Dobrý den, prosím o kontrolu logu, NTB má pomalý náběh, pak dojde k zamrznutí, jde jenom pohybovat kursorem NTB na nic nereaguje ani na klikání myší ani na klávesové zkratky, pomůže jenom vypnutí na tvrdo. Předem děkuji za pomoc.
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 21-01-2025
Ran by magic (administrator) on MAROSASUS2 (ASUSTeK COMPUTER INC. X751LB) (01-02-2025 12:41:26)
Running from C:\Users\magic\Desktop\FRST64.exe
Loaded Profiles: magic
Platform: Microsoft Windows 10 Home Version 22H2 19045.5247 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(C:\Program Files (x86)\netis\USB Wireless LAN Utility\RtlService.exe ->) (Realtek Semiconductor Corp.) [File not signed] C:\Program Files (x86)\netis\USB Wireless LAN Utility\RtWLan.exe
(C:\Program Files (x86)\Sticky Password\stpass.exe ->) (Lamantine Software a.s. -> Lamantine Software a.s.) C:\Program Files (x86)\Sticky Password\spUIAManager.exe
(C:\Program Files (x86)\TeamViewer\TeamViewer.exe ->) (TeamViewer Germany GmbH -> ) C:\Program Files (x86)\TeamViewer\crashpad_handler.exe <2>
(C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(C:\Program Files\Opera\opera.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(C:\Program Files\Opera\opera.exe ->) (Opera Norway AS -> Opera Software) C:\Program Files\Opera\116.0.5366.71\opera_crashreporter.exe
(C:\Windows\runSW.exe ->) (Realtek Semiconductor Corp -> Realtek) C:\Windows\SwUSB.exe
(cmd.exe ->) (Lamantine Software a.s. -> Lamantine Software a.s.) C:\Program Files (x86)\Sticky Password\spNMHost.exe
(explorer.exe ->) (Acronis International GmbH -> Acronis) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
(explorer.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(explorer.exe ->) (Lamantine Software a.s. -> Lamantine Software a.s.) C:\Program Files (x86)\Sticky Password\stpass.exe
(explorer.exe ->) (Opera Norway AS -> Opera Software) C:\Program Files\Opera\opera.exe <18>
(explorer.exe ->) (Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.134.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe <5>
(Intel Corporation -> ) C:\Windows\System32\igfxTray.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(services.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (ICEpower a/s -> ICEpower A/S) C:\Windows\System32\ICEsoundService64.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_82419944dda69b12\esif_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_d51901c26227fb29\WMIRegistrationService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_a2789b14f82a67b9\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(services.exe ->) (Realtek Semiconductor Corp -> ) C:\Windows\runSW.exe
(services.exe ->) (Realtek Semiconductor Corp -> Realtek) C:\Program Files (x86)\netis\USB Wireless LAN Utility\RtlService.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\magic\AppData\Local\Microsoft\OneDrive\24.226.1110.0004\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [Služba Acronis Scheduler2] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [383624 2015-12-25] (Acronis International GmbH -> Acronis)
HKLM-x32\...\Run: [Opera Browser Assistant] => C:\Program Files\Opera\assistant\browser_assistant.exe [3996064 2024-03-04] (Opera Norway AS -> Opera Software)
HKLM\Software\Policies\...\system: [EnableActivityFeed] 1
HKLM\Software\Policies\...\system: [PublishUserActivities] 1
HKLM\Software\Policies\...\system: [UploadUserActivities] 1
HKU\S-1-5-21-3200854963-3717341606-596258127-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [371304 2019-12-25] (AVB Disc Soft, SIA -> Disc Soft Ltd)
HKU\S-1-5-21-3200854963-3717341606-596258127-1001\...\Run: [StickyPassword] => C:\Program Files (x86)\Sticky Password\stpass.exe [72096 2024-06-05] (Lamantine Software a.s. -> Lamantine Software a.s.)
HKU\S-1-5-21-3200854963-3717341606-596258127-1001\...\Run: [HP DeskJet 4530 series (NET)] => C:\Program Files\HP\HP DeskJet 4530 series\Bin\ScanToPCActivationApp.exe [3770528 2021-11-17] (HP Inc. -> HP Inc.)
HKU\S-1-5-21-3200854963-3717341606-596258127-1001\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKLM\...\Print\Monitors\HP D811 Status Monitor: C:\Windows\system32\hpinkstsD811LM.dll [393352 2017-04-05] (Hewlett Packard -> HP Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\132.0.6834.160\Installer\chrmstp.exe [2025-02-01] (Google LLC -> Google LLC)
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {4E30EE42-DB48-4E52-A663-88804992A88A} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1580992 2024-12-18] (Adobe Inc. -> Adobe Inc.)
Task: {350F507E-86F4-4B8B-994F-2BDFEB7BD3AB} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem134.0.6947.0{68EF1914-8040-48CF-94E0-E6728193C56C} => C:\Program Files (x86)\Google\GoogleUpdater\134.0.6947.0\updater.exe [5642336 2025-01-09] (Google LLC -> Google LLC)
Task: {4781A20A-77B1-4E68-8021-A553280BA3BE} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [64976 2024-10-16] (HP Inc. -> HP Inc.)
Task: {7A759E44-CF40-49EE-8CAE-D3B5CB3A4993} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor Logon => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [64976 2024-10-16] (HP Inc. -> HP Inc.)
Task: {3845EF6F-8E31-4133-8A16-9404461BB9C6} - System32\Tasks\HPCustParticipation HP DeskJet 4530 series => C:\Program Files\HP\HP DeskJet 4530 series\Bin\HPCustPartic.exe [6439072 2021-11-17] (HP Inc. -> HP Inc.)
Task: {F90FA181-43D0-4C03-8551-92F165398759} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28707056 2025-01-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {9170DE06-1B0F-423D-9C7E-0DE2E9D8F54A} - System32\Tasks\Microsoft\Office\Office Background Push Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE16\opushutil.exe [58600 2025-02-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {5E409269-205C-4F82-920D-BF0EF96FB40D} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28707056 2025-01-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {2BC79AB6-3F9E-4B57-B030-A1F91D876EA1} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [222840 2025-02-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {80304FBE-1A68-4FCE-ABF9-37FFA90B57AD} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [222840 2025-02-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {EFC45BF9-F238-4F97-8022-6A04407FD310} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-10-25] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {800C9627-1E76-4FA5-9CDC-AECBBD255B30} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-10-25] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8E907C56-B8A6-4E24-98FB-FD153CD5F104} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-10-25] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {13B4391B-3824-4BC9-BD38-0C6C36B997E0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-10-25] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {AB43C090-2914-450D-87F6-CC5914E8ED85} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1005096 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {C6DFE98A-92DF-4C5D-B1E6-BC895777C653} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3345448 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1E61F0E4-26C3-4F59-9096-7E9BF4C222C6} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649256 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler
Task: {BB0F11A9-0FB8-45E9-9C65-EB8CFE96F2B7} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A3B178FB-C80D-4120-B773-1E65A83A63FB} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {50E1528B-7169-41CF-A5AE-D011E1AE9A82} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D0F9F001-0A6C-4BA6-989A-8470B886EC1A} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {61EC5F4B-D135-417B-85A3-0A05EBF6E152} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E6BD8F7C-E9E1-4C86-AE8E-81A56B0840C9} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8044A8E1-11D6-4D47-9FE7-F3E0E576F566} - System32\Tasks\Opera scheduled assistant Autoupdate 1582788523 => C:\Program Files\Opera\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Program Files\Opera\assistant" $(Arg0)
Task: {D0982DEC-DD9E-4944-92C4-9D82CE3D264C} - System32\Tasks\Opera scheduled Autoupdate 1517511580 => C:\Program Files\Opera\autoupdate\opera_autoupdate.exe [5656472 2025-01-28] (Opera Norway AS -> Opera Software)
Task: {E4C505B5-3CD0-4DE1-BF05-7E25DD57664C} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617880 2021-07-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {36ABB328-73B5-4817-A72E-5C7747EFB4CA} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617880 2021-07-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{03ee4b61-ba34-4df4-9925-8e4966f485ab}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{468918b5-460d-453f-a2d7-d86535790ee0}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{468918b5-460d-453f-a2d7-d86535790ee0}\D416769636F5379647F55374: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{78a52ea8-a769-4549-bec7-058386d199d8}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{f849261d-4f20-412d-ba52-7fe6a4f734ae}: [DhcpNameServer] 8.8.8.8 192.168.0.2
Tcpip\..\Interfaces\{f849261d-4f20-412d-ba52-7fe6a4f734ae}: [DhcpDomain] NetisRouter_e4beed4da98d
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\magic\AppData\Local\Microsoft\Edge\User Data\Default [2024-09-16]
Edge HomePage: Default -> hxxp://www.msn.com/
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\magic\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bojobppfploabceghnmlahpoonbcbacn [2024-09-16]
Edge Extension: (Dokumenty Google offline) - C:\Users\magic\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-09-16]
Edge Extension: (Edge relevant text changes) - C:\Users\magic\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]
Edge HKLM\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn]
Edge HKLM-x32\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn]
FireFox:
========
FF DefaultProfile: z63v4xqh.default
FF ProfilePath: C:\Users\magic\AppData\Roaming\Mozilla\Firefox\Profiles\z63v4xqh.default [2023-12-27]
FF user.js: detected! => C:\Users\magic\AppData\Roaming\Mozilla\Firefox\Profiles\z63v4xqh.default\user.js [2020-03-16]
FF Extension: (Советник Яндекс.Маркета) - C:\Users\magic\AppData\Roaming\Mozilla\Firefox\Profiles\z63v4xqh.default\Extensions\sovetnik-yandex@yandex.ru.xpi [2018-03-11] [UpdateUrl:hxxps://static.sovetnik.yandex.net/sovetnik/extension/firefox-webextension-yandex-update.json]
FF Extension: (Visual Bookmarks) - C:\Users\magic\AppData\Roaming\Mozilla\Firefox\Profiles\z63v4xqh.default\Extensions\vb@yandex.ru.xpi [2018-03-11] [Legacy]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-12-05] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2024-12-17] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-12-17] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.10 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.12 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin HKU\S-1-5-21-3200854963-3717341606-596258127-1001: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 -> C:\Users\magic\AppData\Roaming\Visan\plugins\npRLSecurePluginLayer.dll [2011-11-15] (RocketLife -> RocketLife, LLP)
Chrome:
=======
CHR Profile: C:\Users\magic\AppData\Local\Google\Chrome\User Data\Default [2025-02-01]
CHR Notifications: Default -> hxxps://fastshare.cz; hxxps://www.kinobox.cz; hxxps://www.luxor.cz; hxxps://www.netflix.com
CHR Extension: (Sticky Password - správce hesel) - C:\Users\magic\AppData\Local\Google\Chrome\User Data\Default\Extensions\bnfdmghkeppfadphbnkjcicejfepnbfe [2025-02-01]
CHR Extension: (Plná Peněženka Lištička) - C:\Users\magic\AppData\Local\Google\Chrome\User Data\Default\Extensions\ecmgkhgjmodembdmiimbacpjgcdimiek [2025-02-01]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\magic\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2025-02-01]
CHR Extension: (Dokumenty Google offline) - C:\Users\magic\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-25]
CHR Extension: (IE Tab) - C:\Users\magic\AppData\Local\Google\Chrome\User Data\Default\Extensions\hehijbfgiekmjfkfjpbkbammjbdenadd [2025-02-01]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\magic\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2025-02-01]
