-06 14:22 - 2019-12-07 16:41 - 000144942 _____ C:\WINDOWS\system32\perfc005.dat
2021-06-06 14:22 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-06-06 14:15 - 2020-12-06 08:52 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-06-06 14:15 - 2020-12-06 08:46 - 000008192 ___SH C:\DumpStack.log.tmp
2021-06-06 14:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-06-06 14:15 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-06-06 14:15 - 2019-05-30 22:04 - 000000000 __RDC C:\Users\User\OneDrive
2021-06-06 14:15 - 2019-05-30 22:02 - 000000000 _SHDC C:\Users\User\IntelGraphicsProfiles
2021-06-06 14:15 - 2019-05-30 21:47 - 000000000 __HDC C:\Intel
2021-06-06 14:15 - 2019-05-30 21:42 - 000000000 ____D C:\ProgramData\NVIDIA
2021-06-06 10:46 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-06-06 10:42 - 2020-12-06 08:46 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-06-06 04:16 - 2020-06-10 10:27 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-06-06 04:16 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-06-06 04:16 - 2019-06-05 11:06 - 000002320 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-06-05 18:44 - 2019-06-19 09:35 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-06-05 18:38 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-06-05 18:37 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-06-04 07:11 - 2019-09-30 09:13 - 000000000 ____D C:\ProgramData\AVG
2021-06-04 05:17 - 2019-10-10 07:51 - 000000000 ____D C:\Users\User\AppData\Local\CrashDumps
2021-06-03 10:40 - 2019-06-05 07:13 - 000000000 ____D C:\ProgramData\Packages
2021-06-03 10:40 - 2019-05-30 22:03 - 000000000 ___DC C:\Users\User\AppData\Local\Publishers
2021-06-03 10:40 - 2019-05-30 22:02 - 000000000 ___DC C:\Users\User\AppData\Local\Packages
2021-06-03 10:39 - 2020-03-27 11:22 - 000000000 ____D C:\WINDOWS\TempInst
2021-06-02 18:09 - 2019-06-05 11:20 - 000000000 ___DC C:\Users\User\Documents\Faktúry , odpočty
2021-06-02 17:46 - 2019-06-05 03:10 - 000009113 _____ C:\WINDOWS\system32\InstallUtil.InstallLog
2021-06-01 15:42 - 2021-02-27 09:55 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-06-01 15:42 - 2021-02-05 04:28 - 000003400 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-06-01 15:42 - 2021-01-20 04:04 - 000003318 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6cb9c3c4b9fed
2021-06-01 15:42 - 2020-12-06 08:52 - 000003512 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-06-01 15:42 - 2020-12-06 08:52 - 000003288 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-06-01 15:42 - 2020-12-06 08:52 - 000003194 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-06-01 15:42 - 2020-12-06 08:52 - 000003176 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-06-01 15:42 - 2020-12-06 08:52 - 000003118 _____ C:\WINDOWS\system32\Tasks\Intel PTT EK Recertification
2021-06-01 15:42 - 2020-12-06 08:52 - 000002850 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1496144255-991381806-58249036-1001
2021-06-01 15:42 - 2020-12-06 08:52 - 000002764 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task v2
2021-06-01 15:42 - 2020-12-06 08:52 - 000002232 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2021-06-01 15:42 - 2020-12-06 08:52 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2021-06-01 05:06 - 2019-06-05 11:36 - 000000000 ___DC C:\Users\User\AppData\Roaming\uTorrent
2021-05-31 19:22 - 2019-06-05 11:35 - 000000000 ___DC C:\Users\User\AppData\Roaming\ViberPC
2021-05-28 17:55 - 2019-06-05 11:20 - 000000000 ___DC C:\Users\User\Documents\ViberDownloads
2021-05-28 06:16 - 2020-12-06 08:48 - 000002351 ____C C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-05-27 15:50 - 2021-05-06 05:05 - 000000000 ___DC C:\Users\User\Desktop\MOM
2021-05-27 15:49 - 2019-06-05 11:20 - 000000000 ___DC C:\Users\User\Documents\Osobné
2021-05-17 16:37 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-05-14 12:33 - 2020-12-06 08:46 - 000446080 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-05-14 12:32 - 2019-12-07 16:42 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2021-05-14 12:32 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-05-14 12:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-05-14 12:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-05-14 12:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-05-14 12:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2021-05-14 12:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-05-14 12:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-05-14 12:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-05-14 12:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-05-14 12:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-05-14 12:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-05-14 12:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-05-14 12:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-05-14 12:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-05-14 12:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-05-14 12:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\DiagTrack
2021-05-14 12:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-05-14 10:56 - 2019-06-05 08:52 - 000002143 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-05-14 10:49 - 2019-12-07 16:44 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2021-05-14 10:40 - 2019-06-05 03:17 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-05-14 10:39 - 2019-06-05 03:17 - 132732536 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosím o kontrolu, značne spomalené a niekedy nereaguje. Ďakujem

