VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Zpomalení počítače

https://forum.viry.cz:443/viewtopic.php?t=157748

Stránka 1 z 1

Zpomalení počítače

Napsal: 03 led 2021 22:56
od zinrak
Dobrý den,
prosím o pomoc s poměrně slušným notebookem T460, využívaným jen na kancelářskou práci, ale velmi se zpomalil.
Přikládám logy z FRST:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 14-12-2020
Ran by zuzan (administrator) on T460 (LENOVO 20FMS03V00) (03-01-2021 22:39:51)
Running from C:\Users\zuzan\OneDrive\Plocha
Loaded Profiles: zuzan
Platform: Windows 10 Pro Version 2004 19041.685 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <3>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.) C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe
(Ghisler Software GmbH -> Ghisler Software GmbH) C:\totalcmd\TOTALCMD64.EXE
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_4645af5c659ae51a\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_4645af5c659ae51a\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_4645af5c659ae51a\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_4645af5c659ae51a\IntelCpHeciSvc.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Lenovo -> Lenovo Group Limited) C:\Windows\System32\DriverStore\FileRepository\fn.inf_amd64_e845ba1c40f55909\driver\tphkload.exe
(Lenovo -> Lenovo Group Limited) C:\Windows\System32\DriverStore\FileRepository\FN8DAD~1.INF\driver\shtctky.exe
(Lenovo -> Lenovo Group Limited) C:\Windows\System32\DriverStore\FileRepository\FN8DAD~1.INF\driver\tpnumlkd.exe
(Lenovo -> Lenovo Group Limited) C:\Windows\System32\DriverStore\FileRepository\FN8DAD~1.INF\driver\tposd.exe
(Lenovo -> Lenovo Group Limited) C:\Windows\SysWOW64\Lenovo\PowerMgr\EasyResume.exe
(Lenovo -> Lenovo) C:\Windows\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe
(Lenovo -> Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\zuzan\AppData\Local\Microsoft\OneDrive\20.201.1005.0009\FileCoAuth.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\zuzan\AppData\Local\Microsoft\OneDrive\OneDrive.exe <2>
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_2.2011.11613.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12011.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxApp_48.72.4001.0_x64__8wekyb3d8bbwe\XboxApp.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Speech_OneCore\common\SpeechRuntime.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Software602 a.s. -> Software602 a.s.) C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
(Synaptics Incorporated -> Synaptics) C:\Program Files\Synaptics\SynTP\SynLenovoHelper.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [117344 2020-11-26] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [ICAMaintenance_ICAPKIService_RegKeysRefresh] => C:\Program Files (x86)\I.CA\I.CA Maintenance\ICAMaintenance.exe [283904 2019-08-02] (Prvni certifikacni autorita, a.s. -> I.CA, a.s.)
HKU\S-1-5-21-2174040718-3032521688-1123673034-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\zuzan\AppData\Local\Microsoft\Teams\Update.exe [2452664 2020-11-18] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-2174040718-3032521688-1123673034-1001\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\zuzan\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe"
HKU\S-1-5-21-2174040718-3032521688-1123673034-1001\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\zuzan\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe"
HKU\S-1-5-21-2174040718-3032521688-1123673034-1001\...\RunOnce: [Uninstall 20.169.0823.0008\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\zuzan\AppData\Local\Microsoft\OneDrive\20.169.0823.0008\amd64"
HKU\S-1-5-21-2174040718-3032521688-1123673034-1001\...\RunOnce: [Uninstall 20.169.0823.0008] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\zuzan\AppData\Local\Microsoft\OneDrive\20.169.0823.0008"
