Po zpuštění chromu ve Win 10 se mi začne vytěžovat procesor nezávisle na tom, co v Chromu prohlížím. Ve správci úloh rozkliknu chrom na jednotlivé podprocesy a první z nich vytěžuje procesor. Když ho smažu, nic nespadne, vše je da dál, ale již procesor jede OK. Nevím čím by to mohlo být způsobeno. Je možné odhalit nějaký doplněk?
Děkuji
Do přílohy přikládám FRST.txt¨
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-10-2020
Ran by jpail (14-10-2020 11:48:10)
Running from C:\Users\jpail\Desktop
Windows 10 Pro Version 2004 19041.508 (X64) (2020-06-19 16:59:57)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-593775254-1694550017-2851628514-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-593775254-1694550017-2851628514-503 - Limited - Disabled)
Guest (S-1-5-21-593775254-1694550017-2851628514-501 - Limited - Disabled)
jpail (S-1-5-21-593775254-1694550017-2851628514-1001 - Administrator - Enabled) => C:\Users\jpail
WDAGUtilityAccount (S-1-5-21-593775254-1694550017-2851628514-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AV: Bitdefender Antivirus (Enabled - Up to date) {0E17DB7D-A20F-62CE-B95B-17DB0CDFE318}
FW: Bitdefender Firewall (Enabled) {362C5A58-E860-6396-9204-BEEEF20CA463}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
64 Bit HP CIO Components Installer (HKLM\...\{BC741628-0AFC-405C-8946-DD46D1005A0A}) (Version: 8.2.4 - Hewlett-Packard) Hidden
64 Bit HP CIO Components Installer (HKLM\...\{C788B026-20BD-4E96-B698-533F1D6C5013}) (Version: 7.2.4 - Hewlett-Packard) Hidden
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 20.012.20048 - Adobe Systems Incorporated)
ANT Drivers Installer x64 (HKLM\...\{998DF7E5-262F-4391-A117-8D9E383B8C0A}) (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden
AnyDesk (HKLM-x32\...\AnyDesk) (Version: ad 6.0.7 - philandro Software GmbH)
Backup and Sync from Google (HKLM\...\{B109BD68-709A-485B-97E6-651FEB234AC9}) (Version: 3.51.3307.8076 - Google, Inc.)
BalĂÄŤek ovladaÄŤe systĂ©mu Windows - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.)
BalĂÄŤek ovladaÄŤe systĂ©mu Windows - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software)
Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 24.0.1.161 - Bitdefender)
Bitdefender Device Management (HKLM\...\Bitdefender Device Management) (Version: 24.0.26.147 - Bitdefender)
Bitdefender Total Security (HKLM\...\Bitdefender) (Version: 24.0.24.131 - Bitdefender)
Bitdefender VPN (HKLM\...\Bitdefender VPN) (Version: 24.0.4.712 - Bitdefender)
Cryptographic Provider for Windows OS (HKLM-x32\...\{DAB78977-B639-47AF-87BC-F3FF3DC62998}) (Version: 1.3.1 - Intel Corporation)
Elevated Installer (HKLM-x32\...\{5053832D-D695-4E6A-A777-8CC79DF61A85}) (Version: 7.1.3.0 - Garmin Ltd or its subsidiaries) Hidden
eM Client (HKLM-x32\...\{3D529DE7-1FC9-4225-B21F-754706DDEBEE}) (Version: 8.0.3385.0 - eM Client Inc.)
FFmpeg (Windows) for Audacity verze 2.2.2 (HKLM-x32\...\{9C7E31E3-017F-434C-AC40-24431A354A1E}_is1) (Version: 2.2.2 - )
Garmin Express (HKLM-x32\...\{040c11a0-b209-4b21-b861-163f52e01d88}) (Version: 7.1.3.0 - Garmin Ltd or its subsidiaries)
Garmin Express (HKLM-x32\...\{F8609938-A6C9-4796-87BC-471F62EA4F0E}) (Version: 7.1.3.0 - Garmin Ltd or its subsidiaries) Hidden
GIMP 2.10.20 (HKLM\...\GIMP-2_is1) (Version: 2.10.20 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 86.0.4240.75 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
HP LaserJet 200 color MFP M276 (HKLM-x32\...\{CC38C23C-7824-4DBB-AC73-997CD0BBFEC7}) (Version: 15.0.15188.2008 - Hewlett-Packard)
hppFaxDrvM276 (HKLM-x32\...\{3B37F001-CAC7-4973-8693-D253BB0BB60F}) (Version: 004.000.00001 - Hewlett-Packard) Hidden
hppSendFaxM276 (HKLM-x32\...\{7DF7A3DB-90B1-48FE-B314-147E1504214D}) (Version: 004.000.00001 - Hewlett-Packard) Hidden
inSSIDer (HKU\S-1-5-21-593775254-1694550017-2851628514-1001\...\inSSIDer) (Version: 5.2.25 - MetaGeek, LLC)
Lenovo Provisioning for Dolby Vision version 1.0 (HKLM-x32\...\Lenovo Provisioning for Dolby Vision_is1) (Version: 1.0 - )
Lenovo Service Bridge (HKU\S-1-5-21-593775254-1694550017-2851628514-1001\...\{2C74547D-EF88-47F4-85F5-BE46A31E26B7}_is1) (Version: 5.0.1.3 - Lenovo)
Lenovo System Update (HKLM-x32\...\TVSU_is1) (Version: 5.07.0072 - Lenovo)
Lenovo Vantage Service (HKLM-x32\...\VantageSRV_is1) (Version: 3.3.332.0 - Lenovo Group Ltd.)
Malwarebytes version 4.2.1.89 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.2.1.89 - Malwarebytes)
Microsoft 365 - cs-cz (HKLM\...\O365HomePremRetail - cs-cz) (Version: 16.0.13231.20262 - Microsoft Corporation)
Microsoft Office Professional Plus 2019 - cs-cz (HKLM\...\ProPlus2019Retail - cs-cz) (Version: 16.0.13231.20262 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-593775254-1694550017-2851628514-1001\...\OneDriveSetup.exe) (Version: 20.143.0716.0003 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.23.27820 (HKLM-x32\...\{45231ab4-69fd-486a-859d-7a59fcd11013}) (Version: 14.23.27820.0 - Microsoft Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 17.0.0 - OBS Project)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.13231.20126 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.13231.20200 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-1000-0000000FF1CE}) (Version: 16.0.13231.20126 - Microsoft Corporation) Hidden
OnlyR version 1.0.0.42 (HKLM-x32\...\{880BFB38-BF5D-4B07-8DA9-5951437B16FA}_is1) (Version: 1.0.0.42 - Antony Corbett)
OpenShot Video Editor verze 2.5.1 (HKLM\...\{4BB0DCDC-BC24-49EC-8937-72956C33A470}_is1) (Version: 2.5.1 - OpenShot Studios, LLC)
QNAP NetBak Replicator (HKLM-x32\...\NetBak) (Version: 4.5.12.1108 - QNAP Systems, Inc.)
