Dobrý den, nedaří se mi odstranit dlouho trvající problém s dlouhým několika minutovým najížděním systému, během serfování mi často zamrzá i prohlížeč. Při spuštění scanu program taky zamrzal. Hry které hraje syn běží bez problémů. Prosím o kontrolu logu a případnou pomoc. Děkuji.
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 14-12-2020
Ran by Jan (administrator) on DESKTOP-HH9209B (Micro-Star International Co., Ltd MS-7C02) (29-12-2020 10:01:24)
Running from C:\Users\Jan\Desktop
Loaded Profiles: Jan
Platform: Windows 10 Pro Version 1909 18363.1198 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Apple Inc. -> Apple, Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\secd.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(Epic Games Inc. -> Epic Games, Inc.) D:\HRY\Fortnite\Epic Games\Launcher\Engine\Binaries\Win64\EpicWebHelper.exe <2>
(Epic Games Inc. -> Epic Games, Inc.) D:\HRY\Fortnite\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(GoPro Media, Inc. -> ) E:\QUIK GoPro\GoPro Desktop App\GoProDeviceDetection.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2011.16.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20316.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.420.11102.0_x64__8wekyb3d8bbwe\GameBar.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.420.11102.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Microsoft Update Health Tools\uhssvc.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Nullsoft, Inc.) [File not signed] C:\Program Files (x86)\Winamp\winampa.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Riot Games, Inc. -> Riot Games, Inc.) C:\Program Files\Riot Vanguard\vgtray.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmdS.exe [175504 2020-10-29] (ESET, spol. s r.o. -> ESET)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [302904 2019-01-18] (Apple Inc. -> Apple Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3402832 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [353784 2020-11-24] (Riot Games, Inc. -> Riot Games, Inc.)
HKLM\...\Run: [AdobePSE19AutoAnalyzer] => J:\Adobe Elements 2021\Elements 2021 Organizer\Elements Auto Creations 2021.exe [2653808 2020-08-27] (Adobe Inc. -> Adobe)
HKLM-x32\...\Run: [WinampAgent] => C:\Program Files (x86)\Winamp\winampa.exe [74752 2012-06-20] (Nullsoft, Inc.) [File not signed]
HKU\S-1-5-21-620706592-1146515040-833111-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [735336 2019-02-15] (AVB Disc Soft, SIA -> Disc Soft Ltd)
HKU\S-1-5-21-620706592-1146515040-833111-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2019-01-15] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-620706592-1146515040-833111-1001\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2019-01-15] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-620706592-1146515040-833111-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32414392 2020-12-08] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-620706592-1146515040-833111-1001\...\Run: [EpicGamesLauncher] => D:\HRY\Fortnite\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32711056 2020-12-13] (Epic Games Inc. -> Epic Games, Inc.)
HKLM\...\Windows x64\Print Processors\hpcpp103: C:\Windows\System32\spool\prtprocs\x64\hpcpp103.dll [323584 2010-10-13] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.88\Installer\chrmstp.exe [2020-12-08] (Google LLC -> Google LLC)
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0347629C-D17B-4138-AD66-E5BF84408A68} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-02-15] (Google Inc -> Google Inc.)
Task: {19BB267A-35FC-4FE8-820C-AB3ECE85CE40} - System32\Tasks\AdobeAAMUpdater-1.0-DESKTOP-HH9209B-Jan => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {2C575165-82F9-4400-BC7F-A35494B02869} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877448 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {3487B540-D5F6-4ACC-A73A-DF28F715F9E7} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-12-08] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {4075DD6B-515E-4821-A12E-3C4B9CF8EB64} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [841096 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4089A4E8-E036-40C9-A8AF-1129B90F7889} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [572808 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4154DB5F-4F44-42F2-A6D4-C9EB35092B3B} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [26896568 2020-12-08] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {50739A5B-87D1-4B4E-B1A1-03E235B1415F} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877448 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {547EC5F1-9784-4443-886C-77AE1811CB5B} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [790920 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {61E96434-9D65-4D14-870F-72FBA7ACDB72} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3724680 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6B7A7290-71A1-4000-97A6-F02CF71A42A5} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877448 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7029ABF3-9FF5-4039-8F2E-D1D69F6BD7BF} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [841096 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {76B53213-047A-4EEE-91F4-BA5D3E18D920} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877448 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7C9313C5-3D7C-46FC-8055-8198ECA34581} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1349200 2020-11-03] (Adobe Inc. -> Adobe Inc.)
Task: {7CA31C22-FEC5-4110-85F9-FA09CDA74CBC} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [702856 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {97E5F6A4-C337-4122-AD66-3146D95C0670} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-02-15] (Google Inc -> Google Inc.)
Task: {ACA3FE8A-A8F2-4F6A-8263-2D44B9F58C8E} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [790920 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {D2EA483F-4C7D-4786-B0EE-85601FD60523} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {DB8D88FD-D836-4300-A6D5-609500FB65FD} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [316632 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {ED8907D3-95F3-407A-BB0D-FBF05A814E21} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {EE54D354-5E71-441F-80C1-476DD9C0DD6F} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3402832 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.20.2
Tcpip\..\Interfaces\{79ec968a-992a-46d6-9c9f-bc08d6b75949}: [DhcpNameServer] 192.168.20.2
FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-12-07] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default [2020-12-29]
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR StartupUrls: Default -> "hxxp://www.seznam.cz/"
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-12-01]
CHR Extension: (Chrome Media Router) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-12-08]
CHR Profile: C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-12-29]
CHR Profile: C:\Users\Jan\AppData\Local\Google\Chrome\User Data\System Profile [2020-12-29]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3739728 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3511376 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [85304 2018-10-16] (Apple Inc. -> Apple Inc.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8736880 2020-10-21] (BattlEye Innovations e.K. -> )
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4132456 2019-02-15] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2020-09-03] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2595360 2020-10-29] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [2595360 2020-10-29] (ESET, spol. s r.o. -> ESET)
R2 GoProDeviceDetectionService; E:\QUIK GoPro\GoPro Desktop App\GoProDeviceDetection.exe [38328 2018-08-31] (GoPro Media, Inc. -> )
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-01-18] (Hewlett-Packard) [File not signed]
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-01-18] (Hewlett-Packard) [File not signed]
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1631360 2020-12-02] (Rockstar Games, Inc. -> Rockstar Games)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6153048 2020-11-12] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [10069120 2020-11-24] (Riot Games, Inc. -> Riot Games, Inc.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2009.7-0\NisSrv.exe [2372048 2020-10-22] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2009.7-0\MsMpEng.exe [128376 2020-10-22] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2019-02-15] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2019-02-15] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [160992 2020-10-27] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [109360 2020-10-27] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15288 2020-09-15] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [190464 2020-10-27] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [107784 2020-10-27] (ESET, spol. s r.o. -> ESET)
R1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [5811160 2020-11-24] (Riot Games, Inc. -> Riot Games, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48536 2020-10-22] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [428264 2020-10-22] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [69864 2020-10-22] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-12-29 10:01 - 2020-12-29 10:02 - 000018719 ____C C:\Users\Jan\Desktop\FRST.txt
2020-12-29 10:00 - 2020-12-29 10:01 - 000013750 ____C C:\Users\Jan\Desktop\cc_20201229_100054.reg
2020-12-28 16:26 - 2020-12-28 16:26 - 000000859 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client.lnk
2020-12-23 15:50 - 2020-12-23 15:50 - 000000977 ____C C:\Users\Jan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Elements Creations Notification 2021.lnk
2020-12-23 15:49 - 2020-12-23 15:49 - 000000986 _____ C:\Users\Public\Desktop\Adobe Premiere Elements 2021.lnk
2020-12-23 15:49 - 2020-12-23 15:49 - 000000986 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Premiere Elements 2021.lnk