HKLM\...\Print\Monitors\Common XP64 Language Monitor: C:\WINDOWS\system32\oklmon64.dll [27648 2009-06-25] (Microsoft Windows Hardware Compatibility Publisher -> Oki Data Corporation)
HKLM\...\Print\Monitors\FPP6:: C:\WINDOWS\system32\fppmon6-x64.dll [785896 2018-12-05] (FinePrint Software, LLC -> FinePrint Software, LLC)
HKLM\...\Print\Monitors\FPR9:: C:\WINDOWS\system32\fpmon9-x64.dll [750600 2018-07-23] (FinePrint Software, LLC -> FinePrint Software, LLC)
HKLM\...\Print\Monitors\Software602 XPS port monitor: C:\WINDOWS\system32\602localmon.dll [54864 2018-05-31] (Software602 a.s. -> Windows (R) Win 7 DDK provider)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.88\Installer\chrmstp.exe [2020-12-08] (Google LLC -> Google LLC)
IFEO\taskmgr.exe: [Debugger] "C:\WINDOWS\PROCEXP.EXE"
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {014A547C-5AAC-4EC2-A2AE-9EEE21B3F477} - System32\Tasks\Lenovo Power Management Driver PnP Task => C:\WINDOWS\System32\ibmpmsvc.exe [851800 2018-12-25] (Lenovo -> Lenovo.)
Task: {1931A381-93B9-49F0-A8A4-CA8F3ACD5C38} - System32\Tasks\Lenovo\Power Manager\Background monitor => C:\WINDOWS\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe [112840 2020-10-13] (Lenovo -> Lenovo)
Task: {502A5E63-C89B-43C4-A8F6-C4979BE9752A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [3306176 2019-11-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {51AB5596-9226-47F8-A06A-E4745F5B5570} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [693456 2020-12-22] (Mozilla Corporation -> Mozilla Foundation)
Task: {60588AEF-116B-4DAD-B16F-8C1DBF15184C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-11-08] (Google Inc -> Google LLC)
Task: {62BF5CF6-896C-48EA-9D03-1129A29D4FB5} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [3550400 2016-12-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {68286C09-B3F1-471D-949F-3C9C83FF8320} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1349200 2020-11-03] (Adobe Inc. -> Adobe Inc.)
Task: {72903EFB-61E2-4A67-AA60-999E01ACCB7C} - System32\Tasks\RtHDVBg_Dolby => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617584 2020-04-08] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {849061A6-4E71-4B65-9626-9243B1BD61A3} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [3306176 2019-11-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {95962F39-6B5E-41A5-88BE-CCCD7EECBA5B} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617584 2020-04-08] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {B37D0EFA-D577-4031-BB28-1ADE3BE15B6A} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4617832 2020-11-26] (Avast Software s.r.o. -> AVAST Software)
Task: {B3F843F3-D4BC-4AFB-98F7-2F93DFF9977F} - System32\Tasks\Lenovo\Power Manager\Uninstall task => C:\WINDOWS\SysWOW64\PowerMgrInst.exe [60616 2020-10-13] (Lenovo -> )
Task: {C90B3BD7-F066-4C6C-8D4A-ECACF7B51A18} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-11-08] (Google Inc -> Google LLC)
Task: {D65A709F-BDF8-4297-BA51-D1BAF3857975} - System32\Tasks\Agent Activation Runtime\S-1-5-21-2174040718-3032521688-1123673034-1001 => C:\WINDOWS\System32\AgentActivationRuntimeStarter.exe [13312 2020-12-09] (Microsoft Windows -> )
Task: {DC888DCF-FD48-4DCA-A822-2A366DFAFECE} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1741416 2020-09-18] (Avast Software s.r.o. -> Avast Software)
Task: {F4DC1F3E-5D83-423F-B9AC-C14C112B76B1} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [3550400 2016-12-28] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 88.208.94.12 8.8.8.8
Tcpip\..\Interfaces\{49c8d85b-9e68-4359-af57-2a32ded75c23}: [DhcpNameServer] 88.208.94.12 8.8.8.8
Tcpip\..\Interfaces\{fbd76e24-468a-4ef5-a3d6-417a97db0915}: [DhcpNameServer] 88.208.94.12 8.8.8.8

