Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Spomaleny notebook

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
klingoln
Návštěvník
Návštěvník
Příspěvky: 162
Registrován: 28 úno 2008 16:31

Spomaleny notebook

#1 Příspěvek od klingoln »

Dobry den,

prosim o kontrolu logu, notebook je spomaleny.

Prikladam logy.

Dakujem

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 03-02-2023
Ran by nicol (administrator) on DESKTOP-JLIELH2 (LENOVO 81N6) (04-02-2023 13:43:09)
Running from C:\Users\nicol\Desktop
Loaded Profiles: nicol
Platform: Microsoft Windows 11 Home Version 21H2 22000.1335 (X64) Language: Slovenčina (Slovensko)
Default browser: Edge
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{BB083318-5F93-4245-8895-47F0330DF09D}\MicrosoftEdge_X64_109.0.1518.70_109.0.1518.61.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{BB083318-5F93-4245-8895-47F0330DF09D}\EDGEMITMP_488AA.tmp\setup.exe
(C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{BB083318-5F93-4245-8895-47F0330DF09D}\MicrosoftEdge_X64_109.0.1518.70_109.0.1518.61.exe
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCopyAccelerator.exe
(C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.Device.exe
(C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe <2>
(C:\Windows\UUS\amd64\MoUsoCoreWorker.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoNotificationUx.exe
(DriverStore\FileRepository\u0354619.inf_amd64_d9b4476a0369a8d0\B354599\atiesrxx.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0354619.inf_amd64_d9b4476a0369a8d0\B354599\atieclxx.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <9>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(services.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0354619.inf_amd64_d9b4476a0369a8d0\B354599\atiesrxx.exe
(services.exe ->) (Conexant Systems LLC -> Conexant Systems, Inc.) C:\Windows\CxSvc\CxUtilSvc.exe
(services.exe ->) (Dolby Laboratories, Inc. -> ) C:\Windows\System32\dolbyaposvc\DAX3API.exe <2>
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\System32\YMC.exe
(services.exe ->) (Lenovo -> Lenovo(beijing) Limited) C:\Windows\System32\LNBITSSvc.exe
(services.exe ->) (McAfee, Inc. -> McAfee) C:\Windows\System32\DriverStore\FileRepository\mcafeeintegrationextension.inf_amd64_7f44bb1f2cd06bad\mcafeeintegrationservice.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\NisSrv.exe
(services.exe ->) (Qualcomm Atheros -> Qualcomm Technologies Inc.) C:\Windows\System32\drivers\QcomWlanSrvx64.exe
(services.exe ->) (Synaptics Incorporated -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(services.exe ->) (Synaptics Incorporated -> Conexant Systems LLC.) C:\Windows\CxSvc\CxAudioSvc.exe
(services.exe ->) (Synaptics Incorporated -> Conexant Systems, Inc.) C:\Windows\System32\CxUIUSvc64.exe
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(services.exe ->) (Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Windows\System32\DriverStore\FileRepository\wtabletserviceisd.inf_amd64_4690d097c38be4a9\WTabletServiceISD.exe <2>
(sihost.exe ->) (McAfee LLC.) C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.68.0_x64__wafk5atnkzcwy\Win32\mcafee-security-ft.exe
(svchost.exe ->) (McAfee LLC.) C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.68.0_x64__wafk5atnkzcwy\mcafee-security.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\amd64\MoUsoCoreWorker.exe
(Synaptics Hong Kong Limited, Taiwan Branch (H.K.)) C:\Program Files\WindowsApps\22094synapticsincorporate.smartaudio3_1.0.85.0_x64__qt57b6kdvhcfw\AFA\CAudioFilterAgent64.exe
(Synaptics Hong Kong Limited, Taiwan Branch (H.K.)) C:\Program Files\WindowsApps\22094synapticsincorporate.smartaudio3_1.0.85.0_x64__qt57b6kdvhcfw\Flow\Flow1\Flow.exe
(Synaptics Hong Kong Limited, Taiwan Branch (H.K.)) C:\Program Files\WindowsApps\22094synapticsincorporate.smartaudio3_1.0.85.0_x64__qt57b6kdvhcfw\SA3\SmartAudio3.exe
(Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(wuauclt.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\$WinREAgent\Scratch\6AB96EB2-0738-47DC-A280-F0E9A8E7C532\DismHost.exe
(wuauclt.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wimserv.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKU\S-1-5-21-142477489-203225701-748183004-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4246376 2022-12-15] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-142477489-203225701-748183004-1001\...\Run: [MicrosoftEdgeAutoLaunch_B9B257C7C4ABB38D87EB5195476F971F] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4188576 2023-01-25] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {1D43B1BB-D44F-4019-9E85-1574E60888B6} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\0cb073b9-0f63-46e0-a3be-4e1371e0cc56 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {2612CD70-FFA8-46D0-AC11-5B23DBF6587A} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {315DFC94-FD48-4738-A1D1-52B79AA0C480} - System32\Tasks\Mozilla\Firefox Default Browser Agent 1FC75ECF220B7081 => C:\Users\nicol\AppData\Local\Mozilla Firefox\default-browser-agent.exe [694688 2022-12-22] (Mozilla Corporation -> Mozilla Foundation)
Task: {33D8C559-CFEC-4F9E-9221-9D9986E46E74} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2023-01-25] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {373D1518-1A7E-4020-BB62-81AB5B562878} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\12a1b0b4-3a99-42f7-a36c-15deec070aeb => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {5123D97D-E14E-4C73-A6E3-3E656F18DBE2} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (No File)
Task: {51CEC4CB-A434-4958-9660-16BA911B1041} - System32\Tasks\Lenovo\LNBITS PNP Task => C:\Windows\System32\LNBITSSvc.exe [1643688 2019-05-06] (Lenovo -> Lenovo(beijing) Limited)
Task: {5C7CA1F9-5FFF-4241-AB5A-46CCB231CA34} - System32\Tasks\Microsoft\Windows\WaaSMedic\DeferredWork => {72566E27-1ABB-4EB3-B4F0-EB431CB1CB32}
Task: {6E3F1DB0-6500-4B19-823B-D6390E39B809} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\f1d0e85e-ae54-49a7-89ba-932d3463d692 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {A0CDC611-087E-40A6-8375-37459E1CB5F3} - System32\Tasks\Lenovo\Lenovo YMC Uninstall Task => C:\Windows\System32\YMC.exe [856960 2019-05-26] (Lenovo -> Lenovo Group Ltd.)
Task: {A6273348-ACF4-4BC1-99C4-DDB384DE173B} - System32\Tasks\Mirkat => C:\Users\nicol\AppData\Local\Microsoft\WindowsApps\MirkatService.exe [0 2022-01-25] () [simlink -> ]
Task: {A9C6510C-884D-4B12-A016-F5DE244F2B8D} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => "%windir%\system32\sc.exe" START ImControllerService
Task: {B330D8D2-57A2-4502-91F6-9F54ADD39564} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2023-01-25] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B6318CE0-9744-49A5-9968-9ABB17B16466} - System32\Tasks\LenovoUtility Startup => C:\Windows\explorer.exe lenovo-utility://
Task: {CB280DAF-2E58-46F2-9A97-1DDE3EA9185E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2023-01-25] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D7AFE4CA-3A87-43CA-B409-9958078FFA73} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe [149280 2022-09-23] (Lenovo -> Lenovo Group Ltd.)
Task: {E8CA45B4-54C7-4E3B-B2AD-0748E085F4C4} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\76c6d9e5-b785-4ec0-bc0e-e7a6458599dc => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {F0FCB5BC-8C8B-46F0-866F-F0BF44942CEB} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [64256 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {F905223B-33AA-4B20-942F-A4E653BEAE3A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2023-01-25] (Microsoft Windows Publisher -> Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{2e2d02a0-b9eb-4170-bac1-0625af6a08e3}: [DhcpNameServer] 192.168.0.1