CHR Extension: (Spouštěč aplikací pro Disk (od Googlu)) - C:\Users\magic\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2023-10-25]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\magic\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30]
CHR HKLM\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKU\S-1-5-21-3200854963-3717341606-596258127-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKU\S-1-5-21-3200854963-3717341606-596258127-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
Opera:
=======
OPR DefaultProfile: Default
StartMenuInternet: (HKLM) OperaStable - C:\Program Files\Opera\opera.exe
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AcrSch2Svc; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [943280 2015-12-25] (Acronis International GmbH -> Acronis)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [174520 2024-12-18] (Adobe Inc. -> Adobe Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13572312 2025-01-03] (Microsoft Corporation -> Microsoft Corporation)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4452456 2019-12-25] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [818304 2020-12-03] (EasyAntiCheat Oy -> Epic Games, Inc)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [243664 2024-10-16] (HP Inc. -> HP Inc.)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpDefenderCoreService.exe [1447680 2024-10-25] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_a2789b14f82a67b9\Display.NvContainer\NVDisplay.Container.exe [1274888 2023-11-10] (NVIDIA Corporation -> NVIDIA Corporation)
R2 RealtekWlanU; C:\Program Files (x86)\netis\USB Wireless LAN Utility\RtlService.exe [48856 2014-10-09] (Realtek Semiconductor Corp -> Realtek)
S2 RTLDHCPService; C:\Program Files (x86)\netis\USB Wireless LAN Utility\RTLDHCP.exe [262360 2014-10-09] (Realtek Semiconductor Corp -> Realtek)
R2 RunSwUSB; C:\Windows\runSW.exe [44760 2014-12-15] (Realtek Semiconductor Corp -> )
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [18843952 2025-01-24] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\NisSrv.exe [3199672 2024-10-25] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MsMpEng.exe [141952 2024-10-25] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 arusb_win7x; C:\WINDOWS\System32\drivers\arusb_win7x.sys [769024 2010-02-23] (Atheros Communications, Inc.) [File not signed]
R3 AsusTP; C:\WINDOWS\System32\drivers\AsusTP.sys [102144 2019-08-19] (ASUSTek Computer Inc. -> ASUS Corporation)
R1 ATKWMIACPIIO; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [20096 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2019-12-25] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2019-12-25] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R1 ElbyCDIO; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [42616 2017-05-14] (Microsoft Windows Hardware Compatibility Publisher -> Elaborate Bytes AG)
R0 fltsrv; C:\WINDOWS\System32\DRIVERS\fltsrv.sys [160600 2018-02-03] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS)
R2 inpoutx64; C:\WINDOWS\System32\Drivers\inpoutx64.sys [15008 2023-11-27] (Red Fox UK Limited -> Highresolution Enterprises [www.highrez.co.uk])
S3 MpKsleae81a87; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{95D4C5A8-2DAD-487E-AB0E-1F2B4DEE35D0}\MpKslDrv.sys [267552 2025-02-01] (Microsoft Windows -> Microsoft Corporation)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-13] (Nvidia Corporation -> NVIDIA Corporation)
S3 RtlWlanu; C:\WINDOWS\System32\drivers\rtwlanu.sys [12435144 2024-10-14] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation)
S3 usbscan; C:\WINDOWS\system32\DRIVERS\usbscan.sys [49152 2021-10-06] (Microsoft Corporation) [File not signed]
S3 VClone; C:\WINDOWS\System32\drivers\VClone.sys [44544 2020-02-22] (Microsoft Windows Hardware Compatibility Publisher -> Elaborate Bytes AG)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [22104 2024-10-25] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [606624 2024-10-25] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105888 2024-10-25] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2025-02-01 12:41 - 2025-02-01 12:42 - 000028646 _____ C:\Users\magic\Desktop\FRST.txt
2025-02-01 12:09 - 2025-02-01 12:10 - 002403328 _____ (Farbar) C:\Users\magic\Desktop\FRST64.exe
2025-02-01 12:06 - 2025-02-01 12:06 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2025-02-01 12:04 - 2025-02-01 12:05 - 000008192 ___SH C:\DumpStack.log.tmp
2025-02-01 11:19 - 2025-02-01 11:19 - 000004008 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1517511580
2025-02-01 11:19 - 2025-02-01 11:19 - 000001094 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2025-02-01 10:46 - 2025-02-01 10:46 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2025-02-01 12:41 - 2022-01-19 08:20 - 000000000 ____D C:\FRST
2025-02-01 12:31 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-02-01 12:25 - 2018-02-01 20:56 - 000000000 ____D C:\ProgramData\NVIDIA
2025-02-01 12:07 - 2018-02-01 19:44 - 000000000 ___RD C:\Users\magic\OneDrive
2025-02-01 12:06 - 2023-03-18 14:54 - 000000000 ____D C:\WINDOWS\Minidump
2025-02-01 12:06 - 2018-02-01 20:00 - 000000000 __SHD C:\Users\magic\IntelGraphicsProfiles
2025-02-01 12:05 - 2024-12-20 07:51 - 1325363751 _____ C:\WINDOWS\MEMORY.DMP
2025-02-01 12:05 - 2022-01-28 09:57 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2025-02-01 12:05 - 2022-01-28 09:30 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2025-02-01 12:05 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2025-02-01 12:05 - 2018-02-18 16:37 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2025-02-01 11:24 - 2018-02-01 19:33 - 000000000 ____D C:\Users\magic\AppData\Local\Packages
2025-02-01 11:19 - 2022-01-28 09:49 - 001693140 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2025-02-01 11:19 - 2019-12-07 15:41 - 000719496 _____ C:\WINDOWS\system32\perfh005.dat
2025-02-01 11:19 - 2019-12-07 15:41 - 000145622 _____ C:\WINDOWS\system32\perfc005.dat
2025-02-01 11:19 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2025-02-01 11:19 - 2018-02-01 19:56 - 000000000 ____D C:\Program Files\Opera
2025-02-01 11:17 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2025-02-01 11:04 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2025-02-01 11:03 - 2022-01-28 08:32 - 000000000 ____D C:\WINDOWS\SystemTemp
2025-02-01 10:52 - 2019-03-20 15:41 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2025-02-01 10:48 - 2020-09-27 08:53 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2025-02-01 10:48 - 2020-09-27 08:53 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2025-02-01 10:42 - 2018-02-05 14:24 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2025-02-01 10:42 - 2018-02-05 14:24 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2025-02-01 10:42 - 2018-02-01 20:04 - 000000000 ___SD C:\Users\magic\Documents\Sticky Passwords
==================== Files in the root of some directories ========
2019-08-02 19:46 - 2019-08-02 19:48 - 000007605 _____ () C:\Users\magic\AppData\Local\resmon.resmoncfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 21-01-2025
Ran by magic (administrator) on MAROSASUS2 (ASUSTeK COMPUTER INC. X751LB) (01-02-2025 12:41:26)
Running from C:\Users\magic\Desktop\FRST64.exe
Loaded Profiles: magic
Platform: Microsoft Windows 10 Home Version 22H2 19045.5247 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(C:\Program Files (x86)\netis\USB Wireless LAN Utility\RtlService.exe ->) (Realtek Semiconductor Corp.) [File not signed] C:\Program Files (x86)\netis\USB Wireless LAN Utility\RtWLan.exe
(C:\Program Files (x86)\Sticky Password\stpass.exe ->) (Lamantine Software a.s. -> Lamantine Software a.s.) C:\Program Files (x86)\Sticky Password\spUIAManager.exe
(C:\Program Files (x86)\TeamViewer\TeamViewer.exe ->) (TeamViewer Germany GmbH -> ) C:\Program Files (x86)\TeamViewer\crashpad_handler.exe <2>
(C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(C:\Program Files\Opera\opera.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(C:\Program Files\Opera\opera.exe ->) (Opera Norway AS -> Opera Software) C:\Program Files\Opera\116.0.5366.71\opera_crashreporter.exe
(C:\Windows\runSW.exe ->) (Realtek Semiconductor Corp -> Realtek) C:\Windows\SwUSB.exe
(cmd.exe ->) (Lamantine Software a.s. -> Lamantine Software a.s.) C:\Program Files (x86)\Sticky Password\spNMHost.exe
(explorer.exe ->) (Acronis International GmbH -> Acronis) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
(explorer.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(explorer.exe ->) (Lamantine Software a.s. -> Lamantine Software a.s.) C:\Program Files (x86)\Sticky Password\stpass.exe
(explorer.exe ->) (Opera Norway AS -> Opera Software) C:\Program Files\Opera\opera.exe <18>
(explorer.exe ->) (Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.134.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe <5>
(Intel Corporation -> ) C:\Windows\System32\igfxTray.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(services.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (ICEpower a/s -> ICEpower A/S) C:\Windows\System32\ICEsoundService64.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_82419944dda69b12\esif_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_d51901c26227fb29\WMIRegistrationService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_a2789b14f82a67b9\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(services.exe ->) (Realtek Semiconductor Corp -> ) C:\Windows\runSW.exe
(services.exe ->) (Realtek Semiconductor Corp -> Realtek) C:\Program Files (x86)\netis\USB Wireless LAN Utility\RtlService.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\magic\AppData\Local\Microsoft\OneDrive\24.226.1110.0004\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [Služba Acronis Scheduler2] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [383624 2015-12-25] (Acronis International GmbH -> Acronis)
HKLM-x32\...\Run: [Opera Browser Assistant] => C:\Program Files\Opera\assistant\browser_assistant.exe [3996064 2024-03-04] (Opera Norway AS -> Opera Software)
HKLM\Software\Policies\...\system: [EnableActivityFeed] 1
HKLM\Software\Policies\...\system: [PublishUserActivities] 1
HKLM\Software\Policies\...\system: [UploadUserActivities] 1
HKU\S-1-5-21-3200854963-3717341606-596258127-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [371304 2019-12-25] (AVB Disc Soft, SIA -> Disc Soft Ltd)
HKU\S-1-5-21-3200854963-3717341606-596258127-1001\...\Run: [StickyPassword] => C:\Program Files (x86)\Sticky Password\stpass.exe [72096 2024-06-05] (Lamantine Software a.s. -> Lamantine Software a.s.)
HKU\S-1-5-21-3200854963-3717341606-596258127-1001\...\Run: [HP DeskJet 4530 series (NET)] => C:\Program Files\HP\HP DeskJet 4530 series\Bin\ScanToPCActivationApp.exe [3770528 2021-11-17] (HP Inc. -> HP Inc.)
HKU\S-1-5-21-3200854963-3717341606-596258127-1001\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKLM\...\Print\Monitors\HP D811 Status Monitor: C:\Windows\system32\hpinkstsD811LM.dll [393352 2017-04-05] (Hewlett Packard -> HP Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\132.0.6834.160\Installer\chrmstp.exe [2025-02-01] (Google LLC -> Google LLC)
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {4E30EE42-DB48-4E52-A663-88804992A88A} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1580992 2024-12-18] (Adobe Inc. -> Adobe Inc.)
Task: {350F507E-86F4-4B8B-994F-2BDFEB7BD3AB} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem134.0.6947.0{68EF1914-8040-48CF-94E0-E6728193C56C} => C:\Program Files (x86)\Google\GoogleUpdater\134.0.6947.0\updater.exe [5642336 2025-01-09] (Google LLC -> Google LLC)
Task: {4781A20A-77B1-4E68-8021-A553280BA3BE} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [64976 2024-10-16] (HP Inc. -> HP Inc.)
Task: {7A759E44-CF40-49EE-8CAE-D3B5CB3A4993} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor Logon => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [64976 2024-10-16] (HP Inc. -> HP Inc.)
Task: {3845EF6F-8E31-4133-8A16-9404461BB9C6} - System32\Tasks\HPCustParticipation HP DeskJet 4530 series => C:\Program Files\HP\HP DeskJet 4530 series\Bin\HPCustPartic.exe [6439072 2021-11-17] (HP Inc. -> HP Inc.)
