Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Pomalý notebook +++

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
Hop2
Návštěvník
Návštěvník
Příspěvky: 5
Registrován: 01 dub 2022 17:25

Pomalý notebook +++

#1 Příspěvek od Hop2 »

Dobrý den,
prosím o pomoc se zrychlením notebooku.
ADW cleaner nic nenašel.

Přikládám logy:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 28-03-2022
Ran by papepa (administrator) on N-ZAM-W-01 (Hewlett-Packard HP 355 G2) (01-04-2022 18:37:19)
Running from C:\Users\papepa\Desktop
Loaded Profiles: papepa
Platform: Microsoft Windows 10 Pro Version 21H2 19044.1620 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <9>
(explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(services.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8505088 2015-07-03] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [185648 2020-07-07] (ESET, spol. s r.o. -> ESET)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [926896 2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706288 2021-04-09] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\56.0.9.0\GoogleDriveFS.exe [53662040 2022-03-24] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\56.0.9.0\GoogleDriveFS.exe [53662040 2022-03-24] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2774596813-2351541506-2060952939-1285\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35320448 2022-01-25] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2774596813-2351541506-2060952939-1285\...\Policies\Explorer: [NoDrives] 1048576
HKU\S-1-5-21-889259166-2701645971-2654717718-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35320448 2022-01-25] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-889259166-2701645971-2654717718-1001\...\RunOnce: [Application Restart #0] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --flag-switches-begin --flag-switches-end --enable-audio-service-sandbox --restore-last-session -- hxxps://www.vyhodny-software.cz/poradna/ (the data entry has 82 more characters).
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\56.0.9.0\GoogleDriveFS.exe [53662040 2022-03-24] (Google LLC -> Google, Inc.)
HKLM\...\Windows x64\Print Processors\hpcpp101: C:\Windows\System32\spool\prtprocs\x64\hpcpp101.dll [323584 2010-09-23] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\Epson_Print_Admin: C:\WINDOWS\system32\epscpmon.dll [831488 2019-05-31] (Seiko Epson Corporation) [File not signed]
HKLM\...\Print\Monitors\HP Standard TCP/IP Port: C:\WINDOWS\system32\HpTcpMon.dll [331264 2009-09-16] (Hewlett Packard) [File not signed]
HKLM\...\Print\Monitors\rica1Ilm: C:\WINDOWS\system32\rica1Ilm.dll [28160 2013-12-26] (Microsoft Windows Hardware Compatibility Publisher -> RICOH CO.,Ltd.)
HKLM\...\Print\Monitors\Software602 XPS port monitor: C:\WINDOWS\system32\602localmon.dll [54864 2018-05-31] (Software602 a.s. -> Windows (R) Win 7 DDK provider)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\100.0.4896.60\Installer\chrmstp.exe [2022-04-01] (Google LLC -> Google LLC)
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {032A6104-7AEE-4872-9216-3870120BC9FF} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {082BCCB1-42B2-4A8D-988F-C8BAFDC41595} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe /u (No File)
Task: {1C887395-9DB4-461B-A334-8CBBC109BB2B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2020-01-16] (Google Inc -> Google Inc.)
Task: {20BD1239-D968-4F37-97CE-B6CACD9DB0C9} - System32\Tasks\Microsoft\Windows\RemoteApp and Desktop Connections Update\papepa@zs-vsechovice.local\Process policy => {E444E1B9-502C-44F9-B714-30DA330D0E8E} C:\Windows\System32\tsworkspace.dll [1249792 2021-01-13] (Microsoft Windows -> Microsoft Corporation)
Task: {23031F33-603A-448F-A120-FBD971F6E325} - System32\Tasks\Microsoft\Windows\GroupPolicy\{3E0A038B-D834-4930-9981-E89C9BFF83AA} => C:\WINDOWS\system32\gpupdate.exe [30720 2020-11-09] (Microsoft Windows -> Microsoft Corporation)