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\nicol\AppData\Local\Microsoft\Edge\User Data\Default [2023-02-04]
Edge HomePage: Default -> hxxp://lenovo17win10.msn.com/?pc=LCTE

FireFox:
========
FF DefaultProfile: yzhlui1j.default
FF ProfilePath: C:\Users\nicol\AppData\Roaming\Mozilla\Firefox\Profiles\yzhlui1j.default [2022-01-31]
FF ProfilePath: C:\Users\nicol\AppData\Roaming\Mozilla\Firefox\Profiles\t4uzzgs5.default-release [2023-01-27]
FF Extension: (Slovak (SK) Language Pack) - C:\Users\nicol\AppData\Roaming\Mozilla\Firefox\Profiles\t4uzzgs5.default-release\Extensions\langpack-sk@firefox.mozilla.org.xpi [2022-12-22]
FF Extension: (Slovenská kontrola preklepov) - C:\Users\nicol\AppData\Roaming\Mozilla\Firefox\Profiles\t4uzzgs5.default-release\Extensions\sk@dictionaries.addons.mozilla.org.xpi [2022-12-22]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 CxAudioSvc; C:\WINDOWS\CxSvc\CxAudioSvc.exe [93456 2020-12-06] (Synaptics Incorporated -> Conexant Systems LLC.)
R2 CxAudMsg; C:\WINDOWS\System32\CxAudMsg64.exe [243472 2020-12-06] (Synaptics Incorporated -> Conexant Systems Inc.)
R2 CxUIUSvc; C:\WINDOWS\System32\CxUIUSvc64.exe [122104 2020-12-06] (Synaptics Incorporated -> Conexant Systems, Inc.)
R2 DolbyDAXAPI; C:\WINDOWS\system32\dolbyaposvc\DAX3API.exe [1926600 2019-09-02] (Dolby Laboratories, Inc. -> )
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
R2 LITSSVC; C:\WINDOWS\System32\LNBITSSvc.exe [1643688 2019-05-06] (Lenovo -> Lenovo(beijing) Limited)
R2 mcafeeintegrationservice; C:\WINDOWS\System32\DriverStore\FileRepository\mcafeeintegrationextension.inf_amd64_7f44bb1f2cd06bad\mcafeeintegrationservice.exe [2578272 2018-08-03] (McAfee, Inc. -> McAfee)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\NisSrv.exe [3191264 2023-01-25] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe [133592 2023-01-25] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 YMC; C:\WINDOWS\System32\YMC.exe [856960 2019-05-26] (Lenovo -> Lenovo Group Ltd.)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 BHTPCRDR; C:\WINDOWS\System32\drivers\bhtpcrdr.sys [176032 2019-09-25] (BayHub Technology Inc. -> BayHubTech/O2Micro)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [507904 2022-01-25] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [180224 2022-01-25] (Microsoft Corporation) [File not signed]
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [98304 2021-06-05] (Microsoft Corporation) [File not signed]
R3 CnxtHdAudService; C:\WINDOWS\system32\drivers\CHDRT64HDA.sys [2231080 2020-06-17] (Synaptics Incorporated -> Conexant Systems Inc.)
R3 McAfeeIntegrationDriver; C:\WINDOWS\System32\drivers\McAfeeIntegrationDriver.sys [49920 2018-08-03] (McAfee, Inc. -> McAfee)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49568 2023-01-25] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [473376 2023-01-25] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99616 2023-01-25] (Microsoft Windows -> Microsoft Corporation)
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-02-04 13:43 - 2023-02-04 13:44 - 000015746 _____ C:\Users\nicol\Desktop\FRST.txt
2023-02-04 13:41 - 2023-02-04 13:43 - 000000000 ____D C:\FRST
2023-02-04 13:39 - 2023-02-04 13:40 - 002376704 _____ (Farbar) C:\Users\nicol\Desktop\FRST64.exe
2023-02-04 13:36 - 2023-02-04 13:36 - 000000000 ___HD C:\$WinREAgent
2023-01-26 19:44 - 2023-01-27 13:17 - 000000000 ____D C:\Users\nicol\Documents\Euro Truck Simulator 2
2023-01-25 22:41 - 2023-01-25 22:41 - 000000222 _____ C:\Users\nicol\Desktop\Euro Truck Simulator 2.url
2023-01-25 22:41 - 2023-01-25 22:41 - 000000000 ____D C:\Users\nicol\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2023-01-25 22:38 - 2023-01-25 22:40 - 000000000 ____D C:\Users\nicol\AppData\Local\Steam
2023-01-25 22:38 - 2023-01-25 22:38 - 000000000 ____D C:\Users\nicol\AppData\Local\CEF