Task: {F90FA181-43D0-4C03-8551-92F165398759} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28707056 2025-01-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {9170DE06-1B0F-423D-9C7E-0DE2E9D8F54A} - System32\Tasks\Microsoft\Office\Office Background Push Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE16\opushutil.exe [58600 2025-02-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {5E409269-205C-4F82-920D-BF0EF96FB40D} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28707056 2025-01-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {2BC79AB6-3F9E-4B57-B030-A1F91D876EA1} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [222840 2025-02-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {80304FBE-1A68-4FCE-ABF9-37FFA90B57AD} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [222840 2025-02-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {EFC45BF9-F238-4F97-8022-6A04407FD310} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-10-25] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {800C9627-1E76-4FA5-9CDC-AECBBD255B30} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-10-25] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8E907C56-B8A6-4E24-98FB-FD153CD5F104} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-10-25] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {13B4391B-3824-4BC9-BD38-0C6C36B997E0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-10-25] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {AB43C090-2914-450D-87F6-CC5914E8ED85} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1005096 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {C6DFE98A-92DF-4C5D-B1E6-BC895777C653} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3345448 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1E61F0E4-26C3-4F59-9096-7E9BF4C222C6} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649256 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler
Task: {BB0F11A9-0FB8-45E9-9C65-EB8CFE96F2B7} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A3B178FB-C80D-4120-B773-1E65A83A63FB} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {50E1528B-7169-41CF-A5AE-D011E1AE9A82} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D0F9F001-0A6C-4BA6-989A-8470B886EC1A} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {61EC5F4B-D135-417B-85A3-0A05EBF6E152} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E6BD8F7C-E9E1-4C86-AE8E-81A56B0840C9} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8044A8E1-11D6-4D47-9FE7-F3E0E576F566} - System32\Tasks\Opera scheduled assistant Autoupdate 1582788523 => C:\Program Files\Opera\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Program Files\Opera\assistant" $(Arg0)
Task: {D0982DEC-DD9E-4944-92C4-9D82CE3D264C} - System32\Tasks\Opera scheduled Autoupdate 1517511580 => C:\Program Files\Opera\autoupdate\opera_autoupdate.exe [5656472 2025-01-28] (Opera Norway AS -> Opera Software)
Task: {E4C505B5-3CD0-4DE1-BF05-7E25DD57664C} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617880 2021-07-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {36ABB328-73B5-4817-A72E-5C7747EFB4CA} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617880 2021-07-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{03ee4b61-ba34-4df4-9925-8e4966f485ab}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{468918b5-460d-453f-a2d7-d86535790ee0}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{468918b5-460d-453f-a2d7-d86535790ee0}\D416769636F5379647F55374: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{78a52ea8-a769-4549-bec7-058386d199d8}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{f849261d-4f20-412d-ba52-7fe6a4f734ae}: [DhcpNameServer] 8.8.8.8 192.168.0.2
Tcpip\..\Interfaces\{f849261d-4f20-412d-ba52-7fe6a4f734ae}: [DhcpDomain] NetisRouter_e4beed4da98d
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\magic\AppData\Local\Microsoft\Edge\User Data\Default [2024-09-16]
Edge HomePage: Default -> hxxp://www.msn.com/
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\magic\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bojobppfploabceghnmlahpoonbcbacn [2024-09-16]
Edge Extension: (Dokumenty Google offline) - C:\Users\magic\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-09-16]
Edge Extension: (Edge relevant text changes) - C:\Users\magic\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]
Edge HKLM\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn]
Edge HKLM-x32\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn]
FireFox:
========
FF DefaultProfile: z63v4xqh.default
FF ProfilePath: C:\Users\magic\AppData\Roaming\Mozilla\Firefox\Profiles\z63v4xqh.default [2023-12-27]
FF user.js: detected! => C:\Users\magic\AppData\Roaming\Mozilla\Firefox\Profiles\z63v4xqh.default\user.js [2020-03-16]
FF Extension: (Советник Яндекс.Маркета) - C:\Users\magic\AppData\Roaming\Mozilla\Firefox\Profiles\z63v4xqh.default\Extensions\sovetnik-yandex@yandex.ru.xpi [2018-03-11] [UpdateUrl:hxxps://static.sovetnik.yandex.net/sovetnik/extension/firefox-webextension-yandex-update.json]
FF Extension: (Visual Bookmarks) - C:\Users\magic\AppData\Roaming\Mozilla\Firefox\Profiles\z63v4xqh.default\Extensions\vb@yandex.ru.xpi [2018-03-11] [Legacy]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-12-05] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2024-12-17] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-12-17] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.10 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.12 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin HKU\S-1-5-21-3200854963-3717341606-596258127-1001: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 -> C:\Users\magic\AppData\Roaming\Visan\plugins\npRLSecurePluginLayer.dll [2011-11-15] (RocketLife -> RocketLife, LLP)
Chrome:
=======
CHR Profile: C:\Users\magic\AppData\Local\Google\Chrome\User Data\Default [2025-02-01]
CHR Notifications: Default -> hxxps://fastshare.cz; hxxps://www.kinobox.cz; hxxps://www.luxor.cz; hxxps://www.netflix.com
CHR Extension: (Sticky Password - správce hesel) - C:\Users\magic\AppData\Local\Google\Chrome\User Data\Default\Extensions\bnfdmghkeppfadphbnkjcicejfepnbfe [2025-02-01]
CHR Extension: (Plná Peněženka Lištička) - C:\Users\magic\AppData\Local\Google\Chrome\User Data\Default\Extensions\ecmgkhgjmodembdmiimbacpjgcdimiek [2025-02-01]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\magic\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2025-02-01]
CHR Extension: (Dokumenty Google offline) - C:\Users\magic\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-25]
CHR Extension: (IE Tab) - C:\Users\magic\AppData\Local\Google\Chrome\User Data\Default\Extensions\hehijbfgiekmjfkfjpbkbammjbdenadd [2025-02-01]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\magic\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2025-02-01]
CHR Extension: (Spouštěč aplikací pro Disk (od Googlu)) - C:\Users\magic\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2023-10-25]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\magic\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30]
CHR HKLM\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKU\S-1-5-21-3200854963-3717341606-596258127-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKU\S-1-5-21-3200854963-3717341606-596258127-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
Opera:
=======
OPR DefaultProfile: Default
StartMenuInternet: (HKLM) OperaStable - C:\Program Files\Opera\opera.exe
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AcrSch2Svc; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [943280 2015-12-25] (Acronis International GmbH -> Acronis)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [174520 2024-12-18] (Adobe Inc. -> Adobe Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13572312 2025-01-03] (Microsoft Corporation -> Microsoft Corporation)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4452456 2019-12-25] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [818304 2020-12-03] (EasyAntiCheat Oy -> Epic Games, Inc)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [243664 2024-10-16] (HP Inc. -> HP Inc.)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpDefenderCoreService.exe [1447680 2024-10-25] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_a2789b14f82a67b9\Display.NvContainer\NVDisplay.Container.exe [1274888 2023-11-10] (NVIDIA Corporation -> NVIDIA Corporation)
R2 RealtekWlanU; C:\Program Files (x86)\netis\USB Wireless LAN Utility\RtlService.exe [48856 2014-10-09] (Realtek Semiconductor Corp -> Realtek)
S2 RTLDHCPService; C:\Program Files (x86)\netis\USB Wireless LAN Utility\RTLDHCP.exe [262360 2014-10-09] (Realtek Semiconductor Corp -> Realtek)
R2 RunSwUSB; C:\Windows\runSW.exe [44760 2014-12-15] (Realtek Semiconductor Corp -> )
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [18843952 2025-01-24] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\NisSrv.exe [3199672 2024-10-25] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MsMpEng.exe [141952 2024-10-25] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 arusb_win7x; C:\WINDOWS\System32\drivers\arusb_win7x.sys [769024 2010-02-23] (Atheros Communications, Inc.) [File not signed]
R3 AsusTP; C:\WINDOWS\System32\drivers\AsusTP.sys [102144 2019-08-19] (ASUSTek Computer Inc. -> ASUS Corporation)
R1 ATKWMIACPIIO; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [20096 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2019-12-25] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2019-12-25] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R1 ElbyCDIO; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [42616 2017-05-14] (Microsoft Windows Hardware Compatibility Publisher -> Elaborate Bytes AG)
R0 fltsrv; C:\WINDOWS\System32\DRIVERS\fltsrv.sys [160600 2018-02-03] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS)
R2 inpoutx64; C:\WINDOWS\System32\Drivers\inpoutx64.sys [15008 2023-11-27] (Red Fox UK Limited -> Highresolution Enterprises [www.highrez.co.uk])
S3 MpKsleae81a87; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{95D4C5A8-2DAD-487E-AB0E-1F2B4DEE35D0}\MpKslDrv.sys [267552 2025-02-01] (Microsoft Windows -> Microsoft Corporation)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-13] (Nvidia Corporation -> NVIDIA Corporation)
S3 RtlWlanu; C:\WINDOWS\System32\drivers\rtwlanu.sys [12435144 2024-10-14] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation)
S3 usbscan; C:\WINDOWS\system32\DRIVERS\usbscan.sys [49152 2021-10-06] (Microsoft Corporation) [File not signed]
S3 VClone; C:\WINDOWS\System32\drivers\VClone.sys [44544 2020-02-22] (Microsoft Windows Hardware Compatibility Publisher -> Elaborate Bytes AG)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [22104 2024-10-25] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [606624 2024-10-25] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105888 2024-10-25] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2025-02-01 12:41 - 2025-02-01 12:42 - 000028646 _____ C:\Users\magic\Desktop\FRST.txt
2025-02-01 12:09 - 2025-02-01 12:10 - 002403328 _____ (Farbar) C:\Users\magic\Desktop\FRST64.exe
2025-02-01 12:06 - 2025-02-01 12:06 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2025-02-01 12:04 - 2025-02-01 12:05 - 000008192 ___SH C:\DumpStack.log.tmp
2025-02-01 11:19 - 2025-02-01 11:19 - 000004008 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1517511580
2025-02-01 11:19 - 2025-02-01 11:19 - 000001094 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2025-02-01 10:46 - 2025-02-01 10:46 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2025-02-01 12:41 - 2022-01-19 08:20 - 000000000 ____D C:\FRST
2025-02-01 12:31 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-02-01 12:25 - 2018-02-01 20:56 - 000000000 ____D C:\ProgramData\NVIDIA
2025-02-01 12:07 - 2018-02-01 19:44 - 000000000 ___RD C:\Users\magic\OneDrive
2025-02-01 12:06 - 2023-03-18 14:54 - 000000000 ____D C:\WINDOWS\Minidump
2025-02-01 12:06 - 2018-02-01 20:00 - 000000000 __SHD C:\Users\magic\IntelGraphicsProfiles
2025-02-01 12:05 - 2024-12-20 07:51 - 1325363751 _____ C:\WINDOWS\MEMORY.DMP
2025-02-01 12:05 - 2022-01-28 09:57 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2025-02-01 12:05 - 2022-01-28 09:30 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2025-02-01 12:05 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2025-02-01 12:05 - 2018-02-18 16:37 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2025-02-01 11:24 - 2018-02-01 19:33 - 000000000 ____D C:\Users\magic\AppData\Local\Packages
2025-02-01 11:19 - 2022-01-28 09:49 - 001693140 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2025-02-01 11:19 - 2019-12-07 15:41 - 000719496 _____ C:\WINDOWS\system32\perfh005.dat
2025-02-01 11:19 - 2019-12-07 15:41 - 000145622 _____ C:\WINDOWS\system32\perfc005.dat
2025-02-01 11:19 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2025-02-01 11:19 - 2018-02-01 19:56 - 000000000 ____D C:\Program Files\Opera
2025-02-01 11:17 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2025-02-01 11:04 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2025-02-01 11:03 - 2022-01-28 08:32 - 000000000 ____D C:\WINDOWS\SystemTemp
2025-02-01 10:52 - 2019-03-20 15:41 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2025-02-01 10:48 - 2020-09-27 08:53 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2025-02-01 10:48 - 2020-09-27 08:53 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2025-02-01 10:42 - 2018-02-05 14:24 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2025-02-01 10:42 - 2018-02-05 14:24 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2025-02-01 10:42 - 2018-02-01 20:04 - 000000000 ___SD C:\Users\magic\Documents\Sticky Passwords
==================== Files in the root of some directories ========
2019-08-02 19:46 - 2019-08-02 19:48 - 000007605 _____ () C:\Users\magic\AppData\Local\resmon.resmoncfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 21-01-2025
Ran by magic (01-02-2025 12:43:46)
Running from C:\Users\magic\Desktop
Microsoft Windows 10 Home Version 22H2 19045.5247 (X64) (2022-01-28 08:59:34)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-3200854963-3717341606-596258127-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3200854963-3717341606-596258127-503 - Limited - Disabled)
Guest (S-1-5-21-3200854963-3717341606-596258127-501 - Limited - Disabled)
magic (S-1-5-21-3200854963-3717341606-596258127-1001 - Administrator - Enabled) => C:\Users\magic
WDAGUtilityAccount (S-1-5-21-3200854963-3717341606-596258127-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Acronis Disk Director (HKLM-x32\...\{AE372858-B1BD-49EF-8308-648322846008}) (Version: 12.0.3270 - Acronis)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 24.005.20320 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601108}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
AIMP (HKLM-x32\...\AIMP) (Version: v4.70.2251, 23.05.2021 - AIMP DevTeam)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0050 - ASUS)
Audacity 3.2.2 (HKLM\...\Audacity_is1) (Version: 3.2.2 - Audacity Team)
Balíček ovladače systému Windows - ASUS (HIDSwitch) System (08/18/2015 1.0.0.5) (HKLM\...\6D6063B1EDBCB582F1E596B1EB8BBFAAA100B1BD) (Version: 08/18/2015 1.0.0.5 - ASUS)
Balíček ovladače systému Windows - Intel (MEIx64) System (10/03/2017 11.7.0.1045) (HKLM\...\623E6BEBFE0E32D8AD88825BDC5B643D996BCA93) (Version: 10/03/2017 11.7.0.1045 - Intel)
Balíček ovladače systému Windows - Intel Corporation (iaStorA) HDC (04/10/2017 14.8.16.1063) (HKLM\...\1956B72D229BA5E262A8828A81DB9133B5F111B2) (Version: 04/10/2017 14.8.16.1063 - Intel Corporation)
Balíček ovladače systému Windows - Intel Corporation (iaStorA) SCSIAdapter (04/10/2017 14.8.16.1063) (HKLM\...\7B099E88B288543F1ED20B3C3332D4B1B2E6A621) (Version: 04/10/2017 14.8.16.1063 - Intel Corporation)
Balíček ovladače systému Windows - Qualcomm Atheros Communications (BtFilter) Bluetooth (05/18/2016 10.0.1.7) (HKLM\...\9196235C47040428607C47455891A82EB6B04203) (Version: 05/18/2016 10.0.1.7 - Qualcomm Atheros Communications)
Balíček ovladače systému Windows - Realtek Semiconductor Corp. (RTSPER) MTD (12/04/2017 10.0.16299.21304) (HKLM\...\30643CED791BBDA850B1D497B0BD7EF6DFBAD4FE) (Version: 12/04/2017 10.0.16299.21304 - Realtek Semiconductor Corp.)
calibre 64bit (HKLM\...\{F7CEB619-A3B5-4C3B-92CE-F3329695C00B}) (Version: 6.26.0 - Kovid Goyal)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{AF312B06-5C5C-468E-89B3-BE6DE2645722}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{0A4EF0E6-A912-4CDE-A7F3-6E56E7C13A2F}) (Version: 1.1.6 - Cisco Systems, Inc.)