2020-12-23 15:49 - 2020-12-23 15:49 - 000000986 _____ C:\ProgramData\Desktop\Adobe Premiere Elements 2021.lnk
2020-12-23 15:47 - 2020-12-23 15:49 - 000000000 ____D C:\Program Files\Common Files\Adobe
2020-12-22 15:27 - 2020-12-23 15:48 - 000000000 ____D C:\ProgramData\Package Cache
2020-12-17 10:49 - 2020-12-17 10:49 - 000026740 ____C C:\Users\Jan\Downloads\PL - zelinářské zaharady (1).pdf
2020-12-15 07:26 - 2020-12-15 07:47 - 000001627 _____ C:\Users\Public\Desktop\VALORANT.lnk
2020-12-15 07:26 - 2020-12-15 07:47 - 000001627 _____ C:\ProgramData\Desktop\VALORANT.lnk
2020-12-15 07:26 - 2020-12-15 07:26 - 000000000 ____D C:\Program Files\Riot Vanguard
2020-12-15 07:25 - 2020-12-15 07:25 - 000000000 ____D C:\Riot Games
2020-12-13 09:00 - 2020-12-13 09:00 - 000076596 ____C C:\Users\Jan\Desktop\Faktura_1084002556.pdf
2020-12-08 17:55 - 2020-12-08 17:55 - 000017829 ____C C:\Users\Jan\Desktop\Prehlad_druhov_cien_a-odvodov_z_povoleni_2021.xlsx
2020-12-04 17:07 - 2020-12-04 17:07 - 000003472 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-12-04 17:07 - 2020-12-04 17:07 - 000003348 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-12-03 11:05 - 2020-12-03 11:05 - 000070233 ____C C:\Users\Jan\Downloads\Zápis okrasné zahrady a parky.pdf
2020-12-02 16:33 - 2020-12-02 16:33 - 000000000 ___DC C:\Users\Jan\AppData\Local\PeerDistRepub
2020-12-02 14:44 - 2020-12-02 14:44 - 001018885 ____C C:\Users\Jan\Downloads\26-28.pdf
2020-12-02 07:33 - 2020-12-28 21:38 - 000000000 ___DC C:\Users\Jan\AppData\Roaming\discord
2020-12-01 17:34 - 2020-12-01 17:34 - 000000000 ___DC C:\Users\Jan\AppData\Local\VirtualStore
2020-12-01 16:28 - 2020-12-01 16:09 - 000024064 _____ C:\WINDOWS\zoek-delete.exe
2020-12-01 16:14 - 2020-12-01 16:14 - 013178720 ____C C:\Users\Jan\Desktop\JRT.exe
2020-12-01 16:09 - 2020-12-01 16:26 - 000000000 ____D C:\zoek_backup
2020-12-01 16:09 - 2020-12-01 16:09 - 001309184 ____C C:\Users\Jan\Desktop\zoek.exe
2020-11-30 14:55 - 2020-11-30 14:55 - 008447152 ____C (Malwarebytes) C:\Users\Jan\Desktop\adwcleaner_8.0.8.exe
2020-11-30 14:37 - 2020-12-29 10:01 - 000000000 ___DC C:\Users\Jan\Desktop\FRST-OlderVersion
2020-11-29 13:05 - 2020-12-29 10:01 - 000000000 ____D C:\FRST
2020-11-29 13:04 - 2020-12-29 10:01 - 002286592 _____ (Farbar) C:\Users\Jan\Desktop\FRST64.exe
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-12-29 09:59 - 2019-03-08 18:03 - 000000000 ____D C:\Program Files\CCleaner
2020-12-29 09:37 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-12-29 09:15 - 2019-02-15 14:26 - 000000000 ___DC C:\Users\Jan\AppData\Local\Adobe
2020-12-29 09:10 - 2020-07-06 15:09 - 000000001 _____ C:\WINDOWS\vgkbootstatus.dat
2020-12-29 09:10 - 2019-02-15 13:43 - 000000000 ____D C:\ProgramData\NVIDIA
2020-12-29 09:09 - 2019-02-17 11:34 - 000000000 __RDC C:\Users\Jan\iCloudDrive
2020-12-29 09:07 - 2020-05-20 16:24 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-12-29 09:07 - 2019-03-19 05:37 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2020-12-28 16:50 - 2020-07-06 14:28 - 000000000 ____D C:\ProgramData\Riot Games
2020-12-28 16:27 - 2020-06-26 10:04 - 000000000 ___DC C:\Users\Jan\AppData\Roaming\TS3Client
2020-12-28 12:51 - 2020-05-20 16:13 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-12-28 12:50 - 2019-02-17 15:41 - 000000000 ___DC C:\Users\Jan\AppData\Local\ElevatedDiagnostics
2020-12-28 10:46 - 2019-10-03 19:29 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2020-12-28 10:46 - 2019-10-03 19:29 - 000000000 ___HD C:\ProgramData\Documents\AdobeGCData
2020-12-27 22:15 - 2020-05-20 16:15 - 000000000 ___DC C:\Users\Jan
2020-12-26 22:39 - 2019-02-15 17:41 - 000000000 ___DC C:\Users\Jan\AppData\Local\D3DSCache
2020-12-24 19:39 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-12-23 16:59 - 2019-03-05 20:02 - 000000002 ____C C:\Users\Jan\Documents\tempFolderPath.dat
2020-12-23 16:30 - 2019-03-05 18:59 - 000000000 ___DC C:\Users\Jan\Documents\Adobe
2020-12-23 15:52 - 2019-02-15 13:39 - 000000000 ___DC C:\Users\Jan\AppData\Roaming\Adobe
2020-12-23 15:49 - 2019-02-15 14:27 - 000000000 ____D C:\ProgramData\Adobe
2020-12-22 17:58 - 2020-04-26 09:02 - 000000000 ___DC C:\Users\Jan\AppData\Local\UnrealEngine
2020-12-22 16:30 - 2019-02-21 18:41 - 000000000 ____D C:\Program Files\Rockstar Games
2020-12-22 16:30 - 2019-02-21 18:41 - 000000000 ____D C:\Program Files (x86)\Rockstar Games
2020-12-22 12:05 - 2019-03-19 05:50 - 000000000 ____D C:\WINDOWS\INF
2020-12-21 18:30 - 2019-03-19 05:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-12-20 20:04 - 2019-02-15 13:39 - 000000000 ___DC C:\Users\Jan\AppData\Local\Packages
2020-12-20 16:44 - 2020-05-20 16:24 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-12-18 10:38 - 2020-05-25 06:40 - 000000000 ___DC C:\Users\Jan\AppData\Local\DigitalEntitlements
2020-12-17 15:39 - 2020-09-16 16:33 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2020-12-17 07:19 - 2020-05-20 16:24 - 000003366 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-620706592-1146515040-833111-1001
2020-12-17 07:19 - 2020-05-20 16:15 - 000002347 ____C C:\Users\Jan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-12-17 07:19 - 2019-02-15 13:41 - 000000000 __RDC C:\Users\Jan\OneDrive
2020-12-16 12:03 - 2019-06-12 18:48 - 000000000 ___DC C:\Users\Jan\Desktop\HugoBosss7007
2020-12-15 07:43 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-12-13 10:41 - 2020-04-01 16:09 - 000002106 ____C C:\Users\Jan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FiveM.lnk
2020-12-13 09:03 - 2019-02-15 13:53 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-12-13 09:00 - 2019-02-15 13:53 - 133736600 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-12-09 14:36 - 2019-02-15 14:27 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-12-08 07:36 - 2020-04-01 10:32 - 000002215 ____C C:\Users\Jan\Desktop\Discord.lnk
2020-12-08 07:36 - 2020-04-01 10:32 - 000000000 ___DC C:\Users\Jan\AppData\Local\Discord
2020-12-08 07:32 - 2019-02-15 14:25 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-12-04 07:02 - 2020-05-07 06:35 - 000000000 ___SH C:\Users\Public\Shared Files
2020-12-03 16:17 - 2020-05-20 16:22 - 001693640 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-12-03 16:17 - 2019-03-19 12:57 - 000716944 _____ C:\WINDOWS\system32\perfh005.dat
2020-12-03 16:17 - 2019-03-19 12:57 - 000145024 _____ C:\WINDOWS\system32\perfc005.dat
2020-11-30 17:07 - 2020-10-29 12:17 - 000000000 ____D C:\ProgramData\Origin
2020-11-30 16:54 - 2020-04-23 20:56 - 000000000 ___DC C:\Users\Jan\AppData\LocalLow\Temp
==================== Files in the root of some directories ========
2019-03-09 19:31 - 2019-03-11 17:59 - 000000404 ____C () C:\Users\Jan\AppData\Roaming\DESKTOP-HH9209B.MTBF.txt
2020-12-02 11:22 - 2020-12-02 11:22 - 000000000 ____C () C:\Users\Jan\AppData\Local\oobelibMkey.log
2019-12-15 11:43 - 2019-12-15 11:43 - 000001392 ____C () C:\Users\Jan\AppData\Local\recently-used.xbel
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Pomalé najíždění systemu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Pomalé najíždění systemu
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 14-12-2020
Ran by Jan (29-12-2020 10:02:48)
Running from C:\Users\Jan\Desktop
Windows 10 Pro Version 1909 18363.1198 (X64) (2020-05-20 15:24:45)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-620706592-1146515040-833111-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-620706592-1146515040-833111-503 - Limited - Disabled)
Guest (S-1-5-21-620706592-1146515040-833111-501 - Limited - Disabled)
Jan (S-1-5-21-620706592-1146515040-833111-1001 - Administrator - Enabled) => C:\Users\Jan
WDAGUtilityAccount (S-1-5-21-620706592-1146515040-833111-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: ESET Security (Enabled - Up to date) {89B55CC4-3881-78B2-11E2-479AE0371896}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Security (Enabled - Up to date) {885D845F-AF19-0124-FECE-FFF49D00F440}
AS: ESET Security (Disabled - Up to date) {333C65BB-8923-0EAA-C47E-C486E687BEFD}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
4K Video Downloader 4.5 (HKLM\...\{180B9AE1-F87B-4107-8C68-4265E927D6A8}) (Version: 4.5.0.2482 - Open Media LLC)
64 Bit HP CIO Components Installer (HKLM\...\{C788B026-20BD-4E96-B698-533F1D6C5013}) (Version: 7.2.4 - Hewlett-Packard) Hidden
ACDSee Photo Manager 12 (HKLM-x32\...\{A5CBD7C5-CF16-443F-A4F2-3503C9DE311B}) (Version: 12.0.344 - ACD Systems International Inc.)
ACDSee Photo Manager 12 Build 344 - odinstalovat češtinu (HKLM-x32\...\ACDSee Photo Manager 12 Build 344) (Version: - Michellin)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 20.013.20074 - Adobe Systems Incorporated)
Adobe Premiere Elements 2021 (HKLM-x32\...\PRE_19_0) (Version: 19.0 - Adobe Inc.)
Aktualizace NVIDIA 35.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 35.0.0.0 - NVIDIA Corporation) Hidden
AMD Product Verification Tool version 1.0.2.8 (HKLM\...\{4242685A-EF3E-45FF-B4AE-758E49020936}_is1) (Version: 1.0.2.8 - AMD)
Apex Legends (HKLM-x32\...\{D7FBF176-382D-484E-863A-DFD1124A2A1C}) (Version: 1.0.4.8 - Electronic Arts, Inc.)
Apple Mobile Device Support (HKLM\...\{5FA8C4BE-8C74-4B9C-9B49-EBF759230189}) (Version: 12.1.0.25 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A30EA700-5515-48F0-88B0-9E99DC356B88}) (Version: 2.6.0.1 - Apple Inc.)
Blackmagic RAW Common Components (HKLM\...\{8F57BC8F-7DAC-4E4B-BD13-A55B1AC0DF43}) (Version: 1.6 - Blackmagic Design)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
BorisFX Sapphire OFX (HKLM\...\GenArts Sapphire OFX_is1) (Version: 11.0.1 - Team V.R)
CCleaner (HKLM\...\CCleaner) (Version: 5.75 - Piriform)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.10.0.0770 - Disc Soft Ltd)
Discord (HKU\S-1-5-21-620706592-1146515040-833111-1001\...\Discord) (Version: 0.0.309 - Discord Inc.)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 419.35 - NVIDIA Corporation) Hidden
Epic Games Launcher (HKLM-x32\...\{1D4EB18B-0FEE-444E-B4D1-6F2CFBC363E6}) (Version: 1.1.267.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
ESET Security (HKLM\...\{0813F772-F554-4DA9-9CEA-ABCE6321BDFD}) (Version: 14.0.22.0 - ESET, spol. s r.o.)