2023-01-25 22:17 - 2023-02-04 13:37 - 000000000 ____D C:\Program Files (x86)\Steam
2023-01-25 22:17 - 2023-01-25 22:17 - 002296488 _____ C:\Users\nicol\Downloads\SteamSetup.exe
2023-01-25 22:17 - 2023-01-25 22:17 - 000001039 _____ C:\Users\Public\Desktop\Steam.lnk
2023-01-25 22:17 - 2023-01-25 22:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2023-01-25 22:16 - 2023-01-25 22:16 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-02-04 13:44 - 2021-06-05 13:01 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-02-04 13:41 - 2022-01-26 03:56 - 000002455 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-02-04 13:41 - 2022-01-26 03:56 - 000002293 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-02-04 13:38 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-02-04 13:36 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-01-27 13:17 - 2021-06-05 13:10 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-01-27 12:14 - 2022-01-31 14:21 - 000000000 ____D C:\Users\nicol\AppData\LocalLow\Mozilla
2023-01-27 12:13 - 2022-12-22 15:25 - 000000000 ____D C:\Users\nicol\AppData\Local\Mozilla Firefox
2023-01-27 12:11 - 2022-02-12 10:51 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-01-27 12:10 - 2022-01-25 19:26 - 000000000 ____D C:\Users\nicol\AppData\Local\D3DSCache
2023-01-27 12:04 - 2022-01-25 22:22 - 000803404 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-01-27 12:04 - 2021-06-05 13:09 - 000000000 ____D C:\WINDOWS\INF
2023-01-27 12:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2023-01-27 11:57 - 2021-06-05 13:10 - 000000000 ___HD C:\Program Files\WindowsApps
2023-01-27 11:56 - 2022-01-26 03:55 - 000012288 ___SH C:\DumpStack.log.tmp
2023-01-27 11:56 - 2022-01-25 22:19 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-01-27 11:56 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\ServiceState
2023-01-27 11:56 - 2021-06-05 13:01 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2023-01-26 20:01 - 2022-01-25 22:15 - 000330096 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SystemResources
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SystemApps
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\et-EE
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\es-MX
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\DDFs
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\ShellComponents
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\Provisioning
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\Program Files\Common Files\System
2023-01-26 19:53 - 2022-01-25 22:19 - 000003580 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-142477489-203225701-748183004-1001
2023-01-26 19:53 - 2022-01-25 22:19 - 000003374 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-142477489-203225701-748183004-1001
2023-01-26 19:53 - 2022-01-25 19:21 - 000002374 _____ C:\Users\nicol\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-01-26 01:47 - 2022-01-25 22:15 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-01-25 22:48 - 2022-01-25 19:38 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-01-25 22:38 - 2022-01-25 19:26 - 000000000 ____D C:\Users\nicol\AppData\Local\AMD
2023-01-25 22:24 - 2022-01-25 19:38 - 150199536 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-01-25 22:21 - 2022-01-25 19:34 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2023-01-25 22:16 - 2022-01-31 14:21 - 000001280 _____ C:\Users\nicol\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-01-25 22:14 - 2022-01-26 03:55 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-01-15 22:41 - 2022-01-25 22:18 - 003110912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-01-15 22:33 - 2022-01-25 22:19 - 000003632 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-01-15 22:33 - 2022-01-25 22:19 - 000003508 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================