CPUID HWMonitor 1.52 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.52 - CPUID, Inc.)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.11.0.1001 - Disc Soft Ltd)
Data Lifeguard Diagnostic for Windows 1.31 (HKLM-x32\...\{519C4DB6-B53B-4F5C-8297-89B2BE949FA5}_is1) (Version: - Western Digital Corporation)
EAX4 Unified Redist (HKLM-x32\...\{89661B04-C646-4412-B6D3-5E19F02F1F37}) (Version: 4.001 - Creative Labs)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
FastShare.cz verze 2.3.1 (HKLM-x32\...\FastShare.cz_is1) (Version: 2.3.1 - )
FlipPDF to ePUB (freeware) (HKLM-x32\...\FlipPDF to ePUB (freeware)_is1) (Version: - FlipPDF Solution)
Furniture Studio (HKLM-x32\...\Furniture Studio) (Version: 22.1.0.2 - Nikodem software)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 132.0.6834.160 - Google LLC)
HP Dropbox Plugin (HKLM-x32\...\{D58993B3-BA5F-4181-8D1C-05D0302398EB}) (Version: 40.13.54.81239 - HP)
HP Google Drive Plugin (HKLM-x32\...\{C777EAED-CEE8-4AF4-A2DE-2A0FC510481A}) (Version: 40.13.54.81239 - HP)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.5107 - Intel Corporation)
IPC360 (HKLM-x32\...\InstallShield_{C89E22AC-0603-466A-88A2-242694F28E98}) (Version: 1.0.0.1 - _)
KC Softwares BATExpert (HKLM-x32\...\KC Softwares BATExpert_is1) (Version: 1.13.1.20 - KC Softwares)
K-Lite Mega Codec Pack 13.7.5 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 13.7.5 - KLCP)
Kobo (HKLM-x32\...\Kobo) (Version: 4.37.19051 - Rakuten Kobo Inc.)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Microsoft Access database engine 2010 (English) (HKLM-x32\...\{90140000-00D1-0409-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 132.0.2957.127 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 132.0.2957.127 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2016 - cs-cz (HKLM\...\ProPlusRetail - cs-cz) (Version: 16.0.18324.20194 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3200854963-3717341606-596258127-1001\...\OneDriveSetup.exe) (Version: 24.226.1110.0004 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{CA8A885F-E95B-3FC6-BB91-F4D9377C7686}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40660 (HKLM\...\{5740BD44-B58D-321A-AFC0-6D3D4556DD6C}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40660 (HKLM\...\{CB0836EC-B072-368D-82B2-D3470BF95707}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40660 (HKLM-x32\...\{7DAD0258-515C-3DD4-8964-BD714199E0F7}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40660 (HKLM-x32\...\{E30D8B21-D82D-3211-82CC-0F0A5D1495E8}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.30.30704 (HKLM-x32\...\{57a73df6-4ba9-4c1d-bbbb-517289ff6c13}) (Version: 14.30.30704.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.30.30704 (HKLM-x32\...\{4d8dcf8c-a72a-43e1-9833-c12724db736e}) (Version: 14.30.30704.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.30.30704 (HKLM\...\{6DB765A8-05AF-49A1-A71D-6F645EE3CE41}) (Version: 14.30.30704 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.30.30704 (HKLM\...\{662A0088-6FCD-45DD-9EA7-68674058AED5}) (Version: 14.30.30704 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.30.30704 (HKLM-x32\...\{BF08E976-B92E-4336-B56F-2171179476C4}) (Version: 14.30.30704 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.30.30704 (HKLM-x32\...\{F6080405-9FA8-4CAA-9982-14E95D1A3DAC}) (Version: 14.30.30704 - Microsoft Corporation) Hidden
Microsoft Visual C++ Run Time Lib Setup (HKLM-x32\...\{AAF4238F-7C29-451D-9925-C753271A5728}) (Version: 1.0.0 - Microsoft)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
MP3Studio YouTube Downloader (HKLM-x32\...\{3AB59E5E-AADB-4F45-8741-DCA2BDF0F1DD}) (Version: 2.0.10.0 - MP3Studio/) Hidden
MP3Studio YouTube Downloader (HKLM-x32\...\{a17fa95e-ee4e-4c87-b026-5a550246b3a2}) (Version: 2.0.10.0 - MP3Studio)
NAS Starter Utility (HKLM-x32\...\NAS Starter Utility) (Version: - ZyXEL)
NETIS Wireless LAN Driver and Utility (HKLM-x32\...\{9C049509-055C-4CFF-A116-1D12312225EB}) (Version: 1.00.0290 - Netis Systems Co., Ltd.)
NVIDIA FrameView SDK 1.3.8513.32290073 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8513.32290073 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.27.0.120 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.27.0.120 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 546.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 546.17 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.18227.20082 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.18227.20082 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.18227.20162 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Opera Stable 116.0.5366.71 (HKLM-x32\...\Opera 116.0.5366.71) (Version: 116.0.5366.71 - Opera Software)
Opera Stable 87.0.4390.45 (HKLM-x32\...\Opera 87.0.4390.45) (Version: 87.0.4390.45 - Opera Software)
PL-2303 USB-to-Serial (HKLM-x32\...\{ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}) (Version: 1.2.10 - Prolific Technology INC)
Pomocník s aktualizací Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.19041.1375 - Microsoft Corporation)
PosteRazor (HKLM-x32\...\PosteRazor_is1) (Version: 1.5.2 - Alessandro Portale)
PRO 100 CZ verze 1.5 (HKLM-x32\...\{67A98B3A-9045-4EC3-88F5-E3637389D241}_is1) (Version: 1.5 - My Company, Inc.)
Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.15063.21300 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.24.1208.2017 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9205.1 - Realtek Semiconductor Corp.)
Sticky Password (HKLM-x32\...\Sticky Password_is1) (Version: 8.8.6.1817 - Lamantine Software)
Studie vylepšování produktu HP DeskJet 4530 series (HKLM\...\{79C4417A-70A3-44B3-98BE-CC38A8AEDCDE}) (Version: 40.15.1231.21321 - HP Inc.)
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.62.4 - TeamViewer)
Total Commander 64+32-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.10 - Ghisler Software GmbH)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 136.0.10773 - Ubisoft)
Update for x64-based Windows Systems (KB5001716) (HKLM\...\{DA80A019-4C3B-4DAA-ACA1-6937D7CAAF9E}) (Version: 8.94.0.0 - Microsoft Corporation)
USB Bridge Installer (HKLM\...\USB Bridge Installer_is1) (Version: - )
vanBasco's Karaoke Player (HKLM-x32\...\VMidi) (Version: - )
Veroval® medi.connect (HKLM-x32\...\{3D84DEBB-7913-4DC3-9AE7-7CF05CE48E9B}) (Version: 1.9.5.9 - Název společnosti:) Hidden
Veroval® medi.connect (HKLM-x32\...\Veroval MediConnect) (Version: 1.9.5.9 - Název společnosti:)
VirtualDJ 2018 (HKLM-x32\...\{FBCC4640-0D91-45B8-90B6-CFA1D0031EB2}) (Version: 8.3.4675.0 - Atomix Productions)
VirtualDJ 2021 (HKLM\...\{8F666AF4-949F-4DDB-8F97-197BC147435C}) (Version: 8.5.6242.0 - Atomix Productions)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.12 - VideoLAN)
Vojenský újezd Ralsko - Číhající Sovět (HKLM-x32\...\{Vojensky ujezd Ralsko - cihajici sovet}_is1) (Version: - Špidla Data Processing, s.r.o.)
Webshare klient (HKLM-x32\...\Webshare klient) (Version: - )
WinCDEmu (HKLM-x32\...\WinCDEmu) (Version: 4.1 - Sysprogs)
WinRAR 5.70 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)
Youtube Downloader HD v. 5.3.3 (HKLM-x32\...\Youtube Downloader HD_is1) (Version: - YoutubeDownloaderHD.com)
Youtube-DLG version 0.4 (HKLM-x32\...\{3C455028-FC99-4846-8E04-4FCD87D85613}_is1) (Version: 0.4 - Sotiris Papadopoulos)
Základní software zařízení HP DeskJet 4530 series (HKLM\...\{B46461A1-5DE6-484A-A1F2-79DA628FC4E2}) (Version: 40.15.1231.21321 - HP Inc.)
Packages:
=========
2D Audio Mixer -> C:\Program Files\WindowsApps\5626PanosKarabelas.2DAudioMixer_1.1.0.1_x86__qj94rv5hrx17w [2022-06-30] (Panos Karabelas)
Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC [2024-12-11] ()
City Lights by Talha Tariq -> C:\Program Files\WindowsApps\Microsoft.CityLightsbyTalhaTariq_1.0.0.0_neutral__8wekyb3d8bbwe [2022-06-30] (Microsoft Corporation)
Community Showcase Natural Landscapes 3 -> C:\Program Files\WindowsApps\Microsoft.CommunityShowcaseNaturalLandscapes3_1.0.0.0_neutral__8wekyb3d8bbwe [2022-06-30] (Microsoft Corporation)
Dj Mixer -> C:\Program Files\WindowsApps\27576KetoLabs.DjMixer_1.10.11.1000_x64__6nansvgt4vxt0 [2022-06-30] (KetoLabs)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2022-06-30] (Microsoft Corporation)
Doplněk pro Fotky -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2022-06-30] (Microsoft Corporation)
edjing 5: DJ turntable to mix and record music -> C:\Program Files\WindowsApps\DJiT.edjing-DJmixerconsolestudio-PlayMixRecordShar_5.1.12.0_x64__3nf5xjt6s13jt [2022-06-30] (DJiT) [MS Ad]
Fish and Corals -> C:\Program Files\WindowsApps\Microsoft.FishandCorals_1.0.0.0_neutral__8wekyb3d8bbwe [2022-06-30] (Microsoft Corporation)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_156.1.1125.0_x64__v10z8vjag6ke6 [2024-10-16] (HP Inc.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2022-06-30] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2022-06-30] (Microsoft Corporation) [MS Ad]
Microsoft Jackpot -> C:\Program Files\WindowsApps\Microsoft.MicrosoftJackpot_1.9.1110.0_x86__8wekyb3d8bbwe [2022-06-30] (Microsoft Studios) [MS Ad]
Mixfader dj - digital vinyl -> C:\Program Files\WindowsApps\DJiT.edjingScratchvinyledigital_1.2.12.0_x64__3nf5xjt6s13jt [2022-06-30] (DJiT)
MyASUS -> C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.30.0_x64__qmba6cd70vzyy [2024-12-19] (ASUSTeK COMPUTER INC.)
myTube! -> C:\Program Files\WindowsApps\59750RYKENAPPS.435307C335C44_4.0.19.0_x64__zd92nzxdcatqw [2022-06-30] (Ryken Studio)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.966.0_x64__56jybvy8sckqj [2024-04-25] (NVIDIA Corp.)