Task: {2651D288-AD22-41F6-8D62-DDAD89F85807} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2020-01-16] (Google Inc -> Google Inc.)
Task: {4D14DDDA-05DF-4CCE-A0F3-09C57EAEA213} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe /send (No File)
Task: {6227FF19-2F51-47F1-B7F0-1F7E7EDFE8C2} - System32\Tasks\CCleanerSkipUAC - papepa => C:\Program Files\CCleaner\CCleaner.exe [29453952 2022-01-25] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {6D77C079-5F98-4300-93C8-C38792E6ACBF} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe /noreport (No File)
Task: {79CB463B-5790-4B99-AF6A-29068F130726} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {81DEE362-9981-4076-82F0-B8FEB9F74E70} - System32\Tasks\Microsoft\Windows\RemoteApp and Desktop Connections Update\papepa@zs-vsechovice.local\Update connections => %SYSTEMROOT%\System32\RUNDLL32 tsworkspace,TaskUpdateWorkspaces2
Task: {824E0A3A-AE4A-4352-8A52-82489E011A48} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {8BD70A24-0162-4D79-95F8-41B250147624} - System32\Tasks\Opera scheduled Autoupdate 1579211863 => C:\Users\lokadmin\AppData\Local\Programs\Opera\launcher.exe [1528344 2019-12-19] (Opera Software AS -> Opera Software)
Task: {9B558C34-F48A-47B3-A1D5-2642F4C71B2A} - System32\Tasks\Microsoft\Windows\RemoteApp and Desktop Connections Update\kyvair@zs-vsechovice.local\Update connections => %SYSTEMROOT%\System32\RUNDLL32 tsworkspace,TaskUpdateWorkspaces2
Task: {A26E0522-5C66-42A8-A155-D1474FC0A41A} - System32\Tasks\Microsoft\Windows\RemoteApp and Desktop Connections Update\kyvair@zs-vsechovice.local\Process policy => {E444E1B9-502C-44F9-B714-30DA330D0E8E} C:\Windows\System32\tsworkspace.dll [1249792 2021-01-13] (Microsoft Windows -> Microsoft Corporation)
Task: {B65645B5-413A-4AE8-9918-E2F785E20C01} - System32\Tasks\Microsoft\Windows\RemoteApp and Desktop Connections Update\papepa@zs-vsechovice.local\Report update status => %SYSTEMROOT%\System32\RUNDLL32 tsworkspace,WorkspaceStatusNotify2
Task: {B9B49ABF-7602-49B0-88A9-A618233CF351} - System32\Tasks\Microsoft\Windows\RemoteApp and Desktop Connections Update\kyvair@zs-vsechovice.local\Report update status => %SYSTEMROOT%\System32\RUNDLL32 tsworkspace,WorkspaceStatusNotify2
Task: {BBA5CB47-9DF8-464B-9BD0-4C809A008631} - System32\Tasks\Microsoft\Windows\GroupPolicy\{A7719E0F-10DB-4640-AD8C-490CC6AD5202} => C:\WINDOWS\system32\gpupdate.exe [30720 2020-11-09] (Microsoft Windows -> Microsoft Corporation)
Task: {D160D9FD-1D35-4428-9127-EAC4FFEF6703} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe /L Analysis (No File)
Task: {D99DAADB-9E05-48FA-A6E0-6DAAFB6AB68C} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe (No File)
Task: {D9B45DEA-8ABF-4B29-9AFA-F428A2A471B2} - System32\Tasks\Microsoft\Windows\RemoteApp and Desktop Connections Update\kyvair@zs-vsechovice.local\Start Workspace Runtime at logon => {4F1DFCA6-3AAD-48E1-8406-4BC21A501D7C} C:\WINDOWS\system32\wksprt.exe [450048 2021-01-13] (Microsoft Windows -> Microsoft Corporation)
Task: {F00885B8-1343-438D-9AEF-2ECA20D3F2D9} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe /taskrestart (No File)
Task: {F43581BC-9E45-420A-9815-3C7B46DEF066} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-01-25] (Piriform Software Ltd -> Piriform)
Task: {F91D0C6F-E15B-414A-9486-6AD3668AF337} - System32\Tasks\Microsoft\Windows\RemoteApp and Desktop Connections Update\papepa@zs-vsechovice.local\Start Workspace Runtime at logon => {4F1DFCA6-3AAD-48E1-8406-4BC21A501D7C} C:\WINDOWS\system32\wksprt.exe [450048 2021-01-13] (Microsoft Windows -> Microsoft Corporation)
Task: {FD0EB85D-5480-47FC-8077-8E0D19E2B431} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 217.31.204.130 8.8.8.8
Tcpip\..\Interfaces\{65a1c258-978b-4451-8a13-a3282eb021fb}: [DhcpNameServer] 10.38.10.20 10.38.10.26
Tcpip\..\Interfaces\{da49483d-0b2b-4cf7-870d-0732c96e51da}: [DhcpNameServer] 217.31.204.130 8.8.8.8

Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge Profile: C:\Users\papepa\AppData\Local\Microsoft\Edge\User Data\Default [2022-04-01]

FireFox:
========
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.291.2 -> C:\Program Files (x86)\Java\jre1.8.0_291\bin\dtplugin\npDeployJava1.dll [2021-07-09] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.291.2 -> C:\Program Files (x86)\Java\jre1.8.0_291\bin\plugin2\npjp2.dll [2021-07-09] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @software602.cz/602XML Filler -> C:\Program Files (x86)\Software602\602XML\Filler\npfiller.dll [2018-01-08] (Software602 a.s. -> Software602 a.s.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2022-04-01]

Chrome:
=======
CHR Profile: C:\Users\papepa\AppData\Local\Google\Chrome\User Data\Default [2022-04-01]
CHR Extension: (Prezentace) - C:\Users\papepa\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-07-07]
CHR Extension: (Dokumenty) - C:\Users\papepa\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-07-07]
CHR Extension: (Disk Google) - C:\Users\papepa\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2022-04-01]
CHR Extension: (YouTube) - C:\Users\papepa\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-07-07]
CHR Extension: (Tabulky) - C:\Users\papepa\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-07-07]
CHR Extension: (Dokumenty Google offline) - C:\Users\papepa\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-04-01]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\papepa\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-04-01]
CHR Extension: (Gmail) - C:\Users\papepa\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2022-04-01]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 602XML Updater; C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [85344 2011-10-10] (Software602 a.s. -> Software602 a.s.)
S2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [65192 2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
S3 EHttpSrv; C:\Program Files\ESET\ESET Security\ehttpsrv.exe [57952 2020-07-07] (ESET, spol. s r.o. -> ESET)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2364472 2020-07-07] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [2364472 2020-07-07] (ESET, spol. s r.o. -> ESET)
S2 FoxitReaderUpdateService; C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitReaderUpdateService.exe [1995184 2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
S3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1149480 2018-06-07] (HP Inc. -> HP)
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-01-18] (Hewlett-Packard) [File not signed]
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-01-18] (Hewlett-Packard) [File not signed]
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6254864 2022-04-01] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2020-01-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2020-01-17] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 Accelerometer; C:\WINDOWS\System32\drivers\Accelerometer.sys [50616 2021-11-24] (WDKTestCert VssAdministrator,132811656475919983 -> HP)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [155888 2020-07-07] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15824 2021-06-18] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [195176 2020-07-07] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [79744 2020-07-07] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [116184 2020-07-07] (ESET, spol. s r.o. -> ESET)
R1 googledrivefs3688; C:\WINDOWS\System32\DRIVERS\googledrivefs3688.sys [381456 2021-12-14] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
R1 googledrivefs3758; C:\WINDOWS\System32\DRIVERS\googledrivefs3758.sys [384584 2022-03-24] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
R0 hpdskflt; C:\WINDOWS\System32\drivers\hpdskflt.sys [60448 2021-11-24] (WDKTestCert VssAdministrator,132811656475919983 -> HP)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45664 2020-01-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [355760 2020-01-17] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2020-01-17] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [34944 2018-05-11] (HP Inc. -> HP)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-04-01 18:34 - 2022-04-01 18:37 - 000024929 _____ C:\Users\papepa\Desktop\Addition.txt
2022-04-01 18:27 - 2022-04-01 18:39 - 000020019 _____ C:\Users\papepa\Desktop\FRST.txt
2022-04-01 18:26 - 2022-04-01 18:38 - 000000000 ____D C:\FRST
2022-04-01 18:02 - 2022-04-01 18:02 - 002365440 _____ (Farbar) C:\Users\papepa\Desktop\FRST64.exe
2022-04-01 17:17 - 2022-04-01 17:17 - 000000000 ____D C:\Users\papepa\AppData\Local\PeerDistRepub
2022-04-01 16:54 - 2022-04-01 16:54 - 008540344 _____ (Malwarebytes) C:\Users\papepa\Desktop\adwcleaner_8.3.1.exe
2022-04-01 15:49 - 2022-04-01 15:49 - 000039936 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2022-04-01 15:49 - 2022-04-01 15:49 - 000011791 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-04-01 15:48 - 2022-04-01 15:48 - 000048640 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2022-04-01 15:47 - 2022-04-01 15:47 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2022-04-01 14:47 - 2022-04-01 14:47 - 000000000 ___HD C:\$WinREAgent
2022-04-01 06:03 - 2022-04-01 06:03 - 000000000 ____D C:\Users\kyvair\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Work Resources (RADC)
2022-04-01 05:48 - 2022-03-24 07:54 - 000384584 _____ (Google, Inc.) C:\WINDOWS\system32\Drivers\googledrivefs3758.sys
2022-03-31 12:24 - 2022-03-31 12:24 - 000040396 _____ C:\Users\kyvair\Downloads\20220331122244249.pdf
2022-03-31 09:07 - 2022-03-31 09:07 - 000651597 _____ C:\Users\kyvair\Downloads\Přiznání k dani z příjmů_2021.pdf
2022-03-31 09:05 - 2022-03-31 09:05 - 000651597 _____ C:\Users\kyvair\Downloads\20220331090408666.pdf