QNAP Qfinder Pro (HKLM-x32\...\QNAP_FINDER) (Version: 7.4.1.0914 - QNAP Systems, Inc.)
QNAP Qsync Client (HKLM-x32\...\Qsync) (Version: 4.5.0.0904 - QNAP Systems, Inc.)
Sticky Password 8.2.3.43 (HKLM-x32\...\Sticky Password_is1) (Version: 8.2 - Lamantine Software)
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.10.5 - TeamViewer)
Total Commander (Remove or Repair) (HKLM-x32\...\Totalcmd) (Version: 9.0 - Ghisler Software GmbH)
Viber (HKLM-x32\...\{EBF90FE1-19E8-44DB-91CD-1BD5D4E373B9}) (Version: 13.2.0.39 - Viber Media S.a.r.l) Hidden
Viber (HKU\S-1-5-21-593775254-1694550017-2851628514-1001\...\{197fd93c-1b89-40b0-aaff-37fbe999c0c6}) (Version: 13.2.0.39 - 2010-2020 Viber Media S.a.r.l)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.11 - VideoLAN)
Watchtower Library - ÄŚesky (HKLM-x32\...\{B37DD066-7B64-46AD-AD22-93C04A63CC40}) (Version: 19.0 - Watchtower Bible and Tract Society of Pennsylvania, Inc.)
Web Components (HKLM-x32\...\{03B13AF8-9625-478A-AF0E-205337B9415A}_is1) (Version: 3.0.6.46 - )
WhatsApp (HKU\S-1-5-21-593775254-1694550017-2851628514-1001\...\WhatsApp) (Version: 2.2041.6 - WhatsApp)
Zoom (HKU\S-1-5-21-593775254-1694550017-2851628514-1001\...\ZoomUMX) (Version: 5.3.1 (52879.0927) - Zoom Video Communications, Inc.)
Packages:
=========
Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_6.13.6.0_x86__kgqvnymyfvs32 [2020-10-02] (king.com)
Candy Crush Friends -> C:\Program Files\WindowsApps\king.com.CandyCrushFriends_1.44.2.0_x86__kgqvnymyfvs32 [2020-09-30] (king.com)
Dolby Atmos Speaker System -> C:\Program Files\WindowsApps\dolbylaboratories.dolbyatmosspeakersystem_3.20500.501.0_x64__rz1tebttyb220 [2020-06-19] (Dolby Laboratories)
Dolby Vision -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyVisionHDR_1.7.5123.0_x64__rz1tebttyb220 [2020-10-13] (Dolby Laboratories)
Glance by Mirametrix -> C:\Program Files\WindowsApps\MirametrixInc.GlancebyMirametrix_6.13.1395.0_x64__17mer8kcn3j54 [2020-09-30] (Mirametrix Inc.) [Startup Task]
HP Scan and Capture -> C:\Program Files\WindowsApps\AD2F1837.HPScanandCapture_40.0.245.0_x64__v10z8vjag6ke6 [2020-06-22] (Hewlett-Packard Company)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_120.1.741.0_x64__v10z8vjag6ke6 [2020-10-08] (HP Inc.)
JW Library -> C:\Program Files\WindowsApps\WatchtowerBibleandTractSo.45909CDBADF3C_12.1.31.0_x64__5rz59y55nfz3e [2020-08-20] (Watchtower Bible and Tract Society of New York)
Lenovo Vantage -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2009.18.0_x64__k1h2ywk1493x8 [2020-09-24] (LENOVO INC.)
LenovoUtility -> C:\Program Files\WindowsApps\E0469640.LenovoUtility_3.1.18.0_x64__5grkq8ppsgwt4 [2020-09-30] (LENOVO INC) [Startup Task]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\microsoft.advertising.xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-06-19] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\microsoft.advertising.xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-06-19] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.8101.0_x64__8wekyb3d8bbwe [2020-08-20] (Microsoft Studios) [MS Ad]
Ovládacà centrum grafiky Intel® -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.2765.0_x64__8j3eq9eme6ctt [2020-08-27] (INTEL CORP) [Startup Task]
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.11.217.0_x64__dt26b99r8h8gj [2020-07-01] (Realtek Semiconductor Corp)
RozšĂĹ™enĂ pro video MPEG-2 -> C:\Program Files\WindowsApps\microsoft.mpeg2videoextension_1.0.22661.0_x64__8wekyb3d8bbwe [2020-06-19] (Microsoft Corporation)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.143.700.0_x86__zpdnekdrzrea0 [2020-09-30] (Spotify AB) [Startup Task]
Thunderbolt Control Center -> C:\Program Files\WindowsApps\appup.thunderboltcontrolcenter_1.0.25.0_x64__8j3eq9eme6ctt [2020-06-19] (INTEL CORP)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-593775254-1694550017-2851628514-1001_Classes\CLSID\{57D0E8CF-2552-4B76-A5C4-B1E9D413FD14} -> [Qsync] => C:\Users\jpail\AppData\Local\QNAP\Qsync\Quick Access [2020-06-20 17:38]
ShellIconOverlayIdentifiers: [ QsyncEx_Icon1] -> {17affcaf-2e65-4b1b-98a1-a7b3b4d8ad36} => C:\Program Files (x86)\QNAP\Qsync\QsyncExt.dll [2020-06-17] (QNAP Systems, Inc. -> )
ShellIconOverlayIdentifiers: [ QsyncEx_Icon2] -> {6D668696-7C08-42ED-869F-5E249990B762} => C:\Program Files (x86)\QNAP\Qsync\QsyncExt.dll [2020-06-17] (QNAP Systems, Inc. -> )
ShellIconOverlayIdentifiers: [ QsyncEx_Icon3] -> {A5354662-C5D2-43B1-AACF-FDC16A7A0CBB} => C:\Program Files (x86)\QNAP\Qsync\QsyncExt.dll [2020-06-17] (QNAP Systems, Inc. -> )
ShellIconOverlayIdentifiers: [ QsyncEx_Icon4] -> {3009F6F0-7480-49D8-9D8E-40A72A609F89} => C:\Program Files (x86)\QNAP\Qsync\QsyncExt.dll [2020-06-17] (QNAP Systems, Inc. -> )