#7 Příspěvek od Rudy »

Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
HKU\S-1-5-21-1496144255-991381806-58249036-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com/
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {2C98D543-B39A-4A68-869E-D8A2BB65759C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-06-05] (Google Inc -> Google LLC)
Task: {79A9C1FC-4956-4B78-8F29-05F5002C8E21} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-06-05] (Google Inc -> Google LLC)
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore

EmptyTemp:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

havranec
Návštěvník
Návštěvník
Příspěvky: 135
Registrován: 02 bře 2008 09:01

Re: Prosím o kontrolu, značne spomalené a niekedy nereaguje. Ďakujem

#8 Příspěvek od havranec »

Fix result of Farbar Recovery Scan Tool (x64) Version: 06-06-2021
Ran by User (06-06-2021 15:29:53) Run:3
Running from C:\Users\User\Desktop
Loaded Profiles: User
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKU\S-1-5-21-1496144255-991381806-58249036-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com/
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {2C98D543-B39A-4A68-869E-D8A2BB65759C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-06-05] (Google Inc -> Google LLC)
Task: {79A9C1FC-4956-4B78-8F29-05F5002C8E21} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-06-05] (Google Inc -> Google LLC)
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore

EmptyTemp:
End
*****************

Processes closed successfully.
"HKU\S-1-5-21-1496144255-991381806-58249036-1001\Software\Microsoft\Internet Explorer\Main\\Secondary Start Pages" => removed successfully
C:\ProgramData\NTUSER.pol => moved successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2C98D543-B39A-4A68-869E-D8A2BB65759C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2C98D543-B39A-4A68-869E-D8A2BB65759C}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{79A9C1FC-4956-4B78-8F29-05F5002C8E21}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{79A9C1FC-4956-4B78-8F29-05F5002C8E21}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\BookReader_B171F20233094AC88D05A8EF7B9763E8 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => removed successfully
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore" => not found

=========== EmptyTemp: ==========

BITS transfer queue => 10248192 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 84669661 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 273844 B
Edge => 0 B
Chrome => 269956866 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 7014 B
NetworkService => 24930 B
User => 3399567 B

RecycleBin => 11448939 B
EmptyTemp: => 362.4 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 15:30:11 ====

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosím o kontrolu, značne spomalené a niekedy nereaguje. Ďakujem

#9 Příspěvek od Rudy »

Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

havranec
Návštěvník
Návštěvník
Příspěvky: 135
Registrován: 02 bře 2008 09:01

Re: Prosím o kontrolu, značne spomalené a niekedy nereaguje. Ďakujem

#10 Příspěvek od havranec »

Je to podstatne lepšie, reaguje primerane, Vrelá vďaka

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosím o kontrolu, značne spomalené a niekedy nereaguje. Ďakujem

#11 Příspěvek od Rudy »

OK. Nemáte zač! :)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Zamčeno