2022-03-31 08:54 - 2022-03-31 08:55 - 000007274 _____ C:\Users\kyvair\Desktop\DPPDP9-0061986011-20220331-085352-21624429-potvrzeni.p7s
2022-03-30 15:38 - 2022-03-31 05:52 - 000009182 _____ C:\Users\kyvair\Desktop\Nový List aplikace Microsoft Excel.xlsx
2022-03-29 15:07 - 2022-03-29 15:07 - 000002384 _____ C:\Users\kyvair\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-03-28 13:48 - 2022-03-28 13:48 - 000001081 _____ C:\Users\kyvair\Desktop\2022.lnk
2022-03-28 11:24 - 2022-03-28 11:24 - 000132972 _____ C:\Users\kyvair\Downloads\20220328112215470.pdf
2022-03-25 10:09 - 2022-03-25 10:09 - 000070970 _____ C:\Users\kyvair\Downloads\20220325083037098-1.pdf
2022-03-25 10:08 - 2022-03-25 10:08 - 000070970 _____ C:\Users\kyvair\Downloads\20220325083037098.pdf
2022-03-25 10:06 - 2022-03-25 10:06 - 000073112 _____ C:\Users\kyvair\Downloads\Maryna.pdf
2022-03-23 15:20 - 2022-03-23 15:21 - 001189406 _____ C:\Users\kyvair\Downloads\smlouva ZŠ a MŠ Všechovice.pdf
2022-03-20 23:58 - 2022-03-27 23:31 - 000000000 ____D C:\Users\kyvair\Desktop\Měsíční účtování
2022-03-20 19:30 - 2022-03-20 19:30 - 000122827 _____ C:\Users\kyvair\Downloads\VemaReport-29.pdf
2022-03-20 18:15 - 2022-03-20 18:15 - 000175364 _____ C:\Users\kyvair\Downloads\VemaReport-28.pdf
2022-03-15 11:20 - 2022-03-15 11:20 - 000243435 _____ C:\Users\kyvair\Downloads\1_opd_vzor_zadost_o_souhlas_zrizovatele_jedno_kalendarni_obdobi-1.pdf
2022-03-15 11:14 - 2022-03-15 11:14 - 000298210 _____ C:\Users\kyvair\Downloads\1_opd_vzor_potvrzeni_o_prominuti_uhrady_2021-22.pdf
2022-03-15 09:53 - 2022-03-15 09:53 - 000418116 _____ C:\Users\kyvair\Downloads\VemaReport-27.pdf
2022-03-15 09:51 - 2022-03-15 09:51 - 000265612 _____ C:\Users\kyvair\Downloads\VemaReport-26.pdf
2022-03-15 09:49 - 2022-03-15 09:49 - 000902305 _____ C:\Users\kyvair\Downloads\VemaReport-25.pdf
2022-03-15 09:48 - 2022-03-15 09:48 - 001009014 _____ C:\Users\kyvair\Downloads\VemaReport-24.pdf
2022-03-15 09:45 - 2022-03-15 09:45 - 000164141 _____ C:\Users\kyvair\Downloads\VemaReport-23.pdf
2022-03-15 09:44 - 2022-03-15 09:44 - 000268791 _____ C:\Users\kyvair\Downloads\VemaReport-21.pdf
2022-03-15 09:44 - 2022-03-15 09:44 - 000209728 _____ C:\Users\kyvair\Downloads\VemaReport-22.pdf
2022-03-15 09:42 - 2022-03-15 09:42 - 000121787 _____ C:\Users\kyvair\Downloads\VemaReport-20.pdf
2022-03-15 09:41 - 2022-03-15 09:41 - 000132774 _____ C:\Users\kyvair\Downloads\VemaReport-19.pdf
2022-03-15 09:26 - 2022-03-15 09:26 - 000177235 _____ C:\Users\kyvair\Downloads\VZP-Hrom.pdf
2022-03-15 09:26 - 2022-03-15 09:26 - 000172215 _____ C:\Users\kyvair\Downloads\VZP-1.pdf
2022-03-15 09:25 - 2022-03-15 09:25 - 000176368 _____ C:\Users\kyvair\Downloads\RBP.pdf
2022-03-15 09:25 - 2022-03-15 09:25 - 000172712 _____ C:\Users\kyvair\Downloads\Vo.pdf
2022-03-15 09:23 - 2022-03-15 09:23 - 000176368 _____ C:\Users\kyvair\Downloads\OZP-3.pdf
2022-03-15 09:23 - 2022-03-15 09:23 - 000175323 _____ C:\Users\kyvair\Downloads\MV-1.pdf
2022-03-15 09:23 - 2022-03-15 09:23 - 000174346 _____ C:\Users\kyvair\Downloads\OZP-4.pdf
2022-03-15 09:22 - 2022-03-15 09:22 - 000174346 _____ C:\Users\kyvair\Downloads\VemaReport-18.pdf
2022-03-15 09:20 - 2022-03-15 09:20 - 000176368 _____ C:\Users\kyvair\Downloads\OZP-2.pdf
2022-03-15 09:19 - 2022-03-15 09:19 - 000176368 _____ C:\Users\kyvair\Downloads\VemaReport-17.pdf
2022-03-15 09:19 - 2022-03-15 09:19 - 000176368 _____ C:\Users\kyvair\Downloads\OZP-1.pdf
2022-03-15 09:18 - 2022-03-15 09:18 - 000172997 _____ C:\Users\kyvair\Downloads\ČP.pdf
2022-03-15 09:14 - 2022-03-15 09:14 - 000176368 _____ C:\Users\kyvair\Downloads\VemaReport-16.pdf
2022-03-15 09:13 - 2022-03-15 09:13 - 000175323 _____ C:\Users\kyvair\Downloads\VemaReport-15.pdf
2022-03-15 09:12 - 2022-03-15 09:12 - 000174346 _____ C:\Users\kyvair\Downloads\VemaReport-14.pdf
2022-03-15 09:11 - 2022-03-15 09:11 - 000172997 _____ C:\Users\kyvair\Downloads\VemaReport-13.pdf
2022-03-15 09:10 - 2022-03-15 09:10 - 000172712 _____ C:\Users\kyvair\Downloads\VemaReport-12.pdf
2022-03-15 09:07 - 2022-03-15 09:07 - 000177235 _____ C:\Users\kyvair\Downloads\VemaReport-11.pdf
2022-03-15 09:07 - 2022-03-15 09:07 - 000177235 _____ C:\Users\kyvair\Downloads\VemaReport-10.pdf
2022-03-15 09:07 - 2022-03-15 09:07 - 000172215 _____ C:\Users\kyvair\Downloads\VemaReport-9.pdf
2022-03-15 09:06 - 2022-03-15 09:06 - 000175323 _____ C:\Users\kyvair\Downloads\VemaReport-4.pdf
2022-03-15 09:06 - 2022-03-15 09:06 - 000174346 _____ C:\Users\kyvair\Downloads\VemaReport-5.pdf
2022-03-15 09:06 - 2022-03-15 09:06 - 000172997 _____ C:\Users\kyvair\Downloads\VemaReport-7.pdf
2022-03-15 09:06 - 2022-03-15 09:06 - 000172712 _____ C:\Users\kyvair\Downloads\VemaReport-8.pdf
2022-03-15 09:05 - 2022-03-15 09:05 - 000176368 _____ C:\Users\kyvair\Downloads\VemaReport-1.pdf
2022-03-14 13:49 - 2022-03-14 13:49 - 000243435 _____ C:\Users\kyvair\Downloads\1_opd_vzor_zadost_o_souhlas_zrizovatele_jedno_kalendarni_obdobi.pdf
2022-03-14 11:52 - 2022-03-14 11:52 - 000093310 _____ C:\Users\kyvair\Desktop\Editace žádosti - Obědy pro děti.htm
2022-03-14 11:52 - 2022-03-14 11:52 - 000000000 ____D C:\Users\kyvair\Desktop\Editace žádosti - Obědy pro děti_soubory
2022-03-11 14:49 - 2022-03-11 14:49 - 000347684 _____ C:\Users\kyvair\Downloads\zš všechovice.pdf
2022-03-10 08:41 - 2022-03-10 08:41 - 000000000 ____D C:\Foxit Software
2022-03-09 19:24 - 2022-03-09 19:24 - 000195584 _____ C:\WINDOWS\system32\uwfcfgmgmt.dll
2022-03-09 19:22 - 2022-03-09 19:22 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2022-03-09 19:21 - 2022-03-09 19:21 - 002254336 _____ C:\WINDOWS\system32\dwmscene.dll
2022-03-09 19:20 - 2022-03-09 19:20 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2022-03-09 19:19 - 2022-03-09 19:19 - 000272896 _____ C:\WINDOWS\system32\TpmTool.exe