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-09-09] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-09-09] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-09-09] (Google LLC -> Google)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-09-09] (Google LLC -> Google)
ContextMenuHandlers1: [QsyncExt] -> {17affcaf-2e65-4b1b-98a1-a7b3b4d8ad36} => C:\Program Files (x86)\QNAP\Qsync\QsyncExt.dll [2020-06-17] (QNAP Systems, Inc. -> )
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-10-14] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-09-09] (Google LLC -> Google)
ContextMenuHandlers4: [QsyncExt] -> {17affcaf-2e65-4b1b-98a1-a7b3b4d8ad36} => C:\Program Files (x86)\QNAP\Qsync\QsyncExt.dll [2020-06-17] (QNAP Systems, Inc. -> )
ContextMenuHandlers5: [QsyncExt] -> {17affcaf-2e65-4b1b-98a1-a7b3b4d8ad36} => C:\Program Files (x86)\QNAP\Qsync\QsyncExt.dll [2020-06-17] (QNAP Systems, Inc. -> )
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-10-14] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [QsyncExt] -> {17affcaf-2e65-4b1b-98a1-a7b3b4d8ad36} => C:\Program Files (x86)\QNAP\Qsync\QsyncExt.dll [2020-06-17] (QNAP Systems, Inc. -> )
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\jpail\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Helium Backup.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=gpglbgbpeobllokpmeagpoagjbfknanl
==================== Loaded Modules (Whitelisted) =============
2020-08-21 01:58 - 2020-08-21 01:58 - 000014848 _____ () [File not signed] [File is in use] C:\Program Files (x86)\eM Client\cs\HtmlEditorControl.resources.dll
2020-08-21 01:58 - 2020-08-21 01:58 - 000010240 _____ () [File not signed] [File is in use] C:\Program Files (x86)\eM Client\cs\MailClient.Accounts.resources.dll
2020-08-21 01:58 - 2020-08-21 01:58 - 000003584 _____ () [File not signed] [File is in use] C:\Program Files (x86)\eM Client\cs\MailClient.Commands.resources.dll
2020-08-21 01:58 - 2020-08-21 01:58 - 000009216 _____ () [File not signed] [File is in use] C:\Program Files (x86)\eM Client\cs\MailClient.Common.UI.resources.dll
2020-08-21 01:58 - 2020-08-21 01:58 - 000004096 _____ () [File not signed] [File is in use] C:\Program Files (x86)\eM Client\cs\MailClient.Contact.resources.dll
2020-08-21 01:58 - 2020-08-21 01:58 - 000004096 _____ () [File not signed] [File is in use] C:\Program Files (x86)\eM Client\cs\MailClient.Protocols.Gdata.resources.dll
2020-08-21 01:58 - 2020-08-21 01:58 - 000007680 _____ () [File not signed] [File is in use] C:\Program Files (x86)\eM Client\cs\MailClient.Protocols.resources.dll
2020-08-21 01:58 - 2020-08-21 01:58 - 000006656 _____ () [File not signed] [File is in use] C:\Program Files (x86)\eM Client\cs\MailClient.Protocols.Smtp.resources.dll
2020-08-21 01:58 - 2020-08-21 01:58 - 000765952 _____ () [File not signed] [File is in use] C:\Program Files (x86)\eM Client\cs\MailClient.resources.dll
2019-09-09 08:13 - 2019-09-09 08:13 - 001364992 _____ () [File not signed] [File is in use] C:\Program Files (x86)\Garmin\Express\CefSharp.Core.dll
2020-08-27 14:45 - 2020-08-27 14:45 - 000073216 _____ () [File not signed] [File is in use] C:\Program Files (x86)\Garmin\Express\FixBootSector.dll
2017-05-08 10:35 - 2017-05-08 10:35 - 000325632 _____ () [File not signed] [File is in use] C:\Program Files (x86)\Garmin\Express\GpsImgWrapper.dll
2020-08-21 01:58 - 2020-08-21 01:58 - 093837312 _____ () [File not signed] C:\Program Files (x86)\eM Client\libcef\libcef.dll
2019-07-27 09:57 - 2019-07-27 09:57 - 096071680 _____ () [File not signed] C:\Program Files (x86)\Garmin\Express\libcef.dll
2020-08-24 12:23 - 2020-08-24 12:23 - 000176640 _____ () [File not signed] C:\Program Files (x86)\QNAP\Qfinder\quazip.dll
2020-09-14 10:11 - 2020-09-14 10:11 - 000185856 _____ () [File not signed] C:\Program Files (x86)\QNAP\Qfinder\QUiLib.dll
2020-07-22 11:14 - 2020-07-22 11:14 - 000272384 _____ () [File not signed] C:\Program Files (x86)\QNAP\Qsync\IOTCAPIs.dll
2020-07-22 11:14 - 2020-07-22 11:14 - 000105984 _____ () [File not signed] C:\Program Files (x86)\QNAP\Qsync\P2PTunnelAPIs.dll
2020-06-01 10:18 - 2020-06-01 10:18 - 000166400 _____ () [File not signed] C:\Program Files (x86)\QNAP\Qsync\RdiffDll.dll
2020-07-22 11:14 - 2020-07-22 11:14 - 000103936 _____ () [File not signed] C:\Program Files (x86)\QNAP\Qsync\RDTAPIs.dll
2020-06-20 00:15 - 2019-11-18 11:56 - 001398272 _____ () [File not signed] C:\Program Files (x86)\Sticky Password\DLLs\_hashlib.pyd
2020-10-14 08:09 - 2020-10-14 08:09 - 000114176 _____ () [File not signed] C:\Users\jpail\AppData\Local\Temp\_MEI196242\_ctypes.pyd
2020-10-14 08:09 - 2020-10-14 08:09 - 000172544 _____ () [File not signed] C:\Users\jpail\AppData\Local\Temp\_MEI196242\_elementtree.pyd
2020-10-14 08:09 - 2020-10-14 08:09 - 002250240 _____ () [File not signed] C:\Users\jpail\AppData\Local\Temp\_MEI196242\_hashlib.pyd
2020-10-14 08:09 - 2020-10-14 08:09 - 000032256 _____ () [File not signed] C:\Users\jpail\AppData\Local\Temp\_MEI196242\_multiprocessing.pyd