FiveM (HKU\S-1-5-21-620706592-1146515040-833111-1001\...\CitizenFX_FiveM) (Version: - The CitizenFX Collective)
Ghostscript GPL 8.64 (Msi Setup) (HKLM-x32\...\_{06CD45E6-FF5E-4D8E-BC01-B276A90DADF2}) (Version: 8.64 - Corel Corporation)
Ghostscript GPL 8.64 (Msi Setup) (HKLM-x32\...\{06CD45E6-FF5E-4D8E-BC01-B276A90DADF2}) (Version: 8.64 - Corel Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 87.0.4280.88 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.51 - Google LLC) Hidden
GoPro Quik (HKLM\...\{AA5F7FCE-311C-46D8-B93A-ABF4DDCAB832}) (Version: 0.1.945 - GoPro, Inc.) Hidden
GoPro Quik (HKLM-x32\...\{a23df978-67ca-4fe3-a740-a7b5ae7ec82f}) (Version: 2.7.0.945 - GoPro, Inc.)
HandBrake 1.3.0 (HKLM-x32\...\HandBrake) (Version: 1.3.0 - )
iCloud (HKLM\...\{05D97028-FD26-4A3D-BADC-D1CA2E9F1214}) (Version: 7.10.0.9 - Apple Inc.)
Ignite Pro OFX (HKLM\...\Ignite Pro_is1) (Version: 2.1.7331.43092 - FXHOME Ltd. & Team V.R)
iTunes (HKLM\...\{8C125166-94A1-4721-84CC-C9739E6EA8A7}) (Version: 12.9.3.3 - Apple Inc.)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
MAGIX Movie Edit Pro Premium (HKLM\...\{4E56C7A0-2436-4B9A-88DD-9AA70D446843}) (Version: 18.0.1.203 - MAGIX Software GmbH) Hidden
MAGIX Movie Edit Pro Premium (HKLM\...\MX.{4E56C7A0-2436-4B9A-88DD-9AA70D446843}) (Version: - MAGIX Software GmbH)
Microsoft Office Professional Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-620706592-1146515040-833111-1001\...\OneDriveSetup.exe) (Version: 20.201.1005.0009 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-620706592-1146515040-833111-1001\...\Teams) (Version: 1.3.00.30866 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{0BCA8FBE-0C1C-4C65-98A3-5D34AAF41737}) (Version: 2.70.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.22.27821 (HKLM-x32\...\{6361b579-2795-4886-b2a8-53d5239b6452}) (Version: 14.22.27821.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.27.29016 (HKLM-x32\...\{40d3fee2-b257-46c2-bdc0-cb1088d97327}) (Version: 14.27.29016.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.22.27821 (HKLM-x32\...\{5bfc1380-fd35-4b85-9715-7351535d077e}) (Version: 14.22.27821.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.23.27820 (HKLM-x32\...\{45231ab4-69fd-486a-859d-7a59fcd11013}) (Version: 14.23.27820.0 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2017 (HKLM-x32\...\{5a7dc0ad-cdb2-43b5-8b82-f81065fe6092}) (Version: 15.0.26717 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
Nástroje kontroly pravopisu pro Microsoft Office 2016 – čeština (HKLM\...\{90160000-001F-0405-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Nástroje korektúry balíka Microsoft Office 2016 - slovenčina (HKLM\...\{90160000-001F-041B-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.13 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.17.0.126 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.17.0.126 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Ovládací panel NVIDIA 432.00 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 432.00 - NVIDIA Corporation) Hidden
Podpora aplikací Apple (32bitová) (HKLM-x32\...\{5A659BE5-849B-484E-A83B-DCB78407F3A4}) (Version: 7.3 - Apple Inc.)
Podpora aplikací Apple (64bitová) (HKLM\...\{F8060941-C0AB-4BCE-88AC-F2FDA2E9F286}) (Version: 7.3 - Apple Inc.)
PotPlayer-64 bit (HKLM\...\PotPlayer64) (Version: 1.7.10667 - Kakao Corp.)
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
Riot Vanguard (HKLM\...\Riot Vanguard) (Version: - Riot Games, Inc.)
Roblox Player for Jan (HKU\S-1-5-21-620706592-1146515040-833111-1001\...\roblox-player) (Version: - Roblox Corporation)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.33.319 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.7.5 - Rockstar Games)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.5.3 - TeamSpeak Systems GmbH)
Tom Clancy's The Division 2 (HKLM-x32\...\Uplay Install 4932) (Version: - Ubisoft)
TotalCMD by Marek410 (HKLM-x32\...\TotalCMD by Marek410) (Version: - )
Uplay (HKLM-x32\...\Uplay) (Version: 85.1 - Ubisoft)
VALORANT (HKU\S-1-5-21-620706592-1146515040-833111-1001\...\Riot Game valorant.live) (Version: - Riot Games, Inc)
Winamp (HKLM-x32\...\Winamp) (Version: 5.63 - Nullsoft, Inc)
Winamp Detector Plug-in (HKU\S-1-5-21-620706592-1146515040-833111-1001\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
Windows 10 Codec Pack 2.1.4 (HKLM-x32\...\Windows 10 - Codec Pack) (Version: 2.1.4 - Windows 10 Codec Pack)
Packages:
=========
BreeZip -> C:\Program Files\WindowsApps\3138AweZip.AweZip_1.3.18.0_x86__ffd303wmbhcjt [2020-08-09] (BreeZip) [MS Ad]
Candy Crush Friends -> C:\Program Files\WindowsApps\king.com.CandyCrushFriends_1.49.2.0_x86__kgqvnymyfvs32 [2020-12-14] (king.com)
Candy Crush Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSaga_1.1920.1.0_x86__kgqvnymyfvs32 [2020-12-16] (king.com)
Cooking Fever -> C:\Program Files\WindowsApps\NORDCURRENT.COOKINGFEVER_10.0.5.0_x86__m9bz608c1b9ra [2020-11-07] (Nordcurrent)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.7.337.0_x64__rz1tebttyb220 [2020-12-21] (Dolby Laboratories)
Fitbit Coach -> C:\Program Files\WindowsApps\Fitbit.FitbitCoach_4.4.133.0_x64__6mqt6hf9g46tw [2019-02-15] (Fitbit)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_122.1.778.0_x64__v10z8vjag6ke6 [2020-12-21] (HP Inc.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-02-15] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-02-15] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.10142.0_x64__8wekyb3d8bbwe [2020-10-23] (Microsoft Studios) [MS Ad]
Phototastic Collage -> C:\Program Files\WindowsApps\ThumbmunkeysLtd.PhototasticCollage_3.23.1.0_x64__nfy108tqq3p12 [2020-11-12] (Thumbmunkeys Ltd)
Rozšíření pro video HEVC -> C:\Program Files\WindowsApps\Microsoft.HEVCVideoExtensions_1.0.33243.0_x64__8wekyb3d8bbwe [2020-12-09] (Microsoft Corporation)
Trio Office -> C:\Program Files\WindowsApps\64343GTDocStudio.OfficeDocOpener_3.2.19.0_x86__3h5nez1g3qt2c [2020-08-11] (GT Office PDF Studio)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-620706592-1146515040-833111-1001_Classes\CLSID\{0047ADBE-9F73-CAFE-3A65-ACE857BB2020}\localserver32 -> J:\Adobe Elements 2021\Elements 2021 Organizer\Elements Auto Creations 2021.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-620706592-1146515040-833111-1001_Classes\CLSID\{0047ADBE-9F73-CAFE-3A65-ACE857BB2021}\localserver32 -> J:\Adobe Elements 2021\Elements 2021 Organizer\Elements Auto Creations 2021.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-620706592-1146515040-833111-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\Jan\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20275.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-10-29] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2019-01-15] (Apple Inc. -> Apple Inc.)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2019-02-15] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-10-29] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2019-02-15] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2019-10-02] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-10-29] (ESET, spol. s r.o. -> ESET)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [VIDC.ACDV] => ACDV.dll
HKLM\...\Drivers32-x32: [VIDC.ACDV] => ACDV.dll
HKLM\...\Drivers32: [vidc.xvid] => C:\Windows\SysWOW64\xvidvfw.dll [235520 2017-12-08] () [File not signed]
HKLM\...\Drivers32: [vidc.x264] => C:\Windows\SysWOW64\x264vfw.dll [3850240 2017-07-30] (x264vfw project) [File not signed]
HKLM\...\Drivers32: [vidc.lags] => C:\Windows\SysWOW64\lagarith.dll [230080 2016-09-21] (Cole Williams Software Limited -> )
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2010-01-18 12:29 - 2010-01-18 12:29 - 000071680 _____ (Hewlett-Packard) [File not signed] c:\windows\system32\hpzinw12.dll
2010-01-18 12:29 - 2010-01-18 12:29 - 000089600 _____ (Hewlett-Packard) [File not signed] c:\windows\system32\hpzipm12.dll
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [9424]
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
SearchScopes: HKU\S-1-5-21-620706592-1146515040-833111-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\S-1-5-21-620706592-1146515040-833111-1001\...\sharepoint.com -> hxxps://zsjablunkov-files.sharepoint.com
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2018-04-12 00:38 - 2020-12-01 16:11 - 000000753 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-620706592-1146515040-833111-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Jan\AppData\Roaming\ACD Systems\ACDSee\ACD Wallpaper.bmp
DNS Servers: 192.168.20.2
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [UDP Query User{F00D0087-6996-4E85-AC33-A3B6115FB71A}C:\program files (x86)\winamp\winamp.exe] => (Block) C:\program files (x86)\winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [TCP Query User{BDE746E5-4F93-4818-839D-C3153BEE7436}C:\program files (x86)\winamp\winamp.exe] => (Block) C:\program files (x86)\winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [{C41DC1D1-6471-4FD8-B946-652E928FBCAA}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{AE6C56E0-24E9-4CE0-9EC7-9894B179830A}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{84928474-EA3F-46F7-81A8-99829EEC08E5}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B473244D-B845-4E9F-A51F-3337C950A2A8}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C4A5FB2B-9E71-4D7F-9ADE-8E0D4788978B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{80385F94-3467-4381-A070-45B49EDCD57E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{79DF4FD9-794A-4D73-9F78-0419C2F4D9E3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{FFDAFCC5-FEE9-414A-8DFB-3ED0E29BA130}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{797600EF-2C0A-4FB4-9A50-EA1B3239F2A2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{AF775180-361B-4AE1-8DEF-13DD86A3D91B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{8E06BC37-8009-426E-9B6F-5B294CEF3D6C}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [TCP Query User{5AA66F74-091F-440D-8660-E6D3D8DF1BA3}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [UDP Query User{623A34CB-2689-4E8A-AC91-688489E1B896}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [{CC48B1C1-3CDB-4F6A-9796-CC910EB27332}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{5BB035C4-9B2A-4ABA-90B4-8ED30839D4CD}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{7DF7064A-C6EC-4F6E-B1BE-6B85FB9F07EF}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{371394FE-97CF-47C5-BF8B-4CCDEA09A0B3}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{E1333911-F3FE-43C5-A24F-A8A56453377A}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{D7397C93-2535-4EC6-B3DF-A7A9CEAEA0B9}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{3DD37FAD-E457-4DB2-B916-9E35542D9B58}] => (Allow) E:\QUIK GoPro\GoPro Desktop App\GoPro Quik.exe (GoPro Media, Inc. -> )