Edge:
======
Edge Profile: C:\Users\zuzan\AppData\Local\Microsoft\Edge\User Data\Default [2020-12-20]

FireFox:
========
FF DefaultProfile: 1s6lum95.default
FF ProfilePath: C:\Users\zuzan\AppData\Roaming\Mozilla\Firefox\Profiles\1s6lum95.default [2020-03-01]
FF Notifications: Mozilla\Firefox\Profiles\1s6lum95.default -> hxxps://mail.google.com; hxxps://eshop.tescoma.cz; hxxps://www.lightinthebox.com; hxxps://www.tescoma.cz; hxxps://www.hracky-4kids.cz; hxxps://www.megaknihy.cz; hxxps://www.facebook.com
FF ProfilePath: C:\Users\zuzan\AppData\Roaming\Mozilla\Firefox\Profiles\oja1ei4u.default-release [2021-01-03]
FF Notifications: Mozilla\Firefox\Profiles\oja1ei4u.default-release -> hxxps://mail.google.com; hxxps://eshop.tescoma.cz; hxxps://www.lightinthebox.com; hxxps://www.tescoma.cz; hxxps://www.hracky-4kids.cz; hxxps://www.megaknihy.cz; hxxps://www.facebook.com; hxxps://www.sevt.cz; hxxps://www.vouchercloud.cz; hxxps://www.roboticky-vysavac.cz; hxxps://www.yves-rocher.cz; hxxps://www.miniinthebox.com; hxxps://www.mall.cz
FF Extension: (Komponenta I.CA PKI Service) - C:\Users\zuzan\AppData\Roaming\Mozilla\Firefox\Profiles\oja1ei4u.default-release\Extensions\icapkiservice@ica.cz.xpi [2020-01-08]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-11-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2019-11-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @software602.cz/602XML Filler -> C:\Program Files (x86)\Software602\602XML\Filler\npfiller.dll [2018-01-08] (Software602 a.s. -> Software602 a.s.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-12-07] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR Profile: C:\Users\zuzan\AppData\Local\Google\Chrome\User Data\Default [2020-12-30]
CHR HomePage: Default -> hxxp://www.google.com/ig/redirectdomain?brand=LENP&bmod=LENP
CHR StartupUrls: Default -> "hxxp://www.google.com/ig/redirectdomain?brand= ... seznam.cz/"
CHR Extension: (Prezentace) - C:\Users\zuzan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-11-08]
CHR Extension: (Dokumenty) - C:\Users\zuzan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-11-08]
CHR Extension: (Disk Google) - C:\Users\zuzan\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-12-30]
CHR Extension: (YouTube) - C:\Users\zuzan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-11-08]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\zuzan\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2020-12-30]
CHR Extension: (Adobe Acrobat) - C:\Users\zuzan\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2020-12-30]
CHR Extension: (Komponenta I.CA PKI Service) - C:\Users\zuzan\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdolcjnejgbpoadihncaggiicpkhjchl [2019-11-08]
CHR Extension: (Tabulky) - C:\Users\zuzan\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-11-08]
CHR Extension: (Dokumenty Google offline) - C:\Users\zuzan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-12-30]
CHR Extension: (Projektově.CZ - pro přehledné řízení projektů) - C:\Users\zuzan\AppData\Local\Google\Chrome\User Data\Default\Extensions\jdgemfingabpmdaojgkbmhjjehlkojgn [2019-11-08]
CHR Extension: (Session Manager) - C:\Users\zuzan\AppData\Local\Google\Chrome\User Data\Default\Extensions\mghenlmbmjcpehccoangkdpagbcbkdpc [2019-11-08]
CHR Extension: (Kontrola e-mailu Google) - C:\Users\zuzan\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2019-11-08]
CHR Extension: (Sklik plugin) - C:\Users\zuzan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nidaimoaiogijcjpfjgkbhooeghpgklf [2019-11-08]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\zuzan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-11-08]
CHR Extension: (Gmail) - C:\Users\zuzan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-12-30]
CHR Extension: (Chrome Media Router) - C:\Users\zuzan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-12-30]
CHR Profile: C:\Users\zuzan\AppData\Local\Google\Chrome\User Data\System Profile [2020-12-30]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 602XML Updater; C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [85344 2011-10-10] (Software602 a.s. -> Software602 a.s.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8454552 2020-11-26] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [365648 2020-11-26] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [3096160 2020-11-26] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [58048 2020-11-26] (Avast Software s.r.o. -> AVAST Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [3020992 2016-12-28] (Microsoft Corporation -> Microsoft Corporation)
R2 Dolby DAX2 API Service; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [189464 2019-01-21] (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.)
