Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Spomalený notebook

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
rudiberger
Návštěvník
Návštěvník
Příspěvky: 23
Registrován: 26 kvě 2015 11:46

Spomalený notebook

#1 Příspěvek od rudiberger »

Dobry den poprosil by som o kontrolu logu.
Zda sa mi ze notebook je spomaleny . Dakujem

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 30-08-2022
Ran by Jaroslav (administrator) on LENOVO-PC (LENOVO 20351) (14-09-2022 21:41:23)
Running from C:\Users\Jaroslav\Downloads
Loaded Profiles: Jaroslav
Platform: Microsoft Windows 10 Home Version 21H2 19044.2006 (X64) Language: Slovenčina (Slovensko)
Default browser: Edge
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(C:\Program Files\Elantech\ETDCtrl.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(C:\Program Files\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer.exe
(C:\Program Files\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Desktop.exe
(C:\Program Files\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\tv_w32.exe
(C:\Program Files\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\tv_x64.exe
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MpCopyAccelerator.exe
(explorer.exe ->) (Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(explorer.exe ->) (Disig a.s. -> Disig a.s.) C:\Program Files (x86)\Disig\Web Signer\WebSignerTray.exe
(explorer.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(explorer.exe ->) (Fortemedia Inc -> ) C:\Program Files\CONEXANT\ForteConfig\fmapp.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <25>
(explorer.exe ->) (Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe
(explorer.exe ->) (Microsoft Corporation -> © 2015 Microsoft Corporation) C:\Users\Jaroslav\AppData\Local\Microsoft\BingSvc\BingSvc.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <8>
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(explorer.exe ->) (Realtek Semiconductor Corp -> Realtek semiconductor) C:\Windows\RTFTrack.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe
(Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(services.exe ->) (Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(services.exe ->) (Conexant Systems, Inc.) [File not signed] C:\Windows\SysWOW64\UIUSrv.exe
(services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\NisSrv.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(svchost.exe ->) (Conexant Systems, Inc. -> Conexant Systems, Inc) C:\Program Files\CONEXANT\SAII\SmartAudio.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\Jaroslav\AppData\Local\Microsoft\OneDrive\22.176.0821.0003\FileCoAuth.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22062.543.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtsFT] => C:\WINDOWS\RTFTrack.exe [5062384 2015-08-30] (Realtek Semiconductor Corp -> Realtek semiconductor)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3242696 2015-10-07] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2014-02-26] (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [ForteConfig] => C:\Program Files\Conexant\ForteConfig\fmapp.exe [49056 2010-10-26] (Fortemedia Inc -> )
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [916184 2014-07-02] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1830232 2016-03-08] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM-x32\...\Run: [EAC_MW_klient] => C:\Program Files (x86)\EAC MW klient\EAC_MW_klient.exe [11819664 2021-07-20] (Ministerstvo vnútra Slovenskej republiky -> Ministerstvo vnútra Slovenskej republiky)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRoot% <==== ATTENTION
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ProgramFilesDir% <==== ATTENTION
HKU\S-1-5-21-2072067216-333838016-2655932757-1001\...\Run: [BingSvc] => C:\Users\Jaroslav\AppData\Local\Microsoft\BingSvc\BingSvc.exe [146312 2020-08-14] (Microsoft Corporation -> © 2015 Microsoft Corporation)
HKU\S-1-5-21-2072067216-333838016-2655932757-1001\...\Run: [Disig Web Signer] => C:\Program Files (x86)\Disig\Web Signer\WebSignerTray.exe [254080 2021-02-04] (Disig a.s. -> Disig a.s.)
HKU\S-1-5-21-2072067216-333838016-2655932757-1001\...\Run: [MicrosoftEdgeAutoLaunch_A769D4A654C834D4ED8AA790CB85B66E] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3795360 2022-09-08] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2072067216-333838016-2655932757-1001\...\RunOnce: [Application Restart #4] => C:\Users\Jaroslav\AppData\Local\SweetLabs App Platform\Engine\ServiceHostApp.exe --disable-internal-flash --noerrdialogs --no-message-box --disable-extensions --disable-web-security --disable-web-res (the data entry has 589 more characters). (No File)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> "C:\Program Files (x86)\AVAST Software\Browser\Application\92.2.11577.159\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\105.0.5195.102\Installer\chrmstp.exe [2022-09-13] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> "C:\Program Files (x86)\AVAST Software\Browser\Application\88.0.7844.104\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
BootExecute: autocheck autochk * sdnclean64.exe

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {002B20AB-B6CD-43B4-898F-E7308854A164} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\Jaroslav\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [21737944 2022-09-12] (ESET, spol. s r.o. -> ESET)
Task: {01986743-AE3D-466D-B284-AEAC347EA97D} - \Microsoft\Windows\Setup\GWXTriggers\Time-Weekend -> No File <==== ATTENTION
Task: {0E7AAFE1-FF19-4C58-8C3C-051468041420} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {12C9275E-5828-4D3F-9679-F9448E3F4689} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {141EFEC2-913B-42BB-86B6-7DE373C9C6C7} - System32\Tasks\Lenovo\LSC\LSCHardwareScanPostpone => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe -diag HWScan (No File)
Task: {15201B14-D813-4FDA-877F-ACABC4758A06} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {1AF64359-FBBA-4F7A-ACCC-4AF642BB2C47} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-28] (Google Inc -> Google Inc.)
Task: {21372651-25CD-4725-AC8D-96D72E65847B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MpCmdRun.exe [1335960 2022-09-13] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {3296F705-B7BF-4C0B-9F0B-81E12C9394F4} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe join (No File)
Task: {3F93C3C5-7797-413D-8589-08A2E814077C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MpCmdRun.exe [1335960 2022-09-13] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {41485820-1499-4643-B4EF-004DFD1F2C55} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA}
Task: {47ADCBD4-408C-4BEA-880A-AEB597999DE5} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe /backup /iavs (No File)
Task: {481E4DB0-F01F-449E-9B78-10657D02CE69} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe -diag HWScan (No File)
Task: {510D5606-6522-4E34-BE43-728C169145AF} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {58F8D0A8-1D72-4D09-87C9-8E6A6F116B08} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {5CB43BFC-C5B2-4F32-BCCC-ABEDB4BC9B81} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {5D802841-01E2-4516-B56A-40F104BD36B1} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {6100EC74-8AD5-44A2-8B4F-900B9230FFEC} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe (No File)
Task: {64E92760-1B0B-4A57-A80E-16B455D12A56} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Task: {7311A51D-D2F8-47EB-BA6A-FA33412778EA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MpCmdRun.exe [1335960 2022-09-13] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {761C8FDF-CF82-4590-8747-1224047982A2} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.UpdateStatusService.exe UpdateStatus (No File)
Task: {84A09945-15EF-4AAE-BA0F-9D7612627818} - System32\Tasks\Lenovo\LSC\RebootCountTask => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCService.exe Actions RebootCount (No File)
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE}
Task: {879EE49F-3B3E-414D-984F-2EC627F2F796} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe /show (No File)
Task: {89B7E79E-646B-415B-8CAE-3065929DC5AE} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {97936944-5A5D-4A2C-A80D-D8A944E53EAB} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => C:\windows\system32\rundll32.exe C:\windows\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
Task: {9E3733FF-FD78-427B-AB13-8896D9D4E476} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {A67705F9-A840-4E57-BC86-69EED8D3175A} - System32\Tasks\Microsoft\Windows\Setup\UpgradeTriggers\UpgradeNowTask => C:\WINDOWS\System32\GWX\GWXUXWorker.exe /UpgradeNow (No File)
Task: {AF3AB9E0-F6A9-4C19-AEFC-1C1BE7612E7E} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {B1244E00-4314-4F5F-AC2C-885A32D9C421} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {BA02C221-780A-43E7-B31E-9984BE449D5C} - System32\Tasks\PDVDServ Task => C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.EXE [95192 2013-03-09] (CyberLink Corp. -> CyberLink Corp.)
Task: {CA55AE75-F472-4860-B9FE-D6A3DB241DB2} - System32\Tasks\Lenovo\LSC\Time72Task => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCService.exe Actions CanUpdate (No File)
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {D2E41C68-FA95-4F39-86FB-DAF00F20B4DD} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\Jaroslav\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [21737944 2022-09-12] (ESET, spol. s r.o. -> ESET)
Task: {D3106C60-AF19-477D-B0FA-5E12CB440FFB} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe (No File)
Task: {D469C25D-A25A-4F65-B3E4-D866825FBA17} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-28] (Google Inc -> Google Inc.)
Task: {E59630B8-5797-497F-B2D9-882C0001D6E8} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {EBCF10B8-57CB-482F-AF3C-563B9A16EEFE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MpCmdRun.exe [1335960 2022-09-13] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F0C83366-87AB-46FC-BE47-47BE2307AD52} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{202d6e70-aa64-4fc1-826c-0baf26e32c06}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{6f3ce560-0ea5-4f5a-86aa-e9a46b77d459}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{a186ae6a-e0d0-42fe-abab-8f0851cd83ee}: [DhcpNameServer] 192.168.1.1 192.168.1.1

Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Jaroslav\AppData\Local\Microsoft\Edge\User Data\Default [2022-09-14]
Edge HomePage: Default -> hxxps://startpage-home.com/?s=lenovo&m=home
Edge Extension: (AdBlock - najlepší blokovač reklám) - C:\Users\Jaroslav\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2022-09-12]
Edge Extension: (IE Tab) - C:\Users\Jaroslav\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\npjkkakdacjaihjaoeliacmecofghagh [2022-08-18]