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-04-01 18:35 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-04-01 18:12 - 2020-01-16 22:48 - 000000000 ____D C:\Program Files (x86)\Google
2022-04-01 17:48 - 2020-11-09 21:25 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-04-01 17:20 - 2020-01-16 23:44 - 000000000 ____D C:\Program Files\CCleaner
2022-04-01 17:00 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2022-04-01 16:49 - 2020-11-09 18:16 - 000000000 ____D C:\Users\papepa
2022-04-01 16:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-04-01 16:48 - 2020-11-09 21:41 - 001605602 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-04-01 16:48 - 2019-12-07 16:43 - 000683576 _____ C:\WINDOWS\system32\perfh005.dat
2022-04-01 16:48 - 2019-12-07 16:43 - 000137356 _____ C:\WINDOWS\system32\perfc005.dat
2022-04-01 16:43 - 2020-11-09 21:25 - 000625104 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-04-01 16:41 - 2020-11-09 21:55 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-04-01 16:41 - 2020-11-09 21:24 - 000008192 ___SH C:\DumpStack.log.tmp
2022-04-01 16:41 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2022-04-01 16:40 - 2020-01-16 22:31 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2022-04-01 16:40 - 2019-12-07 11:03 - 001310720 _____ C:\WINDOWS\system32\config\BBI
2022-04-01 16:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-04-01 16:38 - 2020-11-09 13:08 - 000000000 ____D C:\WINDOWS\en-GB
2022-04-01 16:38 - 2019-12-07 16:47 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2022-04-01 16:38 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-04-01 16:38 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-04-01 16:38 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-04-01 16:38 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-04-01 16:38 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2022-04-01 16:38 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2022-04-01 16:38 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2022-04-01 16:38 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-04-01 16:12 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-04-01 14:35 - 2020-07-07 08:00 - 000000000 ____D C:\Users\papepa\AppData\Local\D3DSCache
2022-04-01 14:14 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-04-01 14:01 - 2020-07-07 07:42 - 000000000 ____D C:\Users\papepa\AppData\Local\Packages
2022-04-01 13:57 - 2022-02-22 08:52 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2774596813-2351541506-2060952939-1285
2022-04-01 13:57 - 2020-11-09 21:55 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2774596813-2351541506-2060952939-1285
2022-04-01 13:57 - 2020-11-09 18:16 - 000002384 _____ C:\Users\papepa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-04-01 13:52 - 2020-11-09 21:55 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2022-04-01 13:44 - 2022-02-21 06:47 - 000000000 ____D C:\Program Files\Mozilla Firefox
2022-04-01 13:44 - 2020-01-16 23:45 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-04-01 11:45 - 2020-01-23 08:04 - 000000000 ____D C:\Users\kyvair\AppData\Local\Packages
2022-04-01 11:08 - 2020-01-22 08:53 - 000000152 _____ C:\WINDOWS\system32\config\netlogon.ftl
2022-04-01 06:22 - 2020-01-16 22:49 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-04-01 06:22 - 2020-01-16 22:49 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2022-04-01 06:03 - 2020-11-09 18:16 - 000000000 ____D C:\Users\kyvair
2022-04-01 05:55 - 2022-02-09 09:22 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-04-01 05:55 - 2020-01-23 08:48 - 000000000 ____D C:\Users\kyvair\AppData\LocalLow\Mozilla
2022-04-01 05:54 - 2021-01-27 06:29 - 000002057 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2022-03-29 15:07 - 2021-12-12 20:57 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2774596813-2351541506-2060952939-1308
2022-03-29 15:07 - 2020-11-09 21:55 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2774596813-2351541506-2060952939-1308
2022-03-28 13:47 - 2020-02-21 12:39 - 000000000 ____D C:\VIS
2022-03-28 10:15 - 2021-03-23 11:57 - 000001131 _____ C:\Users\kyvair\Desktop\Účtárna 2021.lnk
2022-03-28 05:35 - 2020-09-03 23:48 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-03-28 05:35 - 2020-09-03 23:48 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2022-03-28 01:41 - 2020-08-10 07:37 - 000017111 _____ C:\Users\kyvair\Desktop\účty 2020.xlsx
2022-03-25 09:14 - 2021-10-11 17:01 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2022-03-25 09:14 - 2020-01-16 23:45 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-03-20 18:17 - 2019-12-07 16:45 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
2022-03-17 13:29 - 2020-01-22 17:43 - 000000000 ____D C:\TEMP
2022-03-10 08:39 - 2019-12-07 16:47 - 000000000 ___SD C:\WINDOWS\system32\AppV
2022-03-10 08:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2022-03-10 08:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2022-03-10 08:39 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2022-03-10 08:35 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2022-03-09 19:49 - 2020-09-30 06:42 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2022-03-09 19:18 - 2020-11-09 21:31 - 002877952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-03-09 18:28 - 2020-01-17 00:37 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-03-09 18:19 - 2020-01-17 00:37 - 145666720 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-03-09 16:15 - 2020-01-17 00:03 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2022-03-09 14:16 - 2021-03-30 11:45 - 000000000 ____D C:\Users\kyvair\Desktop\Testování zaměstnanců a žáků
2022-03-09 06:33 - 2020-11-30 06:41 - 000003490 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6b6cfe86b922c
2022-03-09 06:33 - 2020-11-09 21:55 - 000003584 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)