FirewallRules: [{C1BBA7EF-1C8F-48FE-AA24-8A168C6F171F}] => (Allow) E:\QUIK GoPro\GoPro Desktop App\GoProMsgBus.exe (GoPro Media, Inc. -> )
FirewallRules: [{4AB76F83-FEE4-4886-A5CC-9F451E4DF10B}] => (Allow) E:\QUIK GoPro\GoPro Desktop App\GoProIDService.exe (GoPro Media, Inc. -> )
FirewallRules: [{4CED5597-CE77-44EA-A47B-6AA23C813004}] => (Allow) E:\QUIK GoPro\GoPro Desktop App\GoProLauncher.exe (GoPro Media, Inc. -> )
FirewallRules: [{FFFC863B-6795-4B80-B489-6B4FE23CBD55}] => (Allow) D:\HRY\Ubisoft Game Launcher\games\Tom Clancy's The Division 2\TheDivision2.exe (Ubisoft Entertainment Sweden AB -> Ubisoft)
FirewallRules: [TCP Query User{152AF13B-C7A0-4F0E-A6A7-040D37D50685}C:\users\jan\appdata\local\fivem\fivem.exe] => (Allow) C:\users\jan\appdata\local\fivem\fivem.exe (Intricus Software Limited -> Cfx.re)
FirewallRules: [UDP Query User{D177D34B-0FB3-41E4-B07F-300C4BF7C2BC}C:\users\jan\appdata\local\fivem\fivem.exe] => (Allow) C:\users\jan\appdata\local\fivem\fivem.exe (Intricus Software Limited -> Cfx.re)
FirewallRules: [TCP Query User{36F846FD-CC86-4803-9107-9763B6F6A1F4}D:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Block) D:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{0BE0AF81-3E69-4ED3-83A7-F2E75DE51311}D:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Block) D:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{CCEC2F96-4386-4E37-92B4-BCD4398CED36}C:\users\jan\appdata\local\microsoft\teams\current\teams.exe] => (Block) C:\users\jan\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{F0C66BD4-26CF-44E2-9A02-BF989968D181}C:\users\jan\appdata\local\microsoft\teams\current\teams.exe] => (Block) C:\users\jan\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{465C2068-26A1-4045-9873-66FE66DC3D33}D:\hry\gta v\fivem.exe] => (Allow) D:\hry\gta v\fivem.exe (Intricus Software Limited -> Cfx.re)
FirewallRules: [UDP Query User{AD60E02A-0C29-449F-85BE-30E6077B33D0}D:\hry\gta v\fivem.exe] => (Allow) D:\hry\gta v\fivem.exe (Intricus Software Limited -> Cfx.re)
FirewallRules: [TCP Query User{5D95B869-ACE1-4C7E-8464-4B0590E13DBA}D:\program files\epic games\gtav\gta5.exe] => (Allow) D:\program files\epic games\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{43857430-3211-4302-B281-320E43943078}D:\program files\epic games\gtav\gta5.exe] => (Allow) D:\program files\epic games\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{36CDCABD-CACF-43F3-80DC-DAD6F539E1A8}D:\hry\gta v\fivem.app\cache\subprocess\fivem_gtaprocess.exe] => (Allow) D:\hry\gta v\fivem.app\cache\subprocess\fivem_gtaprocess.exe (Intricus Software Limited -> Cfx.re) [File not signed]
FirewallRules: [UDP Query User{A4667C9F-B255-4E30-BB78-DEA26FD28E9A}D:\hry\gta v\fivem.app\cache\subprocess\fivem_gtaprocess.exe] => (Allow) D:\hry\gta v\fivem.app\cache\subprocess\fivem_gtaprocess.exe (Intricus Software Limited -> Cfx.re) [File not signed]
FirewallRules: [TCP Query User{7813B426-1406-4A81-BFF7-ADEF0C46A698}D:\hry\gta v\fivem.app\cache\subprocess\fivem_b2060_gtaprocess.exe] => (Allow) D:\hry\gta v\fivem.app\cache\subprocess\fivem_b2060_gtaprocess.exe (Intricus Software Limited -> Cfx.re) [File not signed]
FirewallRules: [UDP Query User{8550FFB6-1392-4B62-9473-057A9A300CB1}D:\hry\gta v\fivem.app\cache\subprocess\fivem_b2060_gtaprocess.exe] => (Allow) D:\hry\gta v\fivem.app\cache\subprocess\fivem_b2060_gtaprocess.exe (Intricus Software Limited -> Cfx.re) [File not signed]
FirewallRules: [{9C72D5B6-BFCE-45DD-93FE-2B8E9FA3B04F}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{8A5FEE0B-44F9-4C58-994E-7D9437597A17}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{89536BDF-40EC-4284-BF0B-7ABC566AE575}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Business Tour\BusinessTour.exe () [File not signed]
FirewallRules: [{B14FE910-9455-4C88-95A2-8CA73C683FE0}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Business Tour\BusinessTour.exe () [File not signed]
FirewallRules: [TCP Query User{2A950E80-995A-4D8B-AC8B-2196C04A5D4F}C:\users\jan\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\jan\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe (Intricus Software Limited -> Cfx.re) [File not signed]
FirewallRules: [UDP Query User{C105F2AE-08D9-4E8E-8323-E22497564183}C:\users\jan\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\jan\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe (Intricus Software Limited -> Cfx.re) [File not signed]
FirewallRules: [{AFFBE193-8828-4A0D-9444-02A7EB3B471C}] => (Allow) E:\CSGO\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{762F0175-0ED6-475C-AFDC-CE591C7FC69D}] => (Allow) E:\CSGO\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{3301FEF9-012C-4CB4-9A91-587687F65EE2}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{26B4E29D-AB92-4AFC-A6FC-8BFC32B8CB3D}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{2AF1EE8C-40E5-41EA-BCDD-E264EDC7FA68}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{1D278A60-5C50-4814-9ECF-25F44979F3CA}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{5AB99ABD-DF7C-46E8-AEC6-7D5C20B571B9}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F5ED89D0-86FF-4393-80D6-E97CC89798B1}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{224B4E93-A0A2-4FBE-ABC0-A24EF56049DA}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{27E66A45-B98A-4AF1-91C7-1B43D80DBAE9}D:\hry\gta v\fivem.app\cache\subprocess\fivem_chromebrowser] => (Allow) D:\hry\gta v\fivem.app\cache\subprocess\fivem_chromebrowser (Intricus Software Limited -> Cfx.re)
FirewallRules: [UDP Query User{3B945B81-40A4-4284-9C9F-9921ABC99816}D:\hry\gta v\fivem.app\cache\subprocess\fivem_chromebrowser] => (Allow) D:\hry\gta v\fivem.app\cache\subprocess\fivem_chromebrowser (Intricus Software Limited -> Cfx.re)
==================== Restore Points =========================
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (12/29/2020 09:43:20 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (7796,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
Error: (12/29/2020 09:23:59 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (6924,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
Error: (12/29/2020 09:15:50 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (6540,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
Error: (12/29/2020 09:10:07 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program WinStore.App.exe verze 12011.1001.1.0 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 3178
Čas spuštění: 01d6ddb9f66e31ae
Čas ukončení: 4294967295
Cesta k aplikaci: C:\Program Files\WindowsApps\Microsoft.WindowsStore_12011.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
ID hlášení: f06353b0-ad37-4cc4-8562-ef8e41c61e34
Úplný název balíčku s chybou: Microsoft.WindowsStore_12011.1001.1.0_x64__8wekyb3d8bbwe
ID aplikace relativní podle balíčku s chybou: App
Typ zablokování: Quiesce
Error: (12/29/2020 09:05:36 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: iCloudServices.exe, verze: 73.0.0.76, časové razítko: 0x5b2e1ace
Název chybujícího modulu: WebKit.dll, verze: 7606.4005.2002.2, časové razítko: 0x5c3d8f7d
Kód výjimky: 0xc000041d
Posun chyby: 0x009e731e
ID chybujícího procesu: 0x30f8
Čas spuštění chybující aplikace: 0x01d6ddb962222cae
Cesta k chybující aplikaci: C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
Cesta k chybujícímu modulu: C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit.dll
ID zprávy: eed13770-3c70-4b41-8632-e07bca4cccd0
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (12/29/2020 09:05:34 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: iCloudServices.exe, verze: 73.0.0.76, časové razítko: 0x5b2e1ace
Název chybujícího modulu: WebKit.dll, verze: 7606.4005.2002.2, časové razítko: 0x5c3d8f7d
Kód výjimky: 0xc0000005
Posun chyby: 0x009e731e
ID chybujícího procesu: 0x30f8
Čas spuštění chybující aplikace: 0x01d6ddb962222cae
Cesta k chybující aplikaci: C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
Cesta k chybujícímu modulu: C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit.dll
ID zprávy: c8bcaaa3-3e59-4ceb-b67e-6b8a82dd2f90
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (12/29/2020 09:05:29 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: iCloudServices.exe, verze: 73.0.0.76, časové razítko: 0x5b2e1ace
Název chybujícího modulu: WebKit.dll, verze: 7606.4005.2002.2, časové razítko: 0x5c3d8f7d
Kód výjimky: 0xc0000005
Posun chyby: 0x009e6e50
ID chybujícího procesu: 0x5fa8
Čas spuštění chybující aplikace: 0x01d6ddb930328b65
Cesta k chybující aplikaci: C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
Cesta k chybujícímu modulu: C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit.dll
ID zprávy: 73a67ede-54ec-47f1-9c6c-b34bc5208e9c
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (12/29/2020 09:03:57 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0
System errors:
=============
Error: (12/29/2020 10:00:06 AM) (Source: DCOM) (EventID: 10000) (User: DESKTOP-HH9209B)
Description: Nelze spustit server DCOM: {0358B920-0AC7-461F-98F4-58E32CD89148}. Došlo k chybě:
2147942767
při provádění příkazu:
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
Error: (12/28/2020 09:38:56 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-HH9209B)
Description: Server {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} se v daném časovém limitu neregistroval u služby DCOM.