2020-10-14 08:09 - 2020-10-14 08:09 - 000046080 _____ () [File not signed] C:\Users\jpail\AppData\Local\Temp\_MEI196242\_psutil_windows.pyd
2020-10-14 08:09 - 2020-10-14 08:09 - 000047616 _____ () [File not signed] C:\Users\jpail\AppData\Local\Temp\_MEI196242\_socket.pyd
2020-10-14 08:09 - 2020-10-14 08:09 - 002819584 _____ () [File not signed] C:\Users\jpail\AppData\Local\Temp\_MEI196242\_ssl.pyd
2020-10-14 08:09 - 2020-10-14 08:09 - 000026112 _____ () [File not signed] C:\Users\jpail\AppData\Local\Temp\_MEI196242\_yappi.pyd
2020-10-14 08:09 - 2020-10-14 08:09 - 000080896 _____ () [File not signed] C:\Users\jpail\AppData\Local\Temp\_MEI196242\bz2.pyd
2020-10-14 08:09 - 2020-10-14 08:09 - 000016384 _____ () [File not signed] C:\Users\jpail\AppData\Local\Temp\_MEI196242\common.time34.pyd
2020-10-14 08:09 - 2020-10-14 08:09 - 000007680 _____ () [File not signed] C:\Users\jpail\AppData\Local\Temp\_MEI196242\hashobjs_ext.pyd
2020-10-14 08:09 - 2020-10-14 08:09 - 000301568 _____ () [File not signed] C:\Users\jpail\AppData\Local\Temp\_MEI196242\PIL._imaging.pyd
2020-10-14 08:09 - 2020-10-14 08:09 - 000168448 _____ () [File not signed] C:\Users\jpail\AppData\Local\Temp\_MEI196242\pyexpat.pyd
2020-10-14 08:09 - 2020-10-14 08:09 - 001084416 _____ () [File not signed] C:\Users\jpail\AppData\Local\Temp\_MEI196242\pysqlite2._sqlite.pyd
2020-10-14 08:09 - 2020-10-14 08:09 - 000548864 _____ () [File not signed] C:\Users\jpail\AppData\Local\Temp\_MEI196242\pythoncom27.dll
2020-10-14 08:09 - 2020-10-14 08:09 - 000137728 _____ () [File not signed] C:\Users\jpail\AppData\Local\Temp\_MEI196242\pywintypes27.dll
2020-10-14 08:09 - 2020-10-14 08:09 - 000010752 _____ () [File not signed] C:\Users\jpail\AppData\Local\Temp\_MEI196242\select.pyd
2020-10-14 08:09 - 2020-10-14 08:09 - 000020992 _____ () [File not signed] C:\Users\jpail\AppData\Local\Temp\_MEI196242\thumbnails_ext.pyd
2020-10-14 08:09 - 2020-10-14 08:09 - 000689664 _____ () [File not signed] C:\Users\jpail\AppData\Local\Temp\_MEI196242\unicodedata.pyd
2020-10-14 08:09 - 2020-10-14 08:09 - 000119808 _____ () [File not signed] C:\Users\jpail\AppData\Local\Temp\_MEI196242\usb_ext.pyd
2020-10-14 08:09 - 2020-10-14 08:09 - 000128512 _____ () [File not signed] C:\Users\jpail\AppData\Local\Temp\_MEI196242\win32api.pyd
2020-10-14 08:09 - 2020-10-14 08:09 - 000438784 _____ () [File not signed] C:\Users\jpail\AppData\Local\Temp\_MEI196242\win32com.shell.shell.pyd
2020-10-14 08:09 - 2020-10-14 08:09 - 000011776 _____ () [File not signed] C:\Users\jpail\AppData\Local\Temp\_MEI196242\win32crypt.pyd
2020-10-14 08:09 - 2020-10-14 08:09 - 000023040 _____ () [File not signed] C:\Users\jpail\AppData\Local\Temp\_MEI196242\win32event.pyd
2020-10-14 08:09 - 2020-10-14 08:09 - 000149504 _____ () [File not signed] C:\Users\jpail\AppData\Local\Temp\_MEI196242\win32file.pyd
2020-10-14 08:09 - 2020-10-14 08:09 - 000223232 _____ () [File not signed] C:\Users\jpail\AppData\Local\Temp\_MEI196242\win32gui.pyd
2020-10-14 08:09 - 2020-10-14 08:09 - 000048128 _____ () [File not signed] C:\Users\jpail\AppData\Local\Temp\_MEI196242\win32inet.pyd
2020-10-14 08:09 - 2020-10-14 08:09 - 000029696 _____ () [File not signed] C:\Users\jpail\AppData\Local\Temp\_MEI196242\win32pdh.pyd
2020-10-14 08:09 - 2020-10-14 08:09 - 000027648 _____ () [File not signed] C:\Users\jpail\AppData\Local\Temp\_MEI196242\win32pipe.pyd
2020-10-14 08:09 - 2020-10-14 08:09 - 000044032 _____ () [File not signed] C:\Users\jpail\AppData\Local\Temp\_MEI196242\win32process.pyd
2020-10-14 08:09 - 2020-10-14 08:09 - 000020480 _____ () [File not signed] C:\Users\jpail\AppData\Local\Temp\_MEI196242\win32profile.pyd
2020-10-14 08:09 - 2020-10-14 08:09 - 000136192 _____ () [File not signed] C:\Users\jpail\AppData\Local\Temp\_MEI196242\win32security.pyd
2020-10-14 08:09 - 2020-10-14 08:09 - 000026624 _____ () [File not signed] C:\Users\jpail\AppData\Local\Temp\_MEI196242\win32ts.pyd
2020-10-14 08:09 - 2020-10-14 08:09 - 000034816 _____ () [File not signed] C:\Users\jpail\AppData\Local\Temp\_MEI196242\windows.conditional.pyd
2020-10-14 08:09 - 2020-10-14 08:09 - 000038400 _____ () [File not signed] C:\Users\jpail\AppData\Local\Temp\_MEI196242\windows.connectivity.pyd
2020-10-14 08:09 - 2020-10-14 08:09 - 000071680 _____ () [File not signed] C:\Users\jpail\AppData\Local\Temp\_MEI196242\windows.device_monitor.pyd
2020-10-14 08:09 - 2020-10-14 08:09 - 000109056 _____ () [File not signed] C:\Users\jpail\AppData\Local\Temp\_MEI196242\windows.volumes.pyd
2020-10-14 08:09 - 2020-10-14 08:09 - 000020480 _____ () [File not signed] C:\Users\jpail\AppData\Local\Temp\_MEI196242\windows.winwrap.pyd
2020-10-14 08:09 - 2020-10-14 08:09 - 001325056 _____ () [File not signed] C:\Users\jpail\AppData\Local\Temp\_MEI196242\wx._controls_.pyd