FireFox:
========
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: ditec.sk/DAsicFac -> C:\Program Files (x86)\Ditec\DSigner .NET Tools\npDitec.Zep.AsicFactory.dll [2017-05-12] (DITEC, a.s. -> Ditec,a.s.)
FF Plugin-x32: ditec.sk/DitecZepDViewerFb -> C:\Program Files (x86)\Ditec\DViewer\npDitec.Zep.DViewerFb.dll [2017-02-16] (DITEC, a.s. -> Ditec, a.s.)
FF Plugin-x32: ditec.sk/DSigMessageContainer -> C:\Program Files (x86)\Ditec\DSigner .NET Tools\npDitec.Zep.DSigMessageContainerFb.dll [2016-11-22] (DITEC, a.s. -> Ditec, a.s.)
FF Plugin-x32: ditec.sk/DSigXadesExtender -> C:\Program Files (x86)\Ditec\DSigner .NET Tools\npDitec.Zep.DSigXadesExtenderFb.dll [2016-11-22] (DITEC, a.s. -> Ditec, a.s.)
FF Plugin-x32: ditec.sk/DSigXadesFb -> C:\Program Files (x86)\Ditec\DSigner .NET\npDitec.Zep.DSigXadesFb.dll [2017-04-24] (DITEC, a.s. -> Ditec,a.s.)
FF Plugin-x32: ditec.sk/XmlDataContainerFb -> C:\Program Files (x86)\Ditec\DSigner .NET\npDitec.Zep.XmlDataContainerFb.dll [2017-04-24] (DITEC, a.s. -> Ditec,a.s.)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Jaroslav\AppData\Local\Google\Chrome\User Data\Default [2022-09-14]
CHR Notifications: Default -> hxxps://webmailer.sk; hxxps://www.alza.sk; hxxps://www.facebook.com; hxxps://www.footshop.sk; hxxps://www.regiojet.sk; hxxps://www.slovenskyali.sk
CHR HomePage: Default -> msn.com
CHR Extension: (Google Search) - C:\Users\Jaroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-30]
CHR Extension: (MSN Homepage & Bing Search Engine) - C:\Users\Jaroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcfenmboojpjinhpgggodefccipikbpd [2022-09-14]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\Jaroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-09-12]
CHR Extension: (AdBlock - najlepší blokovač reklám) - C:\Users\Jaroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-09-12]
CHR Extension: (IE Tab) - C:\Users\Jaroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\hehijbfgiekmjfkfjpbkbammjbdenadd [2022-08-15]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Jaroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30]
CHR Profile: C:\Users\Jaroslav\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-09-13]
CHR Profile: C:\Users\Jaroslav\AppData\Local\Google\Chrome\User Data\System Profile [2022-09-13]
CHR HKU\S-1-5-21-2072067216-333838016-2655932757-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S4 dLauncherLoopback; C:\Program Files (x86)\Ditec\DLauncher\dLauncherLoopback.exe [156984 2017-05-11] (DITEC, a.s. -> )
S4 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [224320 2022-09-13] (HP Inc. -> HP Inc.)
S4 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S4 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [390632 2012-04-24] (CyberLink -> )
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [16360768 2022-08-14] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R2 UIUService; C:\WINDOWS\SysWOW64\UIUSrv.exe [105984 2022-09-14] (Conexant Systems, Inc.) [File not signed]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\NisSrv.exe [3125112 2022-09-13] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MsMpEng.exe [133560 2022-09-13] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 LSC.Services.SystemService; "C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe" [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2014-11-05] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49576 2022-09-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [453904 2022-09-13] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [94480 2022-09-13] (Microsoft Windows -> Microsoft Corporation)
S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-14] (CyberLink -> "CyberLink)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-09-14 21:41 - 2022-09-14 21:43 - 000023048 _____ C:\Users\Jaroslav\Downloads\FRST.txt
2022-09-14 21:35 - 2022-09-14 21:42 - 000000000 ____D C:\FRST
2022-09-14 21:35 - 2022-09-14 21:35 - 002371072 _____ (Farbar) C:\Users\Jaroslav\Downloads\FRST64.exe
2022-09-14 21:21 - 2022-09-14 21:21 - 000003858 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onLogOn
2022-09-14 21:21 - 2022-09-14 21:21 - 000003416 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onTime
2022-09-14 15:44 - 2022-09-14 15:46 - 000000000 ____D C:\AdwCleaner
2022-09-14 15:42 - 2022-09-14 15:43 - 008551608 _____ (Malwarebytes) C:\Users\Jaroslav\Downloads\AdwCleaner.exe
2022-09-14 15:30 - 2022-09-14 15:30 - 000000000 ____D C:\Users\Jaroslav\AppData\Local\Conexant
2022-09-14 15:03 - 2022-09-14 15:03 - 000000000 ____D C:\ProgramData\UIU
2022-09-14 15:02 - 2022-09-14 21:05 - 001388432 _____ C:\Users\Public\VOIP.dat
2022-09-14 15:02 - 2015-09-16 16:10 - 000225624 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CxAudMsg64.exe
2022-09-14 15:02 - 2013-09-30 14:54 - 000001520 _____ C:\WINDOWS\system32\Drivers\SamSfPa.dat
2022-09-14 15:01 - 2022-09-14 15:03 - 001697280 _____ (TODO: <Company name>) C:\WINDOWS\SysWOW64\RebootPrompt.exe
2022-09-14 15:01 - 2022-09-14 15:03 - 000105984 _____ (Conexant Systems, Inc.) C:\WINDOWS\SysWOW64\UIUSrv.exe
2022-09-14 15:00 - 2022-09-14 15:05 - 000000000 ____D C:\WINDOWS\LastGood
2022-09-14 14:57 - 2022-09-14 14:58 - 001398948 _____ C:\WINDOWS\Minidump\091422-11046-01.dmp
2022-09-14 14:57 - 2022-09-14 14:58 - 000000000 ____D C:\WINDOWS\Minidump
2022-09-14 14:57 - 2022-09-14 14:57 - 651840720 _____ C:\WINDOWS\MEMORY.DMP
2022-09-14 14:57 - 2015-08-30 05:41 - 005062384 _____ C:\WINDOWS\SET3428.tmp
2022-09-14 14:57 - 2015-08-30 05:41 - 005062384 _____ (Realtek semiconductor) C:\WINDOWS\RTFTrack.exe
2022-09-14 14:57 - 2015-08-30 05:41 - 002637552 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RtCamU64.exe
2022-09-14 14:57 - 2015-08-30 05:41 - 001982192 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RsDecode.dll
2022-09-14 14:57 - 2015-08-30 05:41 - 000497392 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RtCamX.dll
2022-09-14 14:55 - 2022-09-14 14:57 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2022-09-14 14:48 - 2022-09-14 14:48 - 000000085 _____ C:\WINDOWS\wininit.ini
2022-09-14 14:43 - 2022-09-14 14:43 - 000000000 ____D C:\WINDOWS\Panther
2022-09-14 09:35 - 2022-09-14 09:35 - 000011813 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-09-14 09:34 - 2022-09-14 09:34 - 000413696 _____ C:\WINDOWS\system32\AzureCheck.dll
2022-09-14 09:34 - 2022-09-14 09:34 - 000098816 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2022-09-14 09:34 - 2022-09-14 09:34 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2022-09-14 09:33 - 2022-09-14 09:33 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-09-14 09:05 - 2022-09-14 09:05 - 000000000 ___HD C:\$WinREAgent
2022-09-13 16:45 - 2022-09-14 21:05 - 000000000 ____D C:\Users\Jaroslav\AppData\Local\TeamViewer
2022-09-13 16:45 - 2022-09-13 20:20 - 000000000 ____D C:\Users\Jaroslav\AppData\Roaming\TeamViewer
2022-09-13 16:45 - 2022-09-13 16:45 - 000000900 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer.lnk
2022-09-13 16:44 - 2022-09-14 16:08 - 000000000 ____D C:\Program Files\TeamViewer
2022-09-13 16:11 - 2022-09-13 16:11 - 000581120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2022-09-13 16:11 - 2022-09-13 16:11 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2022-09-13 16:11 - 2022-09-13 16:11 - 000470528 _____ (curl, hxxps://curl.se/) C:\WINDOWS\SysWOW64\curl.exe
2022-09-13 16:11 - 2022-09-13 16:11 - 000104448 _____ C:\WINDOWS\system32\nettraceex.dll
2022-09-13 16:11 - 2022-09-13 16:11 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mode.com
2022-09-13 16:11 - 2022-09-13 16:11 - 000018944 _____ C:\WINDOWS\SysWOW64\WsdProviderUtil.dll
2022-09-13 16:11 - 2022-09-13 16:11 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tree.com
2022-09-13 16:11 - 2022-09-13 16:11 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\chcp.com
2022-09-13 16:10 - 2022-09-13 16:10 - 000693248 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2022-09-13 16:10 - 2022-09-13 16:10 - 000530944 _____ (curl, hxxps://curl.se/) C:\WINDOWS\system32\curl.exe
2022-09-13 16:10 - 2022-09-13 16:10 - 000270848 _____ C:\WINDOWS\system32\EsclScan.dll
2022-09-13 16:10 - 2022-09-13 16:10 - 000152064 _____ C:\WINDOWS\system32\EsclProtocol.dll
2022-09-13 16:10 - 2022-09-13 16:10 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\mode.com
2022-09-13 16:10 - 2022-09-13 16:10 - 000020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tree.com
2022-09-13 16:10 - 2022-09-13 16:10 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\chcp.com
2022-09-13 16:09 - 2022-09-13 16:09 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2022-09-13 16:09 - 2022-09-13 16:09 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2022-09-13 16:09 - 2022-09-13 16:09 - 000039936 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2022-09-13 16:08 - 2022-09-13 16:08 - 000061952 _____ C:\WINDOWS\system32\printticketvalidation.dll
2022-09-13 16:08 - 2022-09-13 16:08 - 000057344 _____ C:\WINDOWS\system32\APMonUI.dll
2022-09-13 16:08 - 2022-09-13 16:08 - 000048640 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2022-09-13 16:07 - 2022-09-13 16:07 - 002254336 _____ C:\WINDOWS\system32\dwmscene.dll
2022-09-13 16:07 - 2022-09-13 16:07 - 000232288 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2022-09-13 16:07 - 2022-09-13 16:07 - 000024576 _____ C:\WINDOWS\system32\WsdProviderUtil.dll
2022-09-13 16:06 - 2022-09-13 16:06 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2022-09-13 16:05 - 2022-09-13 16:05 - 000640512 _____ C:\WINDOWS\system32\SettingSyncDownloadHelper.dll
2022-09-13 16:05 - 2022-09-13 16:05 - 000272896 _____ C:\WINDOWS\system32\TpmTool.exe
2022-09-13 16:05 - 2022-09-13 16:05 - 000162304 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2022-09-13 16:05 - 2022-09-13 16:05 - 000089088 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.proxystub.dll
2022-09-13 16:05 - 2022-09-13 16:05 - 000073216 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll
2022-09-13 15:03 - 2022-09-13 15:03 - 000076060 _____ C:\WINDOWS\SysWOW64\xpsrchvw.xml
2022-09-13 15:03 - 2022-09-13 15:03 - 000076060 _____ C:\WINDOWS\system32\xpsrchvw.xml
2022-09-13 14:46 - 2022-09-13 14:46 - 000000000 ____D C:\WINDOWS\system32\Tasks\Safer-Networking
2022-09-13 14:45 - 2018-02-06 19:04 - 000032168 _____ (Safer-Networking Ltd.) C:\WINDOWS\system32\sdnclean64.exe
2022-09-13 14:44 - 2022-09-14 14:57 - 000000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2022-09-13 14:44 - 2022-09-14 14:48 - 000000000 ____D C:\ProgramData\Spybot - Search & Destroy
2022-09-13 14:37 - 2022-09-13 14:40 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2022-09-13 14:35 - 2022-09-13 14:37 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2022-09-13 14:35 - 2022-09-13 14:35 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2022-09-13 14:33 - 2022-09-13 14:33 - 000000000 ____D C:\WINDOWS\system32\Tasks\Agent Activation Runtime
2022-09-13 14:32 - 2022-09-13 14:32 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2022-09-13 14:29 - 2022-09-13 14:29 - 000000000 ____D C:\Program Files\Reference Assemblies
2022-09-13 14:29 - 2022-09-13 14:29 - 000000000 ____D C:\Program Files\MSBuild
2022-09-13 14:29 - 2022-09-13 14:29 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2022-09-13 14:29 - 2022-09-13 14:29 - 000000000 ____D C:\Program Files (x86)\MSBuild
2022-09-13 14:28 - 2022-09-13 14:28 - 000000020 ___SH C:\Users\Jaroslav\ntuser.ini
2022-09-13 14:14 - 2022-09-14 16:07 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-09-13 14:14 - 2022-09-14 09:56 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2072067216-333838016-2655932757-1001
2022-09-13 14:14 - 2022-09-14 09:56 - 000003372 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2072067216-333838016-2655932757-1001
2022-09-13 14:14 - 2022-09-13 16:39 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2022-09-13 14:14 - 2022-09-13 14:14 - 000003560 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-09-13 14:14 - 2022-09-13 14:14 - 000003386 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2022-09-13 14:14 - 2022-09-13 14:14 - 000003336 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-09-13 14:14 - 2022-09-13 14:14 - 000003162 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2022-09-13 14:14 - 2022-09-13 14:14 - 000002810 _____ C:\WINDOWS\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2072067216-333838016-2655932757-1001
2022-09-13 14:14 - 2022-09-13 14:14 - 000002318 _____ C:\WINDOWS\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2072067216-333838016-2655932757-500
2022-09-13 14:14 - 2022-09-13 14:14 - 000002060 _____ C:\WINDOWS\system32\Tasks\PDVDServ Task
2022-09-13 14:14 - 2022-09-13 14:14 - 000000000 ____D C:\WINDOWS\system32\Tasks\Lenovo
2022-09-13 14:14 - 2014-04-02 19:00 - 000003590 _____ C:\WINDOWS\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1131006564-119424937-13047761-500
2022-09-13 14:12 - 2022-09-13 14:14 - 000007623 _____ C:\WINDOWS\diagwrn.xml
2022-09-13 14:12 - 2022-09-13 14:14 - 000007623 _____ C:\WINDOWS\diagerr.xml
2022-09-13 14:01 - 2022-09-14 16:15 - 001754554 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-09-13 13:51 - 2022-09-14 15:52 - 000000000 ____D C:\Users\Jaroslav
2022-09-13 13:51 - 2022-09-14 09:56 - 000002427 _____ C:\Users\Jaroslav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-09-13 13:45 - 2017-06-12 01:56 - 000103888 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2022-09-13 13:45 - 2017-06-12 01:56 - 000099792 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2022-09-13 13:41 - 2022-09-14 21:21 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-09-13 13:41 - 2022-09-14 14:43 - 000305960 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-09-13 10:32 - 2022-09-13 10:32 - 000000000 __SHD C:\found.000
2022-09-12 15:14 - 2022-09-12 15:14 - 000000000 ____D C:\Users\Jaroslav\AppData\Local\mbam
2022-09-12 14:55 - 2022-09-14 09:50 - 000000000 ____D C:\Program Files\SUPERAntiSpyware
2022-09-12 14:45 - 2022-09-14 17:17 - 000001432 _____ C:\Users\Jaroslav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2022-09-12 14:44 - 2022-09-12 14:44 - 000000000 ____D C:\Users\Jaroslav\AppData\Local\ESET
2022-08-20 11:16 - 2022-08-20 11:16 - 000603137 _____ C:\Users\Jaroslav\Downloads\form.410.PREHLADv19-poucenie.zip
2022-08-20 11:15 - 2022-08-20 11:15 - 000114464 _____ C:\Users\Jaroslav\Downloads\form.410.Prehlad-19-potvrdenie-print-save_7facd087-3647-4203-8ec6-f59b0aac305d.pdf
2022-08-20 11:14 - 2022-08-20 11:14 - 000147795 _____ C:\Users\Jaroslav\Downloads\form.410.Prehlad-19-print-save_00e18c2f-8225-4f0e-82cd-1c7aaa55acbe.pdf
2022-08-18 13:17 - 2022-08-18 13:17 - 000328461 _____ C:\Users\Jaroslav\Downloads\sken-(1) (5).pdf
2022-08-18 13:17 - 2022-08-18 13:17 - 000328461 _____ C:\Users\Jaroslav\Downloads\sken-(1) (4).pdf
2022-08-18 13:04 - 2022-08-18 13:04 - 000328461 _____ C:\Users\Jaroslav\Downloads\sken-(1) (3).pdf
2022-08-18 13:04 - 2022-08-18 13:04 - 000328461 _____ C:\Users\Jaroslav\Downloads\sken-(1) (2).pdf
2022-08-18 13:03 - 2022-08-18 13:04 - 000328461 _____ C:\Users\Jaroslav\Downloads\sken-(1).pdf
2022-08-18 13:03 - 2022-08-18 13:04 - 000328461 _____ C:\Users\Jaroslav\Downloads\sken-(1) (1).pdf
2022-08-18 12:31 - 2022-08-18 12:31 - 000422565 _____ C:\Users\Jaroslav\Downloads\sken (9).pdf
2022-08-18 12:31 - 2022-08-18 12:31 - 000422565 _____ C:\Users\Jaroslav\Downloads\sken (8).pdf
2022-08-18 12:31 - 2022-08-18 12:31 - 000422565 _____ C:\Users\Jaroslav\Downloads\sken (10).pdf
2022-08-18 12:30 - 2022-08-18 12:30 - 000368159 _____ C:\Users\Jaroslav\Downloads\sken (7).pdf
2022-08-18 12:29 - 2022-08-18 12:29 - 000368159 _____ C:\Users\Jaroslav\Downloads\sken (6).pdf
2022-08-18 12:29 - 2022-08-18 12:29 - 000241244 _____ C:\Users\Jaroslav\Downloads\sken (5).pdf
2022-08-18 12:28 - 2022-08-18 12:28 - 000254562 _____ C:\Users\Jaroslav\Downloads\sken (3).pdf
2022-08-18 12:28 - 2022-08-18 12:28 - 000201196 _____ C:\Users\Jaroslav\Downloads\sken (4).pdf
2022-08-18 12:27 - 2022-08-18 12:27 - 000201196 _____ C:\Users\Jaroslav\Downloads\sken (2).pdf
2022-08-18 12:26 - 2022-08-18 12:26 - 000328461 _____ C:\Users\Jaroslav\Downloads\sken (1).pdf
2022-08-17 14:24 - 2022-08-17 14:24 - 000072446 _____ C:\Users\Jaroslav\Downloads\Vinted-FR-S505258461_220817_142205.pdf
2022-08-17 09:28 - 2022-08-17 09:28 - 000045750 _____ C:\Users\Jaroslav\Downloads\8311516772_invoice.pdf
2022-08-15 15:34 - 2022-08-15 15:34 - 000201196 _____ C:\Users\Jaroslav\Downloads\sken.pdf
2022-08-15 12:56 - 2022-09-13 11:43 - 000000000 ____D C:\Program Files\HPPrintScanDoctor

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-09-14 21:34 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-09-14 20:59 - 2014-10-11 14:22 - 000000000 ____D C:\Program Files (x86)\Google
2022-09-14 17:17 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-09-14 17:17 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-09-14 16:15 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2022-09-14 16:15 - 2016-09-30 17:45 - 000703652 _____ C:\WINDOWS\system32\perfh01B.dat
2022-09-14 16:15 - 2016-09-30 17:45 - 000210768 _____ C:\WINDOWS\system32\perfc01B.dat
2022-09-14 16:09 - 2014-10-06 21:44 - 000000000 ___RD C:\Users\Jaroslav\OneDrive
2022-09-14 16:07 - 2021-04-20 19:38 - 000008192 ___SH C:\DumpStack.log.tmp
2022-09-14 16:07 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2022-09-14 15:46 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2022-09-14 15:46 - 2014-07-26 02:21 - 000000000 ____D C:\Program Files (x86)\Lenovo
2022-09-14 15:46 - 2014-07-26 02:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
2022-09-14 15:46 - 2014-07-26 02:20 - 000000000 ____D C:\Program Files\Lenovo
2022-09-14 15:30 - 2020-06-09 09:28 - 000002527 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-09-14 15:30 - 2017-07-14 11:25 - 000000000 ____D C:\ProgramData\Conexant
2022-09-14 15:08 - 2014-07-26 01:53 - 000000000 ____D C:\ProgramData\Package Cache
2022-09-14 15:08 - 2014-07-26 01:46 - 000000000 ____D C:\ProgramData\Intel
2022-09-14 15:07 - 2015-10-30 08:28 - 000000000 ____D C:\Users\Default.migrated
2022-09-14 15:06 - 2017-07-14 11:25 - 000000000 ____D C:\Program Files\Intel
2022-09-14 15:06 - 2014-07-26 01:54 - 000000000 ____D C:\Program Files\Common Files\Intel
2022-09-14 15:05 - 2014-07-26 01:38 - 000000000 ___HD C:\Intel
2022-09-14 15:03 - 2017-07-14 11:25 - 000000000 ____D C:\Program Files\CONEXANT
2022-09-14 15:02 - 2017-07-14 11:26 - 000000000 ____D C:\Program Files\Dolby Digital Plus
2022-09-14 15:00 - 2017-07-14 11:28 - 000000000 ____D C:\WINDOWS\SysWOW64\sda
2022-09-14 14:47 - 2022-05-12 22:07 - 000000000 ____D C:\Users\Jaroslav\AppData\Local\D3DSCache
2022-09-14 14:42 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-09-14 14:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2022-09-14 14:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-09-14 14:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-09-14 14:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2022-09-14 14:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2022-09-14 14:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-09-14 14:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2022-09-14 14:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2022-09-14 14:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-09-14 09:43 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-09-14 08:46 - 2014-10-13 09:44 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-09-14 08:34 - 2014-10-13 09:44 - 141646296 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-09-14 08:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2022-09-14 08:27 - 2018-10-31 17:39 - 000000000 ____D C:\Users\Jaroslav\AppData\Local\CrashDumps
2022-09-14 08:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\appcompat
2022-09-14 00:26 - 2014-07-26 02:27 - 000000000 ____D C:\ProgramData\Energy Manager
2022-09-14 00:22 - 2018-03-23 11:58 - 000000000 ____D C:\Users\Jaroslav\AppData\Local\AVAST Software
2022-09-14 00:22 - 2015-01-21 17:52 - 000000000 ____D C:\ProgramData\AVAST Software
2022-09-14 00:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2022-09-14 00:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2022-09-14 00:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2022-09-14 00:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2022-09-14 00:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2022-09-14 00:19 - 2019-12-07 16:39 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2022-09-14 00:19 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2022-09-14 00:19 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2022-09-14 00:19 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2022-09-14 00:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2022-09-14 00:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2022-09-14 00:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-09-14 00:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2022-09-14 00:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2022-09-14 00:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2022-09-14 00:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2022-09-14 00:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2022-09-14 00:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2022-09-14 00:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2022-09-14 00:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2022-09-14 00:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2022-09-14 00:19 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System
2022-09-14 00:19 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2022-09-13 16:53 - 2018-06-07 20:38 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2022-09-13 15:44 - 2014-10-11 14:24 - 000002324 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-09-13 15:09 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-09-13 15:05 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2022-09-13 14:41 - 2022-05-12 22:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Disig Web Signer
2022-09-13 14:41 - 2022-05-12 22:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EAC MW klient
2022-09-13 14:41 - 2022-04-11 11:01 - 000000000 ____D C:\WINDOWS\system32\gf2engine
2022-09-13 14:41 - 2019-12-07 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2022-09-13 14:41 - 2019-12-07 16:36 - 000000000 ____D C:\WINDOWS\system32\WCN
2022-09-13 14:41 - 2019-12-07 11:14 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2022-09-13 14:41 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2022-09-13 14:41 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\spool
2022-09-13 14:41 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2022-09-13 14:41 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\InputMethod
2022-09-13 14:41 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2022-09-13 14:41 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Registration
2022-09-13 14:41 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2022-09-13 14:41 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\InputMethod
2022-09-13 14:41 - 2017-06-24 15:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ditec
2022-09-13 14:41 - 2017-04-19 09:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2022-09-13 14:41 - 2016-02-13 15:18 - 000000000 ____D C:\WINDOWS\ShellNew
2022-09-13 14:41 - 2016-01-08 17:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2022-09-13 14:41 - 2014-07-26 02:19 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDirector 10
2022-09-13 14:41 - 2014-07-26 02:13 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink MediaStory
2022-09-13 14:41 - 2014-07-26 02:12 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PhotoDirector 3
2022-09-13 14:41 - 2014-07-26 01:55 - 000000000 ___HD C:\WINDOWS\system32\WLANProfiles
2022-09-13 14:41 - 2014-07-26 01:46 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2022-09-13 14:41 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Shared
2022-09-13 14:41 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Media.Shared
2022-09-13 14:40 - 2019-12-07 11:18 - 000000000 ____D C:\WINDOWS\Setup
2022-09-13 14:40 - 2019-12-07 11:14 - 000000000 __RHD C:\Users\Public\Libraries
2022-09-13 14:40 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\USOPrivate
2022-09-13 14:40 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2022-09-13 14:40 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\MsDtc
2022-09-13 14:40 - 2017-06-01 13:39 - 000000000 ____D C:\Program Files\UNP
2022-09-13 14:38 - 2019-12-07 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2022-09-13 14:38 - 2019-12-07 16:36 - 000000000 ____D C:\WINDOWS\system32\slmgr
2022-09-13 14:38 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2022-09-13 14:38 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2022-09-13 14:38 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2022-09-13 14:38 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2022-09-13 14:38 - 2018-04-12 19:03 - 000000000 ____D C:\WINDOWS\SysWOW64\gl-ES
2022-09-13 14:38 - 2018-04-12 19:03 - 000000000 ____D C:\WINDOWS\SysWOW64\eu-ES
2022-09-13 14:38 - 2018-04-12 19:03 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES
2022-09-13 14:38 - 2018-04-12 19:03 - 000000000 ____D C:\WINDOWS\system32\gl-ES
2022-09-13 14:38 - 2018-04-12 19:03 - 000000000 ____D C:\WINDOWS\system32\eu-ES
2022-09-13 14:37 - 2019-12-07 16:39 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2022-09-13 14:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Resources
2022-09-13 14:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Help
2022-09-13 14:37 - 2018-10-15 12:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Conexant
2022-09-13 14:37 - 2018-04-12 19:03 - 000000000 ____D C:\WINDOWS\system32\ca-ES
2022-09-13 14:37 - 2016-02-18 15:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elcom
2022-09-13 14:36 - 2015-04-21 12:31 - 000803176 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2022-09-13 14:29 - 2017-12-12 12:47 - 000000000 ___RD C:\Users\Jaroslav\3D Objects
2022-09-13 14:29 - 2017-07-14 11:25 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2022-09-13 14:29 - 2016-05-26 10:27 - 000000000 __SHD C:\Users\Jaroslav\IntelGraphicsProfiles
2022-09-13 14:29 - 2016-02-13 15:46 - 000000000 __RHD C:\Users\Public\AccountPictures
2022-09-13 14:14 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Windows Defender
2022-09-13 14:14 - 2019-12-07 11:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2022-09-13 14:01 - 2019-12-07 11:14 - 000000000 __RSD C:\WINDOWS\Media
2022-09-13 13:54 - 2022-05-12 22:37 - 000000000 ____D C:\Users\Jaroslav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikácie Chrome
2022-09-13 13:52 - 2017-12-12 11:50 - 000000000 ____D C:\Users\Jaroslav\AppData\Local\Packages
2022-09-13 13:52 - 2016-02-18 15:00 - 000000000 ____D C:\Users\Jaroslav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Elcom
2022-09-13 13:50 - 2017-07-14 11:27 - 000000000 ____D C:\Program Files\Elantech
2022-09-13 13:45 - 2017-07-14 11:25 - 000000200 _____ C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2022-08-17 09:12 - 2018-06-07 22:39 - 000000000 ____D C:\Users\Jaroslav\AppData\Local\PlaceholderTileLogoFolder