Additional scan result of Farbar Recovery Scan Tool (x64) Version: 28-03-2022
Ran by papepa (01-04-2022 18:43:15)
Running from C:\Users\papepa\Desktop
Microsoft Windows 10 Pro Version 21H2 19044.1620 (X64) (2020-11-09 19:56:48)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-889259166-2701645971-2654717718-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-889259166-2701645971-2654717718-503 - Limited - Disabled)
Guest (S-1-5-21-889259166-2701645971-2654717718-501 - Limited - Disabled)
lokadmin (S-1-5-21-889259166-2701645971-2654717718-1001 - Administrator - Enabled) => C:\Users\lokadmin
WDAGUtilityAccount (S-1-5-21-889259166-2701645971-2654717718-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Security (Enabled - Up to date) {885D845F-AF19-0124-FECE-FFF49D00F440}
AV: ESET Endpoint Antivirus (Enabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

4K Video Downloader 4.4 (HKLM\...\{62C59C21-F5F5-41A1-B575-DE37FEAA285B}) (Version: 4.4.11.2412 - Open Media LLC)
4K YouTube to MP3 3.3 (HKLM\...\{6D4D8F4D-DDD6-4D31-BD57-50C5BA2362A8}) (Version: 3.3.10.1914 - Open Media LLC)
64 Bit HP CIO Components Installer (HKLM\...\{C788B026-20BD-4E96-B698-533F1D6C5013}) (Version: 7.2.4 - Hewlett-Packard) Hidden
7-Zip 18.05 (x64) (HKLM\...\7-Zip) (Version: 18.05 - Igor Pavlov)
Adobe Reader XI - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.00 - Adobe Systems Incorporated)
Audacity 2.3.0 (HKLM-x32\...\Audacity_is1) (Version: 2.3.0 - Audacity Team)
CCleaner (HKLM\...\CCleaner) (Version: 5.89 - Piriform)
Dálková správa VIS TV (HKLM-x32\...\DSpravaTV) (Version: - )
Epson Print Admin Driver (HKLM-x32\...\{beb4b9b0-1b06-44ab-b492-d9e29ea4901a}) (Version: 3.1.4 - Seiko Epson Corporation)
ESET Endpoint Antivirus (HKLM\...\{0F072F28-5832-463C-AC21-235B7BD4408A}) (Version: 7.3.2039.0 - ESET, spol. s r.o.)
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 10.0.0.35798 - Foxit Software Inc.)
FreeCommander XE (HKLM-x32\...\FreeCommander XE_is1) (Version: - Marek Jasinski)
Google Drive (HKLM\...\{6BBAE539-2232-434A-A4E5-9A33560C6283}) (Version: 56.0.9.0 - Google LLC)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 100.0.4896.60 - Google LLC)
HP Support Assistant (HKLM-x32\...\{33A0B67A-CF04-4F31-B3D0-EEEEDEF7078E}) (Version: 8.8.24.33 - HP Inc.)
HP Support Solutions Framework (HKLM-x32\...\{CB239E79-564D-4204-923F-CB192A484B51}) (Version: 12.14.49.15 - HP Inc.)
HP Wireless Button Driver (HKLM-x32\...\{EFA01423-3857-468C-B7B6-F30AA08E50BC}) (Version: 1.1.5.1 - Hewlett-Packard Company)
IrfanView 4.50 (32-bit) (HKLM-x32\...\IrfanView) (Version: 4.50 - Irfan Skiljan)
Java 8 Update 291 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180291F0}) (Version: 8.0.2910.10 - Oracle Corporation)
LibreOffice 6.1.4.2 (HKLM\...\{080C0C39-B1B5-48BB-85AB-4F9A8768CD10}) (Version: 6.1.4.2 - The Document Foundation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 99.0.1150.55 - Microsoft Corporation)
Microsoft Office Standard 2013 (HKLM-x32\...\Office15.STANDARD) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2774596813-2351541506-2060952939-1285\...\OneDriveSetup.exe) (Version: 22.045.0227.0004 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{5016990D-7F61-4A20-9451-A915D6616DD9}) (Version: 3.66.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox 98.0.2 (x64 cs)) (Version: 98.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 63.0.1 - Mozilla)
MPC-HC 1.7.10 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.10 - MPC-HC Team)
Nástroje kontroly pravopisu pro Microsoft Office 2013 – čeština (HKLM-x32\...\{90150000-001F-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Nástroje korektúry balíka Microsoft Office 2013 - slovenčina (HKLM-x32\...\{90150000-001F-041B-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Opera Stable 65.0.3467.78 (HKU\S-1-5-21-889259166-2701645971-2654717718-1001\...\Opera 65.0.3467.78) (Version: 65.0.3467.78 - Opera Software)
PhotoFiltre 7 (HKU\S-1-5-21-889259166-2701645971-2654717718-1001\...\PhotoFiltre 7) (Version: - )
PSPad editor (HKLM-x32\...\PSPad editor_is1) (Version: 5.0.2.351 - Jan Fiala)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7548 - Realtek Semiconductor Corp.)
Runtime VFP 9 (1.07) (HKLM-x32\...\{B3F398EF-7459-4462-BA67-793679D647C3}) (Version: 1.07.0000 - PROVIS)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM-x32\...\{90150000-0012-0000-0000-0000000FF1CE}_Office15.STANDARD_{7F6C4883-A18C-459A-82C1-A2F9403F2DA6}) (Version: - Microsoft)
Software602 Form Filler (HKLM-x32\...\{9210AEE3-6ECB-4271-A125-1039E94A6A51}) (Version: 4.75 - Software602 a.s.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.3.11.45 - Synaptics Incorporated)
Update for Skype for Business 2015 (KB4484289) 32-Bit Edition (HKLM-x32\...\{90150000-002A-0000-1000-0000000FF1CE}_Office15.STANDARD_{F97B139A-D8BF-46FF-A6F6-50710FED8644}) (Version: - Microsoft)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{82BD0A1C-815F-487F-9AE7-CE73DA413CFF}) (Version: 4.91.0.0 - Microsoft Corporation)