2020-10-14 08:09 - 2020-10-14 08:09 - 001489408 _____ () [File not signed] C:\Users\jpail\AppData\Local\Temp\_MEI196242\wx._core_.pyd
2020-10-14 08:09 - 2020-10-14 08:09 - 001007104 _____ () [File not signed] C:\Users\jpail\AppData\Local\Temp\_MEI196242\wx._gdi_.pyd
2020-10-14 08:09 - 2020-10-14 08:09 - 000103424 _____ () [File not signed] C:\Users\jpail\AppData\Local\Temp\_MEI196242\wx._html2.pyd
2020-10-14 08:09 - 2020-10-14 08:09 - 000916992 _____ () [File not signed] C:\Users\jpail\AppData\Local\Temp\_MEI196242\wx._misc_.pyd
2020-10-14 08:09 - 2020-10-14 08:09 - 001039872 _____ () [File not signed] C:\Users\jpail\AppData\Local\Temp\_MEI196242\wx._windows_.pyd
2020-08-27 14:45 - 2020-08-27 14:45 - 001976832 _____ (Apache Software Foundation) [File not signed] C:\Program Files (x86)\Garmin\Express\XercesLib.dll
2020-08-27 14:51 - 2020-08-27 14:51 - 000234496 _____ (Dynastream Innovations Inc.) [File not signed] C:\Program Files (x86)\Garmin\Express\ANT_WrappedLib.dll
2020-08-27 14:45 - 2020-08-27 14:45 - 002711552 _____ (Garmin International) [File not signed] [File is in use] C:\Program Files (x86)\Garmin\Express\legacyio.dll
2017-05-08 10:35 - 2017-05-08 10:35 - 000343552 _____ (Garmin International, Inc.) [File not signed] C:\Program Files (x86)\Garmin\Express\IMG_GPSMAP.dll
2020-08-27 14:45 - 2020-08-27 14:45 - 000425472 _____ (Garmin) [File not signed] C:\Program Files (x86)\Garmin\Express\XMLdll.dll
2020-03-06 15:35 - 2020-03-06 15:35 - 000118784 _____ (Google Inc.) [File not signed] [File is in use] C:\Program Files (x86)\eM Client\Google.Apis.Auth.dll
2020-03-12 08:09 - 2020-03-12 08:09 - 000093184 _____ (Google Inc.) [File not signed] [File is in use] C:\Program Files (x86)\eM Client\Google.Apis.Calendar.v3.dll
2020-03-06 15:35 - 2020-03-06 15:35 - 000072704 _____ (Google Inc.) [File not signed] [File is in use] C:\Program Files (x86)\eM Client\Google.Apis.Core.dll
2020-03-06 15:35 - 2020-03-06 15:35 - 000077312 _____ (Google Inc.) [File not signed] [File is in use] C:\Program Files (x86)\eM Client\Google.Apis.dll
2020-03-06 15:45 - 2020-03-06 15:45 - 000105984 _____ (Google Inc.) [File not signed] [File is in use] C:\Program Files (x86)\eM Client\Google.Apis.Gmail.v1.dll
2020-01-06 14:09 - 2020-01-06 14:09 - 000029184 _____ (Google Inc.) [File not signed] [File is in use] C:\Program Files (x86)\eM Client\Google.Apis.Tasks.v1.dll
2009-09-16 18:44 - 2009-09-16 18:44 - 000153088 _____ (Hewlett Packard) [File not signed] C:\WINDOWS\System32\hptcpmib.dll
2009-09-16 18:45 - 2009-09-16 18:45 - 000331264 _____ (Hewlett Packard) [File not signed] C:\WINDOWS\System32\HpTcpMon.dll
2009-09-16 11:44 - 2009-09-16 11:44 - 000132096 _____ (Hewlett Packard) [File not signed] C:\WINDOWS\System32\hpzjrd01.dll
2011-04-13 16:08 - 2011-04-13 16:08 - 000050688 _____ (Hewlett-Packard) [File not signed] c:\windows\system32\hpzinw12.dll
2011-04-13 16:08 - 2011-04-13 16:08 - 000066048 _____ (Hewlett-Packard) [File not signed] c:\windows\system32\hpzipm12.dll
2020-08-27 18:34 - 2020-08-27 18:34 - 040592896 _____ (Intel) [File not signed] C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.2765.0_x64__8j3eq9eme6ctt\IGCC.dll
2009-09-16 18:45 - 2009-09-16 18:45 - 000317440 _____ (Microsoft Corporation) [File not signed] C:\WINDOWS\System32\HPTcpMUI.dll
2020-10-14 08:09 - 2020-10-14 08:09 - 003043328 _____ (Python Software Foundation) [File not signed] C:\Users\jpail\AppData\Local\Temp\_MEI196242\python27.dll
2020-09-04 05:13 - 2020-09-04 05:13 - 066412032 _____ (QNAP Systems, Inc.) [File not signed] C:\Program Files (x86)\QNAP\Qsync\Lang\QsyncCSY.dll
2020-09-14 08:38 - 2020-05-30 19:58 - 001280000 _____ (Robert Simpson, et al.) [File not signed] C:\ProgramData\Lenovo\iMController\Plugins\GenericMessagingPlugin\x86\SQLite.Interop.dll
2020-08-27 14:47 - 2020-08-27 14:47 - 000090112 _____ (Silicon Laboratories, Inc.) [File not signed] C:\Program Files (x86)\Garmin\Express\DSI_SiUSBXp_3_1.DLL
2020-08-21 01:58 - 2020-08-21 01:58 - 000944840 _____ (SQLite Development Team) [File not signed] C:\Program Files (x86)\eM Client\win-x86\sqlite3.native.dll
2020-06-19 10:05 - 2020-04-09 09:17 - 000944840 _____ (SQLite Development Team) [File not signed] C:\ProgramData\Lenovo\iMController\Plugins\LenovoWiFiSecurityPlugin\x86\x86\e_sqlite3.dll
2020-08-21 01:58 - 2020-08-21 01:58 - 000729600 _____ (The Chromium Authors) [File not signed] C:\Program Files (x86)\eM Client\libcef\chrome_elf.dll
2019-07-27 09:57 - 2019-07-27 09:57 - 000762368 _____ (The Chromium Authors) [File not signed] C:\Program Files (x86)\Garmin\Express\chrome_elf.dll
2020-08-24 12:23 - 2020-08-24 12:23 - 001265664 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\QNAP\Qfinder\LIBEAY32.dll
2020-06-01 10:18 - 2020-06-01 10:18 - 002115584 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\QNAP\Qsync\libcrypto-1_1.dll
