Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Pomalý NTB, pomalý start systému

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
Marek007
Návštěvník
Návštěvník
Příspěvky: 62
Registrován: 21 zář 2010 15:43

Pomalý NTB, pomalý start systému

#1 Příspěvek od Marek007 »

Dobrý den,
prosím o kontrolu logu. Mám zpomalený NTB, start systému je také pomalý, programy se spouští také pamalu.

Děkuji

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 12-06-2021
Ran by Michal (administrator) on DESKTOP-6GH1PO4 (LENOVO Lenovo G580) (13-06-2021 12:02:54)
Running from C:\Users\Michal\Desktop
Loaded Profiles: Michal
Platform: Windows 10 Pro Version 20H2 19042.1052 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\Michal\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Hardware Compatibility Publisher -> Vimicro) C:\Program Files (x86)\USB Camera\VM331STI.EXE
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\NisSrv.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <6>
(Nero AG -> Nero AG) C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe
(Nero AG -> Nero AG) C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
(Nero AG -> Nero AG) C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [935104 2014-11-25] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3242696 2015-10-07] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1830616 2014-04-10] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [340440 2021-04-16] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [331BigDog] => C:\Program Files (x86)\USB Camera\VM331STI.EXE [571928 2015-09-03] (Microsoft Windows Hardware Compatibility Publisher -> Vimicro)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [926896 2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKU\S-1-5-21-190841966-2215585778-637049390-1001\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] => C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe [153136 2007-03-12] (Nero AG -> Nero AG)
HKU\S-1-5-21-190841966-2215585778-637049390-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
AppInit_DLLs: C:\WINDOWS\system32\DriverStore\FileRepository\nvltwu.inf_amd64_0221ce4ec0827f74\nvinitx.dll => C:\WINDOWS\system32\DriverStore\FileRepository\nvltwu.inf_amd64_0221ce4ec0827f74\nvinitx.dll [183144 2017-01-17] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation)
AppInit_DLLs-x32: C:\WINDOWS\system32\DriverStore\FileRepository\nvltwu.inf_amd64_0221ce4ec0827f74\nvinit.dll => C:\WINDOWS\system32\DriverStore\FileRepository\nvltwu.inf_amd64_0221ce4ec0827f74\nvinit.dll [161016 2017-01-17] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation)
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {072BCD86-71E3-4402-8A58-46010F1F87C2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.4-0\MpCmdRun.exe [644888 2021-06-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {1598EBEC-864F-4790-A6F0-B0B2D432025D} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [26913848 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {1D1AF237-51F8-471C-BDF2-BB88A0028F46} - System32\Tasks\ESET Windows 10 upgrade – Refresh settings => C:\Program Files\Common Files\AV\ESET Smart Security 10.1.245.1\upgrade.exe [1838496 2021-05-18] (ESET, spol. s r.o. -> ESET)
Task: {228610D3-78D8-404D-A077-56F3FDB4001B} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-14] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {28FFDD19-B06F-4420-8D21-F0D5511BF96D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.4-0\MpCmdRun.exe [644888 2021-06-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {69405B36-06B0-45B0-A1D2-12199C420CBE} - System32\Tasks\Microsoft\Windows\WaaSMedic\MaintenanceWork => {72566E27-1ABB-4EB3-B4F0-EB431CB1CB32}
Task: {8A2DAAAB-7635-4AE5-91D3-0B89466EFABC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.4-0\MpCmdRun.exe [644888 2021-06-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8FF2493F-A204-476C-B300-AB5D1670A5CD} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.4-0\MpCmdRun.exe [644888 2021-06-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B71D36F8-4CF7-46EF-9830-73F073669FDB} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1724928 2019-11-14] () [File not signed]
Task: {BCDE847D-0273-44DB-A84F-224D26252CD1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-10-30] (Google LLC -> Google LLC)
Task: {DC3B80E1-BAEF-4289-BF78-00B6CABFEBD8} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [690616 2021-06-06] (Mozilla Corporation -> Mozilla Foundation)
Task: {EECA6E80-B810-4E75-ADF9-2B1A67935D1A} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.)
Task: {F6A0921F-32BB-47D2-9ADC-077285CF9FBE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-10-30] (Google LLC -> Google LLC)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{24808109-4748-4ae9-8a73-de8941770a3d}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{7a746cd3-37d4-46d4-a31a-1ac9a266bf96}: [DhcpNameServer] 192.168.42.129

Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Michal\AppData\Local\Microsoft\Edge\User Data\Default [2021-06-10]

FireFox:
========
FF DefaultProfile: c1m1z0zy.default
FF ProfilePath: C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\c1m1z0zy.default [2020-01-25]
FF ProfilePath: C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\7zx7i4go.default-release [2021-06-13]
FF Homepage: Mozilla\Firefox\Profiles\7zx7i4go.default-release -> www.seznam.cz
FF Notifications: Mozilla\Firefox\Profiles\7zx7i4go.default-release -> hxxps://teams.microsoft.com
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2021-06-02]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [65192 2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [99104 2021-03-16] (Apple Inc. -> Apple Inc.)
R3 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [271920 2007-03-12] (Nero AG -> Nero AG)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5393304 2021-06-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\NisSrv.exe [2644776 2021-06-13] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\MsMpEng.exe [136656 2021-06-13] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem"