OfficePushNotificationsUtility -> C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE16 [2025-02-01] ()
Rambling Pathways -> C:\Program Files\WindowsApps\Microsoft.RamblingPathways_1.0.0.0_neutral__8wekyb3d8bbwe [2022-06-30] (Microsoft Corporation)
Speedtest by Ookla -> C:\Program Files\WindowsApps\Ookla.SpeedtestbyOokla_1.18.194.0_x64__43tkc6nmykmb6 [2024-02-19] (Ookla)
WavePad Audio Editor Software -> C:\Program Files\WindowsApps\NCHSoftware.WavePadAudioEditorFree_19.6.2.0_x86__7kedsbyvzns34 [2024-10-06] (NCH Software)
WiFi Analyzer -> C:\Program Files\WindowsApps\19965MATTHAFNER.WIFIANALYZER_2.8.0.0_x64__gs5k5vmxr2ste [2024-09-19] (Matt Hafner)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-3200854963-3717341606-596258127-1001_Classes\CLSID\{227C9E8F-71A1-4B23-9076-682A1A8EAAED}\localserver32 -> "c:\program files\macrium\common\reflectmonitor.exe" -ToastActivated => No File
CustomCLSID: HKU\S-1-5-21-3200854963-3717341606-596258127-1001_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
ContextMenuHandlers1: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => C:\Program Files (x86)\AIMP\System\aimp_menu64.dll [2021-07-01] (IP Izmaylov Artem Andreevich -> AIMP DevTeam)
ContextMenuHandlers1: [FormatFactoryShell] -> {A3777921-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx64_104.dll [2018-03-19] (Free Time) [File not signed]
ContextMenuHandlers1: [WinCDEmu] -> {D0E37FD2-F675-426F-B09A-2CF37BA46FD5} => C:\Program Files (x86)\WinCDEmu\x64\WinCDEmuContextMenu.dll [2015-09-28] (Sysprogs OU) [File not signed]
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2019-12-25] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers2: [WinCDEmu] -> {A9901FCD-B4DF-43A1-BD5D-6C9F88679497} => C:\Program Files (x86)\WinCDEmu\x64\WinCDEmuContextMenu.dll [2015-09-28] (Sysprogs OU) [File not signed]
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2019-12-25] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers4: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => C:\Program Files (x86)\AIMP\System\aimp_menu64.dll [2021-07-01] (IP Izmaylov Artem Andreevich -> AIMP DevTeam)
ContextMenuHandlers4: [FormatFactoryShell] -> {A3777921-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx64_104.dll [2018-03-19] (Free Time) [File not signed]
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2020-01-15] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_a2789b14f82a67b9\nvshext.dll [2023-11-10] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [WinCDEmu] -> {A9901FCD-B4DF-43A1-BD5D-6C9F88679497} => C:\Program Files (x86)\WinCDEmu\x64\WinCDEmuContextMenu.dll [2015-09-28] (Sysprogs OU) [File not signed]
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [VIDC.X264] => C:\Windows\system32\x264vfw64.dll [3799552 2017-07-30] (x264vfw project) [File not signed]
HKLM\...\Drivers32: [VIDC.LAGS] => C:\Windows\system32\lagarith.dll [148992 2011-12-07] () [File not signed]
HKLM\...\Drivers32: [VIDC.XVID] => C:\Windows\system32\xvidvfw.dll [309248 2015-12-18] () [File not signed]
HKLM\...\Drivers32: [msacm.ac3acm] => C:\Windows\system32\ac3acm.acm [180736 2012-07-21] (fccHandler) [File not signed]
HKLM\...\Drivers32: [VIDC.X264] => C:\Windows\SysWOW64\x264vfw.dll [3850240 2017-07-30] (x264vfw project) [File not signed]
HKLM\...\Drivers32: [VIDC.LAGS] => C:\Windows\SysWOW64\lagarith.dll [216064 2011-12-07] () [File not signed]
HKLM\...\Drivers32: [VIDC.XVID] => C:\Windows\SysWOW64\xvidvfw.dll [282112 2015-12-18] () [File not signed]
HKLM\...\Drivers32: [VIDC.FFDS] => C:\Windows\SysWOW64\ff_vfw.dll [112128 2015-10-24] () [File not signed]
HKLM\...\Drivers32: [msacm.ac3acm] => C:\Windows\SysWOW64\ac3acm.acm [122880 2012-07-21] (fccHandler) [File not signed]
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2022-10-10 10:30 - 2014-04-17 08:54 - 000843264 _____ ( Realtek Semiconductor Corp.) [File not signed] C:\Program Files (x86)\netis\USB Wireless LAN Utility\P2PLib.dll
2022-10-10 10:30 - 2014-04-17 08:54 - 000221184 _____ () [File not signed] C:\Program Files (x86)\netis\USB Wireless LAN Utility\EnumDevLib.dll
2018-03-19 10:40 - 2018-03-19 10:40 - 000101376 _____ (Free Time) [File not signed] C:\Program Files (x86)\FormatFactory\ShellEx64_104.dll
2022-10-10 10:31 - 2016-08-30 14:58 - 000093696 _____ (Realtek Semiconductor Corp.) [File not signed] C:\Program Files (x86)\netis\USB Wireless LAN Utility\RtlICS.dll
2022-10-10 10:31 - 2016-08-12 10:22 - 000667648 _____ (Realtek Semiconductor Corp.) [File not signed] C:\Program Files (x86)\netis\USB Wireless LAN Utility\RtlLib.dll
2022-10-10 10:31 - 2014-12-29 12:40 - 001801216 _____ (Realtek Semiconductor Corp.) [File not signed] C:\Program Files (x86)\netis\USB Wireless LAN Utility\RtWVer81.dll
2022-10-10 10:31 - 2016-08-30 14:28 - 002158080 _____ (Realtek Semiconductor Corp.) [File not signed] C:\Program Files (x86)\netis\USB Wireless LAN Utility\W10VWiFi.dll
2022-10-10 10:30 - 2014-04-17 08:54 - 000200704 _____ (Realtek) [File not signed] C:\Program Files (x86)\netis\USB Wireless LAN Utility\IpLib.dll
2022-10-10 10:31 - 2016-08-30 14:57 - 000286208 _____ (Realtek) [File not signed] C:\Program Files (x86)\netis\USB Wireless LAN Utility\RtlIhvOid.dll
2022-10-10 10:30 - 2014-04-17 08:54 - 000044544 _____ (Realtek) [File not signed] C:\Program Files (x86)\netis\USB Wireless LAN Utility\RtlQRCode.dll
2015-09-25 22:34 - 2015-09-28 19:08 - 000255488 _____ (Sysprogs OU) [File not signed] C:\Program Files (x86)\WinCDEmu\x64\WinCDEmuContextMenu.dll
2022-10-10 10:30 - 2014-04-17 08:54 - 001122304 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\netis\USB Wireless LAN Utility\LIBEAY32.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) =============
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2024-12-17] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2024-12-17] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2025-02-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2025-02-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2025-02-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2025-02-01] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2017-09-29 14:46 - 2017-09-29 14:44 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-3200854963-3717341606-596258127-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\magic\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
Network Binding:
=============
Ethernet: Realtek PCIe GbE Family Controller -> rt640x64.sys
Síťové připojení Bluetooth 2: Bluetooth Device (Personal Area Network) #2 -> bthpan.sys
Wi-Fi: Qualcomm Atheros AR956x Wireless Network Adapter -> athw10x.sys
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run: => "WindowsDefender"
HKU\S-1-5-21-3200854963-3717341606-596258127-1001\...\StartupApproved\Run: => "HP DeskJet 4530 series (NET)"
HKU\S-1-5-21-3200854963-3717341606-596258127-1001\...\StartupApproved\Run: => "Spotify"
HKU\S-1-5-21-3200854963-3717341606-596258127-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-3200854963-3717341606-596258127-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [UDP Query User{AE5956BD-A224-4106-ABF5-CEAAF19B5051}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [TCP Query User{F8AC96AB-FAD2-4AAF-8142-83496821072F}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{F0CD54C6-1EB5-4640-B11C-E8A01EFE213B}C:\users\magic\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\magic\appdata\roaming\spotify\spotify.exe => No File
FirewallRules: [TCP Query User{2EE98752-F881-4127-A0ED-9A81515CC68B}C:\users\magic\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\magic\appdata\roaming\spotify\spotify.exe => No File
FirewallRules: [UDP Query User{05BD1FAD-AE4B-4773-B387-876000FF1B8B}C:\users\magic\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\magic\appdata\roaming\spotify\spotify.exe => No File
FirewallRules: [TCP Query User{69BC2D85-55F7-42A1-A2C9-DC6AA302E233}C:\users\magic\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\magic\appdata\roaming\spotify\spotify.exe => No File
FirewallRules: [UDP Query User{E9B1CA3E-4969-45A1-8FB1-00C761B58594}C:\program files (x86)\ipc360\ipc360.exe] => (Allow) C:\program files (x86)\ipc360\ipc360.exe () [File not signed]
FirewallRules: [TCP Query User{CC6BC8DB-9A30-4C76-83B5-7A626C9A8A0A}C:\program files (x86)\ipc360\ipc360.exe] => (Allow) C:\program files (x86)\ipc360\ipc360.exe () [File not signed]
FirewallRules: [UDP Query User{0D876EC0-8ACB-4D68-A27C-02B15A6E379A}C:\program files (x86)\searchtool\searchtool.exe] => (Allow) C:\program files (x86)\searchtool\searchtool.exe () [File not signed]
FirewallRules: [TCP Query User{818FF721-EED1-477A-89C8-985912074970}C:\program files (x86)\searchtool\searchtool.exe] => (Allow) C:\program files (x86)\searchtool\searchtool.exe () [File not signed]
FirewallRules: [UDP Query User{21EE41A5-4DFE-4B20-9366-C820322ECB3E}C:\users\magic\downloads\cms\cms\cms.exe] => (Allow) C:\users\magic\downloads\cms\cms\cms.exe => No File
FirewallRules: [TCP Query User{593BAFF5-3CB0-4A9F-B5EC-AB73EC8E3065}C:\users\magic\downloads\cms\cms\cms.exe] => (Allow) C:\users\magic\downloads\cms\cms\cms.exe => No File
FirewallRules: [{74065532-0CAD-4EFA-940B-9180E73CC8F3}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{B7EFA839-5232-47C8-83FE-2FED917B291A}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [UDP Query User{2EB8DB99-528F-4326-AD4C-11124E10D452}C:\users\magic\onedrive\dokumenty\odorik.exe] => (Allow) C:\users\magic\onedrive\dokumenty\odorik.exe (Odorik.cz) [File not signed]
FirewallRules: [TCP Query User{FCFE6141-69A9-4F90-8A3C-EF131EBAAE23}C:\users\magic\onedrive\dokumenty\odorik.exe] => (Allow) C:\users\magic\onedrive\dokumenty\odorik.exe (Odorik.cz) [File not signed]
FirewallRules: [{6143B0B3-7BA4-4C9C-B05D-6050C9288ED8}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{A765F971-FE7B-4FF3-933B-DD3EC1F53FA9}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [UDP Query User{11218CAD-3EEF-4727-9A12-7F5B20979926}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [TCP Query User{AB12CF31-0082-46BD-BD7C-9D5F8A46F80D}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{FE7D3932-2550-4415-BA72-59A78882616B}C:\program files (x86)\zyxel\nas starter utility\nas starter utility.exe] => (Allow) C:\program files (x86)\zyxel\nas starter utility\nas starter utility.exe () [File not signed]
FirewallRules: [TCP Query User{9A0FEC17-8388-4BB1-92E1-2CBABE2EC3CB}C:\program files (x86)\zyxel\nas starter utility\nas starter utility.exe] => (Allow) C:\program files (x86)\zyxel\nas starter utility\nas starter utility.exe () [File not signed]
FirewallRules: [{82B8A8F2-97A5-403D-BB74-99BB49B1A800}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{FDCFDB0C-55D5-4099-A64E-F11111E23C77}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [UDP Query User{0DD17A2F-7FBC-42BC-A75E-A47F7C343BEC}C:\program files (x86)\zyxel\nas starter utility\nas starter utility.exe] => (Allow) C:\program files (x86)\zyxel\nas starter utility\nas starter utility.exe () [File not signed]
FirewallRules: [TCP Query User{34D3420A-4704-4186-8C23-935E1C82F288}C:\program files (x86)\zyxel\nas starter utility\nas starter utility.exe] => (Allow) C:\program files (x86)\zyxel\nas starter utility\nas starter utility.exe () [File not signed]
FirewallRules: [TCP Query User{50E176F4-F8A7-4276-AF1F-DAFD8535DB31}D:\games\farming simulator 19\x64\farmingsimulator2019game.exe] => (Block) D:\games\farming simulator 19\x64\farmingsimulator2019game.exe => No File
FirewallRules: [UDP Query User{A839851B-DCBA-4FCD-A1CC-B420F495BC09}D:\games\farming simulator 19\x64\farmingsimulator2019game.exe] => (Block) D:\games\farming simulator 19\x64\farmingsimulator2019game.exe => No File
FirewallRules: [{922CAA0D-AFC7-48FF-A84D-9A8C53EC5F60}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{50DE2E3B-1237-47D7-8252-3B2D40F25180}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{32EE9053-9550-4F48-B888-F32FE272E9FC}] => (Allow) C:\Program Files (x86)\HP\Diagnostics\PSDR\SoftPaq\Binaries\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.)
FirewallRules: [{27B3A3F7-0186-48D0-A50A-98E1468DEF14}] => (Allow) C:\Program Files (x86)\HP\Diagnostics\PSDR\SoftPaq\Binaries\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.)
FirewallRules: [{0DF200B9-6342-4DEF-A06D-E6BD12FF58E2}] => (Allow) C:\HP\Diagnostics\PSDR\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.)
FirewallRules: [{BE900228-274A-46E5-81EA-2E3B40204FDB}] => (Allow) C:\HP\Diagnostics\PSDR\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.)
FirewallRules: [{9CAFAA7C-6D4B-4B92-AD7B-576DC4FF8C76}] => (Allow) C:\Program Files\HP\HP DeskJet 4530 series\Bin\DeviceSetup.exe (HP Inc. -> HP Inc.)
FirewallRules: [{5FC2E1A4-EFB9-4CCE-8E2A-0E1E01A2607F}] => (Allow) LPort=5357
FirewallRules: [{1804CA84-E24E-461B-8113-4810F860E374}] => (Allow) C:\Program Files\HP\HP DeskJet 4530 series\Bin\HPNetworkCommunicatorCom.exe (HP Inc. -> HP Inc.)
FirewallRules: [{730DB51E-4613-4D2A-8D75-4121A9551472}] => (Allow) C:\Program Files\Opera\87.0.4390.36\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [{2E11B0ED-0FA1-49DF-9773-36259C1DFED2}] => (Allow) C:\Program Files (x86)\netis\USB Wireless LAN Utility\RtWLan.exe (Realtek Semiconductor Corp.) [File not signed]
FirewallRules: [{55D1C44A-4987-42E9-83C1-3729E1724D22}] => (Allow) LPort=1542
FirewallRules: [{3D5A6BFE-B890-4A23-B707-770694E251D4}] => (Allow) LPort=1542
FirewallRules: [{3EB2A9B5-4570-4455-97F9-F68EA0C6C861}] => (Allow) LPort=53
FirewallRules: [{EA2E2959-3DF8-43E6-8B9C-6E0B84D7479A}] => (Allow) C:\Program Files (x86)\netis\USB Wireless LAN Utility\RTLDHCP.exe (Realtek Semiconductor Corp -> Realtek)
FirewallRules: [{F9386EE3-3FBB-497E-9847-F94C1FEE271B}] => (Allow) C:\Program Files (x86)\netis\USB Wireless LAN Utility\RTLDHCP.exe (Realtek Semiconductor Corp -> Realtek)
FirewallRules: [{CC45F8D6-58C6-4EA7-9842-24EB14B83125}] => (Allow) C:\Program Files (x86)\netis\USB Wireless LAN Utility\RTLDHCP.exe (Realtek Semiconductor Corp -> Realtek)
FirewallRules: [{B320AAB4-63CB-4CB3-8EF8-60D475915E12}] => (Allow) C:\Program Files (x86)\netis\USB Wireless LAN Utility\RTLDHCP.exe (Realtek Semiconductor Corp -> Realtek)
FirewallRules: [{0C989D61-0833-41AA-A432-FEA9CDF203A3}] => (Allow) C:\Program Files (x86)\netis\USB Wireless LAN Utility\RTLDHCP.exe (Realtek Semiconductor Corp -> Realtek)
FirewallRules: [{9D834C10-D6EB-4D56-8E20-EFBE3BB77F6B}] => (Allow) C:\Program Files (x86)\netis\USB Wireless LAN Utility\RTLDHCP.exe (Realtek Semiconductor Corp -> Realtek)
FirewallRules: [{CA7BB131-FED1-495F-935B-95258ABEB610}] => (Allow) C:\Program Files (x86)\netis\USB Wireless LAN Utility\RTLDHCP.exe (Realtek Semiconductor Corp -> Realtek)
FirewallRules: [{5D07BE5A-CB78-4D16-B407-7CEDCE0DCE02}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{F56B7574-1EB4-4937-B305-3E358067BDDB}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{80D77A41-4CA2-48B3-85E9-53BDEEB7EF8F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{DC0DE3C7-B3B4-483D-93B2-319BEC0430EF}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{C4BB0ECB-3FA1-48FA-B447-5FEB2109D5D2}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E214F1B3-ADFE-4199-859B-368267E9DEFD}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{78DBD0EC-70D0-44F1-9743-2B60A9CDC422}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{6A4CFDD1-6574-42EF-A771-A555E6B1C08D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{CC63E653-A79D-46F6-84F4-1EC3DB28E953}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{FCAA9124-7084-401C-8B6C-C88C53472959}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{AF2FF8A9-D0BA-4844-BE92-05B2D5B80E00}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{7493DB0B-5E91-449A-BE5E-600D2551F866}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E162D8D4-4B23-4E93-8737-6605DA308EF2}] => (Allow) C:\Program Files (x86)\Sticky Password\stpass.exe (Lamantine Software a.s. -> Lamantine Software a.s.)