==================== Files in the root of some directories ========

2022-09-14 15:02 - 2022-09-14 21:05 - 001388432 _____ () C:\Users\Public\VOIP.dat

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================


Additional scan result of Farbar Recovery Scan Tool (x64) Version: 30-08-2022
Ran by Jaroslav (14-09-2022 21:50:36)
Running from C:\Users\Jaroslav\Downloads
Microsoft Windows 10 Home Version 21H2 19044.2006 (X64) (2022-09-13 12:15:05)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-2072067216-333838016-2655932757-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2072067216-333838016-2655932757-503 - Limited - Disabled)
Guest (S-1-5-21-2072067216-333838016-2655932757-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2072067216-333838016-2655932757-1003 - Limited - Enabled)
Jaroslav (S-1-5-21-2072067216-333838016-2655932757-1001 - Administrator - Enabled) => C:\Users\Jaroslav
WDAGUtilityAccount (S-1-5-21-2072067216-333838016-2655932757-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Spybot - Search and Destroy (Disabled - Out of date) {F77C7796-45C4-531E-0DAE-B4A8229B11C8}
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe AIR (HKLM-x32\...\{7B77622E-DE90-48EA-B2C7-227B1DE58A01}) (Version: 16.0.0.245 - Adobe Systems Incorporated) Hidden
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 16.0.0.245 - Adobe Systems Incorporated)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.66.16.50 - Conexant)
Conexant SmartAudio (HKLM\...\SAII) (Version: 6.0.267.0 - Conexant Systems)
CyberLink MediaStory (HKLM-x32\...\{55762F9A-FCE3-45d5-817B-051218658423}) (Version: 1.0.1314 - CyberLink Corp.) Hidden
CyberLink MediaStory (HKLM-x32\...\InstallShield_{55762F9A-FCE3-45d5-817B-051218658423}) (Version: 1.0.1314 - CyberLink Corp.)
CyberLink PhotoDirector 3 (HKLM-x32\...\{39337565-330E-4ab6-A9AE-AC81E0720B10}) (Version: 3.0.1.4107 - CyberLink Corp.) Hidden
CyberLink PhotoDirector 3 (HKLM-x32\...\InstallShield_{39337565-330E-4ab6-A9AE-AC81E0720B10}) (Version: 3.0.1.4107 - CyberLink Corp.)
CyberLink PowerDirector 10 (HKLM\...\{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.0.2810 - CyberLink Corp.) Hidden
CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.0.2810 - CyberLink Corp.)
D.Launcher (x86) (HKLM-x32\...\{4FA0D867-008C-46A3-B56D-85958EA276C5}) (Version: 1.0.0.5 - DITEC, a.s.)
D.Signer/XAdES .NET so zásuvnými modulmi (x86) (HKLM-x32\...\{49F31F1B-4E3F-4873-8A53-2DCB1C2D9FD7}) (Version: 4.0.4 - DITEC, a.s.)
D.Signer/XAdES .NET Tools (x86) (HKLM-x32\...\{74AD296E-733C-491F-89EB-58AA86030B3B}) (Version: 4.0.3 - DITEC, a.s.)
D.Suite/eIDAS (x86) (HKLM-x32\...\{1d3d040b-96d3-4d8f-9ffc-a892a15045f8}) (Version: 1.0.4 - DITEC, a.s.)
D.Viewer .NET (x86) (HKLM-x32\...\{DC03512A-965A-4DB8-82BE-1E24BD0E5F12}) (Version: 4.0.2018 - DITEC, a.s.)
Disig Web Signer (HKLM-x32\...\{41C0F02D-2389-4AB5-975C-C2363E7C554C}) (Version: 2.0.7 - Disig)
Dolby Digital Plus Advanced Audio (HKLM\...\{B0BFC63F-EA07-419E-960B-3FB2ED5DD0B2}) (Version: 7.5.1.1 - Dolby Laboratories Inc)
EAC MW klient (HKLM-x32\...\{E22CF5CA-5935-451D-9B9D-EAA79DE703BD}) (Version: 3.7.0 - Ministerstvo vnútra Slovenskej republiky)
ELAN Touchpad 11.15.0.18_X64 (HKLM\...\Elantech) (Version: 11.15.0.18 - ELAN Microelectronic Corp.)
Euro2A 6.00 (HKLM-x32\...\Euro2A) (Version: - )
GemPcCCID (HKLM\...\{7567A068-2F02-40D1-A34C-16D79ECD35A6}) (Version: 2.0.3 - Gemalto)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 105.0.5195.102 - Google LLC)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4531 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.0.0.1098 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{DB4DA836-82EC-4A96-A6A1-52B39AD19C14}) (Version: 13.0.0.1098 - Intel Corporation) Hidden
Intel® PROSet/Wireless Software (HKLM-x32\...\{a914536c-bd41-479c-96aa-dee4a9639c22}) (Version: 21.10.1 - Intel Corporation)
Intel® PROSet/Wireless WiFi Software (HKLM\...\{07AC08CE-C63D-4FAE-B215-F53E13EA005F}) (Version: 21.10.1.3139 - Intel Corporation) Hidden
Intel® Trusted Connect Service Client (HKLM\...\{B5E06417-A4AC-4225-B36E-7E34C91616E7}) (Version: 1.31.8.1 - Intel Corporation) Hidden
Lenovo EasyCamera (HKLM-x32\...\{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}) (Version: 6.2.9200.10249 - Realtek Semiconductor Corp.)
Lenovo EasyCamera (HKLM-x32\...\{E399A5B3-ED53-4DEA-AF04-8011E1EB1EAC}) (Version: 6.3.9600.11105 - Realtek Semiconductor Corp.)
Lenovo OneKey Recovery (HKLM\...\{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.0.0.2105 - CyberLink Corp.) Hidden
Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.0.0.2105 - CyberLink Corp.)
Microsoft Audio Enhancement Troubleshooter installer (HKLM\...\{6E0351FF-6A71-45C5-A041-D4D9D8067EAF}) (Version: 1.0.0.0 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 105.0.1343.33 - Microsoft Corporation)
Microsoft HEVC Media Extension Installation for Microsoft.HEVCVideoExtension_1.0.2512.0_x64__8wekyb3d8bbwe (x64) (HKLM\...\{B0169E83-757B-EF66-E2F0-391944D785BC}) (Version: 1.0.0.0 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (Slovak) 2007 (HKLM-x32\...\{90120000-0016-041B-0000-0000000FF1CE}) (Version: 12.0.4518.1039 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (HKLM\...\{90120000-002A-0000-1000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (Slovak) 2007 (HKLM-x32\...\{90120000-001A-041B-0000-0000000FF1CE}) (Version: 12.0.4518.1039 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (Slovak) 2007 (HKLM-x32\...\{90120000-0018-041B-0000-0000000FF1CE}) (Version: 12.0.4518.1039 - Microsoft Corporation) Hidden
Microsoft Office Proof (Czech) 2007 (HKLM-x32\...\{90120000-001F-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1026 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (HKLM-x32\...\{90120000-001F-0409-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (HKLM-x32\...\{90120000-001F-0407-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (Hungarian) 2007 (HKLM-x32\...\{90120000-001F-040E-0000-0000000FF1CE}) (Version: 12.0.4518.1033 - Microsoft Corporation) Hidden
Microsoft Office Proof (Slovak) 2007 (HKLM-x32\...\{90120000-001F-041B-0000-0000000FF1CE}) (Version: 12.0.4518.1039 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Slovak) 2007 (HKLM-x32\...\{90120000-002C-041B-0000-0000000FF1CE}) (Version: 12.0.4518.1039 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (Slovak) 2007 (HKLM\...\{90120000-002A-041B-1000-0000000FF1CE}) (Version: 12.0.4518.1039 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Slovak) 2007 (HKLM-x32\...\{90120000-006E-041B-0000-0000000FF1CE}) (Version: 12.0.4518.1039 - Microsoft Corporation) Hidden
Microsoft Office Standard 2007 (HKLM-x32\...\{90120000-0012-0000-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Standard 2007 (HKLM-x32\...\STANDARD) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office Word MUI (Slovak) 2007 (HKLM-x32\...\{90120000-001B-041B-0000-0000000FF1CE}) (Version: 12.0.4518.1039 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKU\S-1-5-21-2072067216-333838016-2655932757-1001\...\OneDriveSetup.exe) (Version: 22.176.0821.0003 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{7B1FCD52-8F6B-4F12-A143-361EA39F5E7C}) (Version: 3.67.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 x86 Additional Runtime - 14.0.24215 (HKLM-x32\...\{69BCE4AC-9572-3271-A2FB-9423BDA36A43}) (Version: 14.0.24215 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 x86 Minimum Runtime - 14.0.24215 (HKLM-x32\...\{BBF2AC74-720C-3CB3-8291-5E34039232FA}) (Version: 14.0.24215 - Microsoft Corporation) Hidden
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10586.31222 - Realtek Semiconduct Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.20.815.2013 - Realtek)
Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation)
Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.103 - Skype Technologies S.A.)
slovensko (HKU\S-1-5-21-2072067216-333838016-2655932757-1001\...\c0d18354026bf05cf3061d4240956c4b) (Version: 1.0 - Google\Chrome)
TAP-Windows 9.21.1 (HKLM\...\TAP-Windows) (Version: 9.21.1 - )
TeamViewer (HKLM\...\TeamViewer) (Version: 15.33.7 - TeamViewer)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{82BD0A1C-815F-487F-9AE7-CE73DA413CFF}) (Version: 4.91.0.0 - Microsoft Corporation)
User Manuals (HKLM-x32\...\{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 3.0.0.3 - Lenovo) Hidden
User Manuals (HKLM-x32\...\InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 3.0.0.3 - Lenovo)
Windows Driver Package - Lenovo (ACPIVPC) System (02/17/2013 9.52.0.776) (HKLM\...\35DD26BE48DAF4A9F35F969F3CB1E3E1435E661E) (Version: 02/17/2013 9.52.0.776 - Lenovo)
Windows Driver Package - Lenovo (WUDFRd) LenovoVhid (07/25/2013 10.30.0.288) (HKLM\...\6BCA401E9CBEED970D75F55FA5320F60D11984E9) (Version: 07/25/2013 10.30.0.288 - Lenovo)
Windows Driver Package - Silicon Laboratories (silabenm) Ports (12/10/2012 6.6.1.0) (HKLM\...\D680DEE0F68D64EC53D0C5769879D15D387054CC) (Version: 12/10/2012 6.6.1.0 - Silicon Laboratories)

Packages:
=========
AccuWeather - Weather for Life -> C:\Program Files\WindowsApps\AccuWeather.AccuWeatherforWindows8_10.0.348.1000_x64__8zz2pj9h1h1d8 [2018-04-07] (AccuWeather) [MS Ad]
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2019-11-18] (Autodesk Inc.)
Camera Man -> C:\Program Files\WindowsApps\E0469640.CameraMan_1.0.1929.30229_x86__5grkq8ppsgwt4 [2014-10-13] (LENOVO INC)
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.226.500.0_x64__kgqvnymyfvs32 [2022-09-14] (king.com)
Doplnok mediálneho nástroja pre Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2022-08-15] (Microsoft Corporation)
Evernote -> C:\Program Files\WindowsApps\Evernote.Evernote_10.44.8.0_x64__q4d96b2w5wcc2 [2022-09-13] (Evernote)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_138.2.414.0_x64__v10z8vjag6ke6 [2022-09-13] (HP Inc.)
Lenovo Support -> C:\Program Files\WindowsApps\E046963F.LenovoSupport_2.0.5.0_x86__k1h2ywk1493x8 [2015-01-22] (Lenovo, INC.)
Lenovo Vantage -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2208.7.0_x64__k1h2ywk1493x8 [2022-08-19] (LENOVO INC.)
Live TV -> C:\Program Files\WindowsApps\FilmOnLiveTVFree.FilmOnLiveTVFree_1.3.6.115_x64__zx03kxexxb716 [2014-10-13] (FilmOn TV Inc.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2022-09-13] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2022-09-13] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.14.9020.0_x64__8wekyb3d8bbwe [2022-09-13] (Microsoft Studios) [MS Ad]
MSN Cestovanie -> C:\Program Files\WindowsApps\Microsoft.BingTravel_3.0.4.336_x64__8wekyb3d8bbwe [2015-07-20] (Microsoft Corporation) [MS Ad]
MSN Jedlá a nápoje -> C:\Program Files\WindowsApps\Microsoft.BingFoodAndDrink_3.0.4.336_x64__8wekyb3d8bbwe [2015-07-20] (Microsoft Corporation) [MS Ad]
MSN Zdravie a fitnes -> C:\Program Files\WindowsApps\Microsoft.BingHealthAndFitness_3.0.4.336_x64__8wekyb3d8bbwe [2015-07-20] (Microsoft Corporation) [MS Ad]
PowerDVD for Lenovo Idea -> C:\Program Files\WindowsApps\CyberLinkCorp.id.PowerDVDforLenovoIdea_1.1.2618.24808_x86__hgg5mn3xps74a [2014-10-13] (CYBERLINK COM CORPORATION)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.193.898.0_x86__zpdnekdrzrea0 [2022-09-13] (Spotify AB) [Startup Task]
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.TWITTER_7.0.1.0_neutral__wgeqdkkx372wm [2022-09-13] (Twitter Inc.)
YouSendIt for Lenovo -> C:\Program Files\WindowsApps\YouSendIt.YouSendItForLenovo_1.0.5.1412_neutral__069rkrpjefrbc [2014-10-06] (YouSendIt)
Zinio -> C:\Program Files\WindowsApps\ZinioLLC.Zinio_2.1.0.317_x64__0q6dqzpp40p2e [2014-10-13] (Zinio LLC)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ContextMenuHandlers1: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => -> No File
ContextMenuHandlers1: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => -> No File
ContextMenuHandlers2: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => -> No File
ContextMenuHandlers2: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2017-06-12] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => -> No File
ContextMenuHandlers6: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => -> No File

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32-x32: [msacm.clmp3enc] => C:\Program Files (x86)\Lenovo\Power2Go\CLMP3Enc.ACM

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\Jaroslav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikácie Chrome\slovensko.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=fcchlmcheahhiaanefoibicmdljfaipi

==================== Loaded Modules (Whitelisted) =============

2022-09-14 15:05 - 2022-09-14 15:05 - 000355840 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Interop.CxHef9fb4ae#\2b8c809e451b1c9f7f7c0b7a9553a86f\Interop.CxHDAudioAPILib.ni.dll
2018-10-15 12:13 - 2016-03-11 10:07 - 001145856 _____ (Conexant Systems, Inc.) [File not signed] [File is in use] C:\Program Files\Conexant\SAII\CxHDAudioAPI.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKU\S-1-5-21-2072067216-333838016-2655932757-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo13.msn.com/?pc=LCJB
HKU\S-1-5-21-2072067216-333838016-2655932757-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com/?pc=LCJB
HKU\S-1-5-21-2072067216-333838016-2655932757-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com
SearchScopes: HKU\S-1-5-21-2072067216-333838016-2655932757-1001 -> {DE410D6C-5B83-4A05-8677-D7E9F409882D} URL =

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 15:25 - 2019-01-04 12:12 - 000000831 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;C:\Program Files (x86)\Skype\Phone\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files (x86)\EAC MW klient\
HKU\S-1-5-21-2072067216-333838016-2655932757-1001\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

MSCONFIG\Services: !SASCORE => 2
MSCONFIG\Services: avast => 2
MSCONFIG\Services: avast! Tools => 2
MSCONFIG\Services: avastm => 3
MSCONFIG\Services: AvastSecureBrowserElevationService => 3
MSCONFIG\Services: cphs => 3
MSCONFIG\Services: CxAudMsg => 2
MSCONFIG\Services: dLauncherLoopback => 2
MSCONFIG\Services: ETDService => 2
MSCONFIG\Services: GoogleChromeElevationService => 3
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: HPPrintScanDoctorService => 2
MSCONFIG\Services: IAStorDataMgrSvc => 2
MSCONFIG\Services: ibtsiva => 2
MSCONFIG\Services: igfxCUIService2.0.0.0 => 2
MSCONFIG\Services: Intel(R) Capability Licensing Service Interface => 2
MSCONFIG\Services: Intel(R) Capability Licensing Service TCP IP Interface => 3
MSCONFIG\Services: jhi_service => 2
MSCONFIG\Services: LMS => 2
MSCONFIG\Services: LSC.Services.SystemService => 3
MSCONFIG\Services: RichVideo64 => 2
MSCONFIG\Services: SDScannerService => 2
MSCONFIG\Services: SDUpdateService => 2
MSCONFIG\Services: SkypeUpdate => 2