S3 I.CA Maintenance Service; C:\Program Files (x86)\I.CA\I.CA Maintenance\ICAMaintenance.exe [283904 2019-08-02] (Prvni certifikacni autorita, a.s. -> I.CA, a.s.)
R2 Lenovo Instant On; C:\WINDOWS\SysWOW64\Lenovo\PowerMgr\EasyResume.exe [2351304 2020-10-13] (Lenovo -> Lenovo Group Limited)
S2 LPlatSvc; C:\WINDOWS\System32\LPlatSvc.exe [892760 2018-12-25] (Lenovo -> Lenovo.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5197552 2020-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 TPHKLOAD; C:\WINDOWS\System32\DriverStore\FileRepository\fn.inf_amd64_e845ba1c40f55909\driver\TPHKLOAD.exe [427192 2019-07-08] (Lenovo -> Lenovo Group Limited)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\NisSrv.exe [3201616 2019-11-04] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MsMpEng.exe [103168 2019-11-04] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37152 2020-11-26] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [206408 2020-11-26] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [332368 2020-11-26] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [247888 2020-11-26] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [97352 2020-11-26] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16816 2020-11-26] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42784 2020-11-26] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [176744 2020-11-26] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [521752 2020-11-26] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [109280 2020-11-26] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [84856 2020-11-26] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [851608 2020-11-26] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [469832 2020-11-26] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [217336 2020-11-26] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [326416 2020-11-26] (Avast Software s.r.o. -> AVAST Software)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
R0 PMDRVS; C:\WINDOWS\System32\drivers\pmdrvs.sys [44160 2018-12-25] (Lenovo -> Lenovo.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46472 2019-11-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [351968 2019-11-04] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [53984 2019-11-04] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-01-03 22:36 - 2021-01-03 22:40 - 000000000 ____D C:\FRST
2021-01-03 22:33 - 2021-01-03 22:33 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2020-12-22 23:49 - 2020-12-22 23:49 - 000000000 ____D C:\Program Files\Mozilla Firefox
2020-12-09 04:22 - 2020-12-09 04:22 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2020-12-09 04:22 - 2020-12-09 04:22 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2020-12-09 04:22 - 2020-12-09 04:22 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2020-12-09 04:22 - 2020-12-09 04:22 - 001822272 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2020-12-09 04:22 - 2020-12-09 04:22 - 001393496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2020-12-09 04:22 - 2020-12-09 04:22 - 001333248 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2020-12-09 04:22 - 2020-12-09 04:22 - 000363520 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-12-09 04:22 - 2020-12-09 04:22 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll
2020-12-09 04:22 - 2020-12-09 04:22 - 000266240 _____ C:\WINDOWS\SysWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-12-09 04:22 - 2020-12-09 04:22 - 000240640 _____ C:\WINDOWS\SysWOW64\CoreMas.dll
2020-12-09 04:22 - 2020-12-09 04:22 - 000165376 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2020-12-09 04:22 - 2020-12-09 04:22 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncpa.cpl
2020-12-09 04:22 - 2020-12-09 04:22 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncpa.cpl
2020-12-09 04:22 - 2020-12-09 04:22 - 000089088 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.proxystub.dll
2020-12-09 04:22 - 2020-12-09 04:22 - 000073216 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll
2020-12-09 04:22 - 2020-12-09 04:22 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2020-12-09 04:22 - 2020-12-09 04:22 - 000048640 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2020-12-09 04:22 - 2020-12-09 04:22 - 000039936 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2020-12-09 04:22 - 2020-12-09 04:22 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2020-12-09 04:22 - 2020-12-09 04:22 - 000010912 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2020-12-09 04:22 - 2020-12-09 04:22 - 000010752 _____ C:\WINDOWS\SysWOW64\agentactivationruntimestarter.exe
2020-12-09 04:22 - 2020-12-09 04:22 - 000001370 _____ C:\WINDOWS\system32\ThirdPartyNoticesBySHS.txt