Packages:
=========
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_135.1.385.0_x64__v10z8vjag6ke6 [2022-04-01] (HP Inc.)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.12.3171.0_x64__8wekyb3d8bbwe [2022-04-01] (Microsoft Studios) [MS Ad]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2774596813-2351541506-2060952939-1285_Classes\CLSID\{D9AC5E73-BB10-467b-B884-AA1E475C51F5}\Shell\Open\Command -> C:\Program Files\Synaptics\SynTP\SynTPCpl.dll (Synaptics Incorporated -> Synaptics Incorporated)
ShellIconOverlayIdentifiers: [ GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\56.0.9.0\drivefsext.dll [2022-03-24] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\56.0.9.0\drivefsext.dll [2022-03-24] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\56.0.9.0\drivefsext.dll [2022-03-24] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\56.0.9.0\drivefsext.dll [2022-03-24] (Google LLC -> Google, Inc.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\56.0.9.0\drivefsext.dll [2022-03-24] (Google LLC -> Google, Inc.)
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-07-07] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-07-07] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\56.0.9.0\drivefsext.dll [2022-03-24] (Google LLC -> Google, Inc.)
ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\56.0.9.0\drivefsext.dll [2022-03-24] (Google LLC -> Google, Inc.)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-07-07] (ESET, spol. s r.o. -> ESET)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============


Děkuji

Hop2
Návštěvník
Návštěvník
Příspěvky: 5
Registrován: 01 dub 2022 17:25

Re: Pomalý notebook +++

#2 Příspěvek od Hop2 »

Další moji reakci budu mít až v sobotu večer cca v 19:30.
Děkuji za zprávu s návodem.
pro jistotu přikládám i ADW cleaner:

# -------------------------------
# Malwarebytes AdwCleaner 8.3.1.0
# -------------------------------
# Build: 11-18-2021
# Database: 2022-03-15.3 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 04-01-2022
# Duration: 00:02:02
# OS: Windows 10 Pro
# Scanned: 32049
# Detected: 0


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.

***** [ Hosts File Entries ] *****

No malicious hosts file entries found.

***** [ Preinstalled Software ] *****

No Preinstalled Software found.


AdwCleaner[S00].txt - [2071 octets] - [21/01/2020 22:26:03]
AdwCleaner[C00].txt - [2348 octets] - [21/01/2020 22:27:33]
AdwCleaner[S01].txt - [1616 octets] - [22/01/2020 16:55:22]
AdwCleaner[C01].txt - [1828 octets] - [22/01/2020 16:55:46]
AdwCleaner[S02].txt - [1674 octets] - [18/06/2021 17:40:34]
AdwCleaner[C02].txt - [1844 octets] - [18/06/2021 17:40:54]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S03].txt ##########

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118198
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Pomalý notebook +++

#3 Příspěvek od Rudy »

Zdravím!
Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
Task: {082BCCB1-42B2-4A8D-988F-C8BAFDC41595} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe /u (No File)
Task: {1C887395-9DB4-461B-A334-8CBBC109BB2B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2020-01-16] (Google Inc -> Google Inc.)
Task: {2651D288-AD22-41F6-8D62-DDAD89F85807} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2020-01-16] (Google Inc -> Google Inc.)
Task: {4D14DDDA-05DF-4CCE-A0F3-09C57EAEA213} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe /send (No File)
Task: {6D77C079-5F98-4300-93C8-C38792E6ACBF} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe /noreport (No File)
Task: {D160D9FD-1D35-4428-9127-EAC4FFEF6703} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe /L Analysis (No File)
Task: {D99DAADB-9E05-48FA-A6E0-6DAAFB6AB68C} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe (No File)
Task: {F00885B8-1343-438D-9AEF-2ECA20D3F2D9} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe /taskrestart (No File)
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
C:\DumpStack.log.tmp
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File