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{9ABB9AAA-A190-45B8-B86D-BC96B46B8EB4}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.88.3401.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{18E6761E-3CFB-49DA-BD2E-224D482C93E2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.88.3401.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{37301876-19BB-436C-AD01-78D62E806399}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.88.3401.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F9039219-09B0-44A4-B1AD-7104AA9FCFA3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.88.3401.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{3C4D700E-AAC1-4AED-A77C-AD5F35B006E1}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.193.898.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{6D053035-B85F-48B3-A843-89EAF2B11CE3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.193.898.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{56F85911-393C-4226-B119-4C37CA371D35}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.193.898.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{D41021E7-84E6-4DC2-9928-ED718BC2699E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.193.898.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{8975F6AE-6D22-4349-ADA6-90AE29CD2E2D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.193.898.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{0E4A3DCF-7ACA-4BAB-8DBA-71484CF01808}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.193.898.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{1DF9927A-44C3-4CAC-A301-916ED1417958}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.193.898.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{B52BCA4C-6DA2-4CAE-A6D0-25E40C03F8CB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.193.898.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{DF0B4BF6-A590-4216-B560-8109B8546FF9}] => (Allow) C:\Program Files\CyberLink\PowerDirector10\PDR10.EXE (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{3A8019F9-99D2-4F7F-A8C6-97DAC3726A54}] => (Allow) C:\Program Files (x86)\Lenovo\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{50D0BCC2-9A2E-4A43-B9E0-A43D13BF9E17}] => (Allow) C:\Program Files (x86)\Lenovo\PowerDVD10\PowerDVD10.EXE (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [TCP Query User{0373D52D-1399-4AF0-B0EE-92A186123EA7}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [UDP Query User{AD093C9C-2A75-4B7D-9CA4-A31198CE9212}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{07B3315B-23F5-46AF-96CB-F519D8477159}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [UDP Query User{A2DA8E88-BECC-47D3-AC74-5116381F1C28}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{04859E36-33DC-4188-A42D-081E98269464}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{94DB9B6C-D754-4C41-AB5E-7B0DB5E32C77}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{57222F65-73DC-432B-A5C2-CD2CB0036EAC}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{B74D09F8-07CB-42C4-871D-8D8FC50D11E9}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{BEB6272D-15A5-4C32-954F-3A070B08EA22}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)

==================== Restore Points =========================

14-09-2022 08:31:09 Inštalátor modulov systému Windows
14-09-2022 08:46:55 Inštalátor modulov systému Windows
14-09-2022 09:04:05 Inštalátor modulov systému Windows
14-09-2022 09:09:15 Inštalátor modulov systému Windows
14-09-2022 14:48:59 Removed Windows Kontrola stavu počítača
14-09-2022 15:45:54 AdwCleaner_BeforeCleaning_14/09/2022_15:45:51

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (09/14/2022 03:31:28 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program msedge.exe version 105.0.1343.33 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 27c4

Start Time: 01d8c83e34a2cec6

Termination Time: 4294967295

Application Path: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

Report Id: aaf806f3-93cf-4a85-9e41-9fc68e0189ca

Faulting package full name:

Faulting package-relative application ID:

Hang type: Top level window is idle

Error: (09/14/2022 03:06:54 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Skipping: Eap method DLL path name validation failed. Error: typeId=43, authorId=9, vendorId=0, vendorType=0

Error: (09/14/2022 03:06:54 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Skipping: Eap method DLL path name validation failed. Error: typeId=25, authorId=9, vendorId=0, vendorType=0

Error: (09/14/2022 03:06:54 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Skipping: Eap method DLL path name validation failed. Error: typeId=17, authorId=9, vendorId=0, vendorType=0

Error: (09/14/2022 03:05:22 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program drvinst.exe version 10.0.19041.1865 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 1af4

Start Time: 01d8c83a00d82773

Termination Time: 8

Application Path: C:\Windows\System32\drvinst.exe

Report Id: 6acee87e-b84e-4d46-940e-b8d8800cbe89

Faulting package full name:

Faulting package-relative application ID:

Hang type: Cross-process

Error: (09/14/2022 03:02:21 PM) (Source: MsiInstaller) (EventID: 10005) (User: NT AUTHORITY)
Description: Product: Dolby Digital Plus Home Theater -- Dolby Digital Plus Home Theater cannot be installed

Error: (09/14/2022 02:49:07 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Cryptographic Services zlyhala pri spracovávaní volania OnIdentity() v objekte System Writer.

Details:
AddWin32ServiceFiles: Unable to back up image of service Spybot Security Center Integration Service since QueryServiceConfig API failed

System Error:
The system cannot find the file specified.
.

Error: (09/14/2022 10:37:15 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program SearchApp.exe version 10.0.19041.1889 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 239c

Start Time: 01d8c7c283b9371c

Termination Time: 4294967295

Application Path: C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe

Report Id: d324edc0-aef9-4da1-81ed-09c305833fa5

Faulting package full name: Microsoft.Windows.Search_1.14.6.19041_neutral_neutral_cw5n1h2txyewy

Faulting package-relative application ID: ShellFeedsUI

Hang type: Navigation


System errors:
=============
Error: (09/14/2022 09:39:48 PM) (Source: DCOM) (EventID: 10001) (User: LENOVO-PC)
Description: Unable to start a DCOM Server: Microsoft.Windows.Photos_2022.30070.26007.0_x64__8wekyb3d8bbwe!App.AppXqf3jy92pmcwbjhkzazrw5n94pedgs429.mca as Unavailable/Unavailable. The error:
"2147942402"
Happened while starting this command:
"C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2022.30070.26007.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe" -ServerName:App.AppXzst44mncqdg84v7sv6p7yznqwssy6f7f.mca

Error: (09/14/2022 09:22:30 PM) (Source: DCOM) (EventID: 10001) (User: LENOVO-PC)
Description: Unable to start a DCOM Server: Microsoft.Windows.Photos_2022.30070.26007.0_x64__8wekyb3d8bbwe!App.AppXqf3jy92pmcwbjhkzazrw5n94pedgs429.mca as Unavailable/Unavailable. The error:
"2147942402"
Happened while starting this command:
"C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2022.30070.26007.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe" -ServerName:App.AppXzst44mncqdg84v7sv6p7yznqwssy6f7f.mca

Error: (09/14/2022 08:00:36 PM) (Source: DCOM) (EventID: 10001) (User: LENOVO-PC)
Description: Unable to start a DCOM Server: Microsoft.Windows.Photos_2022.30070.26007.0_x64__8wekyb3d8bbwe!App.AppXy9rh3t8m2jfpvhhxp6y2ksgeq77vymbq.mca as Unavailable/Unavailable. The error:
"2147942402"
Happened while starting this command:
"C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2022.30070.26007.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe" -ServerName:App.AppXzst44mncqdg84v7sv6p7yznqwssy6f7f.mca

Error: (09/14/2022 07:46:36 PM) (Source: DCOM) (EventID: 10001) (User: LENOVO-PC)
Description: Unable to start a DCOM Server: Microsoft.Windows.Photos_2022.30070.26007.0_x64__8wekyb3d8bbwe!App.AppXy9rh3t8m2jfpvhhxp6y2ksgeq77vymbq.mca as Unavailable/Unavailable. The error:
"2147942402"
Happened while starting this command:
"C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2022.30070.26007.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe" -ServerName:App.AppXzst44mncqdg84v7sv6p7yznqwssy6f7f.mca

Error: (09/14/2022 07:30:36 PM) (Source: DCOM) (EventID: 10001) (User: LENOVO-PC)
Description: Unable to start a DCOM Server: Microsoft.Windows.Photos_2022.30070.26007.0_x64__8wekyb3d8bbwe!App.AppXy9rh3t8m2jfpvhhxp6y2ksgeq77vymbq.mca as Unavailable/Unavailable. The error:
"2147942402"
Happened while starting this command:
"C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2022.30070.26007.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe" -ServerName:App.AppXzst44mncqdg84v7sv6p7yznqwssy6f7f.mca

Error: (09/14/2022 07:16:36 PM) (Source: DCOM) (EventID: 10001) (User: LENOVO-PC)
Description: Unable to start a DCOM Server: Microsoft.Windows.Photos_2022.30070.26007.0_x64__8wekyb3d8bbwe!App.AppXy9rh3t8m2jfpvhhxp6y2ksgeq77vymbq.mca as Unavailable/Unavailable. The error:
"2147942402"
Happened while starting this command:
"C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2022.30070.26007.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe" -ServerName:App.AppXzst44mncqdg84v7sv6p7yznqwssy6f7f.mca

Error: (09/14/2022 07:00:35 PM) (Source: DCOM) (EventID: 10001) (User: LENOVO-PC)
Description: Unable to start a DCOM Server: Microsoft.Windows.Photos_2022.30070.26007.0_x64__8wekyb3d8bbwe!App.AppXy9rh3t8m2jfpvhhxp6y2ksgeq77vymbq.mca as Unavailable/Unavailable. The error:
"2147942402"
Happened while starting this command:
"C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2022.30070.26007.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe" -ServerName:App.AppXzst44mncqdg84v7sv6p7yznqwssy6f7f.mca

Error: (09/14/2022 06:46:36 PM) (Source: DCOM) (EventID: 10001) (User: LENOVO-PC)
Description: Unable to start a DCOM Server: Microsoft.Windows.Photos_2022.30070.26007.0_x64__8wekyb3d8bbwe!App.AppXy9rh3t8m2jfpvhhxp6y2ksgeq77vymbq.mca as Unavailable/Unavailable. The error:
"2147942402"
Happened while starting this command:
"C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2022.30070.26007.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe" -ServerName:App.AppXzst44mncqdg84v7sv6p7yznqwssy6f7f.mca


Windows Defender:
================
Date: 2022-09-14 14:24:02
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

CodeIntegrity:
===============
Date: 2022-09-14 14:43:20
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\Spybot - Search & Destroy 2\SDLicense.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2022-09-14 14:24:02
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2022-09-13 16:34:29
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\AVAST Software\Avast\AvastSvc.exe) attempted to load \Device\HarddiskVolume5\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2022-09-13 16:26:54
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.


==================== Memory info ===========================

BIOS: LENOVO 9ACN25WW 04/02/2014
Motherboard: LENOVO Lancer 5A2
Processor: Intel(R) Core(TM) i3-4005U CPU @ 1.70GHz
Percentage of memory in use: 88%
Total physical RAM: 3988.27 MB
Available physical RAM: 477.96 MB
Total Virtual: 6420.27 MB
Available Virtual: 986.84 MB

==================== Drives ================================

Drive c: (Windows8_OS) (Fixed) (Total:196.6 GB) (Free:139.17 GB) (Model: WD Green 2.5 240GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (LENOVO) (Fixed) (Total:11.57 GB) (Free:8.83 GB) (Model: WD Green 2.5 240GB) NTFS
Drive e: (Audio CD) (CDROM) (Total:0 GB) (Free:0 GB) CDFS
Drive f: (Win10-MBR-0322) (Removable) (Total:7.2 GB) (Free:2.72 GB) NTFS

\\?\Volume{2409aa30-9fad-4d03-840b-3daaa404cb33}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.68 GB) NTFS
\\?\Volume{aa21edf2-2edb-4d29-9537-6b2c8de789bc}\ (PBR_DRV) (Fixed) (Total:13.55 GB) (Free:4.38 GB) NTFS
\\?\Volume{9e142952-f80c-4792-bc30-af3e390ce25c}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 223.6 GB) (Disk ID: 3BF9A6CA)

Partition: GPT.

==========================================================
Disk: 1 (Size: 7.2 GB) (Disk ID: 006AA8FD)
Partition 1: (Active) - (Size=7.2 GB) - (Type=07 NTFS)

==================== End of Addition.txt =======================
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118275
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Spomalený notebook

#2 Příspěvek od Rudy »

Zdravím!
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
rudiberger
Návštěvník
Návštěvník
Příspěvky: 23
Registrován: 26 kvě 2015 11:46

Re: Spomalený notebook

#3 Příspěvek od rudiberger »

Vsimol som si ze v spravcovi uloh, jednotilive procesy sa neustale preskakuju, menia

# -------------------------------
# Malwarebytes AdwCleaner 8.3.2.0
# -------------------------------
# Build: 03-23-2022
# Database: 2022-08-22.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 09-14-2022
# Duration: 00:00:19
# OS: Windows 10 Home
# Scanned: 32093
# Detected: 3


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

PUP.Optional.Legacy C:\Users\Jaroslav\AppData\Local\SweetLabs App Platform

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

Adware.pokki HKCU\Software\SweetLabs App Platform

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

PUP.Optional.Legacy Web Search

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.

***** [ Hosts File Entries ] *****

No malicious hosts file entries found.

***** [ Preinstalled Software ] *****

No Preinstalled Software found.


AdwCleaner[S00].txt - [6057 octets] - [14/09/2022 15:44:55]
AdwCleaner[C00].txt - [6285 octets] - [14/09/2022 15:47:13]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S01].txt ##########
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118275
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Spomalený notebook

#4 Příspěvek od Rudy »

Nelezené položky smažte (dejte do karantény), restartujte a dejte nové logy FRST+Addition.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
rudiberger
Návštěvník
Návštěvník
Příspěvky: 23
Registrován: 26 kvě 2015 11:46

Re: Spomalený notebook

#5 Příspěvek od rudiberger »

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 30-08-2022
Ran by Jaroslav (administrator) on LENOVO-PC (LENOVO 20351) (16-09-2022 07:37:21)
Running from C:\Users\Jaroslav\OneDrive\Počítač
Loaded Profiles: Jaroslav
Platform: Microsoft Windows 10 Home Version 21H2 19044.2006 (X64) Language: Slovenčina (Slovensko)
Default browser: Edge
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe
(C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe
(C:\Program Files\Elantech\ETDCtrl.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(C:\Program Files\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer.exe
(C:\Program Files\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\tv_w32.exe
(C:\Program Files\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\tv_x64.exe
(Conexant Systems, Inc. -> Conexant Systems, Inc) C:\Program Files\CONEXANT\SAII\SmartAudio.exe
(explorer.exe ->) (Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(explorer.exe ->) (Disig a.s. -> Disig a.s.) C:\Program Files (x86)\Disig\Web Signer\WebSignerTray.exe
(explorer.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(explorer.exe ->) (Fortemedia Inc -> ) C:\Program Files\CONEXANT\ForteConfig\fmapp.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <10>
(explorer.exe ->) (Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe
(explorer.exe ->) (Microsoft Corporation -> © 2015 Microsoft Corporation) C:\Users\Jaroslav\AppData\Local\Microsoft\BingSvc\BingSvc.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <8>
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(explorer.exe ->) (Realtek Semiconductor Corp -> Realtek semiconductor) C:\Windows\RTFTrack.exe
(Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SoftwareDistribution\Download\Install\AM_Delta_Patch_1.375.345.0.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\MpSigStub.exe
(SearchIndexer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
(services.exe ->) (Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(services.exe ->) (Conexant Systems, Inc.) [File not signed] C:\Windows\SysWOW64\UIUSrv.exe
(services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\NisSrv.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(svchost.exe ->) (CyberLink Corp. -> CyberLink Corp.) C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe
(svchost.exe ->) (Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\Jaroslav\AppData\Local\Microsoft\OneDrive\22.176.0821.0003\FileCoAuth.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.822.6271.0_x64__8wekyb3d8bbwe\GameBar.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.822.6271.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22062.543.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\lpksetup.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.1940_none_7dd80d767cb5c7b0\TiWorker.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtsFT] => C:\WINDOWS\RTFTrack.exe [5062384 2015-08-30] (Realtek Semiconductor Corp -> Realtek semiconductor)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3242696 2015-10-07] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2014-02-26] (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [ForteConfig] => C:\Program Files\Conexant\ForteConfig\fmapp.exe [49056 2010-10-26] (Fortemedia Inc -> )
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [916184 2014-07-02] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1830232 2016-03-08] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM-x32\...\Run: [EAC_MW_klient] => C:\Program Files (x86)\EAC MW klient\EAC_MW_klient.exe [11819664 2021-07-20] (Ministerstvo vnútra Slovenskej republiky -> Ministerstvo vnútra Slovenskej republiky)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRoot% <==== ATTENTION
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ProgramFilesDir% <==== ATTENTION
HKU\S-1-5-21-2072067216-333838016-2655932757-1001\...\Run: [BingSvc] => C:\Users\Jaroslav\AppData\Local\Microsoft\BingSvc\BingSvc.exe [146312 2020-08-14] (Microsoft Corporation -> © 2015 Microsoft Corporation)
HKU\S-1-5-21-2072067216-333838016-2655932757-1001\...\Run: [Disig Web Signer] => C:\Program Files (x86)\Disig\Web Signer\WebSignerTray.exe [254080 2021-02-04] (Disig a.s. -> Disig a.s.)
HKU\S-1-5-21-2072067216-333838016-2655932757-1001\...\Run: [MicrosoftEdgeAutoLaunch_A769D4A654C834D4ED8AA790CB85B66E] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3795360 2022-09-08] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2072067216-333838016-2655932757-1001\...\RunOnce: [Application Restart #4] => C:\Users\Jaroslav\AppData\Local\SweetLabs App Platform\Engine\ServiceHostApp.exe --disable-internal-flash --noerrdialogs --no-message-box --disable-extensions --disable-web-security --disable-web-res (the data entry has 589 more characters). (No File)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> "C:\Program Files (x86)\AVAST Software\Browser\Application\92.2.11577.159\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\105.0.5195.102\Installer\chrmstp.exe [2022-09-13] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> "C:\Program Files (x86)\AVAST Software\Browser\Application\88.0.7844.104\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
BootExecute: autocheck autochk * sdnclean64.exe