Additional scan result of Farbar Recovery Scan Tool (x64) Version: 03-02-2023
Ran by nicol (04-02-2023 13:45:52)
Running from C:\Users\nicol\Desktop
Microsoft Windows 11 Home Version 21H2 22000.1335 (X64) (2022-01-25 21:19:41)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-142477489-203225701-748183004-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-142477489-203225701-748183004-503 - Limited - Disabled)
Guest (S-1-5-21-142477489-203225701-748183004-501 - Limited - Disabled)
nicol (S-1-5-21-142477489-203225701-748183004-1001 - Administrator - Enabled) => C:\Users\nicol
WDAGUtilityAccount (S-1-5-21-142477489-203225701-748183004-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 18.41.18.03 - Advanced Micro Devices, Inc.)
Branding64 (HKLM\...\{E6D2F9D5-4122-4945-B145-1E791DE4C5CA}) (Version: 1.00.0003 - Advanced Micro Devices, Inc.) Hidden
Lenovo Pen Settings Service (HKLM\...\ISD Tablet Driver) (Version: 7.6.1.41 - Wacom Technology Corp.)
LibreOffice 7.2 Help Pack (Slovak) (HKLM\...\{577E7ADC-443F-49F5-A5E9-1795282F89DD}) (Version: 7.2.5.2 - The Document Foundation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 109.0.1518.78 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 109.0.1518.70 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-142477489-203225701-748183004-1001\...\OneDriveSetup.exe) (Version: 23.002.0102.0004 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{843E8BAC-637E-4354-94D7-73D910E2168F}) (Version: 4.71.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2017 Redistributable (x64) - 14.14.26429 (HKLM-x32\...\{80586c77-db42-44bb-bfc8-7aebbb220c00}) (Version: 14.14.26429.4 - Microsoft Corporation)
Microsoft Visual C++ 2017 x64 Additional Runtime - 14.14.26429 (HKLM\...\{B12F584A-DE7A-3EE3-8EC4-8A64DBC0F2A7}) (Version: 14.14.26429 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2017 x64 Minimum Runtime - 14.14.26429 (HKLM\...\{03EBF679-E886-38AD-8E70-28658449F7F9}) (Version: 14.14.26429 - Microsoft Corporation) Hidden
Mozilla Firefox (x64 en-GB) (HKU\S-1-5-21-142477489-203225701-748183004-1001\...\Mozilla Firefox 108.0.1 (x64 en-GB)) (Version: 108.0.1 - Mozilla)
OEM Application Profile (HKLM-x32\...\{3DEE814D-F1DB-315D-E627-63B6B600643A}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.)
OpenOffice 4.1.11 (HKLM-x32\...\{1006FF60-29FF-49F8-B688-D148DB487136}) (Version: 4.111.9808 - Apache Software Foundation)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)