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-01-03 22:39 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2021-01-03 22:35 - 2019-11-08 22:18 - 000000000 ____D C:\Users\zuzan\AppData\LocalLow\Mozilla
2021-01-03 22:34 - 2019-11-08 22:17 - 000000000 ____D C:\ProgramData\Mozilla
2021-01-03 22:33 - 2019-11-11 22:51 - 000001510 _____ C:\Users\zuzan\.JSignPdf
2021-01-03 22:33 - 2019-11-08 22:18 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-01-03 22:29 - 2020-08-26 12:26 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-01-03 22:29 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-01-01 23:08 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-01-01 23:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-12-31 20:59 - 2019-11-13 14:53 - 000000000 ____D C:\Users\zuzan\OneDrive\Dokumenty\FinePrint files
2020-12-31 17:58 - 2019-11-13 22:53 - 000000000 ____D C:\Users\zuzan\OneDrive\Dokumenty\PDF files
2020-12-31 17:29 - 2020-08-26 12:34 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2020-12-29 22:14 - 2019-11-09 20:42 - 000000000 ____D C:\Users\zuzan\OneDrive\Dokumenty\Praetor
2020-12-29 09:29 - 2019-11-04 12:44 - 000000000 ____D C:\Users\zuzan\AppData\Local\Packages
2020-12-29 01:12 - 2019-11-09 10:56 - 000000000 ___RD C:\Users\zuzan\OneDrive - ADIVENT s. r. o
2020-12-27 12:29 - 2020-08-26 12:34 - 000003512 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-12-27 12:29 - 2020-08-26 12:34 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2020-12-27 12:29 - 2020-08-26 12:34 - 000003400 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-12-27 12:29 - 2020-08-26 12:34 - 000003288 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-12-27 12:29 - 2020-08-26 12:34 - 000003176 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-12-27 12:29 - 2020-08-26 12:34 - 000002862 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2174040718-3032521688-1123673034-1001
2020-12-27 12:29 - 2020-08-26 12:34 - 000002858 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2174040718-3032521688-1123673034-500
2020-12-27 12:29 - 2020-08-26 12:34 - 000002766 _____ C:\WINDOWS\system32\Tasks\Lenovo Power Management Driver PnP Task
2020-12-27 12:29 - 2020-08-26 12:34 - 000002306 _____ C:\WINDOWS\system32\Tasks\RtHDVBg_Dolby
2020-12-27 12:29 - 2020-08-26 12:34 - 000002302 _____ C:\WINDOWS\system32\Tasks\RTKCPL
2020-12-23 01:41 - 2020-08-26 12:34 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2020-12-19 23:39 - 2019-11-08 22:18 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-12-19 14:53 - 2020-06-10 01:27 - 000002419 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-12-19 14:53 - 2020-06-10 01:27 - 000002257 _____ C:\ProgramData\Plocha\Microsoft Edge.lnk
2020-12-11 23:17 - 2020-08-26 12:27 - 000002365 _____ C:\Users\zuzan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-12-11 23:17 - 2019-11-04 12:46 - 000000000 ___RD C:\Users\zuzan\OneDrive
2020-12-10 09:11 - 2019-11-09 20:27 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-12-09 04:58 - 2020-08-26 12:37 - 001605602 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-12-09 04:58 - 2019-12-07 15:43 - 000683426 _____ C:\WINDOWS\system32\perfh005.dat
2020-12-09 04:58 - 2019-12-07 15:43 - 000137206 _____ C:\WINDOWS\system32\perfc005.dat
2020-12-09 04:51 - 2020-08-26 12:34 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-12-09 04:51 - 2019-11-04 12:44 - 000000000 __SHD C:\Users\zuzan\IntelGraphicsProfiles
2020-12-09 04:50 - 2020-08-26 12:26 - 000438672 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-12-09 04:50 - 2020-08-26 12:26 - 000008192 ___SH C:\DumpStack.log.tmp
2020-12-09 04:50 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2020-12-09 04:49 - 2019-12-07 15:47 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2020-12-09 04:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-12-09 04:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2020-12-09 04:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2020-12-09 04:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-12-09 04:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2020-12-09 04:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-12-09 04:49 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender
2020-12-09 04:49 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2020-12-09 04:25 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-12-09 04:22 - 2019-10-23 06:29 - 000413696 __RSH C:\bootmgr
2020-12-08 01:15 - 2019-11-08 22:11 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-12-08 01:15 - 2019-11-08 22:11 - 000002260 _____ C:\ProgramData\Plocha\Google Chrome.lnk