Error: (12/28/2020 07:48:09 PM) (Source: volsnap) (EventID: 36) (User: )
Description: Stínové kopie svazku C: byly přerušeny, protože z důvodu limitu stanoveného uživatelem se nepodařilo zvětšit úložiště stínové kopie.
Error: (12/28/2020 10:40:06 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-HH9209B)
Description: Server Microsoft.YourPhone_1.20112.68.0_x64__8wekyb3d8bbwe!App.AppXvctmff39365zg14pgmystcwtys462fpa.mca se v daném časovém limitu neregistroval u služby DCOM.
Error: (12/27/2020 05:25:05 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (0:16:48, 27.12.2020) bylo neočekávané.
Error: (12/24/2020 07:36:04 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (23:14:58, 23.12.2020) bylo neočekávané.
Error: (12/24/2020 07:32:09 PM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: NT AUTHORITY)
Description: 3221225684Při zpracování obnovovacích dat došlo k závažné chybě.
Error: (12/23/2020 04:44:58 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (16:15:46, 23.12.2020) bylo neočekávané.
CodeIntegrity:
===================================
Date: 2020-12-29 09:20:51.302
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume8\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-12-29 09:20:51.299
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume8\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-12-29 09:20:51.285
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume8\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-12-29 09:11:58.054
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume8\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-12-29 09:11:58.050
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume8\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-12-29 09:11:58.037
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume8\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-12-29 09:09:08.258
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume8\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-12-29 09:09:08.201
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume8\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Memory info ===========================
BIOS: American Megatrends Inc. 1.30 11/06/2018
Motherboard: Micro-Star International Co., Ltd B450 TOMAHAWK (MS-7C02)
Processor: AMD Ryzen 5 2600 Six-Core Processor
Percentage of memory in use: 20%
Total physical RAM: 16335.07 MB
Available physical RAM: 13060.43 MB
Total Virtual: 27087.07 MB
Available Virtual: 22093.2 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:77.52 GB) (Free:3.26 GB) NTFS
Drive d: (1TB) (Fixed) (Total:931.5 GB) (Free:64.76 GB) NTFS
Drive e: (SSD KingStone) (Fixed) (Total:369 GB) (Free:127.42 GB) NTFS
Drive j: (SSD Adata) (Fixed) (Total:447.11 GB) (Free:335.06 GB) NTFS
\\?\Volume{fca910d5-8e13-4209-830a-86e6879dbffb}\ (Obnovení) (Fixed) (Total:0.49 GB) (Free:0.06 GB) NTFS
\\?\Volume{14be7782-55d0-4e41-bfb8-fd0c35035b7d}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
\\?\Volume{1dfb5ce2-329f-11e9-8dee-00d8611467cd}\ () (CDROM) (Total:0 GB) (Free:0 GB)
\\?\Volume{2d9013d8-dbc6-11e9-8e29-00d8611467cd}\ () (CDROM) (Total:0 GB) (Free:0 GB)
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 447.1 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 1 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 2 (Protective MBR) (Size: 447.1 GB) (Disk ID: 00000000)
Partition: GPT.
==================== End of Addition.txt =======================
Ran by Jan (29-12-2020 10:02:48)
Running from C:\Users\Jan\Desktop
Windows 10 Pro Version 1909 18363.1198 (X64) (2020-05-20 15:24:45)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-620706592-1146515040-833111-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-620706592-1146515040-833111-503 - Limited - Disabled)
Guest (S-1-5-21-620706592-1146515040-833111-501 - Limited - Disabled)
Jan (S-1-5-21-620706592-1146515040-833111-1001 - Administrator - Enabled) => C:\Users\Jan
WDAGUtilityAccount (S-1-5-21-620706592-1146515040-833111-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: ESET Security (Enabled - Up to date) {89B55CC4-3881-78B2-11E2-479AE0371896}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Security (Enabled - Up to date) {885D845F-AF19-0124-FECE-FFF49D00F440}
AS: ESET Security (Disabled - Up to date) {333C65BB-8923-0EAA-C47E-C486E687BEFD}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
4K Video Downloader 4.5 (HKLM\...\{180B9AE1-F87B-4107-8C68-4265E927D6A8}) (Version: 4.5.0.2482 - Open Media LLC)
64 Bit HP CIO Components Installer (HKLM\...\{C788B026-20BD-4E96-B698-533F1D6C5013}) (Version: 7.2.4 - Hewlett-Packard) Hidden
ACDSee Photo Manager 12 (HKLM-x32\...\{A5CBD7C5-CF16-443F-A4F2-3503C9DE311B}) (Version: 12.0.344 - ACD Systems International Inc.)
ACDSee Photo Manager 12 Build 344 - odinstalovat češtinu (HKLM-x32\...\ACDSee Photo Manager 12 Build 344) (Version: - Michellin)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 20.013.20074 - Adobe Systems Incorporated)
Adobe Premiere Elements 2021 (HKLM-x32\...\PRE_19_0) (Version: 19.0 - Adobe Inc.)
Aktualizace NVIDIA 35.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 35.0.0.0 - NVIDIA Corporation) Hidden
AMD Product Verification Tool version 1.0.2.8 (HKLM\...\{4242685A-EF3E-45FF-B4AE-758E49020936}_is1) (Version: 1.0.2.8 - AMD)
Apex Legends (HKLM-x32\...\{D7FBF176-382D-484E-863A-DFD1124A2A1C}) (Version: 1.0.4.8 - Electronic Arts, Inc.)
Apple Mobile Device Support (HKLM\...\{5FA8C4BE-8C74-4B9C-9B49-EBF759230189}) (Version: 12.1.0.25 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A30EA700-5515-48F0-88B0-9E99DC356B88}) (Version: 2.6.0.1 - Apple Inc.)
Blackmagic RAW Common Components (HKLM\...\{8F57BC8F-7DAC-4E4B-BD13-A55B1AC0DF43}) (Version: 1.6 - Blackmagic Design)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
BorisFX Sapphire OFX (HKLM\...\GenArts Sapphire OFX_is1) (Version: 11.0.1 - Team V.R)
CCleaner (HKLM\...\CCleaner) (Version: 5.75 - Piriform)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.10.0.0770 - Disc Soft Ltd)
Discord (HKU\S-1-5-21-620706592-1146515040-833111-1001\...\Discord) (Version: 0.0.309 - Discord Inc.)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 419.35 - NVIDIA Corporation) Hidden
Epic Games Launcher (HKLM-x32\...\{1D4EB18B-0FEE-444E-B4D1-6F2CFBC363E6}) (Version: 1.1.267.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
ESET Security (HKLM\...\{0813F772-F554-4DA9-9CEA-ABCE6321BDFD}) (Version: 14.0.22.0 - ESET, spol. s r.o.)
FiveM (HKU\S-1-5-21-620706592-1146515040-833111-1001\...\CitizenFX_FiveM) (Version: - The CitizenFX Collective)
Ghostscript GPL 8.64 (Msi Setup) (HKLM-x32\...\_{06CD45E6-FF5E-4D8E-BC01-B276A90DADF2}) (Version: 8.64 - Corel Corporation)
Ghostscript GPL 8.64 (Msi Setup) (HKLM-x32\...\{06CD45E6-FF5E-4D8E-BC01-B276A90DADF2}) (Version: 8.64 - Corel Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 87.0.4280.88 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.51 - Google LLC) Hidden
GoPro Quik (HKLM\...\{AA5F7FCE-311C-46D8-B93A-ABF4DDCAB832}) (Version: 0.1.945 - GoPro, Inc.) Hidden
GoPro Quik (HKLM-x32\...\{a23df978-67ca-4fe3-a740-a7b5ae7ec82f}) (Version: 2.7.0.945 - GoPro, Inc.)
HandBrake 1.3.0 (HKLM-x32\...\HandBrake) (Version: 1.3.0 - )
iCloud (HKLM\...\{05D97028-FD26-4A3D-BADC-D1CA2E9F1214}) (Version: 7.10.0.9 - Apple Inc.)