2020-06-01 10:18 - 2020-06-01 10:18 - 000371200 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\QNAP\Qsync\libssl-1_1.dll
2020-08-24 12:23 - 2020-08-24 12:23 - 002516480 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] C:\Program Files (x86)\QNAP\Qfinder\libcrypto-1_1.dll
2020-08-24 12:23 - 2020-08-24 12:23 - 000530944 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] C:\Program Files (x86)\QNAP\Qfinder\libssl-1_1.dll
2020-09-14 10:18 - 2020-09-14 10:18 - 005112440 _____ (The Qt Company Oy -> The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\QNAP\Qfinder\Qt5Core.dll
2020-08-21 01:58 - 2020-08-21 01:58 - 000442368 _____ (Thomas Maierhofer) [File not signed] C:\Program Files (x86)\eM Client\Hunspellx86.dll
2020-10-14 08:09 - 2020-10-14 08:09 - 000202240 _____ (wxWidgets development team) [File not signed] C:\Users\jpail\AppData\Local\Temp\_MEI196242\wxbase30u_net_vc90_x64.dll
2020-10-14 08:09 - 2020-10-14 08:09 - 002831872 _____ (wxWidgets development team) [File not signed] C:\Users\jpail\AppData\Local\Temp\_MEI196242\wxbase30u_vc90_x64.dll
2020-10-14 08:09 - 2020-10-14 08:09 - 001654784 _____ (wxWidgets development team) [File not signed] C:\Users\jpail\AppData\Local\Temp\_MEI196242\wxmsw30u_adv_vc90_x64.dll
2020-10-14 08:09 - 2020-10-14 08:09 - 006542336 _____ (wxWidgets development team) [File not signed] C:\Users\jpail\AppData\Local\Temp\_MEI196242\wxmsw30u_core_vc90_x64.dll
2020-10-14 08:09 - 2020-10-14 08:09 - 000773632 _____ (wxWidgets development team) [File not signed] C:\Users\jpail\AppData\Local\Temp\_MEI196242\wxmsw30u_html_vc90_x64.dll
2020-10-14 08:09 - 2020-10-14 08:09 - 000137216 _____ (wxWidgets development team) [File not signed] C:\Users\jpail\AppData\Local\Temp\_MEI196242\wxmsw30u_webview_vc90_x64.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
HKU\S-1-5-21-593775254-1694550017-2851628514-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://go.microsoft.com/fwlink/p/?LinkId=620947&OCID=AVRES000&pc=UE00
HKU\S-1-5-21-593775254-1694550017-2851628514-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo17win10.msn.com/?pc=LCTE
HKU\S-1-5-21-593775254-1694550017-2851628514-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.toshiba.eu/generic/makeitwork
SearchScopes: HKU\S-1-5-21-593775254-1694550017-2851628514-1001 -> DefaultScope {843D999C-F944-4008-926E-EB7882B1B027} URL =
SearchScopes: HKU\S-1-5-21-593775254-1694550017-2851628514-1001 -> {843D999C-F944-4008-926E-EB7882B1B027} URL =
BHO: Bitdefender Trackers Blocking -> {159ff5d5-55f1-4d2f-b706-767a55f77abb} -> C:\Program Files\Bitdefender\Bitdefender Security\bdtbie.dll [2020-06-25] (Bitdefender SRL -> Bitdefender)
BHO: Bitdefender - Portmonka -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender Security\pmbxie.dll [2020-06-25] (Bitdefender SRL -> Bitdefender)
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2020-09-15] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Bitdefender Trackers Blocking -> {159ff5d5-55f1-4d2f-b706-767a55f77abb} -> C:\Program Files\Bitdefender\Bitdefender Security\antispam32\bdtbie.dll [2020-06-25] (Bitdefender SRL -> Bitdefender)
BHO-x32: Bitdefender - Portmonka -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender Security\Antispam32\pmbxie.dll [2020-06-25] (Bitdefender SRL -> Bitdefender)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2020-09-15] (Microsoft Corporation -> Microsoft Corporation)
Toolbar: HKLM - Bitdefender - Portmonka - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender Security\pmbxie.dll [2020-06-25] (Bitdefender SRL -> Bitdefender)
Toolbar: HKLM-x32 - Bitdefender - Portmonka - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender Security\Antispam32\pmbxie.dll [2020-06-25] (Bitdefender SRL -> Bitdefender)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-03-19 06:49 - 2020-10-14 11:10 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
2020-08-15 21:56 - 2020-08-15 21:57 - 000000437 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-593775254-1694550017-2851628514-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\windows\img0.jpg
DNS Servers: 192.168.1.21 - 213.46.172.37
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKU\S-1-5-21-593775254-1694550017-2851628514-1001\...\StartupApproved\Run: => "OneDrive"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{FAF6DBEE-2A65-4D88-901D-672DCAEBC287}] => (Allow) C:\Users\jpail\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{8441D6FC-D4ED-4E95-BC50-788200A89AD4}] => (Allow) C:\Users\jpail\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{42E8C376-BFCA-4AC1-B277-FED03F5A8211}] => (Allow) C:\Program Files (x86)\Sticky Password\stpass.exe (Lamantine Software a.s. -> Lamantine Software a.s.)
FirewallRules: [{5CFA19F6-3A33-4A77-AF54-E207079FB81F}] => (Allow) C:\Program Files (x86)\Sticky Password\stpass.exe (Lamantine Software a.s. -> Lamantine Software a.s.)
FirewallRules: [TCP Query User{8AA3AF1B-5975-4390-9831-67C89EDA9B9F}C:\program files (x86)\qnap\qfinder\qfinderpro.exe] => (Allow) C:\program files (x86)\qnap\qfinder\qfinderpro.exe (QNAP Systems, Inc. -> QNAP)
FirewallRules: [UDP Query User{9436F97B-06E3-4965-91FA-419D237082A1}C:\program files (x86)\qnap\qfinder\qfinderpro.exe] => (Allow) C:\program files (x86)\qnap\qfinder\qfinderpro.exe (QNAP Systems, Inc. -> QNAP)
FirewallRules: [{42602F3F-B62E-4E3D-89C1-CF1EA298FE75}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{19647594-D715-491E-8ED9-B7F61B118A52}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{F553552B-78D5-429B-9478-BDBADA29C844}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{47C803BF-5BD7-4F05-9AD5-699B35B79119}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{08D42A0F-4C8C-4B56-B713-0308665465B7}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe (Lenovo -> )
FirewallRules: [{547F329B-099D-4E34-BBA3-1160D4E22765}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe (Lenovo -> )
FirewallRules: [{96FE8360-52FD-405B-8188-37E484665DC2}] => (Allow) C:\Program Files\OpenShot Video Editor\openshot-qt.exe (OpenShot Studios, LLC) [File not signed]
FirewallRules: [{3B1A2C04-EFEB-44C4-96A3-FEA251DFF859}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5274D11B-E69A-47B7-AAE5-917FC0623065}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5C71520A-7E50-4813-9C47-AC0B1AEDCF7E}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{54A725EA-BABD-430C-96A0-1C3AE5B50D43}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{375D881E-3CB7-41B8-BF74-E21CF510721E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{90709D71-A330-42AA-B432-7898E6ACB0BC}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{91CB36CD-0E80-44F4-B631-AEB7B7C26FCC}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F22E7187-3152-4C61-A9B2-1175880C1CA8}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{30B719E5-A526-4B4E-8B70-E87561785C46}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C0357F3B-7C55-41CE-A3FB-663ED1854C51}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{2997A275-4F74-47F1-B067-379F769DAD4A}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{3902EE9B-2E2F-4B3C-BD26-3388C7B6980E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{A2B0F0FB-41B7-4426-8EFB-15E0D1F5601B}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{243A20FE-B7E3-4CD4-83A1-994AB46D1928}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.143.700.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{9A96AD7C-796C-4032-8F6A-A3CEAB36D7A5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.143.700.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{B67C97C5-A3C4-40F5-8788-E7ABB07BA2AE}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.143.700.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{765DC1FA-A6F8-4ECA-BBCD-834BE23426F5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.143.700.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{365610EF-D08F-4012-AAE6-0EFB5A809731}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.143.700.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{D70C8CD9-CB33-4B43-8B33-8CCCC08364A7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.143.700.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{DBEAF699-56D7-49B7-936D-14A98372B056}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.143.700.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{90E63ACD-6155-4437-9A6F-A1BA1AC11EED}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.143.700.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{A03EDF28-1174-4A57-A29D-A38A37DEF4DD}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> philandro Software GmbH)
FirewallRules: [{710A0328-2F64-4DDA-92FD-671DE7FF77F6}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> philandro Software GmbH)
FirewallRules: [{90BB8FC0-5D72-4CEA-918E-14AD5A91997E}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{51CD233D-799B-4A6B-9DA7-78C2FB7B8E1E}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> philandro Software GmbH)
FirewallRules: [{90E1FDEE-C9CE-422A-BB87-6F1D56CC910D}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> philandro Software GmbH)
FirewallRules: [{43D789C1-0FC7-45F8-B24F-DC349F1E444D}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> philandro Software GmbH)
FirewallRules: [{8BD05451-76D0-40F2-ACAD-5D2022764D69}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> philandro Software GmbH)
==================== Restore Points =========================
ATTENTION: System Restore is disabled (Total:952.62 GB) (Free:645.37 GB) (68%)
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (10/14/2020 08:09:42 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybujĂcĂ aplikace: NetBak.exe, verze: 4.5.12.1108, ÄŤasovĂ© razĂtko: 0x5dc5385b
Název chybujĂcĂho modulu: NetBak.exe, verze: 4.5.12.1108, ÄŤasovĂ© razĂtko: 0x5dc5385b
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000fb3b3
ID chybujĂcĂho procesu: 0x53a0
ÄŚas spuštÄ›nĂ chybujĂcĂ aplikace: 0x01d6a1f098b2d365
Cesta k chybujĂcĂ aplikaci: C:\Program Files\QNAP\NetBak\NetBak.exe
Cesta k chybujĂcĂmu modulu: C:\Program Files\QNAP\NetBak\NetBak.exe
ID zprávy: 28e3cd20-ee5f-4e1f-868b-f9f422e0e3ee
ĂšplnĂ˝ název chybujĂcĂho balĂÄŤku:
ID aplikace souvisejĂcĂ s chybujĂcĂm balĂÄŤkem:
Error: (10/13/2020 07:23:40 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybujĂcĂ aplikace: NetBak.exe, verze: 4.5.12.1108, ÄŤasovĂ© razĂtko: 0x5dc5385b
Název chybujĂcĂho modulu: NetBak.exe, verze: 4.5.12.1108, ÄŤasovĂ© razĂtko: 0x5dc5385b
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000fb3b3
ID chybujĂcĂho procesu: 0x2634
ÄŚas spuštÄ›nĂ chybujĂcĂ aplikace: 0x01d6a18592207b12
Cesta k chybujĂcĂ aplikaci: C:\Program Files\QNAP\NetBak\NetBak.exe
Cesta k chybujĂcĂmu modulu: C:\Program Files\QNAP\NetBak\NetBak.exe
ID zprávy: a92c45ae-edd4-48b6-b3c7-6480e1bbedd1
ĂšplnĂ˝ název chybujĂcĂho balĂÄŤku:
ID aplikace souvisejĂcĂ s chybujĂcĂm balĂÄŤkem:
Error: (10/13/2020 07:23:28 PM) (Source: DPTF) (EventID: 17) (User: NT AUTHORITY)
Description: Event-ID 17
Error: (10/13/2020 12:10:34 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 13) (User: JP-YOGA)
Description: C:\Users\jpail\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCacheMicrosoft.MicrosoftOfficeHub_8wekyb3d8bbwe-2147024809
Error: (10/13/2020 11:53:31 AM) (Source: Microsoft-Windows-AppModel-State) (EventID: 13) (User: JP-YOGA)
Description: C:\Users\jpail\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCacheMicrosoft.MicrosoftOfficeHub_8wekyb3d8bbwe-2147024809
Error: (10/13/2020 11:38:09 AM) (Source: Microsoft-Windows-AppModel-State) (EventID: 13) (User: JP-YOGA)
Description: C:\Users\jpail\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCacheMicrosoft.MicrosoftOfficeHub_8wekyb3d8bbwe-2147024809
Error: (10/13/2020 11:22:40 AM) (Source: Microsoft-Windows-AppModel-State) (EventID: 13) (User: JP-YOGA)
Description: C:\Users\jpail\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCacheMicrosoft.MicrosoftOfficeHub_8wekyb3d8bbwe-2147024809
Error: (10/13/2020 11:22:31 AM) (Source: Microsoft-Windows-AppModel-State) (EventID: 13) (User: JP-YOGA)
Description: C:\Users\jpail\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCacheMicrosoft.MicrosoftOfficeHub_8wekyb3d8bbwe-2147024809
System errors:
=============
Error: (10/14/2020 08:09:34 AM) (Source: Microsoft-Windows-NDIS) (EventID: 10317) (User: )
Description: Na miniportu Microsoft Wi-Fi Direct Virtual Adapter #2, {9b15de9f-167c-4d30-a110-fde26dc573e8}, došlo k události 74.
Error: (10/13/2020 07:23:28 PM) (Source: Microsoft-Windows-NDIS) (EventID: 10317) (User: )
Description: Na miniportu Microsoft Wi-Fi Direct Virtual Adapter #2, {9b15de9f-167c-4d30-a110-fde26dc573e8}, došlo k události 74.
Error: (10/13/2020 09:08:26 AM) (Source: Netwtw10) (EventID: 5010) (User: )
Description: Intel(R) Wi-Fi 6 AX201 160MHz : SĂĹĄovĂ˝ adaptĂ©r vrátil ovladaÄŤi neplatnou hodnotu.