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)



Additional scan result of Farbar Recovery Scan Tool (x64) Version: 14-12-2020
Ran by zuzan (03-01-2021 22:41:16)
Running from C:\Users\zuzan\OneDrive\Plocha
Windows 10 Pro Version 2004 19041.685 (X64) (2020-08-26 11:34:40)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2174040718-3032521688-1123673034-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2174040718-3032521688-1123673034-503 - Limited - Disabled)
Guest (S-1-5-21-2174040718-3032521688-1123673034-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-2174040718-3032521688-1123673034-504 - Limited - Disabled)
zuzan (S-1-5-21-2174040718-3032521688-1123673034-1001 - Administrator - Enabled) => C:\Users\zuzan

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

ACDSee (HKLM-x32\...\ACDSee) (Version: - )
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 20.013.20074 - Adobe Systems Incorporated)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 20.9.2437 - Avast Software)
Datovka 4.15.0 (HKLM-x32\...\{6B534EC1-08FB-440B-87AC-7C6287CFD5F6}) (Version: 4.15.0 - CZ.NIC, z.s.p.o.)
Dolby Audio X2 Windows API SDK (HKLM\...\{F290F786-5F69-48D4-B20B-D21C7DE56EF0}) (Version: 0.8.8.88 - Dolby Laboratories, Inc.)
Dolby Audio X2 Windows APP (HKLM\...\{7DA57EF8-9D20-4126-AF15-D0CC97D0C017}) (Version: 0.6.3.48 - Dolby Laboratories, Inc.)
FinePrint (HKLM\...\FinePrint) (Version: 9.31 - FinePrint Software, LLC)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 87.0.4280.88 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.51 - Google LLC) Hidden
I.CA Maintenance (HKLM-x32\...\{A26EE07C-9196-4BB9-BB81-1608D0A99887}) (Version: 1.3.2.0 - První certifikační autorita, a.s.) Hidden
I.CA Maintenance (HKLM-x32\...\I.CA Maintenance 1.3.2.0) (Version: 1.3.2.0 - První certifikační autorita, a.s.)
I.CA PKIServiceHost (HKLM\...\{1E6A84FD-CFF9-41F3-8C9C-21891B80F6F9}) (Version: 1.3.7.0 - První certifikační autorita, a.s.) Hidden
I.CA PKIServiceHost (HKLM-x32\...\I.CA PKIServiceHost 1.3.7.0) (Version: 1.3.7.0 - První certifikační autorita, a.s.)
I.CA SecureStore 4.7.2 (HKLM\...\{9CEF689C-AD2C-4599-B4C9-FA6A3463FCE8}) (Version: 4.7.2 - První certifikační autorita, a.s.)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 23.20.16.4973 - Intel Corporation)
JSignPdf 1.6.4 (HKLM-x32\...\JSignPdf_is1) (Version: 1.6.4 - Josef Cacek)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 87.0.664.66 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.139.59 - )
Microsoft Office Standard 2016 - cs-cz (HKLM\...\StandardRetail - cs-cz) (Version: 16.0.7571.2109 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2174040718-3032521688-1123673034-1001\...\OneDriveSetup.exe) (Version: 20.201.1005.0009 - Microsoft Corporation)
Microsoft Project Standard 2016 - cs-cz (HKLM\...\ProjectStdRetail - cs-cz) (Version: 16.0.7571.2109 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-2174040718-3032521688-1123673034-1001\...\Teams) (Version: 1.3.00.28779 - Microsoft Corporation)
Microsoft Visio Standard 2016 - cs-cz (HKLM\...\VisioStdRetail - cs-cz) (Version: 16.0.7571.2109 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.23.27820 (HKLM-x32\...\{852adda4-4c78-4a38-b583-c0b360a329d6}) (Version: 14.23.27820.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.23.27820 (HKLM-x32\...\{45231ab4-69fd-486a-859d-7a59fcd11013}) (Version: 14.23.27820.0 - Microsoft Corporation)