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {002B20AB-B6CD-43B4-898F-E7308854A164} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\Jaroslav\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [21737944 2022-09-12] (ESET, spol. s r.o. -> ESET)
Task: {01986743-AE3D-466D-B284-AEAC347EA97D} - \Microsoft\Windows\Setup\GWXTriggers\Time-Weekend -> No File <==== ATTENTION
Task: {0E7AAFE1-FF19-4C58-8C3C-051468041420} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {12C9275E-5828-4D3F-9679-F9448E3F4689} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {141EFEC2-913B-42BB-86B6-7DE373C9C6C7} - System32\Tasks\Lenovo\LSC\LSCHardwareScanPostpone => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe -diag HWScan (No File)
Task: {15201B14-D813-4FDA-877F-ACABC4758A06} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {1AF64359-FBBA-4F7A-ACCC-4AF642BB2C47} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-28] (Google Inc -> Google Inc.)
Task: {21372651-25CD-4725-AC8D-96D72E65847B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MpCmdRun.exe [1335960 2022-09-13] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {3296F705-B7BF-4C0B-9F0B-81E12C9394F4} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe join (No File)
Task: {3F93C3C5-7797-413D-8589-08A2E814077C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MpCmdRun.exe [1335960 2022-09-13] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {41485820-1499-4643-B4EF-004DFD1F2C55} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA}
Task: {47ADCBD4-408C-4BEA-880A-AEB597999DE5} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe /backup /iavs (No File)
Task: {481E4DB0-F01F-449E-9B78-10657D02CE69} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe -diag HWScan (No File)
Task: {510D5606-6522-4E34-BE43-728C169145AF} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {58F8D0A8-1D72-4D09-87C9-8E6A6F116B08} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {5CB43BFC-C5B2-4F32-BCCC-ABEDB4BC9B81} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {5D802841-01E2-4516-B56A-40F104BD36B1} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {6100EC74-8AD5-44A2-8B4F-900B9230FFEC} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe (No File)
Task: {64E92760-1B0B-4A57-A80E-16B455D12A56} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Task: {7311A51D-D2F8-47EB-BA6A-FA33412778EA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MpCmdRun.exe [1335960 2022-09-13] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {761C8FDF-CF82-4590-8747-1224047982A2} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.UpdateStatusService.exe UpdateStatus (No File)
Task: {84A09945-15EF-4AAE-BA0F-9D7612627818} - System32\Tasks\Lenovo\LSC\RebootCountTask => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCService.exe Actions RebootCount (No File)
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE}
Task: {879EE49F-3B3E-414D-984F-2EC627F2F796} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe /show (No File)
Task: {89B7E79E-646B-415B-8CAE-3065929DC5AE} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {97936944-5A5D-4A2C-A80D-D8A944E53EAB} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => C:\windows\system32\rundll32.exe C:\windows\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
Task: {9E3733FF-FD78-427B-AB13-8896D9D4E476} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {A67705F9-A840-4E57-BC86-69EED8D3175A} - System32\Tasks\Microsoft\Windows\Setup\UpgradeTriggers\UpgradeNowTask => C:\WINDOWS\System32\GWX\GWXUXWorker.exe /UpgradeNow (No File)
Task: {AF3AB9E0-F6A9-4C19-AEFC-1C1BE7612E7E} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {B1244E00-4314-4F5F-AC2C-885A32D9C421} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {BA02C221-780A-43E7-B31E-9984BE449D5C} - System32\Tasks\PDVDServ Task => C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.EXE [95192 2013-03-09] (CyberLink Corp. -> CyberLink Corp.)
Task: {CA55AE75-F472-4860-B9FE-D6A3DB241DB2} - System32\Tasks\Lenovo\LSC\Time72Task => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCService.exe Actions CanUpdate (No File)
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {D2E41C68-FA95-4F39-86FB-DAF00F20B4DD} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\Jaroslav\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [21737944 2022-09-12] (ESET, spol. s r.o. -> ESET)
Task: {D3106C60-AF19-477D-B0FA-5E12CB440FFB} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe (No File)
Task: {D469C25D-A25A-4F65-B3E4-D866825FBA17} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-28] (Google Inc -> Google Inc.)
Task: {E59630B8-5797-497F-B2D9-882C0001D6E8} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {EBCF10B8-57CB-482F-AF3C-563B9A16EEFE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MpCmdRun.exe [1335960 2022-09-13] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F0C83366-87AB-46FC-BE47-47BE2307AD52} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{202d6e70-aa64-4fc1-826c-0baf26e32c06}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{6f3ce560-0ea5-4f5a-86aa-e9a46b77d459}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{a186ae6a-e0d0-42fe-abab-8f0851cd83ee}: [DhcpNameServer] 192.168.1.1 192.168.1.1

Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Jaroslav\AppData\Local\Microsoft\Edge\User Data\Default [2022-09-16]
Edge HomePage: Default -> hxxps://startpage-home.com/?s=lenovo&m=home
Edge Extension: (AdBlock - najlepší blokovač reklám) - C:\Users\Jaroslav\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2022-09-12]
Edge Extension: (IE Tab) - C:\Users\Jaroslav\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\npjkkakdacjaihjaoeliacmecofghagh [2022-08-18]

FireFox:
========
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: ditec.sk/DAsicFac -> C:\Program Files (x86)\Ditec\DSigner .NET Tools\npDitec.Zep.AsicFactory.dll [2017-05-12] (DITEC, a.s. -> Ditec,a.s.)
FF Plugin-x32: ditec.sk/DitecZepDViewerFb -> C:\Program Files (x86)\Ditec\DViewer\npDitec.Zep.DViewerFb.dll [2017-02-16] (DITEC, a.s. -> Ditec, a.s.)
FF Plugin-x32: ditec.sk/DSigMessageContainer -> C:\Program Files (x86)\Ditec\DSigner .NET Tools\npDitec.Zep.DSigMessageContainerFb.dll [2016-11-22] (DITEC, a.s. -> Ditec, a.s.)
FF Plugin-x32: ditec.sk/DSigXadesExtender -> C:\Program Files (x86)\Ditec\DSigner .NET Tools\npDitec.Zep.DSigXadesExtenderFb.dll [2016-11-22] (DITEC, a.s. -> Ditec, a.s.)
FF Plugin-x32: ditec.sk/DSigXadesFb -> C:\Program Files (x86)\Ditec\DSigner .NET\npDitec.Zep.DSigXadesFb.dll [2017-04-24] (DITEC, a.s. -> Ditec,a.s.)
FF Plugin-x32: ditec.sk/XmlDataContainerFb -> C:\Program Files (x86)\Ditec\DSigner .NET\npDitec.Zep.XmlDataContainerFb.dll [2017-04-24] (DITEC, a.s. -> Ditec,a.s.)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Jaroslav\AppData\Local\Google\Chrome\User Data\Default [2022-09-16]
CHR Notifications: Default -> hxxps://webmailer.sk; hxxps://www.alza.sk; hxxps://www.facebook.com; hxxps://www.footshop.sk; hxxps://www.regiojet.sk; hxxps://www.slovenskyali.sk
CHR HomePage: Default -> hxxps://www.google.com/
CHR Extension: (Google Search) - C:\Users\Jaroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-30]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\Jaroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-09-12]
CHR Extension: (AdBlock - najlepší blokovač reklám) - C:\Users\Jaroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-09-12]
CHR Extension: (IE Tab) - C:\Users\Jaroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\hehijbfgiekmjfkfjpbkbammjbdenadd [2022-08-15]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Jaroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30]
CHR Profile: C:\Users\Jaroslav\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-09-13]
CHR Profile: C:\Users\Jaroslav\AppData\Local\Google\Chrome\User Data\System Profile [2022-09-13]
CHR HKU\S-1-5-21-2072067216-333838016-2655932757-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S4 dLauncherLoopback; C:\Program Files (x86)\Ditec\DLauncher\dLauncherLoopback.exe [156984 2017-05-11] (DITEC, a.s. -> )
S4 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [224320 2022-09-13] (HP Inc. -> HP Inc.)
S4 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S4 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [390632 2012-04-24] (CyberLink -> )
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [16360768 2022-08-14] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R2 UIUService; C:\WINDOWS\SysWOW64\UIUSrv.exe [105984 2022-09-14] (Conexant Systems, Inc.) [File not signed]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\NisSrv.exe [3125112 2022-09-13] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MsMpEng.exe [133560 2022-09-13] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 LSC.Services.SystemService; "C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe" [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 mbamchameleon; C:\WINDOWS\system32\drivers\mbamchameleon.sys [192952 2022-09-14] (Malwarebytes Corporation -> Malwarebytes)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2014-11-05] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49576 2022-09-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [453904 2022-09-13] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [94480 2022-09-13] (Microsoft Windows -> Microsoft Corporation)
S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-14] (CyberLink -> "CyberLink)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-09-14 22:24 - 2022-09-14 22:29 - 000000335 _____ C:\local.conf
2022-09-14 22:16 - 2022-09-14 22:20 - 000300678 _____ C:\TDSSKiller.3.1.0.28_14.09.2022_22.16.42_log.txt
2022-09-14 22:16 - 2022-09-14 22:16 - 005054744 _____ (AO Kaspersky Lab) C:\Users\Jaroslav\Downloads\tdsskiller.exe
2022-09-14 22:14 - 2022-09-14 22:48 - 000000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2022-09-14 22:14 - 2022-09-14 22:27 - 000255928 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\65322443.sys
2022-09-14 22:14 - 2022-09-14 22:14 - 000192952 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2022-09-14 22:14 - 2022-09-14 22:14 - 000000000 ____D C:\ProgramData\Malwarebytes
2022-09-14 22:13 - 2022-09-14 22:13 - 014178840 _____ (Malwarebytes Corp.) C:\Users\Jaroslav\Downloads\mbar-1.10.3.1001.exe
2022-09-14 22:09 - 2022-09-14 22:10 - 000380928 _____ C:\Users\Jaroslav\Downloads\xloqf1uy.exe
2022-09-14 21:56 - 2022-09-14 21:56 - 000037384 _____ C:\Users\Jaroslav\Downloads\Shortcut.txt
2022-09-14 21:50 - 2022-09-14 21:56 - 000036868 _____ C:\Users\Jaroslav\Downloads\Addition.txt
2022-09-14 21:50 - 2022-09-14 21:50 - 002371072 _____ (Farbar) C:\Users\Jaroslav\Downloads\FRST64 (1).exe
2022-09-14 21:41 - 2022-09-14 21:56 - 000048996 _____ C:\Users\Jaroslav\Downloads\FRST.txt
2022-09-14 21:35 - 2022-09-16 07:38 - 000000000 ____D C:\FRST
2022-09-14 21:35 - 2022-09-14 21:35 - 002371072 _____ (Farbar) C:\Users\Jaroslav\Downloads\FRST64.exe
2022-09-14 21:21 - 2022-09-14 21:21 - 000003858 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onLogOn
2022-09-14 21:21 - 2022-09-14 21:21 - 000003416 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onTime
2022-09-14 15:44 - 2022-09-14 15:46 - 000000000 ____D C:\AdwCleaner
2022-09-14 15:42 - 2022-09-14 15:43 - 008551608 _____ (Malwarebytes) C:\Users\Jaroslav\Downloads\AdwCleaner.exe
2022-09-14 15:30 - 2022-09-14 15:30 - 000000000 ____D C:\Users\Jaroslav\AppData\Local\Conexant
2022-09-14 15:03 - 2022-09-14 15:03 - 000000000 ____D C:\ProgramData\UIU
2022-09-14 15:02 - 2022-09-16 07:34 - 001388432 _____ C:\Users\Public\VOIP.dat
2022-09-14 15:02 - 2015-09-16 16:10 - 000225624 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CxAudMsg64.exe
2022-09-14 15:02 - 2013-09-30 14:54 - 000001520 _____ C:\WINDOWS\system32\Drivers\SamSfPa.dat
2022-09-14 15:01 - 2022-09-14 15:03 - 001697280 _____ (TODO: <Company name>) C:\WINDOWS\SysWOW64\RebootPrompt.exe
2022-09-14 15:01 - 2022-09-14 15:03 - 000105984 _____ (Conexant Systems, Inc.) C:\WINDOWS\SysWOW64\UIUSrv.exe
2022-09-14 15:00 - 2022-09-14 15:05 - 000000000 ____D C:\WINDOWS\LastGood
2022-09-14 14:57 - 2022-09-14 14:58 - 001398948 _____ C:\WINDOWS\Minidump\091422-11046-01.dmp
2022-09-14 14:57 - 2022-09-14 14:58 - 000000000 ____D C:\WINDOWS\Minidump
2022-09-14 14:57 - 2022-09-14 14:57 - 651840720 _____ C:\WINDOWS\MEMORY.DMP
2022-09-14 14:57 - 2015-08-30 05:41 - 005062384 _____ C:\WINDOWS\SET3428.tmp
2022-09-14 14:57 - 2015-08-30 05:41 - 005062384 _____ (Realtek semiconductor) C:\WINDOWS\RTFTrack.exe
2022-09-14 14:57 - 2015-08-30 05:41 - 002637552 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RtCamU64.exe
2022-09-14 14:57 - 2015-08-30 05:41 - 001982192 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RsDecode.dll
2022-09-14 14:57 - 2015-08-30 05:41 - 000497392 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RtCamX.dll
2022-09-14 14:55 - 2022-09-14 14:57 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2022-09-14 14:48 - 2022-09-14 14:48 - 000000085 _____ C:\WINDOWS\wininit.ini
2022-09-14 14:43 - 2022-09-14 14:43 - 000000000 ____D C:\WINDOWS\Panther
2022-09-14 09:35 - 2022-09-14 09:35 - 000011813 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-09-14 09:34 - 2022-09-14 09:34 - 000413696 _____ C:\WINDOWS\system32\AzureCheck.dll
2022-09-14 09:34 - 2022-09-14 09:34 - 000098816 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2022-09-14 09:34 - 2022-09-14 09:34 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2022-09-14 09:33 - 2022-09-14 09:33 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-09-14 09:05 - 2022-09-14 09:05 - 000000000 ___HD C:\$WinREAgent
2022-09-13 16:45 - 2022-09-14 21:05 - 000000000 ____D C:\Users\Jaroslav\AppData\Local\TeamViewer
2022-09-13 16:45 - 2022-09-13 20:20 - 000000000 ____D C:\Users\Jaroslav\AppData\Roaming\TeamViewer
2022-09-13 16:45 - 2022-09-13 16:45 - 000000900 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer.lnk
2022-09-13 16:44 - 2022-09-16 07:33 - 000000000 ____D C:\Program Files\TeamViewer
2022-09-13 16:11 - 2022-09-13 16:11 - 000581120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2022-09-13 16:11 - 2022-09-13 16:11 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2022-09-13 16:11 - 2022-09-13 16:11 - 000470528 _____ (curl, hxxps://curl.se/) C:\WINDOWS\SysWOW64\curl.exe
2022-09-13 16:11 - 2022-09-13 16:11 - 000104448 _____ C:\WINDOWS\system32\nettraceex.dll
2022-09-13 16:11 - 2022-09-13 16:11 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mode.com
2022-09-13 16:11 - 2022-09-13 16:11 - 000018944 _____ C:\WINDOWS\SysWOW64\WsdProviderUtil.dll
2022-09-13 16:11 - 2022-09-13 16:11 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tree.com
2022-09-13 16:11 - 2022-09-13 16:11 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\chcp.com
2022-09-13 16:10 - 2022-09-13 16:10 - 000693248 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2022-09-13 16:10 - 2022-09-13 16:10 - 000530944 _____ (curl, hxxps://curl.se/) C:\WINDOWS\system32\curl.exe
2022-09-13 16:10 - 2022-09-13 16:10 - 000270848 _____ C:\WINDOWS\system32\EsclScan.dll
2022-09-13 16:10 - 2022-09-13 16:10 - 000152064 _____ C:\WINDOWS\system32\EsclProtocol.dll
2022-09-13 16:10 - 2022-09-13 16:10 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\mode.com
2022-09-13 16:10 - 2022-09-13 16:10 - 000020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tree.com
2022-09-13 16:10 - 2022-09-13 16:10 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\chcp.com
2022-09-13 16:09 - 2022-09-13 16:09 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2022-09-13 16:09 - 2022-09-13 16:09 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2022-09-13 16:09 - 2022-09-13 16:09 - 000039936 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2022-09-13 16:08 - 2022-09-13 16:08 - 000061952 _____ C:\WINDOWS\system32\printticketvalidation.dll
2022-09-13 16:08 - 2022-09-13 16:08 - 000057344 _____ C:\WINDOWS\system32\APMonUI.dll
2022-09-13 16:08 - 2022-09-13 16:08 - 000048640 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2022-09-13 16:07 - 2022-09-13 16:07 - 002254336 _____ C:\WINDOWS\system32\dwmscene.dll
2022-09-13 16:07 - 2022-09-13 16:07 - 000232288 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2022-09-13 16:07 - 2022-09-13 16:07 - 000024576 _____ C:\WINDOWS\system32\WsdProviderUtil.dll
2022-09-13 16:06 - 2022-09-13 16:06 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2022-09-13 16:05 - 2022-09-13 16:05 - 000640512 _____ C:\WINDOWS\system32\SettingSyncDownloadHelper.dll
2022-09-13 16:05 - 2022-09-13 16:05 - 000272896 _____ C:\WINDOWS\system32\TpmTool.exe
2022-09-13 16:05 - 2022-09-13 16:05 - 000162304 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2022-09-13 16:05 - 2022-09-13 16:05 - 000089088 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.proxystub.dll
2022-09-13 16:05 - 2022-09-13 16:05 - 000073216 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll
2022-09-13 15:03 - 2022-09-13 15:03 - 000076060 _____ C:\WINDOWS\SysWOW64\xpsrchvw.xml
2022-09-13 15:03 - 2022-09-13 15:03 - 000076060 _____ C:\WINDOWS\system32\xpsrchvw.xml
2022-09-13 14:46 - 2022-09-13 14:46 - 000000000 ____D C:\WINDOWS\system32\Tasks\Safer-Networking
2022-09-13 14:45 - 2018-02-06 19:04 - 000032168 _____ (Safer-Networking Ltd.) C:\WINDOWS\system32\sdnclean64.exe
2022-09-13 14:44 - 2022-09-14 14:57 - 000000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2022-09-13 14:44 - 2022-09-14 14:48 - 000000000 ____D C:\ProgramData\Spybot - Search & Destroy
2022-09-13 14:37 - 2022-09-13 14:40 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2022-09-13 14:35 - 2022-09-13 14:37 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2022-09-13 14:35 - 2022-09-13 14:35 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2022-09-13 14:33 - 2022-09-13 14:33 - 000000000 ____D C:\WINDOWS\system32\Tasks\Agent Activation Runtime
2022-09-13 14:32 - 2022-09-13 14:32 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2022-09-13 14:29 - 2022-09-13 14:29 - 000000000 ____D C:\Program Files\Reference Assemblies
2022-09-13 14:29 - 2022-09-13 14:29 - 000000000 ____D C:\Program Files\MSBuild
2022-09-13 14:29 - 2022-09-13 14:29 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2022-09-13 14:29 - 2022-09-13 14:29 - 000000000 ____D C:\Program Files (x86)\MSBuild
2022-09-13 14:28 - 2022-09-13 14:28 - 000000020 ___SH C:\Users\Jaroslav\ntuser.ini
2022-09-13 14:14 - 2022-09-16 07:32 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-09-13 14:14 - 2022-09-14 09:56 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2072067216-333838016-2655932757-1001
2022-09-13 14:14 - 2022-09-14 09:56 - 000003372 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2072067216-333838016-2655932757-1001
2022-09-13 14:14 - 2022-09-13 16:39 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2022-09-13 14:14 - 2022-09-13 14:14 - 000003560 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-09-13 14:14 - 2022-09-13 14:14 - 000003386 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2022-09-13 14:14 - 2022-09-13 14:14 - 000003336 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-09-13 14:14 - 2022-09-13 14:14 - 000003162 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2022-09-13 14:14 - 2022-09-13 14:14 - 000002810 _____ C:\WINDOWS\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2072067216-333838016-2655932757-1001
2022-09-13 14:14 - 2022-09-13 14:14 - 000002318 _____ C:\WINDOWS\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2072067216-333838016-2655932757-500
2022-09-13 14:14 - 2022-09-13 14:14 - 000002060 _____ C:\WINDOWS\system32\Tasks\PDVDServ Task
2022-09-13 14:14 - 2022-09-13 14:14 - 000000000 ____D C:\WINDOWS\system32\Tasks\Lenovo
2022-09-13 14:14 - 2014-04-02 19:00 - 000003590 _____ C:\WINDOWS\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1131006564-119424937-13047761-500
2022-09-13 14:12 - 2022-09-13 14:14 - 000007623 _____ C:\WINDOWS\diagwrn.xml
2022-09-13 14:12 - 2022-09-13 14:14 - 000007623 _____ C:\WINDOWS\diagerr.xml
2022-09-13 14:01 - 2022-09-16 07:40 - 001754554 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-09-13 13:51 - 2022-09-14 15:52 - 000000000 ____D C:\Users\Jaroslav
2022-09-13 13:51 - 2022-09-14 09:56 - 000002427 _____ C:\Users\Jaroslav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-09-13 13:45 - 2017-06-12 01:56 - 000103888 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2022-09-13 13:45 - 2017-06-12 01:56 - 000099792 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2022-09-13 13:41 - 2022-09-14 21:21 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-09-13 13:41 - 2022-09-14 14:43 - 000305960 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-09-13 10:32 - 2022-09-13 10:32 - 000000000 __SHD C:\found.000
2022-09-12 15:14 - 2022-09-12 15:14 - 000000000 ____D C:\Users\Jaroslav\AppData\Local\mbam
2022-09-12 14:55 - 2022-09-14 09:50 - 000000000 ____D C:\Program Files\SUPERAntiSpyware
2022-09-12 14:45 - 2022-09-14 17:17 - 000001432 _____ C:\Users\Jaroslav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2022-09-12 14:44 - 2022-09-12 14:44 - 000000000 ____D C:\Users\Jaroslav\AppData\Local\ESET
2022-08-20 11:16 - 2022-08-20 11:16 - 000603137 _____ C:\Users\Jaroslav\Downloads\form.410.PREHLADv19-poucenie.zip
2022-08-20 11:15 - 2022-08-20 11:15 - 000114464 _____ C:\Users\Jaroslav\Downloads\form.410.Prehlad-19-potvrdenie-print-save_7facd087-3647-4203-8ec6-f59b0aac305d.pdf
2022-08-20 11:14 - 2022-08-20 11:14 - 000147795 _____ C:\Users\Jaroslav\Downloads\form.410.Prehlad-19-print-save_00e18c2f-8225-4f0e-82cd-1c7aaa55acbe.pdf
2022-08-18 13:17 - 2022-08-18 13:17 - 000328461 _____ C:\Users\Jaroslav\Downloads\sken-(1) (5).pdf
2022-08-18 13:17 - 2022-08-18 13:17 - 000328461 _____ C:\Users\Jaroslav\Downloads\sken-(1) (4).pdf
2022-08-18 13:04 - 2022-08-18 13:04 - 000328461 _____ C:\Users\Jaroslav\Downloads\sken-(1) (3).pdf
2022-08-18 13:04 - 2022-08-18 13:04 - 000328461 _____ C:\Users\Jaroslav\Downloads\sken-(1) (2).pdf
2022-08-18 13:03 - 2022-08-18 13:04 - 000328461 _____ C:\Users\Jaroslav\Downloads\sken-(1).pdf
2022-08-18 13:03 - 2022-08-18 13:04 - 000328461 _____ C:\Users\Jaroslav\Downloads\sken-(1) (1).pdf
2022-08-18 12:31 - 2022-08-18 12:31 - 000422565 _____ C:\Users\Jaroslav\Downloads\sken (9).pdf
2022-08-18 12:31 - 2022-08-18 12:31 - 000422565 _____ C:\Users\Jaroslav\Downloads\sken (8).pdf
2022-08-18 12:31 - 2022-08-18 12:31 - 000422565 _____ C:\Users\Jaroslav\Downloads\sken (10).pdf
2022-08-18 12:30 - 2022-08-18 12:30 - 000368159 _____ C:\Users\Jaroslav\Downloads\sken (7).pdf
2022-08-18 12:29 - 2022-08-18 12:29 - 000368159 _____ C:\Users\Jaroslav\Downloads\sken (6).pdf
2022-08-18 12:29 - 2022-08-18 12:29 - 000241244 _____ C:\Users\Jaroslav\Downloads\sken (5).pdf
2022-08-18 12:28 - 2022-08-18 12:28 - 000254562 _____ C:\Users\Jaroslav\Downloads\sken (3).pdf
2022-08-18 12:28 - 2022-08-18 12:28 - 000201196 _____ C:\Users\Jaroslav\Downloads\sken (4).pdf
2022-08-18 12:27 - 2022-08-18 12:27 - 000201196 _____ C:\Users\Jaroslav\Downloads\sken (2).pdf
2022-08-18 12:26 - 2022-08-18 12:26 - 000328461 _____ C:\Users\Jaroslav\Downloads\sken (1).pdf
2022-08-17 14:24 - 2022-08-17 14:24 - 000072446 _____ C:\Users\Jaroslav\Downloads\Vinted-FR-S505258461_220817_142205.pdf
2022-08-17 09:28 - 2022-08-17 09:28 - 000045750 _____ C:\Users\Jaroslav\Downloads\8311516772_invoice.pdf