5010 - Driver DBG_ASSERT - instead of BSOD
Error: (10/13/2020 09:08:05 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: RozšiĹ™ujĂcĂ modul sĂtÄ› WLAN byl neoÄŤekávanÄ› ukonÄŤen.
Cesta k modulu: C:\WINDOWS\system32\IntelIHVRouter08.dll
Error: (10/13/2020 09:08:05 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: RozšiĹ™ujĂcĂ modul sĂtÄ› WLAN byl neoÄŤekávanÄ› ukonÄŤen.
Cesta k modulu: C:\WINDOWS\system32\IntelIHVRouter08.dll
Error: (10/13/2020 09:08:03 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: RozšiĹ™ujĂcĂ modul sĂtÄ› WLAN byl neoÄŤekávanÄ› ukonÄŤen.
Cesta k modulu: C:\WINDOWS\system32\IntelIHVRouter08.dll
Error: (10/13/2020 09:07:58 AM) (Source: DCOM) (EventID: 10010) (User: JP-YOGA)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (10/13/2020 09:07:58 AM) (Source: DCOM) (EventID: 10010) (User: JP-YOGA)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
CodeIntegrity:
===================================
Date: 2020-10-14 11:46:53.8050000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Sticky Password\spCapBtnLdr.dll that did not meet the Microsoft signing level requirements.
Date: 2020-10-14 11:46:53.8030000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Sticky Password\spCapBtnLdr.dll that did not meet the Microsoft signing level requirements.
Date: 2020-10-14 11:46:53.0510000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Sticky Password\spCapBtnLdr.dll that did not meet the Microsoft signing level requirements.
Date: 2020-10-14 11:46:53.0490000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Sticky Password\spCapBtnLdr.dll that did not meet the Microsoft signing level requirements.
Date: 2020-10-14 11:46:52.6710000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Sticky Password\spCapBtnLdr.dll that did not meet the Microsoft signing level requirements.
Date: 2020-10-14 11:46:52.6670000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Sticky Password\spCapBtnLdr.dll that did not meet the Microsoft signing level requirements.
Date: 2020-10-14 11:45:58.4860000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Sticky Password\spCapBtnLdr.dll that did not meet the Microsoft signing level requirements.
Date: 2020-10-14 11:45:58.4830000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Sticky Password\spCapBtnLdr.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: LENOVO BQCN29WW 10/21/2019
Motherboard: LENOVO LNVNB161216
Processor: Intel(R) Core(TM) i7-1065G7 CPU @ 1.30GHz
Percentage of memory in use: 55%
Total physical RAM: 16142.18 MB
Available physical RAM: 7120.08 MB
Total Virtual: 32526.18 MB
Available Virtual: 20010.64 MB
==================== Drives ================================
Drive c: (Windows-SSD) (Fixed) (Total:952.62 GB) (Free:645.37 GB) NTFS
\\?\Volume{095b8933-5830-47cd-b37b-d7113ae2cee1}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.36 GB) NTFS
\\?\Volume{c4da1cb9-e03f-4eed-954b-fe8b486fff84}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 953.9 GB) (Disk ID: 84426189)
Partition: GPT.
==================== End of Addition.txt =======================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Vytížení procesoru - Chrom
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Vytížení procesoru - Chrom
- Přílohy
-
- FRST.zip
- (24.47 KiB) Staženo 72 x
-
Rudy
- Site Admin
- Příspěvky: 119376
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Vytížení procesoru - Chrom
Zdravím!
Konkrértní doplněk neodhalíme. Chrome by měl aso mít nějakou správu doplňků (nevím, Chrome nepoužívám). Prohlížeče také můžeme vyčistit. Spusťte postuoně tyto utility:
1. Stahnete Zoek.exe http://download.bleepingcomputer.com/smeenk/zoek.exe a ulozte jej na plochu
Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
Do okna vlozte skript nize
Nasledne kliknete na Run Script
PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem.
a
2. Junkware removal tool: https://www.stahuj.cz/utility_a_ostatni ... oval-tool/
•Ulozte nejlepe na plochu
•Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
•Probehne vytvoreni zalohy a nasledne prohledavani
•Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte.
Konkrértní doplněk neodhalíme. Chrome by měl aso mít nějakou správu doplňků (nevím, Chrome nepoužívám). Prohlížeče také můžeme vyčistit. Spusťte postuoně tyto utility:
1. Stahnete Zoek.exe http://download.bleepingcomputer.com/smeenk/zoek.exe a ulozte jej na plochu
Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
Do okna vlozte skript nize
autoclean;
resethosts;
emptyclsid;
IEdefaults;
FFdefaults;
CHRdefaults;
emptyIEcache;
emptyFFcache;
emptyCHRcache;
emptyalltemp;
emptyflash;
emptyjava;
emptyrecycle.bin;
Nasledne kliknete na Run Script
PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem.
a
2. Junkware removal tool: https://www.stahuj.cz/utility_a_ostatni ... oval-tool/
•Ulozte nejlepe na plochu
•Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
•Probehne vytvoreni zalohy a nasledne prohledavani
•Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Vytížení procesoru - Chrom
Přikládám logy:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.4 (07.09.2017)
Operating System: Windows 10 Enterprise x64
Ran by jpail (Administrator) on 15.10.2020 at 15:47:59,29
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
File System: 0
Registry: 3
Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{843D999C-F944-4008-926E-EB7882B1B027} (Registry Key)
Successfully deleted: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{159ff5d5-55f1-4d2f-b706-767a55f77abb} (Registry Key)
Successfully deleted: HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{159ff5d5-55f1-4d2f-b706-767a55f77abb} (Registry Key)
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 15.10.2020 at 15:49:58,29
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.4 (07.09.2017)
Operating System: Windows 10 Enterprise x64
Ran by jpail (Administrator) on 15.10.2020 at 15:47:59,29
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
File System: 0
Registry: 3
Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{843D999C-F944-4008-926E-EB7882B1B027} (Registry Key)
Successfully deleted: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{159ff5d5-55f1-4d2f-b706-767a55f77abb} (Registry Key)
Successfully deleted: HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{159ff5d5-55f1-4d2f-b706-767a55f77abb} (Registry Key)
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 15.10.2020 at 15:49:58,29
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
-
Rudy
- Site Admin
- Příspěvky: 119376
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Vytížení procesoru - Chrom
OK. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Vytížení procesoru - Chrom
V současnosti již bez problémů. Vytěžování procesoru odstraněno.
Děkuji moc.
Pritt
Děkuji moc.
Pritt
-
Rudy
- Site Admin
- Příspěvky: 119376
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Vytížení procesoru - Chrom
Nemáte zač! 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?