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [134344 2018-04-10] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [107344 2017-04-07] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15824 2021-03-17] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [180088 2017-10-11] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [50752 2017-04-07] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [78192 2017-04-07] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [102160 2017-09-25] (ESET, spol. s r.o. -> ESET)
R3 vm331avs; C:\WINDOWS\System32\Drivers\vm331avs.sys [648872 2015-09-03] (Microsoft Windows Hardware Compatibility Publisher -> Vimicro Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49568 2021-06-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [425184 2021-06-13] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [76000 2021-06-13] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-06-13 12:02 - 2021-06-13 12:05 - 000014378 _____ C:\Users\Michal\Desktop\FRST.txt
2021-06-13 12:01 - 2021-06-13 12:04 - 000000000 ____D C:\FRST
2021-06-13 11:53 - 2021-06-13 11:53 - 002300416 _____ (Farbar) C:\Users\Michal\Desktop\FRST64.exe
2021-06-10 22:37 - 2021-06-10 22:37 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-06-10 22:37 - 2021-06-10 22:37 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-06-10 22:37 - 2021-06-10 22:37 - 000568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2021-06-10 22:37 - 2021-06-10 22:37 - 000451072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2021-06-10 22:36 - 2021-06-10 22:36 - 001864192 _____ (The ICU Project) C:\WINDOWS\SysWOW64\icu.dll
2021-06-10 22:36 - 2021-06-10 22:36 - 001314120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-06-10 22:36 - 2021-06-10 22:36 - 000468440 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll
2021-06-10 22:36 - 2021-06-10 22:36 - 000423936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-06-10 22:36 - 2021-06-10 22:36 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-06-10 22:36 - 2021-06-10 22:36 - 000011353 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-06-10 22:35 - 2021-06-10 22:35 - 002260480 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll
2021-06-10 22:35 - 2021-06-10 22:35 - 001823792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-06-10 22:35 - 2021-06-10 22:35 - 001393496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-06-10 22:35 - 2021-06-10 22:35 - 000657464 _____ C:\WINDOWS\system32\WindowManagementAPI.dll
2021-06-10 22:35 - 2021-06-10 22:35 - 000097280 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-06-10 22:34 - 2021-06-10 22:34 - 000563712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-06-10 22:34 - 2021-06-10 22:34 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll
2021-06-10 22:34 - 2021-06-10 22:34 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-06-10 21:38 - 2021-06-10 21:39 - 000000000 ____D C:\AdwCleaner
2021-06-10 21:38 - 2021-06-10 21:38 - 008534696 _____ (Malwarebytes) C:\Users\Michal\Desktop\adwcleaner_8.2.exe
2021-06-10 20:46 - 2021-06-10 20:46 - 001687040 _____ C:\WINDOWS\system32\libcrypto.dll
2021-06-10 20:45 - 2021-06-10 20:45 - 000700928 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2021-06-10 20:45 - 2021-06-10 20:45 - 000157184 _____ C:\WINDOWS\system32\uwfcsp.dll
2021-06-10 20:45 - 2021-06-10 20:45 - 000153600 _____ C:\WINDOWS\system32\uwfcfgmgmt.dll
2021-06-10 20:44 - 2021-06-10 20:44 - 001163776 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-06-10 20:43 - 2021-06-10 20:43 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-06-10 20:42 - 2021-06-10 20:42 - 000165888 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-06-10 20:42 - 2021-06-10 20:42 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2021-06-09 19:53 - 2021-06-09 19:53 - 000000000 ____D C:\Users\Michal\AppData\Local\Apple Inc
2021-06-09 19:52 - 2021-06-09 19:52 - 000000000 ____D C:\Users\Michal\AppData\Local\Apple Computer
2021-06-09 19:50 - 2021-06-09 20:07 - 000000000 ____D C:\Users\Michal\AppData\Roaming\Apple Computer
2021-06-09 19:36 - 2021-06-09 19:36 - 000001816 _____ C:\Users\Public\Desktop\iTunes.lnk
2021-06-09 19:36 - 2021-06-09 19:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2021-06-09 19:32 - 2021-06-09 19:36 - 000000000 ____D C:\Program Files\iTunes
2021-06-09 19:32 - 2021-06-09 19:32 - 000000000 ____D C:\ProgramData\Apple Computer
2021-06-09 19:30 - 2021-06-09 19:30 - 000000000 ____D C:\WINDOWS\system32\Tasks\Apple
2021-06-09 19:30 - 2021-06-09 19:30 - 000000000 ____D C:\Users\Michal\AppData\Local\Apple
2021-06-09 19:29 - 2021-06-09 19:29 - 000002535 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2021-06-09 19:29 - 2021-06-09 19:29 - 000000000 ____D C:\Program Files (x86)\Apple Software Update
2021-06-09 19:28 - 2021-06-09 19:28 - 000000000 ____D C:\Program Files\Common Files\Apple
2021-06-09 19:27 - 2021-06-09 19:29 - 000000000 ____D C:\ProgramData\Apple
2021-06-09 19:27 - 2021-06-09 19:27 - 000000000 ____D C:\Program Files\Bonjour
2021-06-09 19:27 - 2021-06-09 19:27 - 000000000 ____D C:\Program Files (x86)\Bonjour
2021-06-06 13:03 - 2021-06-06 12:39 - 000000000 ____D C:\Windows.old
2021-06-06 12:59 - 2021-06-06 13:04 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2021-06-06 12:55 - 2021-06-06 12:59 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2021-06-06 12:54 - 2021-06-06 12:54 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2021-06-06 12:49 - 2021-06-06 12:49 - 000000000 ____D C:\ProgramData\ssh
2021-06-06 12:46 - 2021-06-06 12:46 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2021-06-06 12:41 - 2021-06-06 12:41 - 000000020 ___SH C:\Users\Michal\ntuser.ini
2021-06-06 12:40 - 2021-06-06 12:40 - 000095744 _____ C:\WINDOWS\system32\VirtualMonitorManager.dll
2021-06-06 12:39 - 2021-06-06 12:39 - 000581120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2021-06-06 12:39 - 2021-06-06 12:39 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2021-06-06 12:39 - 2021-06-06 12:39 - 000480256 _____ C:\WINDOWS\system32\AssignedAccessCsp.dll
2021-06-06 12:39 - 2021-06-06 12:39 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax
2021-06-06 12:39 - 2021-06-06 12:39 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mpg2splt.ax
2021-06-06 12:39 - 2021-06-06 12:39 - 000138056 _____ C:\WINDOWS\system32\HvsiManagementApi.dll
2021-06-06 12:39 - 2021-06-06 12:39 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VBICodec.ax
2021-06-06 12:39 - 2021-06-06 12:39 - 000101704 _____ C:\WINDOWS\SysWOW64\HvsiManagementApi.dll
2021-06-06 12:39 - 2021-06-06 12:39 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2021-06-06 12:39 - 2021-06-06 12:39 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2021-06-06 12:38 - 2021-06-10 22:48 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-06-06 12:38 - 2021-06-10 20:00 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-190841966-2215585778-637049390-1001
2021-06-06 12:38 - 2021-06-10 19:55 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-06-06 12:38 - 2021-06-06 12:39 - 000003400 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-06-06 12:38 - 2021-06-06 12:39 - 000003178 _____ C:\WINDOWS\system32\Tasks\klcp_update
2021-06-06 12:38 - 2021-06-06 12:38 - 000575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx
2021-06-06 12:38 - 2021-06-06 12:38 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2021-06-06 12:38 - 2021-06-06 12:38 - 000304128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax
2021-06-06 12:38 - 2021-06-06 12:38 - 000266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mpg2splt.ax
2021-06-06 12:38 - 2021-06-06 12:38 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\VBICodec.ax
2021-06-06 12:38 - 2021-06-06 12:38 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2021-06-06 12:38 - 2021-06-06 12:38 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2021-06-06 12:38 - 2021-06-06 12:38 - 000053760 _____ C:\WINDOWS\SysWOW64\BWContextHandler.dll
2021-06-06 12:38 - 2021-06-06 12:38 - 000045880 _____ C:\WINDOWS\system32\HvSocket.dll
2021-06-06 12:38 - 2021-06-06 12:38 - 000003512 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-06-06 12:38 - 2021-06-06 12:38 - 000003288 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-06-06 12:38 - 2021-06-06 12:38 - 000003176 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-06-06 12:38 - 2021-06-06 12:38 - 000002782 _____ C:\WINDOWS\system32\Tasks\ESET Windows 10 upgrade – Refresh settings