EmptyTemp:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Hop2
Návštěvník
Návštěvník
Příspěvky: 5
Registrován: 01 dub 2022 17:25

Re: Pomalý notebook +++

#4 Příspěvek od Hop2 »

Ahoj Rudy,
notebook je trochu rychlejší, myslíš, že by se dal ještě nějak zrychlit?
Posílám Fixlog:

Fix result of Farbar Recovery Scan Tool (x64) Version: 01-04-2022
Ran by papepa (02-04-2022 19:33:24) Run:1
Running from C:\Users\papepa\Desktop
Loaded Profiles: papepa & lokadmin
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
Task: {082BCCB1-42B2-4A8D-988F-C8BAFDC41595} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe /u (No File)
Task: {1C887395-9DB4-461B-A334-8CBBC109BB2B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2020-01-16] (Google Inc -> Google Inc.)
Task: {2651D288-AD22-41F6-8D62-DDAD89F85807} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2020-01-16] (Google Inc -> Google Inc.)
Task: {4D14DDDA-05DF-4CCE-A0F3-09C57EAEA213} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe /send (No File)
Task: {6D77C079-5F98-4300-93C8-C38792E6ACBF} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe /noreport (No File)
Task: {D160D9FD-1D35-4428-9127-EAC4FFEF6703} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe /L Analysis (No File)
Task: {D99DAADB-9E05-48FA-A6E0-6DAAFB6AB68C} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe (No File)
Task: {F00885B8-1343-438D-9AEF-2ECA20D3F2D9} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe /taskrestart (No File)
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
C:\DumpStack.log.tmp
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File

EmptyTemp:
End
*****************

Processes closed successfully.
C:\ProgramData\NTUSER.pol => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{082BCCB1-42B2-4A8D-988F-C8BAFDC41595}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{082BCCB1-42B2-4A8D-988F-C8BAFDC41595}" => removed successfully
C:\WINDOWS\System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{1C887395-9DB4-461B-A334-8CBBC109BB2B}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1C887395-9DB4-461B-A334-8CBBC109BB2B}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2651D288-AD22-41F6-8D62-DDAD89F85807}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2651D288-AD22-41F6-8D62-DDAD89F85807}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4D14DDDA-05DF-4CCE-A0F3-09C57EAEA213}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4D14DDDA-05DF-4CCE-A0F3-09C57EAEA213}" => removed successfully
C:\WINDOWS\System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6D77C079-5F98-4300-93C8-C38792E6ACBF}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6D77C079-5F98-4300-93C8-C38792E6ACBF}" => removed successfully
C:\WINDOWS\System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Hewlett-Packard\HP Support Assistant\Product Configurator" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D160D9FD-1D35-4428-9127-EAC4FFEF6703}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D160D9FD-1D35-4428-9127-EAC4FFEF6703}" => removed successfully
C:\WINDOWS\System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Hewlett-Packard\HP Support Assistant\PC Health Analysis" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D99DAADB-9E05-48FA-A6E0-6DAAFB6AB68C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D99DAADB-9E05-48FA-A6E0-6DAAFB6AB68C}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Office\Office 15 Subscription Heartbeat" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{F00885B8-1343-438D-9AEF-2ECA20D3F2D9}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F00885B8-1343-438D-9AEF-2ECA20D3F2D9}" => removed successfully
C:\WINDOWS\System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start" => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\BookReader_B171F20233094AC88D05A8EF7B9763E8 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => removed successfully
Could not move "C:\DumpStack.log.tmp" => Scheduled to move on reboot.
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ANotepad++64 => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\BriefcaseMenu => removed successfully
"HKLM\Software\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D}" => removed successfully
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\{4A7C4306-57E0-4C0C-83A9-78C1528F618C} => removed successfully
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\{4A7C4306-57E0-4C0C-83A9-78C1528F618C} => not found
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\BriefcaseMenu => removed successfully

=========== EmptyTemp: ==========

BITS transfer queue => 1572864 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 9494462 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 372071 B
Edge => 42496 B
Chrome => 58820153 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 6944 B
NetworkService => 6944 B
papepa => 6728658 B
kyvair => 246042987 B
papead => 323447883 B
lokadmin => 1098852446 B

RecycleBin => 0 B
EmptyTemp: => 1.6 GB temporary data Removed.

================================

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 02-04-2022 19:42:58)

C:\DumpStack.log.tmp => Could not move

==== End of Fixlog 19:42:59 ====

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118198
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Pomalý notebook +++

#5 Příspěvek od Rudy »

Bylo smazáno. Zkuste ještě defragmentovat disk.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Hop2
Návštěvník
Návštěvník
Příspěvky: 5
Registrován: 01 dub 2022 17:25

Re: Pomalý notebook +++

#6 Příspěvek od Hop2 »

Rudy,
děkuji za radu, defragmentaci zkusím.
Moc Ti děkuji a něco pošlu.
S pozdravem
Pavel
PS: Toto ber jako nabídku vděčnosti za Tvoji službu ostatním:
https://www.skk.cz/

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118198
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Pomalý notebook +++

#7 Příspěvek od Rudy »

Za nabídku i příspěvek děkuji a vy nemáte zač! :)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Odpovědět