MozBackup 1.5.1 (HKLM-x32\...\MozBackup) (Version: - Pavel Cvrcek)
Mozilla Firefox 84.0.1 (x64 cs) (HKLM\...\Mozilla Firefox 84.0.1 (x64 cs)) (Version: 84.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 70.0.1 - Mozilla)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 26.0.2 - OBS Project)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.7571.2109 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.7571.2109 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-1000-0000000FF1CE}) (Version: 16.0.7571.2109 - Microsoft Corporation) Hidden
OKI Network Extension (HKLM-x32\...\{38ADB9A6-798C-11D6-A855-00105A80791C}) (Version: 1.3.15 - Okidata)
pdfFactory Pro (HKLM\...\pdfFactory Pro) (Version: 6.35 - FinePrint Software, LLC)
Praetor II (HKU\S-1-5-21-2174040718-3032521688-1123673034-1001\...\Praetor.exe) (Version: - Praetor systems)
Software602 Form Filler (HKLM-x32\...\{9210AEE3-6ECB-4271-A125-1039E94A6A51}) (Version: 4.75 - Software602 a.s.)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.01 - Ghisler Software GmbH)
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1-2) (Version: 1.0.65.1 - LunarG, Inc.) Hidden

Packages:
=========
Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_7.1.17.0_x86__kgqvnymyfvs32 [2020-12-17] (king.com)
Candy Crush Friends -> C:\Program Files\WindowsApps\king.com.CandyCrushFriends_1.49.2.0_x86__kgqvnymyfvs32 [2020-12-15] (king.com)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-04-14] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-11-04] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-11-04] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.10142.0_x64__8wekyb3d8bbwe [2020-10-23] (Microsoft Studios) [MS Ad]
Microsoft To Do -> C:\Program Files\WindowsApps\Microsoft.Todos_2.34.33581.0_x64__8wekyb3d8bbwe [2021-01-01] (Microsoft Corporation) [Startup Task]
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0 [2020-12-12] (Spotify AB) [Startup Task]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2174040718-3032521688-1123673034-1001_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6} -> [OneDrive - Personal] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}0
CustomCLSID: HKU\S-1-5-21-2174040718-3032521688-1123673034-1001_Classes\CLSID\{04271989-C4D2-144A-2D08-BA12560D9F5A} -> [OneDrive - ADIVENT s. r. o] => C:\Users\zuzan\OneDrive - ADIVENT s. r. o [2019-11-09 10:56]
CustomCLSID: HKU\S-1-5-21-2174040718-3032521688-1123673034-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\zuzan\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2174040718-3032521688-1123673034-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\zuzan\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-11-26] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-11-26] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-11-26] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_4645af5c659ae51a\igfxDTCM.dll [2018-03-26] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-11-26] (Avast Software s.r.o. -> AVAST Software)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============


Díky moc
DZ

Re: Zpomalení počítače

Napsal: 04 led 2021 07:41
od JaRon
ahoj,
prescanuj PC s MBAM

Re: Zpomalení počítače

Napsal: 04 led 2021 09:28
od zinrak
Díky moc, ale samá nula.