Ignite Pro OFX (HKLM\...\Ignite Pro_is1) (Version: 2.1.7331.43092 - FXHOME Ltd. & Team V.R)
iTunes (HKLM\...\{8C125166-94A1-4721-84CC-C9739E6EA8A7}) (Version: 12.9.3.3 - Apple Inc.)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
MAGIX Movie Edit Pro Premium (HKLM\...\{4E56C7A0-2436-4B9A-88DD-9AA70D446843}) (Version: 18.0.1.203 - MAGIX Software GmbH) Hidden
MAGIX Movie Edit Pro Premium (HKLM\...\MX.{4E56C7A0-2436-4B9A-88DD-9AA70D446843}) (Version: - MAGIX Software GmbH)
Microsoft Office Professional Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-620706592-1146515040-833111-1001\...\OneDriveSetup.exe) (Version: 20.201.1005.0009 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-620706592-1146515040-833111-1001\...\Teams) (Version: 1.3.00.30866 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{0BCA8FBE-0C1C-4C65-98A3-5D34AAF41737}) (Version: 2.70.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.22.27821 (HKLM-x32\...\{6361b579-2795-4886-b2a8-53d5239b6452}) (Version: 14.22.27821.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.27.29016 (HKLM-x32\...\{40d3fee2-b257-46c2-bdc0-cb1088d97327}) (Version: 14.27.29016.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.22.27821 (HKLM-x32\...\{5bfc1380-fd35-4b85-9715-7351535d077e}) (Version: 14.22.27821.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.23.27820 (HKLM-x32\...\{45231ab4-69fd-486a-859d-7a59fcd11013}) (Version: 14.23.27820.0 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2017 (HKLM-x32\...\{5a7dc0ad-cdb2-43b5-8b82-f81065fe6092}) (Version: 15.0.26717 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
Nástroje kontroly pravopisu pro Microsoft Office 2016 – čeština (HKLM\...\{90160000-001F-0405-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Nástroje korektúry balíka Microsoft Office 2016 - slovenčina (HKLM\...\{90160000-001F-041B-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.13 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.17.0.126 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.17.0.126 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Ovládací panel NVIDIA 432.00 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 432.00 - NVIDIA Corporation) Hidden
Podpora aplikací Apple (32bitová) (HKLM-x32\...\{5A659BE5-849B-484E-A83B-DCB78407F3A4}) (Version: 7.3 - Apple Inc.)
Podpora aplikací Apple (64bitová) (HKLM\...\{F8060941-C0AB-4BCE-88AC-F2FDA2E9F286}) (Version: 7.3 - Apple Inc.)
PotPlayer-64 bit (HKLM\...\PotPlayer64) (Version: 1.7.10667 - Kakao Corp.)
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
Riot Vanguard (HKLM\...\Riot Vanguard) (Version: - Riot Games, Inc.)
Roblox Player for Jan (HKU\S-1-5-21-620706592-1146515040-833111-1001\...\roblox-player) (Version: - Roblox Corporation)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.33.319 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.7.5 - Rockstar Games)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.5.3 - TeamSpeak Systems GmbH)
Tom Clancy's The Division 2 (HKLM-x32\...\Uplay Install 4932) (Version: - Ubisoft)
TotalCMD by Marek410 (HKLM-x32\...\TotalCMD by Marek410) (Version: - )
Uplay (HKLM-x32\...\Uplay) (Version: 85.1 - Ubisoft)
VALORANT (HKU\S-1-5-21-620706592-1146515040-833111-1001\...\Riot Game valorant.live) (Version: - Riot Games, Inc)
Winamp (HKLM-x32\...\Winamp) (Version: 5.63 - Nullsoft, Inc)
Winamp Detector Plug-in (HKU\S-1-5-21-620706592-1146515040-833111-1001\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
Windows 10 Codec Pack 2.1.4 (HKLM-x32\...\Windows 10 - Codec Pack) (Version: 2.1.4 - Windows 10 Codec Pack)
Packages:
=========
BreeZip -> C:\Program Files\WindowsApps\3138AweZip.AweZip_1.3.18.0_x86__ffd303wmbhcjt [2020-08-09] (BreeZip) [MS Ad]
Candy Crush Friends -> C:\Program Files\WindowsApps\king.com.CandyCrushFriends_1.49.2.0_x86__kgqvnymyfvs32 [2020-12-14] (king.com)
Candy Crush Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSaga_1.1920.1.0_x86__kgqvnymyfvs32 [2020-12-16] (king.com)
Cooking Fever -> C:\Program Files\WindowsApps\NORDCURRENT.COOKINGFEVER_10.0.5.0_x86__m9bz608c1b9ra [2020-11-07] (Nordcurrent)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.7.337.0_x64__rz1tebttyb220 [2020-12-21] (Dolby Laboratories)
Fitbit Coach -> C:\Program Files\WindowsApps\Fitbit.FitbitCoach_4.4.133.0_x64__6mqt6hf9g46tw [2019-02-15] (Fitbit)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_122.1.778.0_x64__v10z8vjag6ke6 [2020-12-21] (HP Inc.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-02-15] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-02-15] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.10142.0_x64__8wekyb3d8bbwe [2020-10-23] (Microsoft Studios) [MS Ad]
Phototastic Collage -> C:\Program Files\WindowsApps\ThumbmunkeysLtd.PhototasticCollage_3.23.1.0_x64__nfy108tqq3p12 [2020-11-12] (Thumbmunkeys Ltd)
Rozšíření pro video HEVC -> C:\Program Files\WindowsApps\Microsoft.HEVCVideoExtensions_1.0.33243.0_x64__8wekyb3d8bbwe [2020-12-09] (Microsoft Corporation)
Trio Office -> C:\Program Files\WindowsApps\64343GTDocStudio.OfficeDocOpener_3.2.19.0_x86__3h5nez1g3qt2c [2020-08-11] (GT Office PDF Studio)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-620706592-1146515040-833111-1001_Classes\CLSID\{0047ADBE-9F73-CAFE-3A65-ACE857BB2020}\localserver32 -> J:\Adobe Elements 2021\Elements 2021 Organizer\Elements Auto Creations 2021.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-620706592-1146515040-833111-1001_Classes\CLSID\{0047ADBE-9F73-CAFE-3A65-ACE857BB2021}\localserver32 -> J:\Adobe Elements 2021\Elements 2021 Organizer\Elements Auto Creations 2021.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-620706592-1146515040-833111-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\Jan\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20275.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-10-29] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2019-01-15] (Apple Inc. -> Apple Inc.)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2019-02-15] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-10-29] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2019-02-15] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2019-10-02] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-10-29] (ESET, spol. s r.o. -> ESET)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [VIDC.ACDV] => ACDV.dll
HKLM\...\Drivers32-x32: [VIDC.ACDV] => ACDV.dll
HKLM\...\Drivers32: [vidc.xvid] => C:\Windows\SysWOW64\xvidvfw.dll [235520 2017-12-08] () [File not signed]
HKLM\...\Drivers32: [vidc.x264] => C:\Windows\SysWOW64\x264vfw.dll [3850240 2017-07-30] (x264vfw project) [File not signed]
HKLM\...\Drivers32: [vidc.lags] => C:\Windows\SysWOW64\lagarith.dll [230080 2016-09-21] (Cole Williams Software Limited -> )
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2010-01-18 12:29 - 2010-01-18 12:29 - 000071680 _____ (Hewlett-Packard) [File not signed] c:\windows\system32\hpzinw12.dll
2010-01-18 12:29 - 2010-01-18 12:29 - 000089600 _____ (Hewlett-Packard) [File not signed] c:\windows\system32\hpzipm12.dll
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [9424]
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
SearchScopes: HKU\S-1-5-21-620706592-1146515040-833111-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\S-1-5-21-620706592-1146515040-833111-1001\...\sharepoint.com -> hxxps://zsjablunkov-files.sharepoint.com
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2018-04-12 00:38 - 2020-12-01 16:11 - 000000753 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-620706592-1146515040-833111-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Jan\AppData\Roaming\ACD Systems\ACDSee\ACD Wallpaper.bmp
DNS Servers: 192.168.20.2
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [UDP Query User{F00D0087-6996-4E85-AC33-A3B6115FB71A}C:\program files (x86)\winamp\winamp.exe] => (Block) C:\program files (x86)\winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [TCP Query User{BDE746E5-4F93-4818-839D-C3153BEE7436}C:\program files (x86)\winamp\winamp.exe] => (Block) C:\program files (x86)\winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [{C41DC1D1-6471-4FD8-B946-652E928FBCAA}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{AE6C56E0-24E9-4CE0-9EC7-9894B179830A}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{84928474-EA3F-46F7-81A8-99829EEC08E5}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B473244D-B845-4E9F-A51F-3337C950A2A8}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C4A5FB2B-9E71-4D7F-9ADE-8E0D4788978B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{80385F94-3467-4381-A070-45B49EDCD57E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{79DF4FD9-794A-4D73-9F78-0419C2F4D9E3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{FFDAFCC5-FEE9-414A-8DFB-3ED0E29BA130}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{797600EF-2C0A-4FB4-9A50-EA1B3239F2A2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{AF775180-361B-4AE1-8DEF-13DD86A3D91B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{8E06BC37-8009-426E-9B6F-5B294CEF3D6C}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [TCP Query User{5AA66F74-091F-440D-8660-E6D3D8DF1BA3}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [UDP Query User{623A34CB-2689-4E8A-AC91-688489E1B896}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [{CC48B1C1-3CDB-4F6A-9796-CC910EB27332}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{5BB035C4-9B2A-4ABA-90B4-8ED30839D4CD}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{7DF7064A-C6EC-4F6E-B1BE-6B85FB9F07EF}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{371394FE-97CF-47C5-BF8B-4CCDEA09A0B3}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{E1333911-F3FE-43C5-A24F-A8A56453377A}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{D7397C93-2535-4EC6-B3DF-A7A9CEAEA0B9}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{3DD37FAD-E457-4DB2-B916-9E35542D9B58}] => (Allow) E:\QUIK GoPro\GoPro Desktop App\GoPro Quik.exe (GoPro Media, Inc. -> )
FirewallRules: [{C1BBA7EF-1C8F-48FE-AA24-8A168C6F171F}] => (Allow) E:\QUIK GoPro\GoPro Desktop App\GoProMsgBus.exe (GoPro Media, Inc. -> )
FirewallRules: [{4AB76F83-FEE4-4886-A5CC-9F451E4DF10B}] => (Allow) E:\QUIK GoPro\GoPro Desktop App\GoProIDService.exe (GoPro Media, Inc. -> )
FirewallRules: [{4CED5597-CE77-44EA-A47B-6AA23C813004}] => (Allow) E:\QUIK GoPro\GoPro Desktop App\GoProLauncher.exe (GoPro Media, Inc. -> )
FirewallRules: [{FFFC863B-6795-4B80-B489-6B4FE23CBD55}] => (Allow) D:\HRY\Ubisoft Game Launcher\games\Tom Clancy's The Division 2\TheDivision2.exe (Ubisoft Entertainment Sweden AB -> Ubisoft)
FirewallRules: [TCP Query User{152AF13B-C7A0-4F0E-A6A7-040D37D50685}C:\users\jan\appdata\local\fivem\fivem.exe] => (Allow) C:\users\jan\appdata\local\fivem\fivem.exe (Intricus Software Limited -> Cfx.re)
FirewallRules: [UDP Query User{D177D34B-0FB3-41E4-B07F-300C4BF7C2BC}C:\users\jan\appdata\local\fivem\fivem.exe] => (Allow) C:\users\jan\appdata\local\fivem\fivem.exe (Intricus Software Limited -> Cfx.re)
FirewallRules: [TCP Query User{36F846FD-CC86-4803-9107-9763B6F6A1F4}D:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Block) D:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{0BE0AF81-3E69-4ED3-83A7-F2E75DE51311}D:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Block) D:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{CCEC2F96-4386-4E37-92B4-BCD4398CED36}C:\users\jan\appdata\local\microsoft\teams\current\teams.exe] => (Block) C:\users\jan\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{F0C66BD4-26CF-44E2-9A02-BF989968D181}C:\users\jan\appdata\local\microsoft\teams\current\teams.exe] => (Block) C:\users\jan\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{465C2068-26A1-4045-9873-66FE66DC3D33}D:\hry\gta v\fivem.exe] => (Allow) D:\hry\gta v\fivem.exe (Intricus Software Limited -> Cfx.re)
FirewallRules: [UDP Query User{AD60E02A-0C29-449F-85BE-30E6077B33D0}D:\hry\gta v\fivem.exe] => (Allow) D:\hry\gta v\fivem.exe (Intricus Software Limited -> Cfx.re)
FirewallRules: [TCP Query User{5D95B869-ACE1-4C7E-8464-4B0590E13DBA}D:\program files\epic games\gtav\gta5.exe] => (Allow) D:\program files\epic games\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{43857430-3211-4302-B281-320E43943078}D:\program files\epic games\gtav\gta5.exe] => (Allow) D:\program files\epic games\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{36CDCABD-CACF-43F3-80DC-DAD6F539E1A8}D:\hry\gta v\fivem.app\cache\subprocess\fivem_gtaprocess.exe] => (Allow) D:\hry\gta v\fivem.app\cache\subprocess\fivem_gtaprocess.exe (Intricus Software Limited -> Cfx.re) [File not signed]
FirewallRules: [UDP Query User{A4667C9F-B255-4E30-BB78-DEA26FD28E9A}D:\hry\gta v\fivem.app\cache\subprocess\fivem_gtaprocess.exe] => (Allow) D:\hry\gta v\fivem.app\cache\subprocess\fivem_gtaprocess.exe (Intricus Software Limited -> Cfx.re) [File not signed]
FirewallRules: [TCP Query User{7813B426-1406-4A81-BFF7-ADEF0C46A698}D:\hry\gta v\fivem.app\cache\subprocess\fivem_b2060_gtaprocess.exe] => (Allow) D:\hry\gta v\fivem.app\cache\subprocess\fivem_b2060_gtaprocess.exe (Intricus Software Limited -> Cfx.re) [File not signed]
FirewallRules: [UDP Query User{8550FFB6-1392-4B62-9473-057A9A300CB1}D:\hry\gta v\fivem.app\cache\subprocess\fivem_b2060_gtaprocess.exe] => (Allow) D:\hry\gta v\fivem.app\cache\subprocess\fivem_b2060_gtaprocess.exe (Intricus Software Limited -> Cfx.re) [File not signed]
FirewallRules: [{9C72D5B6-BFCE-45DD-93FE-2B8E9FA3B04F}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{8A5FEE0B-44F9-4C58-994E-7D9437597A17}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{89536BDF-40EC-4284-BF0B-7ABC566AE575}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Business Tour\BusinessTour.exe () [File not signed]
FirewallRules: [{B14FE910-9455-4C88-95A2-8CA73C683FE0}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Business Tour\BusinessTour.exe () [File not signed]
FirewallRules: [TCP Query User{2A950E80-995A-4D8B-AC8B-2196C04A5D4F}C:\users\jan\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\jan\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe (Intricus Software Limited -> Cfx.re) [File not signed]
FirewallRules: [UDP Query User{C105F2AE-08D9-4E8E-8323-E22497564183}C:\users\jan\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\jan\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe (Intricus Software Limited -> Cfx.re) [File not signed]
FirewallRules: [{AFFBE193-8828-4A0D-9444-02A7EB3B471C}] => (Allow) E:\CSGO\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{762F0175-0ED6-475C-AFDC-CE591C7FC69D}] => (Allow) E:\CSGO\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{3301FEF9-012C-4CB4-9A91-587687F65EE2}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{26B4E29D-AB92-4AFC-A6FC-8BFC32B8CB3D}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{2AF1EE8C-40E5-41EA-BCDD-E264EDC7FA68}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{1D278A60-5C50-4814-9ECF-25F44979F3CA}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{5AB99ABD-DF7C-46E8-AEC6-7D5C20B571B9}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F5ED89D0-86FF-4393-80D6-E97CC89798B1}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{224B4E93-A0A2-4FBE-ABC0-A24EF56049DA}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{27E66A45-B98A-4AF1-91C7-1B43D80DBAE9}D:\hry\gta v\fivem.app\cache\subprocess\fivem_chromebrowser] => (Allow) D:\hry\gta v\fivem.app\cache\subprocess\fivem_chromebrowser (Intricus Software Limited -> Cfx.re)
FirewallRules: [UDP Query User{3B945B81-40A4-4284-9C9F-9921ABC99816}D:\hry\gta v\fivem.app\cache\subprocess\fivem_chromebrowser] => (Allow) D:\hry\gta v\fivem.app\cache\subprocess\fivem_chromebrowser (Intricus Software Limited -> Cfx.re)
==================== Restore Points =========================
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (12/29/2020 09:43:20 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (7796,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
Error: (12/29/2020 09:23:59 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (6924,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
Error: (12/29/2020 09:15:50 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (6540,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
Error: (12/29/2020 09:10:07 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program WinStore.App.exe verze 12011.1001.1.0 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 3178
Čas spuštění: 01d6ddb9f66e31ae
Čas ukončení: 4294967295
Cesta k aplikaci: C:\Program Files\WindowsApps\Microsoft.WindowsStore_12011.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
ID hlášení: f06353b0-ad37-4cc4-8562-ef8e41c61e34
Úplný název balíčku s chybou: Microsoft.WindowsStore_12011.1001.1.0_x64__8wekyb3d8bbwe
ID aplikace relativní podle balíčku s chybou: App
Typ zablokování: Quiesce
Error: (12/29/2020 09:05:36 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: iCloudServices.exe, verze: 73.0.0.76, časové razítko: 0x5b2e1ace
Název chybujícího modulu: WebKit.dll, verze: 7606.4005.2002.2, časové razítko: 0x5c3d8f7d
Kód výjimky: 0xc000041d
Posun chyby: 0x009e731e
ID chybujícího procesu: 0x30f8
Čas spuštění chybující aplikace: 0x01d6ddb962222cae
Cesta k chybující aplikaci: C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
Cesta k chybujícímu modulu: C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit.dll
ID zprávy: eed13770-3c70-4b41-8632-e07bca4cccd0
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (12/29/2020 09:05:34 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: iCloudServices.exe, verze: 73.0.0.76, časové razítko: 0x5b2e1ace
Název chybujícího modulu: WebKit.dll, verze: 7606.4005.2002.2, časové razítko: 0x5c3d8f7d
Kód výjimky: 0xc0000005
Posun chyby: 0x009e731e
ID chybujícího procesu: 0x30f8
Čas spuštění chybující aplikace: 0x01d6ddb962222cae
Cesta k chybující aplikaci: C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
Cesta k chybujícímu modulu: C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit.dll
ID zprávy: c8bcaaa3-3e59-4ceb-b67e-6b8a82dd2f90
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (12/29/2020 09:05:29 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: iCloudServices.exe, verze: 73.0.0.76, časové razítko: 0x5b2e1ace
Název chybujícího modulu: WebKit.dll, verze: 7606.4005.2002.2, časové razítko: 0x5c3d8f7d
Kód výjimky: 0xc0000005
Posun chyby: 0x009e6e50
ID chybujícího procesu: 0x5fa8
Čas spuštění chybující aplikace: 0x01d6ddb930328b65
Cesta k chybující aplikaci: C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
Cesta k chybujícímu modulu: C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit.dll
ID zprávy: 73a67ede-54ec-47f1-9c6c-b34bc5208e9c
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (12/29/2020 09:03:57 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0
System errors:
=============
Error: (12/29/2020 10:00:06 AM) (Source: DCOM) (EventID: 10000) (User: DESKTOP-HH9209B)
Description: Nelze spustit server DCOM: {0358B920-0AC7-461F-98F4-58E32CD89148}. Došlo k chybě:
2147942767
při provádění příkazu:
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
Error: (12/28/2020 09:38:56 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-HH9209B)
Description: Server {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} se v daném časovém limitu neregistroval u služby DCOM.
Error: (12/28/2020 07:48:09 PM) (Source: volsnap) (EventID: 36) (User: )
Description: Stínové kopie svazku C: byly přerušeny, protože z důvodu limitu stanoveného uživatelem se nepodařilo zvětšit úložiště stínové kopie.
Error: (12/28/2020 10:40:06 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-HH9209B)
Description: Server Microsoft.YourPhone_1.20112.68.0_x64__8wekyb3d8bbwe!App.AppXvctmff39365zg14pgmystcwtys462fpa.mca se v daném časovém limitu neregistroval u služby DCOM.
Error: (12/27/2020 05:25:05 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (0:16:48, 27.12.2020) bylo neočekávané.
Error: (12/24/2020 07:36:04 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (23:14:58, 23.12.2020) bylo neočekávané.
Error: (12/24/2020 07:32:09 PM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: NT AUTHORITY)
Description: 3221225684Při zpracování obnovovacích dat došlo k závažné chybě.
Error: (12/23/2020 04:44:58 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (16:15:46, 23.12.2020) bylo neočekávané.
CodeIntegrity:
===================================
Date: 2020-12-29 09:20:51.302
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume8\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-12-29 09:20:51.299
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume8\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-12-29 09:20:51.285
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume8\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-12-29 09:11:58.054
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume8\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-12-29 09:11:58.050
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume8\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-12-29 09:11:58.037
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume8\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-12-29 09:09:08.258
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume8\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-12-29 09:09:08.201
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume8\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Memory info ===========================
BIOS: American Megatrends Inc. 1.30 11/06/2018
Motherboard: Micro-Star International Co., Ltd B450 TOMAHAWK (MS-7C02)
Processor: AMD Ryzen 5 2600 Six-Core Processor
Percentage of memory in use: 20%
Total physical RAM: 16335.07 MB
Available physical RAM: 13060.43 MB
Total Virtual: 27087.07 MB
Available Virtual: 22093.2 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:77.52 GB) (Free:3.26 GB) NTFS
Drive d: (1TB) (Fixed) (Total:931.5 GB) (Free:64.76 GB) NTFS
Drive e: (SSD KingStone) (Fixed) (Total:369 GB) (Free:127.42 GB) NTFS
Drive j: (SSD Adata) (Fixed) (Total:447.11 GB) (Free:335.06 GB) NTFS
\\?\Volume{fca910d5-8e13-4209-830a-86e6879dbffb}\ (Obnovení) (Fixed) (Total:0.49 GB) (Free:0.06 GB) NTFS
\\?\Volume{14be7782-55d0-4e41-bfb8-fd0c35035b7d}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
\\?\Volume{1dfb5ce2-329f-11e9-8dee-00d8611467cd}\ () (CDROM) (Total:0 GB) (Free:0 GB)
\\?\Volume{2d9013d8-dbc6-11e9-8e29-00d8611467cd}\ () (CDROM) (Total:0 GB) (Free:0 GB)
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 447.1 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 1 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 2 (Protective MBR) (Size: 447.1 GB) (Disk ID: 00000000)
Partition: GPT.
==================== End of Addition.txt =======================
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalé najíždění systemu
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/
ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Pomalé najíždění systemu
# -------------------------------
# Malwarebytes AdwCleaner 8.0.8.0
# -------------------------------
# Build: 10-08-2020
# Database: 2020-12-21.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 01-02-2021
# Duration: 00:00:01
# OS: Windows 10 Pro
# Cleaned: 0
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
No malicious registry entries cleaned.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [1405 octets] - [07/09/2020 19:56:52]
AdwCleaner[S01].txt - [1466 octets] - [11/10/2020 12:21:14]
AdwCleaner[C01].txt - [1656 octets] - [11/10/2020 12:21:56]
AdwCleaner[S02].txt - [1588 octets] - [24/10/2020 13:44:09]
AdwCleaner[C02].txt - [1778 octets] - [24/10/2020 13:44:42]
AdwCleaner[S03].txt - [1710 octets] - [29/11/2020 12:20:30]
AdwCleaner[C03].txt - [1900 octets] - [29/11/2020 12:20:49]
AdwCleaner[S04].txt - [1832 octets] - [30/11/2020 14:58:21]
AdwCleaner[C04].txt - [2022 octets] - [30/11/2020 14:58:33]
AdwCleaner[S05].txt - [1954 octets] - [23/12/2020 14:05:21]
AdwCleaner[C05].txt - [2144 octets] - [23/12/2020 14:05:37]
AdwCleaner[S06].txt - [2076 octets] - [02/01/2021 11:23:29]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C06].txt ##########
# Malwarebytes AdwCleaner 8.0.8.0
# -------------------------------
# Build: 10-08-2020
# Database: 2020-12-21.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 01-02-2021
# Duration: 00:00:01
# OS: Windows 10 Pro
# Cleaned: 0
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
No malicious registry entries cleaned.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [1405 octets] - [07/09/2020 19:56:52]
AdwCleaner[S01].txt - [1466 octets] - [11/10/2020 12:21:14]
AdwCleaner[C01].txt - [1656 octets] - [11/10/2020 12:21:56]
AdwCleaner[S02].txt - [1588 octets] - [24/10/2020 13:44:09]
AdwCleaner[C02].txt - [1778 octets] - [24/10/2020 13:44:42]
AdwCleaner[S03].txt - [1710 octets] - [29/11/2020 12:20:30]
AdwCleaner[C03].txt - [1900 octets] - [29/11/2020 12:20:49]
AdwCleaner[S04].txt - [1832 octets] - [30/11/2020 14:58:21]
AdwCleaner[C04].txt - [2022 octets] - [30/11/2020 14:58:33]
AdwCleaner[S05].txt - [1954 octets] - [23/12/2020 14:05:21]
AdwCleaner[C05].txt - [2144 octets] - [23/12/2020 14:05:37]
AdwCleaner[S06].txt - [2076 octets] - [02/01/2021 11:23:29]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C06].txt ##########
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalé najíždění systemu
Toto je OK. Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CloseProcesses:
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [9424]
Task: {0347629C-D17B-4138-AD66-E5BF84408A68} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-02-15] (Google Inc -> Google Inc.)
Task: {97E5F6A4-C337-4122-AD66-3146D95C0670} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-02-15] (Google Inc -> Google Inc.)
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Pomalé najíždění systemu
Fix result of Farbar Recovery Scan Tool (x64) Version: 14-12-2020
Ran by Jan (02-01-2021 13:00:44) Run:2
Running from C:\Users\Jan\Desktop
Loaded Profiles: Jan
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [9424]
Task: {0347629C-D17B-4138-AD66-E5BF84408A68} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-02-15] (Google Inc -> Google Inc.)
Task: {97E5F6A4-C337-4122-AD66-3146D95C0670} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-02-15] (Google Inc -> Google Inc.)
EmptyTemp:
End
*****************
Processes closed successfully.
C:\Users\Public\Shared Files => ":VersionCache" ADS removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{0347629C-D17B-4138-AD66-E5BF84408A68}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0347629C-D17B-4138-AD66-E5BF84408A68}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{97E5F6A4-C337-4122-AD66-3146D95C0670}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{97E5F6A4-C337-4122-AD66-3146D95C0670}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
=========== EmptyTemp: ==========
BITS transfer queue => 10772480 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 25343360 B
Java, Flash, Steam htmlcache => 397191680 B
Windows/system/drivers => 780104 B
Edge => 96781 B
Chrome => 279987207 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 12872 B
NetworkService => 12872 B
Jan => 8303798 B
RecycleBin => 82235 B
EmptyTemp: => 689.1 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 13:01:19 ====
Ran by Jan (02-01-2021 13:00:44) Run:2
Running from C:\Users\Jan\Desktop
Loaded Profiles: Jan
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [9424]
Task: {0347629C-D17B-4138-AD66-E5BF84408A68} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-02-15] (Google Inc -> Google Inc.)
Task: {97E5F6A4-C337-4122-AD66-3146D95C0670} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-02-15] (Google Inc -> Google Inc.)
EmptyTemp:
End
*****************
Processes closed successfully.
C:\Users\Public\Shared Files => ":VersionCache" ADS removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{0347629C-D17B-4138-AD66-E5BF84408A68}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0347629C-D17B-4138-AD66-E5BF84408A68}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{97E5F6A4-C337-4122-AD66-3146D95C0670}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{97E5F6A4-C337-4122-AD66-3146D95C0670}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
=========== EmptyTemp: ==========
BITS transfer queue => 10772480 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 25343360 B
Java, Flash, Steam htmlcache => 397191680 B
Windows/system/drivers => 780104 B
Edge => 96781 B
Chrome => 279987207 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 12872 B
NetworkService => 12872 B
Jan => 8303798 B
RecycleBin => 82235 B
EmptyTemp: => 689.1 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 13:01:19 ====
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalé najíždění systemu
Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Pomalé najíždění systemu
Při najíždění systému je několik minut černá obrazovka, pokud chci proces urychlit nezbývá než tvrdý restart. Během používání prohlížeče časté zamrzání. Tyto problémy mě trápí celou dobu co používám Win10...
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalé najíždění systemu
Do přík. řádku napište:
V okně, které se otevře na záložkách "Po spuštění" a "Služby" odstraňte zatržítka u všch ne-microsoftích položek ( s vyjímkou ovladačů a antiviru). Nastavení uložte a restartujte PC.
a odentrujte.msconfig
V okně, které se otevře na záložkách "Po spuštění" a "Služby" odstraňte zatržítka u všch ne-microsoftích položek ( s vyjímkou ovladačů a antiviru). Nastavení uložte a restartujte PC.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Pomalé najíždění systemu
Restart proběhl svižněji, nevím jestli nebude nutné reinstalovat systém?
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalé najíždění systemu
Kolik volného místa na systémovém disku máte?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Pomalé najíždění systemu
9,8 GB
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalé najíždění systemu
OK, to by stačilo. Nemělo by ale klesnout pod 5GB. Ještě mi řekněte velikost souboru C:\Users\Jan\Desktop. Děkuji.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Pomalé najíždění systemu
Plocha 652MB, pokud by to mělo být moc , můžu něco přesunout jinam. Ovšem při současném výkonu sestavy, jsem předpokládal větší komfort. Stará sestava s Win XP po vašem vyladění na tom byla podstatně líp. Systém XP na plotnovém disku mi najel za 38s. a teď 16GB RAM, SSD disk a taková fatálie? Opravdu nevím kde je chyba jestli v systému či snad HW?
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalé najíždění systemu
Zpomalení startu obvykle není chyba systému. Snad jedině by to mohla být disková chyba. Disk zkontrolujete pomocí utility CrystalDiskInfo: https://www.stahuj.cz/utility_a_ostatni ... kinfo/?v=b . Stáhněte, nainstalujte, spusťte a přes Úpravy>kopírovat sem dejte log. Dál je ještě možné defragmentovat disk. Pokud nic z toho nepomůže, je to chyba systému. Nestalo se vám to po nějaké aktualizaci?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?