Packages:
=========
Dolby Audio -> C:\Program Files\WindowsApps\dolbylaboratories.dolbyaudio_3.20500.501.0_x64__rz1tebttyb220 [2022-01-25] (Dolby Laboratories)
Doplnok mediálneho nástroja pre Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2022-07-23] (Microsoft Corporation)
Doplnok pre Fotografie -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2022-07-23] (Microsoft Corporation)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_142.1.133.0_x64__v10z8vjag6ke6 [2023-01-25] (HP Inc.)
Lenovo Pen Settings -> C:\Program Files\WindowsApps\WacomTechnologyCorp.157535B83C264_7.7.61.0_neutral__ss941bf8mfs8a [2022-06-24] (Wacom Technology Corp.)
Lenovo Vantage -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2209.2.0_x64__k1h2ywk1493x8 [2022-12-22] (LENOVO INC.)
LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_2.1.7098.0_neutral__w1wdnht996qgy [2022-12-22] (LinkedIn)
McAfee® Personal Security -> C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.68.0_x64__wafk5atnkzcwy [2023-01-15] (McAfee LLC.)
Microsoft Access -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Access_16051.15928.20216.0_x86__8wekyb3d8bbwe [2023-01-25] (Microsoft Corporation)
Microsoft Excel -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Excel_16051.15928.20216.0_x86__8wekyb3d8bbwe [2023-01-25] (Microsoft Corporation)
Microsoft Office Desktop Apps -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop_16051.15928.20216.0_x86__8wekyb3d8bbwe [2023-01-25] (Microsoft Corporation)
Microsoft Outlook -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.15928.20216.0_x86__8wekyb3d8bbwe [2023-01-25] (Microsoft Corporation)
Microsoft PowerPoint -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.PowerPoint_16051.15928.20216.0_x86__8wekyb3d8bbwe [2023-01-25] (Microsoft Corporation)
Microsoft Publisher -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Publisher_16051.15928.20216.0_x86__8wekyb3d8bbwe [2023-01-25] (Microsoft Corporation)
Microsoft Word -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Word_16051.15928.20216.0_x86__8wekyb3d8bbwe [2023-01-25] (Microsoft Corporation)
Mirkat -> C:\Program Files\WindowsApps\mirkat.mirkat_1.0.305.0_x64__hm0vq9nycmfde [2022-01-25] (Mirkat)
Rozšírenie pre video MPEG-2 -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.50901.0_x64__8wekyb3d8bbwe [2022-06-19] (Microsoft Corporation)
SmartAudio 3 -> C:\Program Files\WindowsApps\22094synapticsincorporate.smartaudio3_1.0.85.0_x64__qt57b6kdvhcfw [2022-01-25] (Synaptics Hong Kong Limited, Taiwan Branch (H.K.))
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.15.12020.0_x64__8wekyb3d8bbwe [2022-12-22] (Microsoft Studios) [MS Ad]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-142477489-203225701-748183004-1001_Classes\CLSID\{D3E34B21-9D75-101A-8C3D-00AA001A1652}\localserver32 -> C:\Program Files\WindowsApps\Microsoft.Paint_11.2210.4.0_x64__8wekyb3d8bbwe\PaintApp\mspaint.exe () [File not signed]

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2023-01-25 22:37 - 2022-11-10 07:19 - 134859776 _____ () [File not signed] C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\libcef.dll
2023-01-25 22:37 - 2022-11-07 11:17 - 000387072 _____ () [File not signed] C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\libegl.dll
2023-01-25 22:37 - 2022-11-07 11:17 - 008052736 _____ () [File not signed] C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\libglesv2.dll
2019-12-07 15:40 - 2019-12-07 15:40 - 001165824 _____ () [File not signed] C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.68.0_x64__wafk5atnkzcwy\e_sqlite3.dll
2022-01-25 22:09 - 2022-01-25 22:10 - 016742912 _____ (McAfee LLC) [File not signed] C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.68.0_x64__wafk5atnkzcwy\mcafee-security.dll
2019-06-28 18:23 - 2019-06-28 18:23 - 001460224 _____ (Robert Simpson, et al.) [File not signed] C:\Program Files\WindowsApps\22094synapticsincorporate.smartaudio3_1.0.85.0_x64__qt57b6kdvhcfw\Flow\Flow1\x64\SQLite.Interop.dll
2023-01-25 22:37 - 2022-11-07 11:17 - 000992256 _____ (The Chromium Authors) [File not signed] C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\chrome_elf.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKU\S-1-5-21-142477489-203225701-748183004-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo17win10.msn.com/?pc=LCTE
HKU\S-1-5-21-142477489-203225701-748183004-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo17win10.msn.com/?pc=LCTE
HKU\S-1-5-21-142477489-203225701-748183004-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com/

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2018-09-15 08:31 - 2018-09-15 08:31 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-142477489-203225701-748183004-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKU\S-1-5-21-142477489-203225701-748183004-1001\...\StartupApproved\Run: => "OneDrive"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{5F1B54E6-7EB2-45F2-B20F-92E7AD64C1CE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16040.10730.20103.0_x86__8wekyb3d8bbwe\Office16\OUTLOOK.exe => No File
FirewallRules: [{D4E2BA8D-8EEF-4AE8-8687-3F00E077B6A2}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_21354.200.1118.3091_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B0AA762D-A475-44BE-B23F-5D05FE80A452}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_21354.200.1118.3091_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{2522AF26-F495-4048-88E2-F2C843FE3AE8}C:\users\nicol\appdata\local\mozilla firefox\firefox.exe] => (Block) C:\users\nicol\appdata\local\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{747C481A-76A6-482F-A128-EF948DE24CDB}C:\users\nicol\appdata\local\mozilla firefox\firefox.exe] => (Block) C:\users\nicol\appdata\local\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{26DBE9FE-DFDD-4C05-876E-3382CE00791F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{D7B7CBA6-F290-4C6D-ABF8-CEE9A51C8953}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{10D4E04F-92C3-4898-9230-73F64DF5A402}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{B590F7EC-9844-4D62-A74D-E3164A082E8C}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{9A21F3C8-A97D-4222-9D75-D774D4B536D5}] => (Allow) C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.15928.20216.0_x86__8wekyb3d8bbwe\Office16\OUTLOOK.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{734808ED-DA00-4020-94FF-5C837E62A292}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.93.3404.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{7735C5F7-5820-46E4-8A18-67DFE2E0C87D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.93.3404.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{872A8304-5ADF-4F53-80C4-74D4F1D21E90}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.93.3404.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{500212FD-63D7-479A-93A5-0CE057953AB3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.93.3404.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E93E7AC1-73D9-4DBB-9228-31875CA7DD94}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{9B9217D5-16EB-4BBD-BE91-81932012C5BD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{F10677EC-CCEB-4F6F-B793-6B681F3ADF2C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{E80DB20E-D3A5-452A-BC14-FA9E1CBFD66B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{7F176844-08BC-4AE0-AB24-4A8CA3ECE874}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\109.0.1518.70\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)

==================== Restore Points =========================

ATTENTION: System Restore is disabled (Total:118 GB) (Free:57.02 GB) (48%)

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (01/27/2023 11:57:12 AM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: SCEP Certificate enrollment initialization for WORKGROUP\DESKTOP-JLIELH2$ via https://AMD-KeyId-8a0578cf56146fea399af ... s/Aik/scep failed:

GetCACaps

Method: GET(16ms)
Stage: GetCACaps
The server name or address could not be resolved 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED)

Error: (01/27/2023 11:57:12 AM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: SCEP Certificate enrollment initialization for Local system via https://AMD-KeyId-8a0578cf56146fea399af ... s/Aik/scep failed:

GetCACaps

Method: GET(94ms)
Stage: GetCACaps
The server name or address could not be resolved 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED)

Error: (01/27/2023 10:39:34 AM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: SCEP Certificate enrollment initialization for WORKGROUP\DESKTOP-JLIELH2$ via https://AMD-KeyId-8a0578cf56146fea399af ... s/Aik/scep failed:

GetCACaps

Method: GET(0ms)
Stage: GetCACaps
The server name or address could not be resolved 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED)

Error: (01/27/2023 10:39:34 AM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: SCEP Certificate enrollment initialization for Local system via https://AMD-KeyId-8a0578cf56146fea399af ... s/Aik/scep failed:

GetCACaps

Method: GET(47ms)
Stage: GetCACaps
The server name or address could not be resolved 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED)

Error: (01/26/2023 08:01:30 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: SCEP Certificate enrollment initialization for WORKGROUP\DESKTOP-JLIELH2$ via https://AMD-KeyId-8a0578cf56146fea399af ... s/Aik/scep failed:

GetCACaps

Method: GET(2016ms)
Stage: GetCACaps
The server name or address could not be resolved 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED)

Error: (01/26/2023 08:01:28 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: SCEP Certificate enrollment initialization for Local system via https://AMD-KeyId-8a0578cf56146fea399af ... s/Aik/scep failed:

GetCACaps

Method: GET(31ms)
Stage: GetCACaps
The server name or address could not be resolved 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED)

Error: (01/25/2023 10:12:37 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: SCEP Certificate enrollment initialization for WORKGROUP\DESKTOP-JLIELH2$ via https://AMD-KeyId-8a0578cf56146fea399af ... s/Aik/scep failed:

GetCACaps

Method: GET(0ms)
Stage: GetCACaps
The server name or address could not be resolved 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED)

Error: (01/25/2023 10:12:37 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: SCEP Certificate enrollment initialization for Local system via https://AMD-KeyId-8a0578cf56146fea399af ... s/Aik/scep failed:

GetCACaps

Method: GET(47ms)
Stage: GetCACaps
The server name or address could not be resolved 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED)


System errors:
=============
Error: (02/04/2023 01:36:59 PM) (Source: Server) (EventID: 2505) (User: )
Description: The server could not bind to the transport \Device\NetBT_Tcpip_{2E2D02A0-B9EB-4170-BAC1-0625AF6A08E3} because another computer on the network has the same name. The server could not start.

Error: (02/04/2023 01:36:59 PM) (Source: Server) (EventID: 2505) (User: )
Description: The server could not bind to the transport \Device\NetBT_Tcpip_{2E2D02A0-B9EB-4170-BAC1-0625AF6A08E3} because another computer on the network has the same name. The server could not start.

Error: (01/29/2023 02:51:03 PM) (Source: Server) (EventID: 2505) (User: )
Description: The server could not bind to the transport \Device\NetBT_Tcpip_{2E2D02A0-B9EB-4170-BAC1-0625AF6A08E3} because another computer on the network has the same name. The server could not start.

Error: (01/27/2023 04:17:42 PM) (Source: Server) (EventID: 2505) (User: )
Description: The server could not bind to the transport \Device\NetBT_Tcpip_{2E2D02A0-B9EB-4170-BAC1-0625AF6A08E3} because another computer on the network has the same name. The server could not start.

Error: (01/27/2023 11:56:35 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-JLIELH2)
Description: The server {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} did not register with DCOM within the required timeout.

Error: (01/27/2023 10:47:37 AM) (Source: Server) (EventID: 2505) (User: )
Description: The server could not bind to the transport \Device\NetBT_Tcpip_{2E2D02A0-B9EB-4170-BAC1-0625AF6A08E3} because another computer on the network has the same name. The server could not start.

Error: (01/27/2023 10:46:57 AM) (Source: Server) (EventID: 2505) (User: )
Description: The server could not bind to the transport \Device\NetBT_Tcpip_{2E2D02A0-B9EB-4170-BAC1-0625AF6A08E3} because another computer on the network has the same name. The server could not start.

Error: (01/26/2023 08:01:32 PM) (Source: Server) (EventID: 2505) (User: )
Description: The server could not bind to the transport \Device\NetBT_Tcpip_{2E2D02A0-B9EB-4170-BAC1-0625AF6A08E3} because another computer on the network has the same name. The server could not start.


Windows Defender:
================
Date: 2023-01-25 22:26:20
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2023-01-25 22:24:20
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2022-08-22 19:56:05
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2022-06-28 13:26:18
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2022-06-24 18:09:39
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Event[0]

Date: 2022-10-26 13:08:19
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.373.798.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.19500.2
Error code: 0x80070102
Error description: The wait operation timed out.

Date: 2022-10-26 13:08:19
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.373.798.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.19500.2
Error code: 0x80070102
Error description: The wait operation timed out.

Date: 2022-06-19 10:57:06
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.363.1403.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.19200.5
Error code: 0x8024402c
Error description: Počas vyhľadávania aktualizácií sa vyskytol neočakávaný problém. Informácie o inštalácii aktualizácií a riešení problémov s aktualizáciami nájdete v Pomoci a technickej podpore.

Date: 2022-03-04 00:10:03
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.355.2929.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.18800.4
Error code: 0x80240022
Error description: Program nemôže skontrolovať aktualizácie definícií.

Date: 2022-03-04 00:10:03
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.355.2929.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.18800.4
Error code: 0x80240022
Error description: Program nemôže skontrolovať aktualizácie definícií.

==================== Memory info ===========================

BIOS: LENOVO AGCN22WW(V1.05) 07/08/2019
Motherboard: LENOVO LNVNB161216
Processor: AMD Ryzen 3 3200U with Radeon Vega Mobile Gfx
Percentage of memory in use: 77%
Total physical RAM: 3522.54 MB
Available physical RAM: 784.93 MB
Total Virtual: 9522.9 MB
Available Virtual: 5567.59 MB

==================== Drives ================================

Drive c: (Windows-SSD) (Fixed) (Total:118 GB) (Free:57.01 GB) (Model: SAMSUNG MZNLN128HAHQ-000L2) NTFS

\\?\Volume{f8c2fe4d-5cd3-4795-ac44-515052d00748}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.5 GB) NTFS
\\?\Volume{6ad1297a-4470-4ebf-bc31-ed1621b51db8}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.21 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 119.2 GB) (Disk ID: 6274974D)

Partition: GPT.

==================== End of Addition.txt =======================
Klingoln

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118200
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Spomaleny notebook

#2 Příspěvek od Rudy »

Zdravím!
Spusťte tuto utilitu:

Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

klingoln
Návštěvník
Návštěvník
Příspěvky: 162
Registrován: 28 úno 2008 16:31

Re: Spomaleny notebook

#3 Příspěvek od klingoln »

Zdravim,

nakoniec sa notebook dostal do takeho stavu, ze pomohla az reinstalacia.
Kazdopadne dakujem pekne za radu a pomoc.
Klingoln

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118200
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Spomaleny notebook

#4 Příspěvek od Rudy »

Stane se, systém byl zřejmě poškozen. Nemáte zač! :)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Zamčeno