FirewallRules: [{629F68BE-1B2A-47C4-A996-871C4E753B87}] => (Allow) C:\Program Files (x86)\Sticky Password\stpass.exe (Lamantine Software a.s. -> Lamantine Software a.s.)
FirewallRules: [{FA432C35-E4F9-4395-818C-226CDC936ABB}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{6260CBDA-3406-4192-B515-3E359E8C817C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.134.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{574D164B-8201-418A-917B-2AFD9FE57890}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.134.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{21AB4B2C-E2DB-4695-8241-775F10372745}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.134.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0E40C470-FBDA-44B3-B916-2FE955B96390}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.134.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{9F9D682E-99BC-4106-9D09-F9C70CF5530B}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.30.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{D2B6D10E-854B-4A34-BAF7-46559EA91A39}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.30.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{50F2D47B-9F11-42EF-B964-80CCF49AD84D}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.30.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{6BC73A3F-09D5-4585-9EC7-A1565312F85B}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.30.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.)
FirewallRules: [{1F6DBC3E-ED1E-4C54-997A-63A4799FAF7A}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\131.0.2903.112\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{FDBF46B3-435E-4A7D-861F-C16A1531ECED}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{79CB2861-BF19-45DE-A414-D0546C670F5C}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{01C0C7B2-CF5D-41A7-809A-0C351E956185}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{DA251240-4C6C-47B2-A3CD-66E5B3238F73}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{B9090CF2-8286-413B-AA53-B20C3BBCF231}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{27428D6C-57D6-42D9-B300-1AB4BF72D085}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\132.0.2957.127\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{4A1DB461-79FC-4C32-823B-047BAA72E831}] => (Allow) C:\Program Files\Opera\opera.exe (Opera Norway AS -> Opera Software)
==================== Restore Points =========================
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (02/01/2025 12:36:08 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program FRST64.exe verze 21.1.2025.0 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 3130
Čas spuštění: 01db749bb5d14278
Čas ukončení: 25
Cesta k aplikaci: C:\Users\magic\Desktop\FRST64.exe
ID hlášení: 0aa971e5-913e-4487-877d-e3c0b3032f84
Úplný název balíčku s chybou:
ID aplikace relativní podle balíčku s chybou:
Typ zablokování: Unknown
Error: (02/01/2025 12:23:05 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program FRST64.exe verze 21.1.2025.0 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 39bc
Čas spuštění: 01db749a01c949ca
Čas ukončení: 104
Cesta k aplikaci: C:\Users\magic\Desktop\FRST64.exe
ID hlášení: 33ebae02-402f-4b6a-a12f-25125b6843db
Úplný název balíčku s chybou:
ID aplikace relativní podle balíčku s chybou:
Typ zablokování: Unknown
Error: (12/21/2024 04:04:58 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\WINDOWS\system32\srtasks.exe ExecuteScheduledSPPCreation; Popis = Naplánovaný kontrolní bod; Chyba = 0x80070422).
Error: (12/19/2024 10:00:01 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\WINDOWS\system32\srtasks.exe ExecuteScheduledSPPCreation; Popis = Naplánovaný kontrolní bod; Chyba = 0x80070422).
Error: (12/19/2024 07:54:44 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: AdobeCollabSync.exe, verze: 24.5.20320.0, časové razítko: 0x6751fa64
Název chybujícího modulu: AdobeCollabSync.exe, verze: 24.5.20320.0, časové razítko: 0x6751fa64
Kód výjimky: 0xc0000409
Posun chyby: 0x0000000000524371
ID chybujícího procesu: 0x3f9c
Čas spuštění chybující aplikace: 0x01db51e2c84f7ca0
Cesta k chybující aplikaci: C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe
Cesta k chybujícímu modulu: C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe
ID zprávy: 1fad2689-c336-45a0-b054-2efec6a6f164
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (12/13/2024 06:30:49 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\WINDOWS\system32\srtasks.exe ExecuteScheduledSPPCreation; Popis = Naplánovaný kontrolní bod; Chyba = 0x80070422).
Error: (12/13/2024 07:12:12 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\WINDOWS\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.5071_none_7e3c4e707c6a2679\TiWorker.exe -Embedding; Popis = Instalační služba modulů systému Windows; Chyba = 0x80070422).
Error: (12/11/2024 08:49:08 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\WINDOWS\system32\srtasks.exe ExecuteScheduledSPPCreation; Popis = Naplánovaný kontrolní bod; Chyba = 0x80070422).
System errors:
=============
Error: (02/01/2025 12:08:01 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba Google Update (gupdate) neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (02/01/2025 12:08:01 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Služba Google Update (gupdate) bylo dosaženo časového limitu (30000 ms).
Error: (02/01/2025 12:06:04 PM) (Source: BugCheck) (EventID: 1001) (User: )
Description: Počítač byl restartován z procesu kontroly chyb. Kontrola chyb: 0x000000ef (0xffff8481843ac0c0, 0x0000000000000000, 0x0000000000000000, 0x0000000000000000). Výpis byl uložen do: C:\WINDOWS\MEMORY.DMP. ID hlášení: 00000000-0000-0000-0000-000000000000
Error: (02/01/2025 12:06:04 PM) (Source: BugCheck) (EventID: 1005) (User: )
Description: Ze souboru úplného výpisu nelze vytvořit soubor s minimálním výpisem.
Error: (02/01/2025 12:05:59 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Realtek DHCP Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (02/01/2025 12:04:55 PM) (Source: volmgr) (EventID: 161) (User: )
Description: Soubor s výpisem paměti se nepodařilo vytvořit kvůli chybě při vytváření výpisu paměti.
Error: (02/01/2025 12:04:55 PM) (Source: volmgr) (EventID: 161) (User: )
Description: Soubor s výpisem paměti se nepodařilo vytvořit kvůli chybě při vytváření výpisu paměti.
Error: (02/01/2025 11:42:07 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Windows Presentation Foundation Font Cache 3.0.0.0 neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Windows Defender:
================
Date: 2024-12-22 10:41:19
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {77C470EE-F7B7-45F1-BAF8-8EFDEED61D5E}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2024-12-21 11:46:36
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {1262D70B-F2F0-467A-A4D5-FA2EBE07D529}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2024-12-20 12:35:02
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {74DA27ED-BB19-4EF8-A8C7-BFF983AE1684}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2024-12-15 13:40:06
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {7B5B237A-06A3-40DD-AF18-72CC63997FBC}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2024-12-13 18:28:47
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {0B54F69D-CF77-40FB-B7DF-B39F5D7DA741}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Event[0]:
Date: 2023-12-05 12:19:31
Description:
Funkce Ochrana v reálném čase u prohledávání Antivirová ochrana v programu Microsoft Defender zjistila chybu a došlo k jejímu selhání.
Funkce: Při přístupu
Kód chyby: 0x80004005
Popis chyby: Nespecifikovaná chyba
Důvod: Ovladač filtru přeskočil prohledávání položek a je v režimu průchodu. Příčinou může být nízký stav prostředků.
Date: 2023-12-05 11:19:10
Description:
Funkce Ochrana v reálném čase u prohledávání Antivirová ochrana v programu Microsoft Defender zjistila chybu a došlo k jejímu selhání.
Funkce: Při přístupu
Kód chyby: 0x80004005
Popis chyby: Nespecifikovaná chyba
Důvod: Ovladač filtru přeskočil prohledávání položek a je v režimu průchodu. Příčinou může být nízký stav prostředků.
Date: 2023-03-03 16:55:15
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.383.916.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.20000.2
Kód chyby: 0x80070050
Popis chyby: Soubor existuje.
Date: 2023-01-11 16:24:54
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.381.1969.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.19900.2
Kód chyby: 0x80070102
Popis chyby: Vypršel časový limit operace čekání.
CodeIntegrity:
===============
Date: 2023-11-17 11:15:28
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2023-10-23 17:21:23
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2023-09-13 19:04:36
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2023-08-12 10:38:10
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\ProgramData\Microsoft\Windows Defender\Platform\4.18.23070.1004-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. X751LB.606 12/07/2015
Motherboard: ASUSTeK COMPUTER INC. X751LB
Processor: Intel(R) Core(TM) i7-5500U CPU @ 2.40GHz
Percentage of memory in use: 42%
Total physical RAM: 12158.74 MB
Available physical RAM: 6961.93 MB
Total Virtual: 14014.74 MB
Available Virtual: 8603.16 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:371.34 GB) (Free:61.19 GB) (Model: Verbatim Vi550 S3) NTFS
Drive d: (DATA) (Fixed) (Total:581.26 GB) (Free:193.98 GB) (Model: Verbatim Vi550 S3) NTFS
\\?\Volume{4419ebd6-f5aa-4e72-9d89-ebc13c5a392d}\ () (Fixed) (Total:0.51 GB) (Free:0.05 GB) NTFS
\\?\Volume{f7f26e06-fabb-4783-926c-d93c11a4365a}\ (RECOVERY) (Fixed) (Total:0.49 GB) (Free:0.09 GB) NTFS
\\?\Volume{a211259f-19d9-45a7-9a3a-908635ef760d}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 953.9 GB) (Disk ID: 00000000)
Partition: GPT.
==================== End of Addition.txt =======================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Pomalý NTB a zamrznutí
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119314
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalý NTB a zamrznutí
Zdravím!