2021-06-06 12:38 - 2021-06-06 12:38 - 000002234 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2021-06-06 12:38 - 2021-06-06 12:38 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-06-06 12:37 - 2021-06-06 12:37 - 003860832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpltfm.dll
2021-06-06 12:37 - 2021-06-06 12:37 - 000980320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpal.dll
2021-06-06 12:37 - 2021-06-06 12:37 - 000915296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmcodecs.dll
2021-06-06 12:37 - 2021-06-06 12:37 - 000732000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ortcengine.dll
2021-06-06 12:37 - 2021-06-06 12:37 - 000729600 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx
2021-06-06 12:37 - 2021-06-06 12:37 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2021-06-06 12:37 - 2021-06-06 12:37 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\intl.cpl
2021-06-06 12:37 - 2021-06-06 12:37 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncpa.cpl
2021-06-06 12:37 - 2021-06-06 12:37 - 000067072 _____ C:\WINDOWS\system32\BWContextHandler.dll
2021-06-06 12:37 - 2021-06-06 12:37 - 000055376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmmvrortc.dll
2021-06-06 12:37 - 2021-06-06 12:37 - 000039936 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2021-06-06 12:36 - 2021-06-06 12:38 - 000007623 _____ C:\WINDOWS\diagwrn.xml
2021-06-06 12:36 - 2021-06-06 12:38 - 000007623 _____ C:\WINDOWS\diagerr.xml
2021-06-06 12:36 - 2021-06-06 12:36 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-06-06 12:36 - 2021-06-06 12:36 - 000611952 _____ C:\WINDOWS\SysWOW64\TextShaping.dll
2021-06-06 12:36 - 2021-06-06 12:36 - 000446976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmsys.cpl
2021-06-06 12:36 - 2021-06-06 12:36 - 000266240 _____ C:\WINDOWS\SysWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll
2021-06-06 12:36 - 2021-06-06 12:36 - 000240640 _____ C:\WINDOWS\SysWOW64\CoreMas.dll
2021-06-06 12:36 - 2021-06-06 12:36 - 000235520 _____ C:\WINDOWS\SysWOW64\HeatCore.dll
2021-06-06 12:36 - 2021-06-06 12:36 - 000221184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bthprops.cpl
2021-06-06 12:36 - 2021-06-06 12:36 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\timedate.cpl
2021-06-06 12:36 - 2021-06-06 12:36 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\activeds.tlb
2021-06-06 12:36 - 2021-06-06 12:36 - 000047472 _____ C:\WINDOWS\SysWOW64\umpdc.dll
2021-06-06 12:35 - 2021-06-06 12:35 - 004898144 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpltfm.dll
2021-06-06 12:35 - 2021-06-06 12:35 - 001354080 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpal.dll
2021-06-06 12:35 - 2021-06-06 12:35 - 001091936 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmcodecs.dll
2021-06-06 12:35 - 2021-06-06 12:35 - 001032544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ortcengine.dll
2021-06-06 12:35 - 2021-06-06 12:35 - 000330752 _____ C:\WINDOWS\SysWOW64\ssdm.dll
2021-06-06 12:35 - 2021-06-06 12:35 - 000238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\intl.cpl
2021-06-06 12:35 - 2021-06-06 12:35 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncpa.cpl
2021-06-06 12:35 - 2021-06-06 12:35 - 000056672 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmmvrortc.dll
2021-06-06 12:35 - 2021-06-06 12:35 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msacm32.drv
2021-06-06 12:35 - 2021-06-06 12:35 - 000010752 _____ C:\WINDOWS\SysWOW64\agentactivationruntimestarter.exe
2021-06-06 12:34 - 2021-06-06 12:34 - 002254336 _____ C:\WINDOWS\system32\dwmscene.dll
2021-06-06 12:34 - 2021-06-06 12:34 - 000544768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmsys.cpl
2021-06-06 12:34 - 2021-06-06 12:34 - 000266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthprops.cpl
2021-06-06 12:34 - 2021-06-06 12:34 - 000190976 _____ C:\WINDOWS\system32\BthpanContextHandler.dll
2021-06-06 12:34 - 2021-06-06 12:34 - 000152064 _____ C:\WINDOWS\system32\EoAExperiences.exe
2021-06-06 12:34 - 2021-06-06 12:34 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\activeds.tlb
2021-06-06 12:34 - 2021-06-06 12:34 - 000048640 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2021-06-06 12:34 - 2021-06-06 12:34 - 000001370 _____ C:\WINDOWS\system32\ThirdPartyNoticesBySHS.txt
2021-06-06 12:33 - 2021-06-06 12:33 - 000231248 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2021-06-06 12:33 - 2021-06-06 12:33 - 000029696 _____ (The ICU Project) C:\WINDOWS\system32\icuuc.dll
2021-06-06 12:33 - 2021-06-06 12:33 - 000025088 _____ (The ICU Project) C:\WINDOWS\system32\icuin.dll
2021-06-06 12:32 - 2021-06-06 12:32 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-06-06 12:32 - 2021-06-06 12:32 - 000707016 _____ C:\WINDOWS\system32\TextShaping.dll
2021-06-06 12:32 - 2021-06-06 12:32 - 000306688 _____ C:\WINDOWS\system32\HeatCore.dll
2021-06-06 12:31 - 2021-06-06 12:31 - 004227116 _____ C:\WINDOWS\system32\DefaultHrtfs.bin
2021-06-06 12:31 - 2021-06-06 12:31 - 000455168 _____ C:\WINDOWS\system32\ssdm.dll
2021-06-06 12:31 - 2021-06-06 12:31 - 000363520 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll
2021-06-06 12:31 - 2021-06-06 12:31 - 000243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\timedate.cpl
2021-06-06 12:31 - 2021-06-06 12:31 - 000197632 _____ C:\WINDOWS\system32\IHDS.dll
2021-06-06 12:31 - 2021-06-06 12:31 - 000089088 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.proxystub.dll
2021-06-06 12:31 - 2021-06-06 12:31 - 000074240 _____ C:\WINDOWS\system32\rdsxvmaudio.dll
2021-06-06 12:31 - 2021-06-06 12:31 - 000073216 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll
2021-06-06 12:31 - 2021-06-06 12:31 - 000064552 _____ C:\WINDOWS\system32\umpdc.dll
2021-06-06 12:31 - 2021-06-06 12:31 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\msacm32.drv
2021-06-06 12:27 - 2021-06-10 22:56 - 001605602 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-06-06 12:16 - 2021-06-10 22:20 - 000000000 ____D C:\Users\Michal
2021-06-06 12:16 - 2021-06-10 20:00 - 000002380 _____ C:\Users\Michal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-06-06 12:16 - 2021-06-06 12:16 - 000000000 _SHDL C:\Users\Michal\Šablony
2021-06-06 12:16 - 2021-06-06 12:16 - 000000000 _SHDL C:\Users\Michal\Soubory cookie
2021-06-06 12:16 - 2021-06-06 12:16 - 000000000 _SHDL C:\Users\Michal\Poslední
2021-06-06 12:16 - 2021-06-06 12:16 - 000000000 _SHDL C:\Users\Michal\Okolní tiskárny
2021-06-06 12:16 - 2021-06-06 12:16 - 000000000 _SHDL C:\Users\Michal\Okolní síť
2021-06-06 12:16 - 2021-06-06 12:16 - 000000000 _SHDL C:\Users\Michal\Nabídka Start
2021-06-06 12:16 - 2021-06-06 12:16 - 000000000 _SHDL C:\Users\Michal\Dokumenty
2021-06-06 12:16 - 2021-06-06 12:16 - 000000000 _SHDL C:\Users\Michal\Documents\Obrázky
2021-06-06 12:16 - 2021-06-06 12:16 - 000000000 _SHDL C:\Users\Michal\Documents\Hudba
2021-06-06 12:16 - 2021-06-06 12:16 - 000000000 _SHDL C:\Users\Michal\Documents\Filmy
2021-06-06 12:16 - 2021-06-06 12:16 - 000000000 _SHDL C:\Users\Michal\Data aplikací
2021-06-06 12:16 - 2021-06-06 12:16 - 000000000 _SHDL C:\Users\Michal\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2021-06-06 12:16 - 2021-06-06 12:16 - 000000000 _SHDL C:\Users\Michal\AppData\Local\Data aplikací
2021-06-06 12:12 - 2021-06-06 12:12 - 000000000 ____D C:\Program Files\Dolby Digital Plus
2021-06-06 12:11 - 2021-06-06 12:11 - 000000000 ____D C:\WINDOWS\SysWOW64\NV
2021-06-06 12:11 - 2021-06-06 12:11 - 000000000 ____D C:\WINDOWS\system32\NV
2021-06-06 12:11 - 2021-06-06 12:11 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2021-06-06 12:11 - 2017-01-17 06:57 - 000222648 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2021-06-06 12:11 - 2016-09-09 20:25 - 000269600 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2021-06-06 12:11 - 2016-09-09 20:25 - 000261920 _____ C:\WINDOWS\system32\vulkan-1.dll
2021-06-06 12:11 - 2016-09-09 20:25 - 000110880 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2021-06-06 12:11 - 2016-09-09 20:24 - 000125216 _____ C:\WINDOWS\system32\vulkaninfo.exe
2021-06-06 12:05 - 2021-06-10 22:50 - 000348248 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-06-06 12:05 - 2021-06-10 21:25 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-06-06 12:04 - 2021-06-10 22:48 - 000008192 ___SH C:\DumpStack.log.tmp
2021-06-06 09:59 - 2021-06-06 10:01 - 000000000 ____D C:\Program Files\Mozilla Firefox

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-06-13 12:01 - 2020-01-25 21:22 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-06-13 12:01 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-06-13 12:01 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-06-13 12:00 - 2020-06-12 22:06 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-06-13 12:00 - 2020-06-12 22:06 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-06-13 12:00 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-06-13 11:52 - 2020-01-25 22:23 - 000000000 ____D C:\Program Files\CCleaner
2021-06-13 11:51 - 2020-01-25 22:12 - 000000000 ____D C:\ProgramData\Mozilla
2021-06-13 11:50 - 2020-01-25 22:13 - 000000000 ____D C:\Users\Michal\AppData\LocalLow\Mozilla
2021-06-13 11:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\appcompat
2021-06-10 22:56 - 2019-12-07 16:43 - 000683426 _____ C:\WINDOWS\system32\perfh005.dat
2021-06-10 22:56 - 2019-12-07 16:43 - 000137206 _____ C:\WINDOWS\system32\perfc005.dat
2021-06-10 22:55 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-06-10 22:51 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-06-10 22:49 - 2020-01-25 21:52 - 000000000 ____D C:\ProgramData\NVIDIA
2021-06-10 22:47 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-06-10 22:46 - 2019-12-07 16:47 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-06-10 22:46 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-06-10 22:46 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2021-06-10 22:46 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2021-06-10 22:46 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-06-10 22:46 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-06-10 22:46 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-06-10 22:46 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-06-10 22:46 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2021-06-10 22:46 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2021-06-10 22:46 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-06-10 22:46 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-06-10 22:46 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-06-10 22:45 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-06-10 22:19 - 2021-03-28 12:16 - 000000000 ____D C:\Users\Michal\AppData\Local\ElevatedDiagnostics
2021-06-10 21:40 - 2020-01-25 22:27 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-06-10 21:33 - 2020-01-25 22:26 - 132447432 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-06-10 20:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-06-10 20:55 - 2019-12-07 16:44 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2021-06-10 20:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-06-10 20:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-06-10 20:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-06-10 20:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2021-06-10 20:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-06-10 20:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-06-10 20:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-06-10 20:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-06-10 20:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-06-10 20:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\DiagTrack
2021-06-10 20:53 - 2019-12-07 16:47 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2021-06-10 20:53 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2021-06-10 20:13 - 2020-10-30 14:05 - 000000000 ____D C:\Users\Michal\AppData\Roaming\MPC-HC
2021-06-10 20:00 - 2020-01-25 21:47 - 000000000 ___RD C:\Users\Michal\OneDrive
2021-06-10 19:58 - 2021-04-21 21:32 - 000000000 ___DC C:\WINDOWS\Panther
2021-06-10 19:58 - 2020-01-25 21:56 - 000000000 ____D C:\Users\Michal\AppData\Local\CrashDumps
2021-06-09 19:50 - 2020-01-25 21:49 - 000000000 ____D C:\Users\Michal\AppData\Local\PlaceholderTileLogoFolder
2021-06-09 19:22 - 2020-11-04 19:12 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-06-06 13:04 - 2020-10-30 17:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2021-06-06 13:04 - 2020-06-07 21:27 - 000000000 ____D C:\Program Files\UNP
2021-06-06 13:04 - 2020-01-25 23:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero 7 Ultra Edition
2021-06-06 13:04 - 2020-01-25 23:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2021-06-06 13:04 - 2020-01-25 23:04 - 000000000 ____D C:\WINDOWS\SHELLNEW
2021-06-06 13:04 - 2020-01-25 22:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2021-06-06 13:04 - 2020-01-25 22:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2021-06-06 13:04 - 2020-01-25 21:51 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2021-06-06 13:04 - 2020-01-25 21:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2021-06-06 13:04 - 2020-01-25 21:41 - 000000000 ____D C:\Program Files\CONEXANT
2021-06-06 13:04 - 2019-12-07 11:14 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2021-06-06 13:04 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2021-06-06 13:04 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\spool
2021-06-06 13:04 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Help
2021-06-06 13:04 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2021-06-06 13:04 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2021-06-06 13:04 - 2018-09-15 09:33 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2021-06-06 13:04 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\MsDtc
2021-06-06 13:03 - 2019-12-07 11:18 - 000000000 ____D C:\WINDOWS\Setup
2021-06-06 13:03 - 2019-12-07 11:14 - 000000000 __RHD C:\Users\Public\Libraries
2021-06-06 13:00 - 2020-01-25 21:40 - 000000000 ____D C:\Users\Michal\AppData\Local\Packages
2021-06-06 12:59 - 2020-01-25 21:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Conexant
2021-06-06 12:50 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2021-06-06 12:50 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2021-06-06 12:50 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2021-06-06 12:50 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2021-06-06 12:50 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-06-06 12:50 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2021-06-06 12:50 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2021-06-06 12:50 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Keywords
2021-06-06 12:50 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2021-06-06 12:50 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2021-06-06 12:50 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-06-06 12:50 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2021-06-06 12:50 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2021-06-06 12:50 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2021-06-06 12:50 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Keywords
2021-06-06 12:50 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-06-06 12:49 - 2019-12-07 16:47 - 000000000 ___SD C:\WINDOWS\system32\AppV
2021-06-06 12:49 - 2019-12-07 16:47 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2021-06-06 12:49 - 2019-12-07 16:47 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2021-06-06 12:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Com
2021-06-06 12:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2021-06-06 12:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2021-06-06 12:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2021-06-06 12:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-06-06 12:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\IME
2021-06-06 12:49 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System
2021-06-06 12:49 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2021-06-06 12:47 - 2019-12-07 16:47 - 000020908 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2021-06-06 12:43 - 2020-01-25 21:59 - 000000000 ____D C:\ProgramData\Packages
2021-06-06 12:42 - 2020-01-25 21:40 - 000000000 __RHD C:\Users\Public\AccountPictures
2021-06-06 12:42 - 2020-01-25 21:40 - 000000000 ___RD C:\Users\Michal\3D Objects
2021-06-06 12:38 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\USOPrivate
2021-06-06 12:38 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Windows NT
2021-06-06 12:38 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Windows Defender
2021-06-06 12:38 - 2019-12-07 11:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2021-06-06 12:19 - 2020-01-25 23:20 - 000000000 ____D C:\Users\Michal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent
2021-06-06 12:19 - 2020-01-25 21:45 - 000000000 ____D C:\Users\Michal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2021-06-06 12:15 - 2020-01-25 21:46 - 000000000 ____D C:\WINDOWS\SysWOW64\sda
2021-06-06 12:15 - 2020-01-25 21:38 - 000000000 ____D C:\Program Files (x86)\USB Camera
2021-06-06 12:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\System
2021-06-06 12:10 - 2020-01-25 21:51 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2021-06-06 12:09 - 2020-01-25 21:45 - 000000000 ____D C:\Program Files\Elantech
2021-06-06 10:15 - 2020-01-25 22:33 - 000000000 ____D C:\Program Files\ESET
2021-06-06 10:15 - 2020-01-25 22:12 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-05-18 20:52 - 2020-01-25 22:12 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================


Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12-06-2021
Ran by Michal (13-06-2021 12:17:29)
Running from C:\Users\Michal\Desktop
Windows 10 Pro Version 20H2 19042.1052 (X64) (2021-06-06 10:39:21)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-190841966-2215585778-637049390-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-190841966-2215585778-637049390-503 - Limited - Disabled)
Guest (S-1-5-21-190841966-2215585778-637049390-501 - Limited - Disabled)
Michal (S-1-5-21-190841966-2215585778-637049390-1001 - Administrator - Enabled) => C:\Users\Michal
WDAGUtilityAccount (S-1-5-21-190841966-2215585778-637049390-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Smart Security (Enabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
AS: ESET Smart Security (Enabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ESET Personální firewall (Enabled) {D426EE12-AE7E-4602-F40F-BBCA8137EB0B}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Reader XI - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.00 - Adobe Systems Incorporated)
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
Apple Mobile Device Support (HKLM\...\{74CC99EB-7DC0-4CB0-847A-F8C2FE39690C}) (Version: 14.5.0.7 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A3985C05-7386-411F-A4BF-32A73F37EB44}) (Version: 2.6.3.1 - Apple Inc.)
Backup and Sync from Google (HKLM\...\{3CBE1074-3A4F-4BA6-95E3-7A660B54FE33}) (Version: 3.55.3625.9414 - Google, Inc.)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.76 - Piriform)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.66.16.50 - Conexant)
Dolby Digital Plus Advanced Audio (HKLM\...\{B0BFC63F-EA07-419E-960B-3FB2ED5DD0B2}) (Version: 7.6.5.1 - Dolby Laboratories Inc)
ELAN Touchpad 11.15.0.18_X64 (HKLM\...\Elantech) (Version: 11.15.0.18 - ELAN Microelectronic Corp.)
iTunes (HKLM\...\{07B3B04F-368F-42D9-9DDC-EEF1821DF158}) (Version: 12.11.3.17 - Apple Inc.)
K-Lite Codec Pack 15.2.5 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 15.2.5 - KLCP)
Lenovo EasyCamera (HKLM-x32\...\{ADE16A9D-FBDC-4ecc-B6BD-9C31E51D0332}) (Version: 3.15.0414.1 - Vimicro)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 91.0.864.48 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-190841966-2215585778-637049390-1001\...\OneDriveSetup.exe) (Version: 21.099.0516.0003 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{A0E1B43D-5F4A-46AF-9925-ABA3423325DC}) (Version: 2.77.0.0 - Microsoft Corporation)
Mozilla Firefox 89.0 (x64 cs) (HKLM\...\Mozilla Firefox 89.0 (x64 cs)) (Version: 89.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 72.0.1 - Mozilla)
Nero 7 Ultra Edition (HKLM-x32\...\{4F2CE68F-EDBB-4592-BF07-5AC930A51029}) (Version: 7.02.6446 - Nero AG)
NVIDIA Ovladače grafiky 376.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 376.54 - NVIDIA Corporation)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10586.31222 - Realtek Semiconduct Corp.)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
WinRAR 5.61 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.61.0 - win.rar GmbH)

Packages:
=========
Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_7.5.37.0_x86__kgqvnymyfvs32 [2021-06-06] (king.com)
Candy Crush Friends -> C:\Program Files\WindowsApps\king.com.CandyCrushFriends_1.59.1.0_x86__kgqvnymyfvs32 [2021-06-10] (king.com)
Candy Crush Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSaga_1.2040.2.0_x86__kgqvnymyfvs32 [2021-06-10] (king.com)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-03-22] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2021-06-06] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2021-06-06] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.5310.0_x64__8wekyb3d8bbwe [2021-06-10] (Microsoft Studios) [MS Ad]
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.161.583.0_x86__zpdnekdrzrea0 [2021-06-10] (Spotify AB) [Startup Task]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2021-03-12] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2021-03-12] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2021-03-12] (Google LLC -> Google)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2021-03-12] (Google LLC -> Google)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2021-03-12] (Google LLC -> Google)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\WINDOWS\system32\igfxpph.dll [2017-03-09] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2016-12-29] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2003-03-19 07:14 - 2003-03-19 07:14 - 000499712 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Common Files\Ahead\Lib\MSVCP71.dll
2003-02-21 15:42 - 2003-02-21 15:42 - 000348160 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Common Files\Ahead\Lib\MSVCR71.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2018-09-15 09:31 - 2018-09-15 09:31 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-190841966-2215585778-637049390-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{5C665616-6305-495B-B23B-FA254F586FCE}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{31212ADA-1950-4250-BD2F-056E790C0603}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{5FA5D2F7-F73F-4397-9BA9-7134EA9BFEF8}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{115619BE-2007-4A72-98EC-9C81AAD7B10E}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{40D9EEBA-C8CE-4124-AC9F-C6C95157DCF8}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{CD0B119B-F123-43D2-93BB-EC69C828D5BA}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{588D1F42-27C0-4783-B557-73C13D2A71F1}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{57F69D71-F37A-4072-A036-43B126F646CB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.72.94.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{287C80EE-30B4-4C96-A5B0-E5119CC5AC29}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.72.94.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A053DF2D-9497-4BF4-9AC9-D19C625C5102}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.72.94.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{ECAEC1FD-9D3A-4CEE-A6B8-0D46994351E5}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.72.94.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{5A0BF332-FB97-4391-8F8A-480D1191F49A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.161.583.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{D41B5B2B-66EA-4639-9160-14679833E59B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.161.583.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{9BCD2437-518C-4AAF-9911-3D1B2EC0786C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.161.583.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{B1EB08B6-BA56-4414-85C9-1BDF3FC9110D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.161.583.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{A0CE7123-A317-4460-AF91-AF6051EB355B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.161.583.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{2210E138-BBF3-4CCA-BE5B-76DADD0DC1CB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.161.583.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{18D37752-8CA4-406D-BF2D-1F49CE05D263}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.161.583.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{DC941743-7316-4CBE-AB20-A37123016A8D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.161.583.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)

==================== Restore Points =========================

ATTENTION: System Restore is disabled (Total:123.84 GB) (Free:43.43 GB) (35%)

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (06/10/2021 10:20:32 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1512) (User: NT AUTHORITY)
Description: Systém Windows nemůže uvolnit soubor registru. Nebyla uvolněna paměť používaná registrem. Tento problém je často způsoben tím, že jsou služby spuštěny pomocí uživatelského účtu. Zkuste služby konfigurovat pro spuštění pomocí účtu místní nebo síťové služby.

PODROBNOSTI – Přístup byl odepřen.

Error: (06/10/2021 10:20:32 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1512) (User: NT AUTHORITY)
Description: Systém Windows nemůže uvolnit soubor registru. Nebyla uvolněna paměť používaná registrem. Tento problém je často způsoben tím, že jsou služby spuštěny pomocí uživatelského účtu. Zkuste služby konfigurovat pro spuštění pomocí účtu místní nebo síťové služby.

PODROBNOSTI – Přístup byl odepřen.

Error: (06/10/2021 08:56:25 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému.
.

Error: (06/10/2021 08:56:25 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]

Error: (06/10/2021 08:56:25 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému.
.

Error: (06/10/2021 08:56:25 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]

Error: (06/10/2021 08:56:25 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému.
.

Error: (06/10/2021 08:56:25 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]


System errors:
=============
Error: (06/10/2021 10:57:18 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Hostitel synchronizace_eb610 byla ukončena s následující chybou:
Přístup byl odepřen.

Error: (06/10/2021 10:57:12 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-6GH1PO4)
Description: Server {F9717507-6651-4EDB-BFF7-AE615179BCCF} se v daném časovém limitu neregistroval u služby DCOM.

Error: (06/10/2021 10:57:12 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-6GH1PO4)
Description: Server {F9717507-6651-4EDB-BFF7-AE615179BCCF} se v daném časovém limitu neregistroval u služby DCOM.

Error: (06/10/2021 10:57:11 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-6GH1PO4)
Description: Server Microsoft.YourPhone_1.21042.139.0_x64__8wekyb3d8bbwe!App.AppXvctmff39365zg14pgmystcwtys462fpa.mca se v daném časovém limitu neregistroval u služby DCOM.