Malwarebytes
www.malwarebytes.com

-Podrobnosti logovacího souboru-
Datum skenování: 04.01.21
Čas skenování: 9:15
Logovací soubor: fba360a6-4e64-11eb-9b4d-c85b76c8a946.json

-Informace o softwaru-
Verze: 4.3.0.98
Verze komponentů: 1.0.1130
Aktualizovat verzi balíku komponent: 1.0.35261
Licence: Zkušební

-Systémová informace-
OS: Windows 10 (Build 19041.685)
CPU: x64
Systém souborů: NTFS
Uživatel: T460\zuzan

-Shrnutí skenování-
Typ skenování: Skenování hrozeb (Threat Scan)
Spuštění skenování: Ruční
Výsledek: Dokončeno
Skenované objekty: 302125
Zjištěné hrozby: 0
Hrozby umístěné do karantény: 0
Uplynulý čas: 1 min, 46 sek

-Možnosti skenování-
Paměť: Povoleno
Start: Povoleno
Systém souborů: Povoleno
Archivy: Povoleno
Rootkity: Zakázáno
Heuristika: Povoleno
Potenciálně nežádoucí program: Detekovat
Potenciálně nežádoucí modifikace: Detekovat

-Podrobnosti skenování-
Proces: 0
(Nebyly zjištěny žádné škodlivé položky)

Modul: 0
(Nebyly zjištěny žádné škodlivé položky)

Klíč registru: 0
(Nebyly zjištěny žádné škodlivé položky)

Hodnota v registru: 0
(Nebyly zjištěny žádné škodlivé položky)

Data registrů: 0
(Nebyly zjištěny žádné škodlivé položky)

Datové proudy: 0
(Nebyly zjištěny žádné škodlivé položky)

Adresář: 0
(Nebyly zjištěny žádné škodlivé položky)

Soubor: 0
(Nebyly zjištěny žádné škodlivé položky)

Fyzický sektor: 0
(Nebyly zjištěny žádné škodlivé položky)

WMI: 0
(Nebyly zjištěny žádné škodlivé položky)


(end)

Re: Zpomalení počítače

Napsal: 04 led 2021 09:47
od JaRon
spust s príkazového riadku taskmgr a pozri kde je vysoka zataz CPU alebo RAM a ktore procesy ju sposobuju :???:

Re: Zpomalení počítače

Napsal: 04 led 2021 23:27
od zinrak
Tak dělá to Avastsvc.exe
Jede na 60-90% CPU.
Nejde ani zabít.

Re: Zpomalení počítače

Napsal: 05 led 2021 06:51
od JaRon
bol by to zly AV, keby sa dal jeho proces jednoducho ukoncit :)
1. odinstaluj AVAST
2. vycisti PC s CCleanerom vcetne registrov
restart
3. nainstaluj AVAST alebo iny AV

Re: Zpomalení počítače

Napsal: 06 led 2021 10:04
od zinrak
Provedl jsem body 1 a 2.
Nyní tam je jen windows defender a vybírám nový antivirus.
Můžu poprosit o rozum?
Přemýšlím o Avast Premium Security, ale tahle zkušenost mě odrazuje.
Případně Kaspersky Internet Security?
Díky moc

Re: Zpomalení počítače

Napsal: 06 led 2021 11:40
od JaRon
https://forum.viry.cz/viewtopic.php?f=29&t=152926
Pozri a vyber si kazdemu iné sedi
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz