Prosím o pomoc, notebook je strašně pomalý, měl jsem tam Avast, který byl jednou z příčin zpomalení, tak jsem ho dal pryč,
ale moc se to nezlepšilo. Do textu přikládám AdwCleaner a MalwareBytes logy. FRST+Addition logy jsou velké, tak je máte v .ZIPu.
AdwCleaner hlásí předinstalovaný software, což si myslím není z důvodů zpomalení, prosím kdyby se to mohlo zanechat, nepouzivam to,
ale neco z toho potrebuji na funkcnost tiskarny.
# -------------------------------
# Malwarebytes AdwCleaner 8.3.1.0
# -------------------------------
# Build: 11-18-2021
# Database: 2022-03-15.3 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 03-26-2022
# Duration: 00:00:49
# OS: Windows 10 Home
# Scanned: 32049
# Detected: 19
***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
No malicious folders found.
***** [ Files ] *****
No malicious files found.
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
No malicious tasks found.
***** [ Registry ] *****
No malicious registry entries found.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries found.
***** [ Chromium URLs ] *****
No malicious Chromium URLs found.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries found.
***** [ Firefox URLs ] *****
No malicious Firefox URLs found.
***** [ Hosts File Entries ] *****
No malicious hosts file entries found.
***** [ Preinstalled Software ] *****
Preinstalled.HPAudioSwitch Folder C:\Program Files (x86)\HP\HPAUDIOSWITCH
Preinstalled.HPAudioSwitch Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{647872DC-2983-42E9-81A8-F95D6EC044ED}
Preinstalled.HPAudioSwitch Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\HPAudioSwitch
Preinstalled.HPAudioSwitch Task C:\Windows\System32\Tasks\HPAUDIOSWITCH
Preinstalled.HPCleanFLC Registry HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|HPSEU_Host_Launcher
Preinstalled.HPCleanFLC Registry HKCU\Software\Microsoft\Windows\CurrentVersion\Run|HPSEU_Host_Launcher
Preinstalled.HPRegistrationService Folder C:\ProgramData\HP\HP REGISTRATION SERVICE
Preinstalled.HPSupportAssistant Folder C:\HP\SUPPORT
Preinstalled.HPSupportAssistant Folder C:\ProgramData\HEWLETT-PACKARD\HP SUPPORT FRAMEWORK
Preinstalled.HPSupportAssistant Folder C:\Users\Jana\AppData\Roaming\HEWLETT-PACKARD\HP SUPPORT FRAMEWORK
Preinstalled.HPSupportAssistant Registry HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}
Preinstalled.HPSupportAssistant Registry HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}
Preinstalled.HPSupportAssistant Registry HKLM\Software\Classes\CLSID\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}
Preinstalled.HPSupportAssistant Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}
Preinstalled.HPSupportAssistant Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}
Preinstalled.HPSureConnect Folder C:\Program Files\HPCOMMRECOVERY
Preinstalled.HPSureConnect Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{6468C4A5-E47E-405F-B675-A70A70983EA6}
Preinstalled.HPTouchpointAnalyticsClient Folder C:\ProgramData\HP\HP TOUCHPOINT ANALYTICS CLIENT
Preinstalled.HPTouchpointAnalyticsClient Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{E5FB98E0-0784-44F0-8CEC-95CD4690C43F}
AdwCleaner[S00].txt - [4111 octets] - [05/06/2021 15:10:08]
AdwCleaner[S01].txt - [3886 octets] - [24/03/2022 17:18:35]
AdwCleaner[C01].txt - [1758 octets] - [24/03/2022 17:20:27]
AdwCleaner[S02].txt - [3829 octets] - [26/03/2022 10:56:34]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S03].txt ##########
Malwarebytes
www.malwarebytes.com
-Podrobnosti logovacího souboru-
Datum skenování: 26.03.22
Čas skenování: 11:11
Logovací soubor: 1dfe1bf4-aced-11ec-9bd5-0068eb770266.json
-Informace o softwaru-
Verze: 4.5.6.180
Verze komponentů: 1.0.1634
Aktualizovat verzi balíku komponent: 1.0.52876
Licence: Zkušební
-Systémová informace-
OS: Windows 10 (Build 19043.1586)
CPU: x64
Systém souborů: NTFS
Uživatel: LAPTOP-AGFPJ4G7\Jana
-Shrnutí skenování-
Typ skenování: Skenování hrozeb (Threat Scan)
Spuštění skenování: Ruční
Výsledek: Dokončeno
Skenované objekty: 335624
Zjištěné hrozby: 0
Hrozby umístěné do karantény: 0
Uplynulý čas: 14 min, 35 sek
-Možnosti skenování-
Paměť: Povoleno
Start: Povoleno
Systém souborů: Povoleno
Archivy: Povoleno
Rootkity: Zakázáno
Heuristika: Povoleno
Potenciálně nežádoucí program: Detekovat
Potenciálně nežádoucí modifikace: Detekovat
-Podrobnosti skenování-
Proces: 0
(Nebyly zjištěny žádné škodlivé položky)
Modul: 0
(Nebyly zjištěny žádné škodlivé položky)
Klíč registru: 0
(Nebyly zjištěny žádné škodlivé položky)
Hodnota v registru: 0
(Nebyly zjištěny žádné škodlivé položky)
Data registrů: 0
(Nebyly zjištěny žádné škodlivé položky)
Datové proudy: 0
(Nebyly zjištěny žádné škodlivé položky)
Adresář: 0
(Nebyly zjištěny žádné škodlivé položky)
Soubor: 0
(Nebyly zjištěny žádné škodlivé položky)
Fyzický sektor: 0
(Nebyly zjištěny žádné škodlivé položky)
WMI: 0
(Nebyly zjištěny žádné škodlivé položky)
(end)
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Strašně pomalý počítač
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
TheAnknown
- Návštěvník
- Příspěvky: 6
- Registrován: 30 pro 2018 12:28
Strašně pomalý počítač
- Přílohy
-
- FRST+Addition.zip
- (16.21 KiB) Staženo 68 x
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Strašně pomalý počítač
Zdravím!
Otevřte poznámkový blok a zkopírujte do něj:
Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-12-09] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {09338108-4128-4891-961E-7F76C6BCA172} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-527184737-1154348348-3312326369-1002 => C:\Users\Jana\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (No File)
Task: {0C127DD7-1971-4382-8581-6E29D4A738F1} - System32\Tasks\Opera scheduled Autoupdate 1613556078 => C:\Users\Jana\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (No File)
Task: {4247C718-B426-43EB-9054-20003A596E6D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-03-10] (Google LLC -> Google LLC)
Task: {50B2A7A8-9AE4-49A5-BB55-CD6F7118463F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-03-10] (Google LLC -> Google LLC)
Task: {5100A477-348F-48CA-A0F9-BA0C7018AC24} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-527184737-1154348348-3312326369-500 => C:\Users\Jana\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (No File)
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
C:\WINDOWS\system32\Drivers\aswf1f23c091167523f.tmp
C:\WINDOWS\system32\Drivers\asw59f57c3faf0b3227.tmp
C:\WINDOWS\system32\Drivers\asw3189b58842ee5b95.tmp
C:\WINDOWS\system32\Drivers\aswcb3fbd8d74d35ca0.tmp
C:\WINDOWS\system32\Drivers\aswc236d48d55e7c7cc.tmp
C:\WINDOWS\system32\Drivers\aswdbec131f1c9a1d00.tmp
C:\WINDOWS\system32\Drivers\asw53fdd38a865fe601.tmp
C:\WINDOWS\system32\Drivers\asw3f0fcedb555a0b04.tmp
C:\WINDOWS\system32\Drivers\aswa566ec5fd7d0b5c1.tmp
C:\WINDOWS\system32\Drivers\aswbe246cfebd8d75d0.tmp
C:\WINDOWS\system32\Drivers\aswdb935f642335189c.tmp
C:\WINDOWS\system32\Drivers\asw1ea032bd14ee9aef.tmp
C:\WINDOWS\system32\Drivers\aswd36203a83ac9b24d.tmp
C:\WINDOWS\system32\Drivers\asw585de9a85260b068.tmp
:\DumpStack.log.tmp
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ContextMenuHandlers1_S-1-5-21-527184737-1154348348-3312326369-1001: [ kwpsshellext] -> {28A80003-18FD-411D-B0A3-3C81F618E22B} => C:\Users\Jana\AppData\Local\Kingsoft\WPS Office\11.2.0.11029\office6\kwpsmenushellext64.dll -> No File
ContextMenuHandlers4_S-1-5-21-527184737-1154348348-3312326369-1001: [ kwpsshellext] -> {28A80003-18FD-411D-B0A3-3C81F618E22B} => C:\Users\Jana\AppData\Local\Kingsoft\WPS Office\11.2.0.11029\office6\kwpsmenushellext64.dll -> No File
AlternateDataStreams: C:\Users\Jana\Documents\odd.listCZ.bmp:3or4kl4x13tuuug3Byamue2s4b [97]
AlternateDataStreams: C:\Users\Jana\Documents\odd.listCZ.bmp:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
FirewallRules: [{830BA702-606E-4BD4-A25D-4E535E988345}] => (Allow) C:\Users\Jana\AppData\Local\Programs\Opera\74.0.3911.203\opera.exe => No File
FirewallRules: [{36AB8AB6-54AD-4BF9-BA4C-87F64E4822C8}] => (Allow) C:\Users\Jana\AppData\Local\Programs\Opera\74.0.3911.218\opera.exe => No File
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
TheAnknown
- Návštěvník
- Příspěvky: 6
- Registrován: 30 pro 2018 12:28
Re: Strašně pomalý počítač
Zatím žádná změna si teda myslím, když se dívám na správce úloh, tak buď Disk nebo CPU skáče z ničeho nic na 100%.
Fix result of Farbar Recovery Scan Tool (x64) Version: 25-03-2022
Ran by Jana (26-03-2022 12:39:02) Run:1
Running from C:\Users\Jana\Desktop
Loaded Profiles: Jana & masov
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-12-09] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {09338108-4128-4891-961E-7F76C6BCA172} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-527184737-1154348348-3312326369-1002 => C:\Users\Jana\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (No File)
Task: {0C127DD7-1971-4382-8581-6E29D4A738F1} - System32\Tasks\Opera scheduled Autoupdate 1613556078 => C:\Users\Jana\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (No File)
Task: {4247C718-B426-43EB-9054-20003A596E6D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-03-10] (Google LLC -> Google LLC)
Task: {50B2A7A8-9AE4-49A5-BB55-CD6F7118463F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-03-10] (Google LLC -> Google LLC)
Task: {5100A477-348F-48CA-A0F9-BA0C7018AC24} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-527184737-1154348348-3312326369-500 => C:\Users\Jana\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (No File)
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
C:\WINDOWS\system32\Drivers\aswf1f23c091167523f.tmp
C:\WINDOWS\system32\Drivers\asw59f57c3faf0b3227.tmp
C:\WINDOWS\system32\Drivers\asw3189b58842ee5b95.tmp
C:\WINDOWS\system32\Drivers\aswcb3fbd8d74d35ca0.tmp
C:\WINDOWS\system32\Drivers\aswc236d48d55e7c7cc.tmp
C:\WINDOWS\system32\Drivers\aswdbec131f1c9a1d00.tmp
C:\WINDOWS\system32\Drivers\asw53fdd38a865fe601.tmp
C:\WINDOWS\system32\Drivers\asw3f0fcedb555a0b04.tmp
C:\WINDOWS\system32\Drivers\aswa566ec5fd7d0b5c1.tmp
C:\WINDOWS\system32\Drivers\aswbe246cfebd8d75d0.tmp
C:\WINDOWS\system32\Drivers\aswdb935f642335189c.tmp
C:\WINDOWS\system32\Drivers\asw1ea032bd14ee9aef.tmp
C:\WINDOWS\system32\Drivers\aswd36203a83ac9b24d.tmp
C:\WINDOWS\system32\Drivers\asw585de9a85260b068.tmp
:\DumpStack.log.tmp
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ContextMenuHandlers1_S-1-5-21-527184737-1154348348-3312326369-1001: [ kwpsshellext] -> {28A80003-18FD-411D-B0A3-3C81F618E22B} => C:\Users\Jana\AppData\Local\Kingsoft\WPS Office\11.2.0.11029\office6\kwpsmenushellext64.dll -> No File
ContextMenuHandlers4_S-1-5-21-527184737-1154348348-3312326369-1001: [ kwpsshellext] -> {28A80003-18FD-411D-B0A3-3C81F618E22B} => C:\Users\Jana\AppData\Local\Kingsoft\WPS Office\11.2.0.11029\office6\kwpsmenushellext64.dll -> No File
AlternateDataStreams: C:\Users\Jana\Documents\odd.listCZ.bmp:3or4kl4x13tuuug3Byamue2s4b [97]
AlternateDataStreams: C:\Users\Jana\Documents\odd.listCZ.bmp:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
FirewallRules: [{830BA702-606E-4BD4-A25D-4E535E988345}] => (Allow) C:\Users\Jana\AppData\Local\Programs\Opera\74.0.3911.203\opera.exe => No File
FirewallRules: [{36AB8AB6-54AD-4BF9-BA4C-87F64E4822C8}] => (Allow) C:\Users\Jana\AppData\Local\Programs\Opera\74.0.3911.218\opera.exe => No File
EmptyTemp:
End
*****************
Processes closed successfully.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{09338108-4128-4891-961E-7F76C6BCA172}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{09338108-4128-4891-961E-7F76C6BCA172}" => removed successfully
C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-527184737-1154348348-3312326369-1002 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OneDrive Standalone Update Task-S-1-5-21-527184737-1154348348-3312326369-1002" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{0C127DD7-1971-4382-8581-6E29D4A738F1}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0C127DD7-1971-4382-8581-6E29D4A738F1}" => removed successfully
C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1613556078 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Opera scheduled Autoupdate 1613556078" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4247C718-B426-43EB-9054-20003A596E6D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4247C718-B426-43EB-9054-20003A596E6D}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{50B2A7A8-9AE4-49A5-BB55-CD6F7118463F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{50B2A7A8-9AE4-49A5-BB55-CD6F7118463F}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5100A477-348F-48CA-A0F9-BA0C7018AC24}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5100A477-348F-48CA-A0F9-BA0C7018AC24}" => removed successfully
C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-527184737-1154348348-3312326369-500 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OneDrive Standalone Update Task-S-1-5-21-527184737-1154348348-3312326369-500" => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\BookReader_B171F20233094AC88D05A8EF7B9763E8 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => removed successfully
C:\WINDOWS\system32\Drivers\aswf1f23c091167523f.tmp => moved successfully
C:\WINDOWS\system32\Drivers\asw59f57c3faf0b3227.tmp => moved successfully
C:\WINDOWS\system32\Drivers\asw3189b58842ee5b95.tmp => moved successfully
C:\WINDOWS\system32\Drivers\aswcb3fbd8d74d35ca0.tmp => moved successfully
C:\WINDOWS\system32\Drivers\aswc236d48d55e7c7cc.tmp => moved successfully
C:\WINDOWS\system32\Drivers\aswdbec131f1c9a1d00.tmp => moved successfully
C:\WINDOWS\system32\Drivers\asw53fdd38a865fe601.tmp => moved successfully
C:\WINDOWS\system32\Drivers\asw3f0fcedb555a0b04.tmp => moved successfully
C:\WINDOWS\system32\Drivers\aswa566ec5fd7d0b5c1.tmp => moved successfully
C:\WINDOWS\system32\Drivers\aswbe246cfebd8d75d0.tmp => moved successfully
C:\WINDOWS\system32\Drivers\aswdb935f642335189c.tmp => moved successfully
C:\WINDOWS\system32\Drivers\asw1ea032bd14ee9aef.tmp => moved successfully
C:\WINDOWS\system32\Drivers\aswd36203a83ac9b24d.tmp => moved successfully
C:\WINDOWS\system32\Drivers\asw585de9a85260b068.tmp => moved successfully
:\DumpStack.log.tmp => Error: No automatic fix found for this entry.
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore" => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive6 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive6 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7 => removed successfully
HKU\S-1-5-21-527184737-1154348348-3312326369-1001\Software\Classes\*\ShellEx\ContextMenuHandlers\ kwpsshellext => not found
HKU\S-1-5-21-527184737-1154348348-3312326369-1001\SOFTWARE\Classes\CLSID\{28A80003-18FD-411D-B0A3-3C81F618E22B} => removed successfully
HKU\S-1-5-21-527184737-1154348348-3312326369-1001\Software\Classes\Directory\ShellEx\ContextMenuHandlers\ kwpsshellext => not found
C:\Users\Jana\Documents\odd.listCZ.bmp => ":3or4kl4x13tuuug3Byamue2s4b" ADS could not remove.
C:\Users\Jana\Documents\odd.listCZ.bmp => ":{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}" ADS removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{830BA702-606E-4BD4-A25D-4E535E988345}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{36AB8AB6-54AD-4BF9-BA4C-87F64E4822C8}" => removed successfully
=========== EmptyTemp: ==========
BITS transfer queue => 1310720 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 11615293 B
Java, Flash, Steam htmlcache => 291 B
Windows/system/drivers => 76286123 B
Edge => 126335 B
Chrome => 990235434 B
Firefox => 29243328 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 6656 B
ProgramData => 6656 B
Public => 6656 B
systemprofile => 6656 B
systemprofile32 => 6656 B
LocalService => 19334 B
NetworkService => 20942 B
Jana => 154145869 B
masov => 154285514 B
defaultuser100000 => 154292682 B
RecycleBin => 1976441277 B
EmptyTemp: => 3.3 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 12:42:08 ====
Fix result of Farbar Recovery Scan Tool (x64) Version: 25-03-2022
Ran by Jana (26-03-2022 12:39:02) Run:1
Running from C:\Users\Jana\Desktop
Loaded Profiles: Jana & masov
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-12-09] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {09338108-4128-4891-961E-7F76C6BCA172} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-527184737-1154348348-3312326369-1002 => C:\Users\Jana\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (No File)
Task: {0C127DD7-1971-4382-8581-6E29D4A738F1} - System32\Tasks\Opera scheduled Autoupdate 1613556078 => C:\Users\Jana\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (No File)
Task: {4247C718-B426-43EB-9054-20003A596E6D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-03-10] (Google LLC -> Google LLC)
Task: {50B2A7A8-9AE4-49A5-BB55-CD6F7118463F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-03-10] (Google LLC -> Google LLC)
Task: {5100A477-348F-48CA-A0F9-BA0C7018AC24} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-527184737-1154348348-3312326369-500 => C:\Users\Jana\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (No File)
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
C:\WINDOWS\system32\Drivers\aswf1f23c091167523f.tmp
C:\WINDOWS\system32\Drivers\asw59f57c3faf0b3227.tmp
C:\WINDOWS\system32\Drivers\asw3189b58842ee5b95.tmp
C:\WINDOWS\system32\Drivers\aswcb3fbd8d74d35ca0.tmp
C:\WINDOWS\system32\Drivers\aswc236d48d55e7c7cc.tmp
C:\WINDOWS\system32\Drivers\aswdbec131f1c9a1d00.tmp
C:\WINDOWS\system32\Drivers\asw53fdd38a865fe601.tmp
C:\WINDOWS\system32\Drivers\asw3f0fcedb555a0b04.tmp
C:\WINDOWS\system32\Drivers\aswa566ec5fd7d0b5c1.tmp
C:\WINDOWS\system32\Drivers\aswbe246cfebd8d75d0.tmp
C:\WINDOWS\system32\Drivers\aswdb935f642335189c.tmp
C:\WINDOWS\system32\Drivers\asw1ea032bd14ee9aef.tmp
C:\WINDOWS\system32\Drivers\aswd36203a83ac9b24d.tmp
C:\WINDOWS\system32\Drivers\asw585de9a85260b068.tmp
:\DumpStack.log.tmp
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ContextMenuHandlers1_S-1-5-21-527184737-1154348348-3312326369-1001: [ kwpsshellext] -> {28A80003-18FD-411D-B0A3-3C81F618E22B} => C:\Users\Jana\AppData\Local\Kingsoft\WPS Office\11.2.0.11029\office6\kwpsmenushellext64.dll -> No File
ContextMenuHandlers4_S-1-5-21-527184737-1154348348-3312326369-1001: [ kwpsshellext] -> {28A80003-18FD-411D-B0A3-3C81F618E22B} => C:\Users\Jana\AppData\Local\Kingsoft\WPS Office\11.2.0.11029\office6\kwpsmenushellext64.dll -> No File
AlternateDataStreams: C:\Users\Jana\Documents\odd.listCZ.bmp:3or4kl4x13tuuug3Byamue2s4b [97]
AlternateDataStreams: C:\Users\Jana\Documents\odd.listCZ.bmp:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
FirewallRules: [{830BA702-606E-4BD4-A25D-4E535E988345}] => (Allow) C:\Users\Jana\AppData\Local\Programs\Opera\74.0.3911.203\opera.exe => No File
FirewallRules: [{36AB8AB6-54AD-4BF9-BA4C-87F64E4822C8}] => (Allow) C:\Users\Jana\AppData\Local\Programs\Opera\74.0.3911.218\opera.exe => No File
EmptyTemp:
End
*****************
Processes closed successfully.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{09338108-4128-4891-961E-7F76C6BCA172}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{09338108-4128-4891-961E-7F76C6BCA172}" => removed successfully
C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-527184737-1154348348-3312326369-1002 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OneDrive Standalone Update Task-S-1-5-21-527184737-1154348348-3312326369-1002" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{0C127DD7-1971-4382-8581-6E29D4A738F1}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0C127DD7-1971-4382-8581-6E29D4A738F1}" => removed successfully
C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1613556078 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Opera scheduled Autoupdate 1613556078" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4247C718-B426-43EB-9054-20003A596E6D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4247C718-B426-43EB-9054-20003A596E6D}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{50B2A7A8-9AE4-49A5-BB55-CD6F7118463F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{50B2A7A8-9AE4-49A5-BB55-CD6F7118463F}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5100A477-348F-48CA-A0F9-BA0C7018AC24}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5100A477-348F-48CA-A0F9-BA0C7018AC24}" => removed successfully
C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-527184737-1154348348-3312326369-500 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OneDrive Standalone Update Task-S-1-5-21-527184737-1154348348-3312326369-500" => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\BookReader_B171F20233094AC88D05A8EF7B9763E8 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => removed successfully
C:\WINDOWS\system32\Drivers\aswf1f23c091167523f.tmp => moved successfully
C:\WINDOWS\system32\Drivers\asw59f57c3faf0b3227.tmp => moved successfully
C:\WINDOWS\system32\Drivers\asw3189b58842ee5b95.tmp => moved successfully
C:\WINDOWS\system32\Drivers\aswcb3fbd8d74d35ca0.tmp => moved successfully
C:\WINDOWS\system32\Drivers\aswc236d48d55e7c7cc.tmp => moved successfully
C:\WINDOWS\system32\Drivers\aswdbec131f1c9a1d00.tmp => moved successfully
C:\WINDOWS\system32\Drivers\asw53fdd38a865fe601.tmp => moved successfully
C:\WINDOWS\system32\Drivers\asw3f0fcedb555a0b04.tmp => moved successfully
C:\WINDOWS\system32\Drivers\aswa566ec5fd7d0b5c1.tmp => moved successfully
C:\WINDOWS\system32\Drivers\aswbe246cfebd8d75d0.tmp => moved successfully
C:\WINDOWS\system32\Drivers\aswdb935f642335189c.tmp => moved successfully
C:\WINDOWS\system32\Drivers\asw1ea032bd14ee9aef.tmp => moved successfully
C:\WINDOWS\system32\Drivers\aswd36203a83ac9b24d.tmp => moved successfully
C:\WINDOWS\system32\Drivers\asw585de9a85260b068.tmp => moved successfully
:\DumpStack.log.tmp => Error: No automatic fix found for this entry.
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore" => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive6 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive6 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7 => removed successfully
HKU\S-1-5-21-527184737-1154348348-3312326369-1001\Software\Classes\*\ShellEx\ContextMenuHandlers\ kwpsshellext => not found
HKU\S-1-5-21-527184737-1154348348-3312326369-1001\SOFTWARE\Classes\CLSID\{28A80003-18FD-411D-B0A3-3C81F618E22B} => removed successfully
HKU\S-1-5-21-527184737-1154348348-3312326369-1001\Software\Classes\Directory\ShellEx\ContextMenuHandlers\ kwpsshellext => not found
C:\Users\Jana\Documents\odd.listCZ.bmp => ":3or4kl4x13tuuug3Byamue2s4b" ADS could not remove.
C:\Users\Jana\Documents\odd.listCZ.bmp => ":{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}" ADS removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{830BA702-606E-4BD4-A25D-4E535E988345}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{36AB8AB6-54AD-4BF9-BA4C-87F64E4822C8}" => removed successfully
=========== EmptyTemp: ==========
BITS transfer queue => 1310720 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 11615293 B
Java, Flash, Steam htmlcache => 291 B
Windows/system/drivers => 76286123 B
Edge => 126335 B
Chrome => 990235434 B
Firefox => 29243328 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 6656 B
ProgramData => 6656 B
Public => 6656 B
systemprofile => 6656 B
systemprofile32 => 6656 B
LocalService => 19334 B
NetworkService => 20942 B
Jana => 154145869 B
masov => 154285514 B
defaultuser100000 => 154292682 B
RecycleBin => 1976441277 B
EmptyTemp: => 3.3 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 12:42:08 ====
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Strašně pomalý počítač
Bylo smazáno. Které procesy nejvíc zatěžují disk a CPU?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
TheAnknown
- Návštěvník
- Příspěvky: 6
- Registrován: 30 pro 2018 12:28
Re: Strašně pomalý počítač
Nejvíce ze všeho Chrome. Jak procesor tak disk.
U disku se ještě někdy objeví tyto věci:
svchost.exe (LocalSystemNetworkRestricted -p)
svchost.exe (utcsvc -p)
ProcInfo.exe
NetworkCap.exe
MsMpEng.exe
U disku se ještě někdy objeví tyto věci:
svchost.exe (LocalSystemNetworkRestricted -p)
svchost.exe (utcsvc -p)
ProcInfo.exe
NetworkCap.exe
MsMpEng.exe
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Strašně pomalý počítač
Zkusíme vyčistit prohlížeče. Spusťte posetupně tyto utility:
1. Stahnete Zoek.exe http://download.bleepingcomputer.com/smeenk/zoek.exe , https://www.edisk.cz/stahni/21334/zoek.rar_1.3MB.html/ a ulozte jej na plochu
Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
Do okna vlozte skript nize
Nasledne kliknete na Run Script
PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem.
a
2. Junkware removal tool: https://www.stahuj.cz/utility_a_ostatni ... oval-tool/
•Ulozte nejlepe na plochu
•Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
•Probehne vytvoreni zalohy a nasledne prohledavani
•Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte.
1. Stahnete Zoek.exe http://download.bleepingcomputer.com/smeenk/zoek.exe , https://www.edisk.cz/stahni/21334/zoek.rar_1.3MB.html/ a ulozte jej na plochu
Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
Do okna vlozte skript nize
autoclean;
resethosts;
emptyclsid;
IEdefaults;
FFdefaults;
CHRdefaults;
emptyIEcache;
emptyFFcache;
emptyCHRcache;
emptyalltemp;
emptyflash;
emptyjava;
emptyrecycle.bin;
Nasledne kliknete na Run Script
PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem.
a
2. Junkware removal tool: https://www.stahuj.cz/utility_a_ostatni ... oval-tool/
•Ulozte nejlepe na plochu
•Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
•Probehne vytvoreni zalohy a nasledne prohledavani
•Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?