Error: (06/10/2021 10:57:07 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-6GH1PO4)
Description: Server {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} se v daném časovém limitu neregistroval u služby DCOM.

Error: (06/10/2021 10:49:08 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba SAService neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.

Error: (06/10/2021 09:28:48 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba SAService neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.

Error: (06/10/2021 09:04:34 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Windows Search přestala během spouštění reagovat.


CodeIntegrity:
===============
Date: 2021-06-13 12:12:38
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.


==================== Memory info ===========================

BIOS: LENOVO 5ECN33WW(V2.03) 06/06/2012
Motherboard: LENOVO Product Name
Processor: Intel(R) Core(TM) i3-2328M CPU @ 2.20GHz
Percentage of memory in use: 91%
Total physical RAM: 3993.28 MB
Available physical RAM: 358.6 MB
Total Virtual: 4953.28 MB
Available Virtual: 887.55 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:123.84 GB) (Free:43.42 GB) NTFS
Drive d: (Data) (Fixed) (Total:340.76 GB) (Free:340.66 GB) NTFS

\\?\Volume{a729df75-a7a1-4c36-8be1-0a46e9427e08}\ (Obnovení) (Fixed) (Total:0.49 GB) (Free:0.47 GB) NTFS
\\?\Volume{664f1014-41cc-44e8-b745-94a6af7419bc}\ () (Fixed) (Total:0.56 GB) (Free:0.12 GB) NTFS
\\?\Volume{dbc75cf7-6216-4e10-b7c1-f3c203833406}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: C3FFC3FF)

Partition: GPT.

==================== End of Addition.txt =======================

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118195
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Pomalý NTB, pomalý start systému

#2 Příspěvek od Rudy »

Zdravím!
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Marek007
Návštěvník
Návštěvník
Příspěvky: 62
Registrován: 21 zář 2010 15:43

Re: Pomalý NTB, pomalý start systému

#3 Příspěvek od Marek007 »

# -------------------------------
# Malwarebytes AdwCleaner 8.2.0.0
# -------------------------------
# Build: 03-22-2021
# Database: 2021-05-17.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 06-13-2021
# Duration: 00:00:47
# OS: Windows 10 Pro
# Scanned: 31961
# Detected: 3


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.

***** [ Hosts File Entries ] *****

No malicious hosts file entries found.

***** [ Preinstalled Software ] *****

Preinstalled.LenovoEasyCamera Folder C:\Program Files (x86)\USB CAMERA
Preinstalled.LenovoEasyCamera Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Run|331BigDog
Preinstalled.LenovoEasyCamera Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{ADE16A9D-FBDC-4ecc-B6BD-9C31E51D0332}


AdwCleaner[S00].txt - [1722 octets] - [10/06/2021 21:39:04]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S01].txt ##########

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118195
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Pomalý NTB, pomalý start systému

#4 Příspěvek od Rudy »

OK, to je v pořádku, jde o software ke kameře. Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
Task: {BCDE847D-0273-44DB-A84F-224D26252CD1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-10-30] (Google LLC -> Google LLC)
Task: {F6A0921F-32BB-47D2-9ADC-077285CF9FBE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-10-30] (Google LLC -> Google LLC)
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File

EmptyTemo:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Marek007
Návštěvník
Návštěvník
Příspěvky: 62
Registrován: 21 zář 2010 15:43

Re: Pomalý NTB, pomalý start systému

#5 Příspěvek od Marek007 »

Fix result of Farbar Recovery Scan Tool (x64) Version: 12-06-2021
Ran by Michal (13-06-2021 18:08:25) Run:1
Running from C:\Users\Michal\Desktop
Loaded Profiles: Michal
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
Task: {BCDE847D-0273-44DB-A84F-224D26252CD1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-10-30] (Google LLC -> Google LLC)
Task: {F6A0921F-32BB-47D2-9ADC-077285CF9FBE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-10-30] (Google LLC -> Google LLC)
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File

EmptyTemo:
End
*****************

Processes closed successfully.
C:\WINDOWS\system32\GroupPolicy\Machine => moved successfully
C:\WINDOWS\system32\GroupPolicy\GPT.ini => moved successfully
C:\ProgramData\NTUSER.pol => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{BCDE847D-0273-44DB-A84F-224D26252CD1}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BCDE847D-0273-44DB-A84F-224D26252CD1}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F6A0921F-32BB-47D2-9ADC-077285CF9FBE}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F6A0921F-32BB-47D2-9ADC-077285CF9FBE}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\BookReader_B171F20233094AC88D05A8EF7B9763E8 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => removed successfully
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore" => not found
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\7-Zip => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ANotepad++64 => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\BriefcaseMenu => removed successfully
"HKLM\Software\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D}" => removed successfully
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\{4A7C4306-57E0-4C0C-83A9-78C1528F618C} => removed successfully
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\7-Zip => removed successfully
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\BriefcaseMenu => removed successfully
EmptyTemo: => Error: No automatic fix found for this entry.


The system needed a reboot.

==== End of Fixlog 18:08:31 ====

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118195
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Pomalý NTB, pomalý start systému

#6 Příspěvek od Rudy »

OK. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Marek007
Návštěvník
Návštěvník
Příspěvky: 62
Registrován: 21 zář 2010 15:43

Re: Pomalý NTB, pomalý start systému

#7 Příspěvek od Marek007 »

Start se zrychlil, načítání programů také

Děkuji

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118195
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Pomalý NTB, pomalý start systému

#8 Příspěvek od Rudy »

Rádo se stalo! :)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Zamčeno