Otevřte poznámkový blok a zkopírujte do něj:
Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CloseProcesses:
Task: {350F507E-86F4-4B8B-994F-2BDFEB7BD3AB} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem134.0.6947.0{68EF1914-8040-48CF-94E0-E6728193C56C} => C:\Program Files (x86)\Google\GoogleUpdater\134.0.6947.0\updater.exe [5642336 2025-01-09] (Google LLC -> Google LLC)
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
FirewallRules: [UDP Query User{F0CD54C6-1EB5-4640-B11C-E8A01EFE213B}C:\users\magic\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\magic\appdata\roaming\spotify\spotify.exe => No File
FirewallRules: [TCP Query User{2EE98752-F881-4127-A0ED-9A81515CC68B}C:\users\magic\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\magic\appdata\roaming\spotify\spotify.exe => No File
FirewallRules: [UDP Query User{05BD1FAD-AE4B-4773-B387-876000FF1B8B}C:\users\magic\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\magic\appdata\roaming\spotify\spotify.exe => No File
FirewallRules: [TCP Query User{69BC2D85-55F7-42A1-A2C9-DC6AA302E233}C:\users\magic\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\magic\appdata\roaming\spotify\spotify.exe => No File
FirewallRules: [UDP Query User{21EE41A5-4DFE-4B20-9366-C820322ECB3E}C:\users\magic\downloads\cms\cms\cms.exe] => (Allow) C:\users\magic\downloads\cms\cms\cms.exe => No File
FirewallRules: [TCP Query User{593BAFF5-3CB0-4A9F-B5EC-AB73EC8E3065}C:\users\magic\downloads\cms\cms\cms.exe] => (Allow) C:\users\magic\downloads\cms\cms\cms.exe => No File
FirewallRules: [TCP Query User{50E176F4-F8A7-4276-AF1F-DAFD8535DB31}D:\games\farming simulator 19\x64\farmingsimulator2019game.exe] => (Block) D:\games\farming simulator 19\x64\farmingsimulator2019game.exe => No File
FirewallRules: [UDP Query User{A839851B-DCBA-4FCD-A1CC-B420F495BC09}D:\games\farming simulator 19\x64\farmingsimulator2019game.exe] => (Block) D:\games\farming simulator 19\x64\farmingsimulator2019game.exe => No File
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Pomalý NTB a zamrznutí
Po <Fix> proběhnul restart který trval cca 9 min log je zde:
Fix result of Farbar Recovery Scan Tool (x64) Version: 21-01-2025
Ran by magic (01-02-2025 14:55:03) Run:3
Running from C:\Users\magic\Desktop
Loaded Profiles: magic
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
Task: {350F507E-86F4-4B8B-994F-2BDFEB7BD3AB} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem134.0.6947.0{68EF1914-8040-48CF-94E0-E6728193C56C} => C:\Program Files (x86)\Google\GoogleUpdater\134.0.6947.0\updater.exe [5642336 2025-01-09] (Google LLC -> Google LLC)
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
FirewallRules: [UDP Query User{F0CD54C6-1EB5-4640-B11C-E8A01EFE213B}C:\users\magic\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\magic\appdata\roaming\spotify\spotify.exe => No File
FirewallRules: [TCP Query User{2EE98752-F881-4127-A0ED-9A81515CC68B}C:\users\magic\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\magic\appdata\roaming\spotify\spotify.exe => No File
FirewallRules: [UDP Query User{05BD1FAD-AE4B-4773-B387-876000FF1B8B}C:\users\magic\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\magic\appdata\roaming\spotify\spotify.exe => No File
FirewallRules: [TCP Query User{69BC2D85-55F7-42A1-A2C9-DC6AA302E233}C:\users\magic\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\magic\appdata\roaming\spotify\spotify.exe => No File
FirewallRules: [UDP Query User{21EE41A5-4DFE-4B20-9366-C820322ECB3E}C:\users\magic\downloads\cms\cms\cms.exe] => (Allow) C:\users\magic\downloads\cms\cms\cms.exe => No File
FirewallRules: [TCP Query User{593BAFF5-3CB0-4A9F-B5EC-AB73EC8E3065}C:\users\magic\downloads\cms\cms\cms.exe] => (Allow) C:\users\magic\downloads\cms\cms\cms.exe => No File
FirewallRules: [TCP Query User{50E176F4-F8A7-4276-AF1F-DAFD8535DB31}D:\games\farming simulator 19\x64\farmingsimulator2019game.exe] => (Block) D:\games\farming simulator 19\x64\farmingsimulator2019game.exe => No File
FirewallRules: [UDP Query User{A839851B-DCBA-4FCD-A1CC-B420F495BC09}D:\games\farming simulator 19\x64\farmingsimulator2019game.exe] => (Block) D:\games\farming simulator 19\x64\farmingsimulator2019game.exe => No File
EmptyTemp:
End
*****************
Processes closed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{350F507E-86F4-4B8B-994F-2BDFEB7BD3AB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{350F507E-86F4-4B8B-994F-2BDFEB7BD3AB}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem134.0.6947.0{68EF1914-8040-48CF-94E0-E6728193C56C} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem134.0.6947.0{68EF1914-8040-48CF-94E0-E6728193C56C}" => removed successfully
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat => moved successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{F0CD54C6-1EB5-4640-B11C-E8A01EFE213B}C:\users\magic\appdata\roaming\spotify\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{2EE98752-F881-4127-A0ED-9A81515CC68B}C:\users\magic\appdata\roaming\spotify\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{05BD1FAD-AE4B-4773-B387-876000FF1B8B}C:\users\magic\appdata\roaming\spotify\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{69BC2D85-55F7-42A1-A2C9-DC6AA302E233}C:\users\magic\appdata\roaming\spotify\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{21EE41A5-4DFE-4B20-9366-C820322ECB3E}C:\users\magic\downloads\cms\cms\cms.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{593BAFF5-3CB0-4A9F-B5EC-AB73EC8E3065}C:\users\magic\downloads\cms\cms\cms.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{50E176F4-F8A7-4276-AF1F-DAFD8535DB31}D:\games\farming simulator 19\x64\farmingsimulator2019game.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{A839851B-DCBA-4FCD-A1CC-B420F495BC09}D:\games\farming simulator 19\x64\farmingsimulator2019game.exe" => removed successfully
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 1310720 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 338959594 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 0 B
Windows/system/drivers => 101443079 B
Edge => 0 B
Chrome => 488685827 B
Firefox => 0 B
Opera => 16040324 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 173 B
systemprofile32 => 173 B
LocalService => 173 B
NetworkService => 226707 B
magic => 209250470 B
RecycleBin => 14950984646 B
EmptyTemp: => 15 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 14:57:58 ====
Fix result of Farbar Recovery Scan Tool (x64) Version: 21-01-2025
Ran by magic (01-02-2025 14:55:03) Run:3
Running from C:\Users\magic\Desktop
Loaded Profiles: magic
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
Task: {350F507E-86F4-4B8B-994F-2BDFEB7BD3AB} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem134.0.6947.0{68EF1914-8040-48CF-94E0-E6728193C56C} => C:\Program Files (x86)\Google\GoogleUpdater\134.0.6947.0\updater.exe [5642336 2025-01-09] (Google LLC -> Google LLC)
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
FirewallRules: [UDP Query User{F0CD54C6-1EB5-4640-B11C-E8A01EFE213B}C:\users\magic\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\magic\appdata\roaming\spotify\spotify.exe => No File
FirewallRules: [TCP Query User{2EE98752-F881-4127-A0ED-9A81515CC68B}C:\users\magic\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\magic\appdata\roaming\spotify\spotify.exe => No File
FirewallRules: [UDP Query User{05BD1FAD-AE4B-4773-B387-876000FF1B8B}C:\users\magic\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\magic\appdata\roaming\spotify\spotify.exe => No File
FirewallRules: [TCP Query User{69BC2D85-55F7-42A1-A2C9-DC6AA302E233}C:\users\magic\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\magic\appdata\roaming\spotify\spotify.exe => No File
FirewallRules: [UDP Query User{21EE41A5-4DFE-4B20-9366-C820322ECB3E}C:\users\magic\downloads\cms\cms\cms.exe] => (Allow) C:\users\magic\downloads\cms\cms\cms.exe => No File
FirewallRules: [TCP Query User{593BAFF5-3CB0-4A9F-B5EC-AB73EC8E3065}C:\users\magic\downloads\cms\cms\cms.exe] => (Allow) C:\users\magic\downloads\cms\cms\cms.exe => No File
FirewallRules: [TCP Query User{50E176F4-F8A7-4276-AF1F-DAFD8535DB31}D:\games\farming simulator 19\x64\farmingsimulator2019game.exe] => (Block) D:\games\farming simulator 19\x64\farmingsimulator2019game.exe => No File
FirewallRules: [UDP Query User{A839851B-DCBA-4FCD-A1CC-B420F495BC09}D:\games\farming simulator 19\x64\farmingsimulator2019game.exe] => (Block) D:\games\farming simulator 19\x64\farmingsimulator2019game.exe => No File
EmptyTemp:
End
*****************
Processes closed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{350F507E-86F4-4B8B-994F-2BDFEB7BD3AB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{350F507E-86F4-4B8B-994F-2BDFEB7BD3AB}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem134.0.6947.0{68EF1914-8040-48CF-94E0-E6728193C56C} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem134.0.6947.0{68EF1914-8040-48CF-94E0-E6728193C56C}" => removed successfully
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat => moved successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{F0CD54C6-1EB5-4640-B11C-E8A01EFE213B}C:\users\magic\appdata\roaming\spotify\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{2EE98752-F881-4127-A0ED-9A81515CC68B}C:\users\magic\appdata\roaming\spotify\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{05BD1FAD-AE4B-4773-B387-876000FF1B8B}C:\users\magic\appdata\roaming\spotify\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{69BC2D85-55F7-42A1-A2C9-DC6AA302E233}C:\users\magic\appdata\roaming\spotify\spotify.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{21EE41A5-4DFE-4B20-9366-C820322ECB3E}C:\users\magic\downloads\cms\cms\cms.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{593BAFF5-3CB0-4A9F-B5EC-AB73EC8E3065}C:\users\magic\downloads\cms\cms\cms.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{50E176F4-F8A7-4276-AF1F-DAFD8535DB31}D:\games\farming simulator 19\x64\farmingsimulator2019game.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{A839851B-DCBA-4FCD-A1CC-B420F495BC09}D:\games\farming simulator 19\x64\farmingsimulator2019game.exe" => removed successfully
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 1310720 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 338959594 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 0 B
Windows/system/drivers => 101443079 B
Edge => 0 B
Chrome => 488685827 B
Firefox => 0 B
Opera => 16040324 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 173 B
systemprofile32 => 173 B
LocalService => 173 B
NetworkService => 226707 B
magic => 209250470 B
RecycleBin => 14950984646 B
EmptyTemp: => 15 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 14:57:58 ====
-
Rudy
- Site Admin
- Příspěvky: 119314
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalý NTB a zamrznutí
OK. A nyní to vypadá jak?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Pomalý NTB a zamrznutí
Docela špatně, vše je pomalé, ntb padnul do modré smrti po restartu nabehoval jenom do BIOSu, po tvrdém vypnutí a opětovném zapnutí sice nabehnul ale každá operace dlouho trvá nereaguje na kliknutí, program se spustí až po chvíli. Možná bude lepší zakusit reinstalaci Windows.
-
Rudy
- Site Admin
- Příspěvky: 119314
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalý NTB a zamrznutí
Zkontrolujeme disk. Stáhněte, nainstalujte a spusťte CrystalDiskInfo: https://www.slunecnice.cz/sw/crystaldiskinfo/ a přes Úpravy>kopírovat sem dejte log.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Pomalý NTB a zamrznutí
Povedlo se mi otevřít Správce úloh, disk většinou běží na 100% bez zjevné příčiny
----------------------------------------------------------------------------
CrystalDiskInfo 9.5.0 (C) 2008-2024 hiyohiyo
Crystal Dew World: https://crystalmark.info/
----------------------------------------------------------------------------
OS : Windows 10 Home 22H2 [10.0 Build 19045] (x64)
Date : 2025/02/01 17:46:44
-- Controller Map ----------------------------------------------------------
+ Intel(R) 9 Series Chipset Family SATA AHCI Controller [ATA]
- Verbatim Vi550 S3
- TSSTcorp CDDVDW SU-228GB
- Řadič prostorů úložišť [SCSI]
- DAEMON Tools Lite Virtual SCSI Bus [SCSI]
-- Disk List ---------------------------------------------------------------
(01) Verbatim Vi550 S3 : 1024.2 GB [0/0/0, pd1] - ma
----------------------------------------------------------------------------
(01) Verbatim Vi550 S3
----------------------------------------------------------------------------
Model : Verbatim Vi550 S3
Firmware : H220916a
Serial Number : 493532534831326
Disk Size : 1024.2 GB (8.4/137.4/1024.2/----)
Buffer Size : Neznámy údaj
Queue Depth : 32
# of Sectors : 2000409264
Rotation Rate : ---- (SSD)
Interface : Serial ATA
Major Version : ACS-4
Minor Version : ----
Transfer Mode : SATA/600 | SATA/600
Power On Hours : 3733 hodin
Power On Count : 688 krát
Host Reads : 4203 GB
Host Writes : 9334 GB
Temperature : 38 C (100 F)
Health Status : Dobrý
Features : S.M.A.R.T., NCQ, TRIM, GPL
APM Level : ----
AAM Level : ----
Drive Letter : C: D:
-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
05 100 100 _50 000000000000 Number of New Bad Block
09 100 100 __0 000000000E95 Power On Hours
0C 100 100 __0 0000000002B0 Power Cycle Count
A4 200 200 __0 002101690111 Total Erase Count
A5 200 200 __0 000000000169 Maximum Erase Count
A6 200 200 __0 000000000021 Minimum Erase Count
A7 200 200 __0 000000000111 Average Erase Count
A8 100 100 __0 000000000000 Specifický pro výrobce
A9 100 100 _10 000000030006 Specifický pro výrobce
AA 100 100 __0 000000000000 Specifický pro výrobce
AB __0 __0 __0 000000000000 Specifický pro výrobce
AC __0 __0 __0 000000000000 Specifický pro výrobce
AE 100 100 __0 000000000000 Specifický pro výrobce
AF 100 100 _10 000000000000 Specifický pro výrobce
B4 100 100 __0 0000000000E7 Specifický pro výrobce
BB 100 __0 __0 000000000000 Specifický pro výrobce
C0 100 100 __0 00000000000D Power off Retract Count
C2 _38 _38 __0 0033000C0026 Temperature
C7 100 100 __0 000000000000 SATA CRC Error Count
D1 200 200 __0 000000000002 Specifický pro výrobce
D2 200 200 __0 000000000A3E Specifický pro výrobce
D3 200 200 __0 0000000007DC Specifický pro výrobce
E7 _73 _73 __5 00000000001B Specifický pro výrobce
F1 100 100 __0 000000002476 Total Written
F2 100 100 __0 00000000106B Total Read
F3 _50 _50 __0 000000000027 Specifický pro výrobce
F5 100 100 __0 000000020002 Specifický pro výrobce
-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0040 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 3439 3335 3332 3533 3438 3331 3332 3620 2020 2020
020: 0000 0000 0000 4832 3230 3931 3661 5665 7262 6174
030: 696D 2056 6935 3530 2053 3320 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8001 4000 2F00
050: 4000 0000 0000 0007 3FFF 0010 003F FC10 00FB 0101
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 4D20
070: 0000 0000 0000 0000 0000 001F 850E 0006 0044 0004
080: 0BF8 0000 706B 7401 4163 7069 B401 4163 407F 0001
090: 0001 0000 FFFE 0000 0000 0000 0000 0000 0000 0000
100: D2B0 773B 0000 0000 0000 0008 4000 0000 5000 0000
110: 0000 2B6F 0000 0000 0000 0000 0000 0000 0000 401C
120: 401C 0000 0000 0000 0000 0000 0000 0000 0029 0000
130: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
140: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0003 0001
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 0031 0000 0000 4000
210: 0000 0000 0000 0000 0000 0000 0000 0001 0000 0000
220: 0000 0000 10FF 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 03E8 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 FDA5
-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 14 00 05 13 00 64 64 00 00 00 00 00 00 00 09 12
010: 00 64 64 95 0E 00 00 00 00 00 0C 12 00 64 64 B0
020: 02 00 00 00 00 00 A4 12 00 C8 C8 11 01 69 01 21
030: 00 00 A5 32 00 C8 C8 69 01 00 00 00 00 00 A6 32
040: 00 C8 C8 21 00 00 00 00 00 00 A7 32 00 C8 C8 11
050: 01 00 00 00 00 00 A8 12 00 64 64 00 00 00 00 00
060: 00 00 A9 13 00 64 64 06 00 03 00 00 00 00 AA 22
070: 00 64 64 00 00 00 00 00 00 00 AB 32 00 00 00 00
080: 00 00 00 00 00 00 AC 32 00 00 00 00 00 00 00 00
090: 00 00 AE 22 00 64 64 00 00 00 00 00 00 00 AF 22
0A0: 00 64 64 00 00 00 00 00 00 00 B4 33 00 64 64 E7
0B0: 00 00 00 00 00 00 BB 32 00 64 00 00 00 00 00 00
0C0: 00 00 C0 12 00 64 64 0D 00 00 00 00 00 00 C2 22
0D0: 00 26 26 26 00 0C 00 33 00 00 C7 12 00 64 64 00
0E0: 00 00 00 00 00 00 D1 32 00 C8 C8 02 00 00 00 00
0F0: 00 00 D2 32 00 C8 C8 3E 0A 00 00 00 00 00 D3 32
100: 00 C8 C8 DC 07 00 00 00 00 00 E7 23 00 49 49 1B
110: 00 00 00 00 00 00 F1 32 00 64 64 76 24 00 00 00
120: 00 00 F2 32 00 64 64 6B 10 00 00 00 00 00 F3 32
130: 00 32 32 27 00 00 00 00 00 00 F5 32 00 64 64 02
140: 00 02 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 21 00 00 7B
170: 03 00 01 00 02 55 02 00 00 00 00 00 00 00 00 00
180: B8 60 25 1F 00 00 00 00 7C F8 78 21 00 00 00 00
190: 9C 20 14 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 82
-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 05 32 00 00 00 00 00 00 00 00 00 00 09 00
010: 00 00 00 00 00 00 00 00 00 00 0C 00 00 00 00 00
020: 00 00 00 00 00 00 A4 00 00 00 00 00 00 00 00 00
030: 00 00 A5 00 00 00 00 00 00 00 00 00 00 00 A6 00
040: 00 00 00 00 00 00 00 00 00 00 A7 00 00 00 00 00
050: 00 00 00 00 00 00 A8 00 00 00 00 00 00 00 00 00
060: 00 00 A9 0A 00 00 00 00 00 00 00 00 00 00 AA 00
070: 00 00 00 00 00 00 00 00 00 00 AB 00 00 00 00 00
080: 00 00 00 00 00 00 AC 00 00 00 00 00 00 00 00 00
090: 00 00 AE 00 00 00 00 00 00 00 00 00 00 00 AF 0A
0A0: 00 00 00 00 00 00 00 00 00 00 B4 00 00 00 00 00
0B0: 00 00 00 00 00 00 BB 00 00 00 00 00 00 00 00 00
0C0: 00 00 C0 00 00 00 00 00 00 00 00 00 00 00 C2 00
0D0: 00 00 00 00 00 00 00 00 00 00 C7 00 00 00 00 00
0E0: 00 00 00 00 00 00 D1 00 00 00 00 00 00 00 00 00
0F0: 00 00 D2 00 00 00 00 00 00 00 00 00 00 00 D3 00
100: 00 00 00 00 00 00 00 00 00 00 E7 05 00 00 00 00
110: 00 00 00 00 00 00 F1 00 00 00 00 00 00 00 00 00
120: 00 00 F2 00 00 00 00 00 00 00 00 00 00 00 F3 00
130: 00 00 00 00 00 00 00 00 00 00 F5 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 66
----------------------------------------------------------------------------
CrystalDiskInfo 9.5.0 (C) 2008-2024 hiyohiyo
Crystal Dew World: https://crystalmark.info/
----------------------------------------------------------------------------
OS : Windows 10 Home 22H2 [10.0 Build 19045] (x64)
Date : 2025/02/01 17:46:44
-- Controller Map ----------------------------------------------------------
+ Intel(R) 9 Series Chipset Family SATA AHCI Controller [ATA]
- Verbatim Vi550 S3
- TSSTcorp CDDVDW SU-228GB
- Řadič prostorů úložišť [SCSI]
- DAEMON Tools Lite Virtual SCSI Bus [SCSI]
-- Disk List ---------------------------------------------------------------
(01) Verbatim Vi550 S3 : 1024.2 GB [0/0/0, pd1] - ma
----------------------------------------------------------------------------
(01) Verbatim Vi550 S3
----------------------------------------------------------------------------
Model : Verbatim Vi550 S3
Firmware : H220916a
Serial Number : 493532534831326
Disk Size : 1024.2 GB (8.4/137.4/1024.2/----)
Buffer Size : Neznámy údaj
Queue Depth : 32
# of Sectors : 2000409264
Rotation Rate : ---- (SSD)
Interface : Serial ATA
Major Version : ACS-4
Minor Version : ----
Transfer Mode : SATA/600 | SATA/600
Power On Hours : 3733 hodin
Power On Count : 688 krát
Host Reads : 4203 GB
Host Writes : 9334 GB
Temperature : 38 C (100 F)
Health Status : Dobrý
Features : S.M.A.R.T., NCQ, TRIM, GPL
APM Level : ----
AAM Level : ----
Drive Letter : C: D:
-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
05 100 100 _50 000000000000 Number of New Bad Block
09 100 100 __0 000000000E95 Power On Hours
0C 100 100 __0 0000000002B0 Power Cycle Count
A4 200 200 __0 002101690111 Total Erase Count
A5 200 200 __0 000000000169 Maximum Erase Count
A6 200 200 __0 000000000021 Minimum Erase Count
A7 200 200 __0 000000000111 Average Erase Count
A8 100 100 __0 000000000000 Specifický pro výrobce
A9 100 100 _10 000000030006 Specifický pro výrobce
AA 100 100 __0 000000000000 Specifický pro výrobce
AB __0 __0 __0 000000000000 Specifický pro výrobce
AC __0 __0 __0 000000000000 Specifický pro výrobce
AE 100 100 __0 000000000000 Specifický pro výrobce
AF 100 100 _10 000000000000 Specifický pro výrobce
B4 100 100 __0 0000000000E7 Specifický pro výrobce
BB 100 __0 __0 000000000000 Specifický pro výrobce
C0 100 100 __0 00000000000D Power off Retract Count
C2 _38 _38 __0 0033000C0026 Temperature
C7 100 100 __0 000000000000 SATA CRC Error Count
D1 200 200 __0 000000000002 Specifický pro výrobce
D2 200 200 __0 000000000A3E Specifický pro výrobce
D3 200 200 __0 0000000007DC Specifický pro výrobce
E7 _73 _73 __5 00000000001B Specifický pro výrobce
F1 100 100 __0 000000002476 Total Written
F2 100 100 __0 00000000106B Total Read
F3 _50 _50 __0 000000000027 Specifický pro výrobce
F5 100 100 __0 000000020002 Specifický pro výrobce
-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0040 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 3439 3335 3332 3533 3438 3331 3332 3620 2020 2020
020: 0000 0000 0000 4832 3230 3931 3661 5665 7262 6174
030: 696D 2056 6935 3530 2053 3320 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8001 4000 2F00
050: 4000 0000 0000 0007 3FFF 0010 003F FC10 00FB 0101
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 4D20
070: 0000 0000 0000 0000 0000 001F 850E 0006 0044 0004
080: 0BF8 0000 706B 7401 4163 7069 B401 4163 407F 0001
090: 0001 0000 FFFE 0000 0000 0000 0000 0000 0000 0000
100: D2B0 773B 0000 0000 0000 0008 4000 0000 5000 0000
110: 0000 2B6F 0000 0000 0000 0000 0000 0000 0000 401C
120: 401C 0000 0000 0000 0000 0000 0000 0000 0029 0000
130: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
140: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0003 0001
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 0031 0000 0000 4000
210: 0000 0000 0000 0000 0000 0000 0000 0001 0000 0000
220: 0000 0000 10FF 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 03E8 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 FDA5
-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 14 00 05 13 00 64 64 00 00 00 00 00 00 00 09 12
010: 00 64 64 95 0E 00 00 00 00 00 0C 12 00 64 64 B0
020: 02 00 00 00 00 00 A4 12 00 C8 C8 11 01 69 01 21
030: 00 00 A5 32 00 C8 C8 69 01 00 00 00 00 00 A6 32
040: 00 C8 C8 21 00 00 00 00 00 00 A7 32 00 C8 C8 11
050: 01 00 00 00 00 00 A8 12 00 64 64 00 00 00 00 00
060: 00 00 A9 13 00 64 64 06 00 03 00 00 00 00 AA 22
070: 00 64 64 00 00 00 00 00 00 00 AB 32 00 00 00 00
080: 00 00 00 00 00 00 AC 32 00 00 00 00 00 00 00 00
090: 00 00 AE 22 00 64 64 00 00 00 00 00 00 00 AF 22
0A0: 00 64 64 00 00 00 00 00 00 00 B4 33 00 64 64 E7
0B0: 00 00 00 00 00 00 BB 32 00 64 00 00 00 00 00 00
0C0: 00 00 C0 12 00 64 64 0D 00 00 00 00 00 00 C2 22
0D0: 00 26 26 26 00 0C 00 33 00 00 C7 12 00 64 64 00
0E0: 00 00 00 00 00 00 D1 32 00 C8 C8 02 00 00 00 00
0F0: 00 00 D2 32 00 C8 C8 3E 0A 00 00 00 00 00 D3 32
100: 00 C8 C8 DC 07 00 00 00 00 00 E7 23 00 49 49 1B
110: 00 00 00 00 00 00 F1 32 00 64 64 76 24 00 00 00
120: 00 00 F2 32 00 64 64 6B 10 00 00 00 00 00 F3 32
130: 00 32 32 27 00 00 00 00 00 00 F5 32 00 64 64 02
140: 00 02 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 21 00 00 7B
170: 03 00 01 00 02 55 02 00 00 00 00 00 00 00 00 00
180: B8 60 25 1F 00 00 00 00 7C F8 78 21 00 00 00 00
190: 9C 20 14 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 82
-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 05 32 00 00 00 00 00 00 00 00 00 00 09 00
010: 00 00 00 00 00 00 00 00 00 00 0C 00 00 00 00 00
020: 00 00 00 00 00 00 A4 00 00 00 00 00 00 00 00 00
030: 00 00 A5 00 00 00 00 00 00 00 00 00 00 00 A6 00
040: 00 00 00 00 00 00 00 00 00 00 A7 00 00 00 00 00
050: 00 00 00 00 00 00 A8 00 00 00 00 00 00 00 00 00
060: 00 00 A9 0A 00 00 00 00 00 00 00 00 00 00 AA 00
070: 00 00 00 00 00 00 00 00 00 00 AB 00 00 00 00 00
080: 00 00 00 00 00 00 AC 00 00 00 00 00 00 00 00 00
090: 00 00 AE 00 00 00 00 00 00 00 00 00 00 00 AF 0A
0A0: 00 00 00 00 00 00 00 00 00 00 B4 00 00 00 00 00
0B0: 00 00 00 00 00 00 BB 00 00 00 00 00 00 00 00 00
0C0: 00 00 C0 00 00 00 00 00 00 00 00 00 00 00 C2 00
0D0: 00 00 00 00 00 00 00 00 00 00 C7 00 00 00 00 00
0E0: 00 00 00 00 00 00 D1 00 00 00 00 00 00 00 00 00
0F0: 00 00 D2 00 00 00 00 00 00 00 00 00 00 00 D3 00
100: 00 00 00 00 00 00 00 00 00 00 E7 05 00 00 00 00
110: 00 00 00 00 00 00 F1 00 00 00 00 00 00 00 00 00
120: 00 00 F2 00 00 00 00 00 00 00 00 00 00 00 F3 00
130: 00 00 00 00 00 00 00 00 00 00 F5 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 66
-
Rudy
- Site Admin
- Příspěvky: 119314
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalý NTB a zamrznutí
Disk vypadá OK. Pokud jste měl modrou smrt, měl by být v systému zápis. Otevřte adresář c:\windows\minidump a soubory, které tam najdete zabalte do raru a přiložte k dalšímu vašemu postu.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Pomalý NTB a zamrznutí
Je zde.
-
Rudy
- Site Admin
- Příspěvky: 119314
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalý NTB a zamrznutí
1. Zeptám se. Jsou nainstalovány aktuální ovladače hardwaru?
2. Pokud ano, napište do přík. řádku:
2. Pokud ano, napište do přík. řádku:
a odentrujte. Operační systém provede konjtrolu a případnou náhradu systémových souborů. Pak restartujte a otestujte, zda se něco změnilo.sfc /scannow
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Pomalý NTB a zamrznutí
Dobrý den, pokoušel jem se udělat /sfc/ bohužel bez výsledku. Operace nedoběhla na 100%, a hláška : nepodařilo se opravit systémové soubory.
Pokusím se reinstalaci Windows.
Pokusím se reinstalaci Windows.
-
Rudy
- Site Admin
- Příspěvky: 119314
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalý NTB a zamrznutí
Nejprve bych se pokusil o návrat do bodu obnovení, kdy systém ještě pracoval bezchybně. Pak je možné udělat návrat do tov. nastavení buď se zachováním vl. souborů, nebo bez toho (pokud to nebude možné) a pokud selže vše, pak udělejte reinstal Win.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?