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-09-16 07:42 - 2014-10-11 14:22 - 000000000 ____D C:\Program Files (x86)\Google
2022-09-16 07:41 - 2022-05-12 22:07 - 000000000 ____D C:\Users\Jaroslav\AppData\Local\D3DSCache
2022-09-16 07:40 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2022-09-16 07:40 - 2016-09-30 17:45 - 000703652 _____ C:\WINDOWS\system32\perfh01B.dat
2022-09-16 07:40 - 2016-09-30 17:45 - 000210768 _____ C:\WINDOWS\system32\perfc01B.dat
2022-09-16 07:34 - 2014-10-06 21:44 - 000000000 ___RD C:\Users\Jaroslav\OneDrive
2022-09-16 07:33 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-09-16 07:32 - 2021-04-20 19:38 - 000008192 ___SH C:\DumpStack.log.tmp
2022-09-16 07:32 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2022-09-14 22:50 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2022-09-14 17:17 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-09-14 17:17 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-09-14 15:46 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2022-09-14 15:46 - 2014-07-26 02:21 - 000000000 ____D C:\Program Files (x86)\Lenovo
2022-09-14 15:46 - 2014-07-26 02:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
2022-09-14 15:46 - 2014-07-26 02:20 - 000000000 ____D C:\Program Files\Lenovo
2022-09-14 15:30 - 2020-06-09 09:28 - 000002527 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-09-14 15:30 - 2017-07-14 11:25 - 000000000 ____D C:\ProgramData\Conexant
2022-09-14 15:08 - 2014-07-26 01:53 - 000000000 ____D C:\ProgramData\Package Cache
2022-09-14 15:08 - 2014-07-26 01:46 - 000000000 ____D C:\ProgramData\Intel
2022-09-14 15:07 - 2015-10-30 08:28 - 000000000 ____D C:\Users\Default.migrated
2022-09-14 15:06 - 2017-07-14 11:25 - 000000000 ____D C:\Program Files\Intel
2022-09-14 15:06 - 2014-07-26 01:54 - 000000000 ____D C:\Program Files\Common Files\Intel
2022-09-14 15:05 - 2014-07-26 01:38 - 000000000 ___HD C:\Intel
2022-09-14 15:03 - 2017-07-14 11:25 - 000000000 ____D C:\Program Files\CONEXANT
2022-09-14 15:02 - 2017-07-14 11:26 - 000000000 ____D C:\Program Files\Dolby Digital Plus
2022-09-14 15:00 - 2017-07-14 11:28 - 000000000 ____D C:\WINDOWS\SysWOW64\sda
2022-09-14 14:42 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-09-14 14:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2022-09-14 14:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-09-14 14:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-09-14 14:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2022-09-14 14:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2022-09-14 14:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-09-14 14:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2022-09-14 14:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2022-09-14 14:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-09-14 09:43 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-09-14 08:46 - 2014-10-13 09:44 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-09-14 08:34 - 2014-10-13 09:44 - 141646296 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-09-14 08:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2022-09-14 08:27 - 2018-10-31 17:39 - 000000000 ____D C:\Users\Jaroslav\AppData\Local\CrashDumps
2022-09-14 08:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\appcompat
2022-09-14 00:26 - 2014-07-26 02:27 - 000000000 ____D C:\ProgramData\Energy Manager
2022-09-14 00:22 - 2018-03-23 11:58 - 000000000 ____D C:\Users\Jaroslav\AppData\Local\AVAST Software
2022-09-14 00:22 - 2015-01-21 17:52 - 000000000 ____D C:\ProgramData\AVAST Software
2022-09-14 00:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2022-09-14 00:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2022-09-14 00:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2022-09-14 00:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2022-09-14 00:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2022-09-14 00:19 - 2019-12-07 16:39 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2022-09-14 00:19 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2022-09-14 00:19 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2022-09-14 00:19 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2022-09-14 00:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2022-09-14 00:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2022-09-14 00:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-09-14 00:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2022-09-14 00:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2022-09-14 00:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2022-09-14 00:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2022-09-14 00:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2022-09-14 00:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2022-09-14 00:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2022-09-14 00:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2022-09-14 00:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2022-09-14 00:19 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System
2022-09-14 00:19 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2022-09-13 16:53 - 2018-06-07 20:38 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2022-09-13 15:44 - 2014-10-11 14:24 - 000002324 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-09-13 15:09 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-09-13 15:05 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2022-09-13 14:41 - 2022-05-12 22:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Disig Web Signer
2022-09-13 14:41 - 2022-05-12 22:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EAC MW klient
2022-09-13 14:41 - 2022-04-11 11:01 - 000000000 ____D C:\WINDOWS\system32\gf2engine
2022-09-13 14:41 - 2019-12-07 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2022-09-13 14:41 - 2019-12-07 16:36 - 000000000 ____D C:\WINDOWS\system32\WCN
2022-09-13 14:41 - 2019-12-07 11:14 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2022-09-13 14:41 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2022-09-13 14:41 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\spool
2022-09-13 14:41 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2022-09-13 14:41 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\InputMethod
2022-09-13 14:41 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2022-09-13 14:41 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Registration
2022-09-13 14:41 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\InputMethod
2022-09-13 14:41 - 2017-06-24 15:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ditec
2022-09-13 14:41 - 2017-04-19 09:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2022-09-13 14:41 - 2016-02-13 15:18 - 000000000 ____D C:\WINDOWS\ShellNew
2022-09-13 14:41 - 2016-01-08 17:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2022-09-13 14:41 - 2014-07-26 02:19 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDirector 10
2022-09-13 14:41 - 2014-07-26 02:13 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink MediaStory
2022-09-13 14:41 - 2014-07-26 02:12 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PhotoDirector 3
2022-09-13 14:41 - 2014-07-26 01:55 - 000000000 ___HD C:\WINDOWS\system32\WLANProfiles
2022-09-13 14:41 - 2014-07-26 01:46 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2022-09-13 14:41 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Shared
2022-09-13 14:41 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Media.Shared
2022-09-13 14:40 - 2019-12-07 11:18 - 000000000 ____D C:\WINDOWS\Setup
2022-09-13 14:40 - 2019-12-07 11:14 - 000000000 __RHD C:\Users\Public\Libraries
2022-09-13 14:40 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\USOPrivate
2022-09-13 14:40 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2022-09-13 14:40 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\MsDtc
2022-09-13 14:40 - 2017-06-01 13:39 - 000000000 ____D C:\Program Files\UNP
2022-09-13 14:38 - 2019-12-07 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2022-09-13 14:38 - 2019-12-07 16:36 - 000000000 ____D C:\WINDOWS\system32\slmgr
2022-09-13 14:38 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2022-09-13 14:38 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2022-09-13 14:38 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2022-09-13 14:38 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2022-09-13 14:38 - 2018-04-12 19:03 - 000000000 ____D C:\WINDOWS\SysWOW64\gl-ES
2022-09-13 14:38 - 2018-04-12 19:03 - 000000000 ____D C:\WINDOWS\SysWOW64\eu-ES
2022-09-13 14:38 - 2018-04-12 19:03 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES
2022-09-13 14:38 - 2018-04-12 19:03 - 000000000 ____D C:\WINDOWS\system32\gl-ES
2022-09-13 14:38 - 2018-04-12 19:03 - 000000000 ____D C:\WINDOWS\system32\eu-ES
2022-09-13 14:37 - 2019-12-07 16:39 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2022-09-13 14:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Resources
2022-09-13 14:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Help
2022-09-13 14:37 - 2018-10-15 12:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Conexant
2022-09-13 14:37 - 2018-04-12 19:03 - 000000000 ____D C:\WINDOWS\system32\ca-ES
2022-09-13 14:37 - 2016-02-18 15:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elcom
2022-09-13 14:36 - 2015-04-21 12:31 - 000803176 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2022-09-13 14:29 - 2017-12-12 12:47 - 000000000 ___RD C:\Users\Jaroslav\3D Objects
2022-09-13 14:29 - 2017-07-14 11:25 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2022-09-13 14:29 - 2016-05-26 10:27 - 000000000 __SHD C:\Users\Jaroslav\IntelGraphicsProfiles
2022-09-13 14:29 - 2016-02-13 15:46 - 000000000 __RHD C:\Users\Public\AccountPictures
2022-09-13 14:14 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Windows Defender
2022-09-13 14:14 - 2019-12-07 11:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2022-09-13 14:01 - 2019-12-07 11:14 - 000000000 __RSD C:\WINDOWS\Media
2022-09-13 13:54 - 2022-05-12 22:37 - 000000000 ____D C:\Users\Jaroslav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikácie Chrome
2022-09-13 13:52 - 2017-12-12 11:50 - 000000000 ____D C:\Users\Jaroslav\AppData\Local\Packages
2022-09-13 13:52 - 2016-02-18 15:00 - 000000000 ____D C:\Users\Jaroslav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Elcom
2022-09-13 13:50 - 2017-07-14 11:27 - 000000000 ____D C:\Program Files\Elantech
2022-09-13 13:45 - 2017-07-14 11:25 - 000000200 _____ C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2022-09-13 11:43 - 2022-08-15 12:56 - 000000000 ____D C:\Program Files\HPPrintScanDoctor
2022-08-17 09:12 - 2018-06-07 22:39 - 000000000 ____D C:\Users\Jaroslav\AppData\Local\PlaceholderTileLogoFolder

==================== Files in the root of some directories ========

2022-09-14 15:02 - 2022-09-16 07:34 - 001388432 _____ () C:\Users\Public\VOIP.dat

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================
Nahoru
rudiberger
Návštěvník
Návštěvník
Příspěvky: 23
Registrován: 26 kvě 2015 11:46

Re: Spomalený notebook

#6 Příspěvek od rudiberger »

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 30-08-2022
Ran by Jaroslav (16-09-2022 07:46:08)
Running from C:\Users\Jaroslav\OneDrive\Počítač
Microsoft Windows 10 Home Version 21H2 19044.2006 (X64) (2022-09-13 12:15:05)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-2072067216-333838016-2655932757-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2072067216-333838016-2655932757-503 - Limited - Disabled)
Guest (S-1-5-21-2072067216-333838016-2655932757-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2072067216-333838016-2655932757-1003 - Limited - Enabled)
Jaroslav (S-1-5-21-2072067216-333838016-2655932757-1001 - Administrator - Enabled) => C:\Users\Jaroslav
WDAGUtilityAccount (S-1-5-21-2072067216-333838016-2655932757-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Spybot - Search and Destroy (Disabled - Out of date) {F77C7796-45C4-531E-0DAE-B4A8229B11C8}
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe AIR (HKLM-x32\...\{7B77622E-DE90-48EA-B2C7-227B1DE58A01}) (Version: 16.0.0.245 - Adobe Systems Incorporated) Hidden
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 16.0.0.245 - Adobe Systems Incorporated)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.66.16.50 - Conexant)
Conexant SmartAudio (HKLM\...\SAII) (Version: 6.0.267.0 - Conexant Systems)
CyberLink MediaStory (HKLM-x32\...\{55762F9A-FCE3-45d5-817B-051218658423}) (Version: 1.0.1314 - CyberLink Corp.) Hidden
CyberLink MediaStory (HKLM-x32\...\InstallShield_{55762F9A-FCE3-45d5-817B-051218658423}) (Version: 1.0.1314 - CyberLink Corp.)
CyberLink PhotoDirector 3 (HKLM-x32\...\{39337565-330E-4ab6-A9AE-AC81E0720B10}) (Version: 3.0.1.4107 - CyberLink Corp.) Hidden
CyberLink PhotoDirector 3 (HKLM-x32\...\InstallShield_{39337565-330E-4ab6-A9AE-AC81E0720B10}) (Version: 3.0.1.4107 - CyberLink Corp.)
CyberLink PowerDirector 10 (HKLM\...\{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.0.2810 - CyberLink Corp.) Hidden
CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.0.2810 - CyberLink Corp.)
D.Launcher (x86) (HKLM-x32\...\{4FA0D867-008C-46A3-B56D-85958EA276C5}) (Version: 1.0.0.5 - DITEC, a.s.)
D.Signer/XAdES .NET so zásuvnými modulmi (x86) (HKLM-x32\...\{49F31F1B-4E3F-4873-8A53-2DCB1C2D9FD7}) (Version: 4.0.4 - DITEC, a.s.)
D.Signer/XAdES .NET Tools (x86) (HKLM-x32\...\{74AD296E-733C-491F-89EB-58AA86030B3B}) (Version: 4.0.3 - DITEC, a.s.)
D.Suite/eIDAS (x86) (HKLM-x32\...\{1d3d040b-96d3-4d8f-9ffc-a892a15045f8}) (Version: 1.0.4 - DITEC, a.s.)
D.Viewer .NET (x86) (HKLM-x32\...\{DC03512A-965A-4DB8-82BE-1E24BD0E5F12}) (Version: 4.0.2018 - DITEC, a.s.)
Disig Web Signer (HKLM-x32\...\{41C0F02D-2389-4AB5-975C-C2363E7C554C}) (Version: 2.0.7 - Disig)
Dolby Digital Plus Advanced Audio (HKLM\...\{B0BFC63F-EA07-419E-960B-3FB2ED5DD0B2}) (Version: 7.5.1.1 - Dolby Laboratories Inc)
EAC MW klient (HKLM-x32\...\{E22CF5CA-5935-451D-9B9D-EAA79DE703BD}) (Version: 3.7.0 - Ministerstvo vnútra Slovenskej republiky)
ELAN Touchpad 11.15.0.18_X64 (HKLM\...\Elantech) (Version: 11.15.0.18 - ELAN Microelectronic Corp.)
Euro2A 6.00 (HKLM-x32\...\Euro2A) (Version: - )
GemPcCCID (HKLM\...\{7567A068-2F02-40D1-A34C-16D79ECD35A6}) (Version: 2.0.3 - Gemalto)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 105.0.5195.102 - Google LLC)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4531 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.0.0.1098 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{DB4DA836-82EC-4A96-A6A1-52B39AD19C14}) (Version: 13.0.0.1098 - Intel Corporation) Hidden
Intel® PROSet/Wireless Software (HKLM-x32\...\{a914536c-bd41-479c-96aa-dee4a9639c22}) (Version: 21.10.1 - Intel Corporation)
Intel® PROSet/Wireless WiFi Software (HKLM\...\{07AC08CE-C63D-4FAE-B215-F53E13EA005F}) (Version: 21.10.1.3139 - Intel Corporation) Hidden
Intel® Trusted Connect Service Client (HKLM\...\{B5E06417-A4AC-4225-B36E-7E34C91616E7}) (Version: 1.31.8.1 - Intel Corporation) Hidden
Lenovo EasyCamera (HKLM-x32\...\{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}) (Version: 6.2.9200.10249 - Realtek Semiconductor Corp.)
Lenovo EasyCamera (HKLM-x32\...\{E399A5B3-ED53-4DEA-AF04-8011E1EB1EAC}) (Version: 6.3.9600.11105 - Realtek Semiconductor Corp.)
Lenovo OneKey Recovery (HKLM\...\{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.0.0.2105 - CyberLink Corp.) Hidden
Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.0.0.2105 - CyberLink Corp.)
Microsoft Audio Enhancement Troubleshooter installer (HKLM\...\{6E0351FF-6A71-45C5-A041-D4D9D8067EAF}) (Version: 1.0.0.0 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 105.0.1343.33 - Microsoft Corporation)
Microsoft HEVC Media Extension Installation for Microsoft.HEVCVideoExtension_1.0.2512.0_x64__8wekyb3d8bbwe (x64) (HKLM\...\{B0169E83-757B-EF66-E2F0-391944D785BC}) (Version: 1.0.0.0 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (Slovak) 2007 (HKLM-x32\...\{90120000-0016-041B-0000-0000000FF1CE}) (Version: 12.0.4518.1039 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (HKLM\...\{90120000-002A-0000-1000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (Slovak) 2007 (HKLM-x32\...\{90120000-001A-041B-0000-0000000FF1CE}) (Version: 12.0.4518.1039 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (Slovak) 2007 (HKLM-x32\...\{90120000-0018-041B-0000-0000000FF1CE}) (Version: 12.0.4518.1039 - Microsoft Corporation) Hidden
Microsoft Office Proof (Czech) 2007 (HKLM-x32\...\{90120000-001F-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1026 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (HKLM-x32\...\{90120000-001F-0409-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (HKLM-x32\...\{90120000-001F-0407-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (Hungarian) 2007 (HKLM-x32\...\{90120000-001F-040E-0000-0000000FF1CE}) (Version: 12.0.4518.1033 - Microsoft Corporation) Hidden
Microsoft Office Proof (Slovak) 2007 (HKLM-x32\...\{90120000-001F-041B-0000-0000000FF1CE}) (Version: 12.0.4518.1039 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Slovak) 2007 (HKLM-x32\...\{90120000-002C-041B-0000-0000000FF1CE}) (Version: 12.0.4518.1039 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (Slovak) 2007 (HKLM\...\{90120000-002A-041B-1000-0000000FF1CE}) (Version: 12.0.4518.1039 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Slovak) 2007 (HKLM-x32\...\{90120000-006E-041B-0000-0000000FF1CE}) (Version: 12.0.4518.1039 - Microsoft Corporation) Hidden
Microsoft Office Standard 2007 (HKLM-x32\...\{90120000-0012-0000-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Standard 2007 (HKLM-x32\...\STANDARD) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office Word MUI (Slovak) 2007 (HKLM-x32\...\{90120000-001B-041B-0000-0000000FF1CE}) (Version: 12.0.4518.1039 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKU\S-1-5-21-2072067216-333838016-2655932757-1001\...\OneDriveSetup.exe) (Version: 22.176.0821.0003 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{7B1FCD52-8F6B-4F12-A143-361EA39F5E7C}) (Version: 3.67.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 x86 Additional Runtime - 14.0.24215 (HKLM-x32\...\{69BCE4AC-9572-3271-A2FB-9423BDA36A43}) (Version: 14.0.24215 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 x86 Minimum Runtime - 14.0.24215 (HKLM-x32\...\{BBF2AC74-720C-3CB3-8291-5E34039232FA}) (Version: 14.0.24215 - Microsoft Corporation) Hidden
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10586.31222 - Realtek Semiconduct Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.20.815.2013 - Realtek)
Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation)
Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.103 - Skype Technologies S.A.)
slovensko (HKU\S-1-5-21-2072067216-333838016-2655932757-1001\...\c0d18354026bf05cf3061d4240956c4b) (Version: 1.0 - Google\Chrome)
TAP-Windows 9.21.1 (HKLM\...\TAP-Windows) (Version: 9.21.1 - )
TeamViewer (HKLM\...\TeamViewer) (Version: 15.33.7 - TeamViewer)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{82BD0A1C-815F-487F-9AE7-CE73DA413CFF}) (Version: 4.91.0.0 - Microsoft Corporation)
User Manuals (HKLM-x32\...\{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 3.0.0.3 - Lenovo) Hidden
User Manuals (HKLM-x32\...\InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 3.0.0.3 - Lenovo)
Windows Driver Package - Lenovo (ACPIVPC) System (02/17/2013 9.52.0.776) (HKLM\...\35DD26BE48DAF4A9F35F969F3CB1E3E1435E661E) (Version: 02/17/2013 9.52.0.776 - Lenovo)
Windows Driver Package - Lenovo (WUDFRd) LenovoVhid (07/25/2013 10.30.0.288) (HKLM\...\6BCA401E9CBEED970D75F55FA5320F60D11984E9) (Version: 07/25/2013 10.30.0.288 - Lenovo)
Windows Driver Package - Silicon Laboratories (silabenm) Ports (12/10/2012 6.6.1.0) (HKLM\...\D680DEE0F68D64EC53D0C5769879D15D387054CC) (Version: 12/10/2012 6.6.1.0 - Silicon Laboratories)

Packages:
=========
AccuWeather - Weather for Life -> C:\Program Files\WindowsApps\AccuWeather.AccuWeatherforWindows8_10.0.348.1000_x64__8zz2pj9h1h1d8 [2018-04-07] (AccuWeather) [MS Ad]
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2019-11-18] (Autodesk Inc.)
Camera Man -> C:\Program Files\WindowsApps\E0469640.CameraMan_1.0.1929.30229_x86__5grkq8ppsgwt4 [2014-10-13] (LENOVO INC)
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.226.500.0_x64__kgqvnymyfvs32 [2022-09-14] (king.com)
Doplnok mediálneho nástroja pre Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2022-08-15] (Microsoft Corporation)
Evernote -> C:\Program Files\WindowsApps\Evernote.Evernote_10.44.8.0_x64__q4d96b2w5wcc2 [2022-09-13] (Evernote)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_138.2.414.0_x64__v10z8vjag6ke6 [2022-09-13] (HP Inc.)
Lenovo Support -> C:\Program Files\WindowsApps\E046963F.LenovoSupport_2.0.5.0_x86__k1h2ywk1493x8 [2015-01-22] (Lenovo, INC.)
Lenovo Vantage -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2208.7.0_x64__k1h2ywk1493x8 [2022-08-19] (LENOVO INC.)
Live TV -> C:\Program Files\WindowsApps\FilmOnLiveTVFree.FilmOnLiveTVFree_1.3.6.115_x64__zx03kxexxb716 [2014-10-13] (FilmOn TV Inc.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2022-09-13] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2022-09-13] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.14.9020.0_x64__8wekyb3d8bbwe [2022-09-13] (Microsoft Studios) [MS Ad]
MSN Cestovanie -> C:\Program Files\WindowsApps\Microsoft.BingTravel_3.0.4.336_x64__8wekyb3d8bbwe [2015-07-20] (Microsoft Corporation) [MS Ad]
MSN Jedlá a nápoje -> C:\Program Files\WindowsApps\Microsoft.BingFoodAndDrink_3.0.4.336_x64__8wekyb3d8bbwe [2015-07-20] (Microsoft Corporation) [MS Ad]
MSN Zdravie a fitnes -> C:\Program Files\WindowsApps\Microsoft.BingHealthAndFitness_3.0.4.336_x64__8wekyb3d8bbwe [2015-07-20] (Microsoft Corporation) [MS Ad]
PowerDVD for Lenovo Idea -> C:\Program Files\WindowsApps\CyberLinkCorp.id.PowerDVDforLenovoIdea_1.1.2618.24808_x86__hgg5mn3xps74a [2014-10-13] (CYBERLINK COM CORPORATION)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.193.898.0_x86__zpdnekdrzrea0 [2022-09-13] (Spotify AB) [Startup Task]
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.TWITTER_7.0.1.0_neutral__wgeqdkkx372wm [2022-09-13] (Twitter Inc.)
YouSendIt for Lenovo -> C:\Program Files\WindowsApps\YouSendIt.YouSendItForLenovo_1.0.5.1412_neutral__069rkrpjefrbc [2014-10-06] (YouSendIt)
Zinio -> C:\Program Files\WindowsApps\ZinioLLC.Zinio_2.1.0.317_x64__0q6dqzpp40p2e [2014-10-13] (Zinio LLC)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ContextMenuHandlers1: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => -> No File
ContextMenuHandlers1: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => -> No File
ContextMenuHandlers2: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => -> No File
ContextMenuHandlers2: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2017-06-12] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => -> No File
ContextMenuHandlers6: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => -> No File

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32-x32: [msacm.clmp3enc] => C:\Program Files (x86)\Lenovo\Power2Go\CLMP3Enc.ACM

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\Jaroslav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikácie Chrome\slovensko.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=fcchlmcheahhiaanefoibicmdljfaipi

==================== Loaded Modules (Whitelisted) =============

2022-09-14 15:05 - 2022-09-14 15:05 - 000355840 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Interop.CxHef9fb4ae#\2b8c809e451b1c9f7f7c0b7a9553a86f\Interop.CxHDAudioAPILib.ni.dll
2018-10-15 12:13 - 2016-03-11 10:07 - 001145856 _____ (Conexant Systems, Inc.) [File not signed] [File is in use] C:\Program Files\Conexant\SAII\CxHDAudioAPI.dll
2014-07-26 02:21 - 2014-07-26 02:21 - 000348160 ____N (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Lenovo\PowerDVD10\MSVCR71.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKU\S-1-5-21-2072067216-333838016-2655932757-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo13.msn.com/?pc=LCJB
HKU\S-1-5-21-2072067216-333838016-2655932757-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com/?pc=LCJB
HKU\S-1-5-21-2072067216-333838016-2655932757-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com
SearchScopes: HKU\S-1-5-21-2072067216-333838016-2655932757-1001 -> {DE410D6C-5B83-4A05-8677-D7E9F409882D} URL =

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 15:25 - 2019-01-04 12:12 - 000000831 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;C:\Program Files (x86)\Skype\Phone\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files (x86)\EAC MW klient\
HKU\S-1-5-21-2072067216-333838016-2655932757-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Jaroslav\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\41508800_2172961156110110_3917369087189057536_n.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

MSCONFIG\Services: !SASCORE => 2
MSCONFIG\Services: avast => 2
MSCONFIG\Services: avast! Tools => 2
MSCONFIG\Services: avastm => 3
MSCONFIG\Services: AvastSecureBrowserElevationService => 3
MSCONFIG\Services: cphs => 3
MSCONFIG\Services: CxAudMsg => 2
MSCONFIG\Services: dLauncherLoopback => 2
MSCONFIG\Services: ETDService => 2
MSCONFIG\Services: GoogleChromeElevationService => 3
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: HPPrintScanDoctorService => 2
MSCONFIG\Services: IAStorDataMgrSvc => 2
MSCONFIG\Services: ibtsiva => 2
MSCONFIG\Services: igfxCUIService2.0.0.0 => 2
MSCONFIG\Services: Intel(R) Capability Licensing Service Interface => 2
MSCONFIG\Services: Intel(R) Capability Licensing Service TCP IP Interface => 3
MSCONFIG\Services: jhi_service => 2
MSCONFIG\Services: LMS => 2
MSCONFIG\Services: LSC.Services.SystemService => 3
MSCONFIG\Services: RichVideo64 => 2
MSCONFIG\Services: SDScannerService => 2
MSCONFIG\Services: SDUpdateService => 2
MSCONFIG\Services: SkypeUpdate => 2

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{9ABB9AAA-A190-45B8-B86D-BC96B46B8EB4}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.88.3401.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{18E6761E-3CFB-49DA-BD2E-224D482C93E2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.88.3401.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{37301876-19BB-436C-AD01-78D62E806399}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.88.3401.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F9039219-09B0-44A4-B1AD-7104AA9FCFA3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.88.3401.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{3C4D700E-AAC1-4AED-A77C-AD5F35B006E1}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.193.898.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{6D053035-B85F-48B3-A843-89EAF2B11CE3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.193.898.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{56F85911-393C-4226-B119-4C37CA371D35}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.193.898.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{D41021E7-84E6-4DC2-9928-ED718BC2699E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.193.898.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{8975F6AE-6D22-4349-ADA6-90AE29CD2E2D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.193.898.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{0E4A3DCF-7ACA-4BAB-8DBA-71484CF01808}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.193.898.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{1DF9927A-44C3-4CAC-A301-916ED1417958}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.193.898.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{B52BCA4C-6DA2-4CAE-A6D0-25E40C03F8CB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.193.898.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{DF0B4BF6-A590-4216-B560-8109B8546FF9}] => (Allow) C:\Program Files\CyberLink\PowerDirector10\PDR10.EXE (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{3A8019F9-99D2-4F7F-A8C6-97DAC3726A54}] => (Allow) C:\Program Files (x86)\Lenovo\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{50D0BCC2-9A2E-4A43-B9E0-A43D13BF9E17}] => (Allow) C:\Program Files (x86)\Lenovo\PowerDVD10\PowerDVD10.EXE (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [TCP Query User{0373D52D-1399-4AF0-B0EE-92A186123EA7}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [UDP Query User{AD093C9C-2A75-4B7D-9CA4-A31198CE9212}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{07B3315B-23F5-46AF-96CB-F519D8477159}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [UDP Query User{A2DA8E88-BECC-47D3-AC74-5116381F1C28}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{04859E36-33DC-4188-A42D-081E98269464}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{94DB9B6C-D754-4C41-AB5E-7B0DB5E32C77}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{57222F65-73DC-432B-A5C2-CD2CB0036EAC}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{B74D09F8-07CB-42C4-871D-8D8FC50D11E9}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{BEB6272D-15A5-4C32-954F-3A070B08EA22}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)

==================== Restore Points =========================

14-09-2022 08:31:09 Inštalátor modulov systému Windows
14-09-2022 08:46:55 Inštalátor modulov systému Windows
14-09-2022 09:04:05 Inštalátor modulov systému Windows
14-09-2022 09:09:15 Inštalátor modulov systému Windows
14-09-2022 14:48:59 Removed Windows Kontrola stavu počítača
14-09-2022 15:45:54 AdwCleaner_BeforeCleaning_14/09/2022_15:45:51

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (09/14/2022 03:31:28 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program msedge.exe version 105.0.1343.33 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 27c4

Start Time: 01d8c83e34a2cec6

Termination Time: 4294967295

Application Path: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

Report Id: aaf806f3-93cf-4a85-9e41-9fc68e0189ca

Faulting package full name:

Faulting package-relative application ID:

Hang type: Top level window is idle

Error: (09/14/2022 03:06:54 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Skipping: Eap method DLL path name validation failed. Error: typeId=43, authorId=9, vendorId=0, vendorType=0

Error: (09/14/2022 03:06:54 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Skipping: Eap method DLL path name validation failed. Error: typeId=25, authorId=9, vendorId=0, vendorType=0

Error: (09/14/2022 03:06:54 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Skipping: Eap method DLL path name validation failed. Error: typeId=17, authorId=9, vendorId=0, vendorType=0

Error: (09/14/2022 03:05:22 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program drvinst.exe version 10.0.19041.1865 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 1af4

Start Time: 01d8c83a00d82773

Termination Time: 8

Application Path: C:\Windows\System32\drvinst.exe

Report Id: 6acee87e-b84e-4d46-940e-b8d8800cbe89

Faulting package full name:

Faulting package-relative application ID:

Hang type: Cross-process

Error: (09/14/2022 03:02:21 PM) (Source: MsiInstaller) (EventID: 10005) (User: NT AUTHORITY)
Description: Product: Dolby Digital Plus Home Theater -- Dolby Digital Plus Home Theater cannot be installed

Error: (09/14/2022 02:49:07 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Cryptographic Services zlyhala pri spracovávaní volania OnIdentity() v objekte System Writer.

Details:
AddWin32ServiceFiles: Unable to back up image of service Spybot Security Center Integration Service since QueryServiceConfig API failed

System Error:
The system cannot find the file specified.
.

Error: (09/14/2022 10:37:15 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program SearchApp.exe version 10.0.19041.1889 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 239c

Start Time: 01d8c7c283b9371c

Termination Time: 4294967295

Application Path: C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe

Report Id: d324edc0-aef9-4da1-81ed-09c305833fa5

Faulting package full name: Microsoft.Windows.Search_1.14.6.19041_neutral_neutral_cw5n1h2txyewy

Faulting package-relative application ID: ShellFeedsUI

Hang type: Navigation


System errors:
=============
Error: (09/16/2022 07:37:35 AM) (Source: DCOM) (EventID: 10001) (User: LENOVO-PC)
Description: Unable to start a DCOM Server: Microsoft.Windows.Photos_2022.30070.26007.0_x64__8wekyb3d8bbwe!App.AppXqf3jy92pmcwbjhkzazrw5n94pedgs429.mca as Unavailable/Unavailable. The error:
"2147942402"
Happened while starting this command:
"C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2022.30070.26007.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe" -ServerName:App.AppXzst44mncqdg84v7sv6p7yznqwssy6f7f.mca

Error: (09/16/2022 07:35:29 AM) (Source: DCOM) (EventID: 10001) (User: LENOVO-PC)
Description: Unable to start a DCOM Server: Microsoft.Windows.Photos_2022.30070.26007.0_x64__8wekyb3d8bbwe!App.AppXqf3jy92pmcwbjhkzazrw5n94pedgs429.mca as Unavailable/Unavailable. The error:
"2147942402"
Happened while starting this command:
"C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2022.30070.26007.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe" -ServerName:App.AppXzst44mncqdg84v7sv6p7yznqwssy6f7f.mca

Error: (09/16/2022 07:35:20 AM) (Source: DCOM) (EventID: 10001) (User: LENOVO-PC)
Description: Unable to start a DCOM Server: Microsoft.Windows.Photos_2022.30070.26007.0_x64__8wekyb3d8bbwe!App.AppXqf3jy92pmcwbjhkzazrw5n94pedgs429.mca as Unavailable/Unavailable. The error:
"2147942402"
Happened while starting this command:
"C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2022.30070.26007.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe" -ServerName:App.AppXzst44mncqdg84v7sv6p7yznqwssy6f7f.mca

Error: (09/16/2022 07:35:05 AM) (Source: DCOM) (EventID: 10001) (User: LENOVO-PC)
Description: Unable to start a DCOM Server: Microsoft.Windows.Photos_2022.30070.26007.0_x64__8wekyb3d8bbwe!App.AppXqf3jy92pmcwbjhkzazrw5n94pedgs429.mca as Unavailable/Unavailable. The error:
"2147942402"
Happened while starting this command:
"C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2022.30070.26007.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe" -ServerName:App.AppXzst44mncqdg84v7sv6p7yznqwssy6f7f.mca

Error: (09/16/2022 07:34:55 AM) (Source: NetBT) (EventID: 4311) (User: )
Description: Initialization failed because the driver device could not be created.
Use the string "323A647271DF" to identify the interface for which initialization
failed. It represents the MAC address of the failed interface or the
Globally Unique Interface Identifier (GUID) if NetBT was unable to
map from GUID to MAC address. If neither the MAC address nor the GUID were
available, the string represents a cluster device name.

Error: (09/16/2022 07:33:09 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spustenie služby SAService zlyhalo kvôli nasledujúcej chybe:
The system cannot find the file specified.

Error: (09/16/2022 07:33:09 AM) (Source: NetBT) (EventID: 4311) (User: )
Description: Initialization failed because the driver device could not be created.
Use the string "303A647271E0" to identify the interface for which initialization
failed. It represents the MAC address of the failed interface or the
Globally Unique Interface Identifier (GUID) if NetBT was unable to
map from GUID to MAC address. If neither the MAC address nor the GUID were
available, the string represents a cluster device name.

Error: (09/16/2022 07:32:48 AM) (Source: NetBT) (EventID: 4311) (User: )
Description: Initialization failed because the driver device could not be created.
Use the string "303A647271DF" to identify the interface for which initialization
failed. It represents the MAC address of the failed interface or the
Globally Unique Interface Identifier (GUID) if NetBT was unable to
map from GUID to MAC address. If neither the MAC address nor the GUID were
available, the string represents a cluster device name.


Windows Defender:
================
Date: 2022-09-14 22:07:57
Description:
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Name: HackTool:Win32/Gmer
Severity: Vysoká
Category: Nástroj
Path: file:_C:\Users\Jaroslav\Downloads\dxqohsxl.exe; webfile:_C:\Users\Jaroslav\Downloads\dxqohsxl.exe|http://www2.gmer.net/download.php?|pid: ... 6755142805
Detection Origin: Internet
Detection Type: Concrete
Detection Source: Downloads and attachments
Process Name: Unknown
Security intelligence Version: AV: 1.375.345.0, AS: 1.375.345.0, NIS: 1.375.345.0
Engine Version: AM: 1.1.19600.3, NIS: 1.1.19600.3

Date: 2022-09-14 22:07:15
Description:
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Name: HackTool:Win32/Gmer
Severity: Vysoká
Category: Nástroj
Path: file:_C:\Users\Jaroslav\Downloads\gju57i4o.exe; webfile:_C:\Users\Jaroslav\Downloads\gju57i4o.exe|http://www2.gmer.net/download.php?|pid: ... 6322888316
Detection Origin: Internet
Detection Type: Concrete
Detection Source: Downloads and attachments
Process Name: Unknown
Security intelligence Version: AV: 1.375.345.0, AS: 1.375.345.0, NIS: 1.375.345.0
Engine Version: AM: 1.1.19600.3, NIS: 1.1.19600.3

Date: 2022-09-14 14:24:02
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

CodeIntegrity:
===============
Date: 2022-09-14 14:43:20
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\Spybot - Search & Destroy 2\SDLicense.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2022-09-14 14:24:02
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2022-09-13 16:34:29
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\AVAST Software\Avast\AvastSvc.exe) attempted to load \Device\HarddiskVolume5\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2022-09-13 16:26:54
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.


==================== Memory info ===========================

BIOS: LENOVO 9ACN25WW 04/02/2014
Motherboard: LENOVO Lancer 5A2
Processor: Intel(R) Core(TM) i3-4005U CPU @ 1.70GHz
Percentage of memory in use: 87%
Total physical RAM: 3988.27 MB
Available physical RAM: 502.76 MB
Total Virtual: 6292.27 MB
Available Virtual: 2229.55 MB

==================== Drives ================================

Drive c: (Windows8_OS) (Fixed) (Total:196.6 GB) (Free:139.11 GB) (Model: WD Green 2.5 240GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (LENOVO) (Fixed) (Total:11.57 GB) (Free:8.83 GB) (Model: WD Green 2.5 240GB) NTFS
Drive e: (Audio CD) (CDROM) (Total:0 GB) (Free:0 GB) CDFS

\\?\Volume{2409aa30-9fad-4d03-840b-3daaa404cb33}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.68 GB) NTFS
\\?\Volume{aa21edf2-2edb-4d29-9537-6b2c8de789bc}\ (PBR_DRV) (Fixed) (Total:13.55 GB) (Free:4.38 GB) NTFS
\\?\Volume{9e142952-f80c-4792-bc30-af3e390ce25c}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 223.6 GB) (Disk ID: 3BF9A6CA)

Partition: GPT.

==================== End of Addition.txt =======================
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118275
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Spomalený notebook

#7 Příspěvek od Rudy »

Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
ContextMenuHandlers1: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => -> No File
ContextMenuHandlers1: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => -> No File
ContextMenuHandlers2: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => -> No File
ContextMenuHandlers2: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers6: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => -> No File
ContextMenuHandlers6: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => -> No File
SearchScopes: HKU\S-1-5-21-2072067216-333838016-2655932757-1001 -> {DE410D6C-5B83-4A05-8677-D7E9F409882D} URL =
C:\Users\Jaroslav\Downloads\dxqohsxl.exe
C:\Users\Jaroslav\Downloads\gju57i4o.exe
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRoot% <==== ATTENTION
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ProgramFilesDir% <==== ATTENTION
HKU\S-1-5-21-2072067216-333838016-2655932757-1001\...\RunOnce: [Application Restart #4] => C:\Users\Jaroslav\AppData\Local\SweetLabs App Platform\Engine\ServiceHostApp.exe --disable-internal-flash --noerrdialogs --no-message-box --disable-extensions --disable-web-security --disable-web-res (the data entry has 589 more characters). (No File)
Task: {01986743-AE3D-466D-B284-AEAC347EA97D} - \Microsoft\Windows\Setup\GWXTriggers\Time-Weekend -> No File <==== ATTENTION
Task: {0E7AAFE1-FF19-4C58-8C3C-051468041420} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {12C9275E-5828-4D3F-9679-F9448E3F4689} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {141EFEC2-913B-42BB-86B6-7DE373C9C6C7} - System32\Tasks\Lenovo\LSC\LSCHardwareScanPostpone => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe -diag HWScan (No File)
Task: {15201B14-D813-4FDA-877F-ACABC4758A06} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {3296F705-B7BF-4C0B-9F0B-81E12C9394F4} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe join (No File)
Task: {1AF64359-FBBA-4F7A-ACCC-4AF642BB2C47} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-28] (Google Inc -> Google Inc.)
Task: {47ADCBD4-408C-4BEA-880A-AEB597999DE5} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe /backup /iavs (No File)
Task: {481E4DB0-F01F-449E-9B78-10657D02CE69} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe -diag HWScan (No File)
Task: {510D5606-6522-4E34-BE43-728C169145AF} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {58F8D0A8-1D72-4D09-87C9-8E6A6F116B08} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {5CB43BFC-C5B2-4F32-BCCC-ABEDB4BC9B81} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {5D802841-01E2-4516-B56A-40F104BD36B1} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {6100EC74-8AD5-44A2-8B4F-900B9230FFEC} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe (No File)
Task: {64E92760-1B0B-4A57-A80E-16B455D12A56} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {761C8FDF-CF82-4590-8747-1224047982A2} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.UpdateStatusService.exe UpdateStatus (No File)
Task: {84A09945-15EF-4AAE-BA0F-9D7612627818} - System32\Tasks\Lenovo\LSC\RebootCountTask => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCService.exe Actions RebootCount (No File)
Task: {879EE49F-3B3E-414D-984F-2EC627F2F796} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe /show (No File)
Task: {89B7E79E-646B-415B-8CAE-3065929DC5AE} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {97936944-5A5D-4A2C-A80D-D8A944E53EAB} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => C:\windows\system32\rundll32.exe C:\windows\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
Task: {9E3733FF-FD78-427B-AB13-8896D9D4E476} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {A67705F9-A840-4E57-BC86-69EED8D3175A} - System32\Tasks\Microsoft\Windows\Setup\UpgradeTriggers\UpgradeNowTask => C:\WINDOWS\System32\GWX\GWXUXWorker.exe /UpgradeNow (No File)
Task: {AF3AB9E0-F6A9-4C19-AEFC-1C1BE7612E7E} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {B1244E00-4314-4F5F-AC2C-885A32D9C421} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {CA55AE75-F472-4860-B9FE-D6A3DB241DB2} - System32\Tasks\Lenovo\LSC\Time72Task => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCService.exe Actions CanUpdate (No File)
Task: {D469C25D-A25A-4F65-B3E4-D866825FBA17} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-28] (Google Inc -> Google Inc.)
Task: {E59630B8-5797-497F-B2D9-882C0001D6E8} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {F0C83366-87AB-46FC-BE47-47BE2307AD52} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
C:\WINDOWS\SET3428.tmp
C:\WINDOWS\LastGood.Tmp
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat

EmptyTemp:
End
Uložte do C:\Users\Jaroslav\OneDrive\Počítač jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
rudiberger
Návštěvník
Návštěvník
Příspěvky: 23
Registrován: 26 kvě 2015 11:46

Re: Spomalený notebook

#8 Příspěvek od rudiberger »

Fix result of Farbar Recovery Scan Tool (x64) Version: 30-08-2022
Ran by Jaroslav (16-09-2022 19:57:35) Run:1
Running from C:\Users\Jaroslav\OneDrive
Loaded Profiles: Jaroslav
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
ContextMenuHandlers1: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => -> No File
ContextMenuHandlers1: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => -> No File
ContextMenuHandlers2: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => -> No File
ContextMenuHandlers2: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers6: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => -> No File
ContextMenuHandlers6: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => -> No File
SearchScopes: HKU\S-1-5-21-2072067216-333838016-2655932757-1001 -> {DE410D6C-5B83-4A05-8677-D7E9F409882D} URL =
C:\Users\Jaroslav\Downloads\dxqohsxl.exe
C:\Users\Jaroslav\Downloads\gju57i4o.exe
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRoot% <==== ATTENTION
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ProgramFilesDir% <==== ATTENTION
HKU\S-1-5-21-2072067216-333838016-2655932757-1001\...\RunOnce: [Application Restart #4] => C:\Users\Jaroslav\AppData\Local\SweetLabs App Platform\Engine\ServiceHostApp.exe --disable-internal-flash --noerrdialogs --no-message-box --disable-extensions --disable-web-security --disable-web-res (the data entry has 589 more characters). (No File)
Task: {01986743-AE3D-466D-B284-AEAC347EA97D} - \Microsoft\Windows\Setup\GWXTriggers\Time-Weekend -> No File <==== ATTENTION
Task: {0E7AAFE1-FF19-4C58-8C3C-051468041420} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {12C9275E-5828-4D3F-9679-F9448E3F4689} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {141EFEC2-913B-42BB-86B6-7DE373C9C6C7} - System32\Tasks\Lenovo\LSC\LSCHardwareScanPostpone => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe -diag HWScan (No File)
Task: {15201B14-D813-4FDA-877F-ACABC4758A06} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {3296F705-B7BF-4C0B-9F0B-81E12C9394F4} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe join (No File)
Task: {1AF64359-FBBA-4F7A-ACCC-4AF642BB2C47} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-28] (Google Inc -> Google Inc.)
Task: {47ADCBD4-408C-4BEA-880A-AEB597999DE5} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe /backup /iavs (No File)
Task: {481E4DB0-F01F-449E-9B78-10657D02CE69} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe -diag HWScan (No File)
Task: {510D5606-6522-4E34-BE43-728C169145AF} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {58F8D0A8-1D72-4D09-87C9-8E6A6F116B08} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {5CB43BFC-C5B2-4F32-BCCC-ABEDB4BC9B81} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {5D802841-01E2-4516-B56A-40F104BD36B1} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {6100EC74-8AD5-44A2-8B4F-900B9230FFEC} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe (No File)
Task: {64E92760-1B0B-4A57-A80E-16B455D12A56} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {761C8FDF-CF82-4590-8747-1224047982A2} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.UpdateStatusService.exe UpdateStatus (No File)
Task: {84A09945-15EF-4AAE-BA0F-9D7612627818} - System32\Tasks\Lenovo\LSC\RebootCountTask => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCService.exe Actions RebootCount (No File)
Task: {879EE49F-3B3E-414D-984F-2EC627F2F796} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe /show (No File)
Task: {89B7E79E-646B-415B-8CAE-3065929DC5AE} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {97936944-5A5D-4A2C-A80D-D8A944E53EAB} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => C:\windows\system32\rundll32.exe C:\windows\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
Task: {9E3733FF-FD78-427B-AB13-8896D9D4E476} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {A67705F9-A840-4E57-BC86-69EED8D3175A} - System32\Tasks\Microsoft\Windows\Setup\UpgradeTriggers\UpgradeNowTask => C:\WINDOWS\System32\GWX\GWXUXWorker.exe /UpgradeNow (No File)
Task: {AF3AB9E0-F6A9-4C19-AEFC-1C1BE7612E7E} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {B1244E00-4314-4F5F-AC2C-885A32D9C421} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {CA55AE75-F472-4860-B9FE-D6A3DB241DB2} - System32\Tasks\Lenovo\LSC\Time72Task => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCService.exe Actions CanUpdate (No File)
Task: {D469C25D-A25A-4F65-B3E4-D866825FBA17} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-28] (Google Inc -> Google Inc.)
Task: {E59630B8-5797-497F-B2D9-882C0001D6E8} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {F0C83366-87AB-46FC-BE47-47BE2307AD52} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
C:\WINDOWS\SET3428.tmp
C:\WINDOWS\LastGood.Tmp
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat

EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\SDECon32 => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\SDECon64 => removed successfully
HKLM\Software\Classes\Drive\ShellEx\ContextMenuHandlers\SDECon32 => removed successfully
HKLM\Software\Classes\Drive\ShellEx\ContextMenuHandlers\SDECon64 => removed successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\SDECon32 => removed successfully
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\SDECon64 => removed successfully
HKU\S-1-5-21-2072067216-333838016-2655932757-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{DE410D6C-5B83-4A05-8677-D7E9F409882D} => removed successfully
"C:\Users\Jaroslav\Downloads\dxqohsxl.exe" => not found
"C:\Users\Jaroslav\Downloads\gju57i4o.exe" => not found
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION => restored successfully
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRoot% <==== ATTENTION => restored successfully
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ProgramFilesDir% <==== ATTENTION => restored successfully
"HKU\S-1-5-21-2072067216-333838016-2655932757-1001\Software\Microsoft\Windows\CurrentVersion\RunOnce\\Application Restart #4" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{01986743-AE3D-466D-B284-AEAC347EA97D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{01986743-AE3D-466D-B284-AEAC347EA97D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-Weekend" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0E7AAFE1-FF19-4C58-8C3C-051468041420}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0E7AAFE1-FF19-4C58-8C3C-051468041420}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{12C9275E-5828-4D3F-9679-F9448E3F4689}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{12C9275E-5828-4D3F-9679-F9448E3F4689}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\rundetector" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{141EFEC2-913B-42BB-86B6-7DE373C9C6C7}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{141EFEC2-913B-42BB-86B6-7DE373C9C6C7}" => removed successfully
C:\WINDOWS\System32\Tasks\Lenovo\LSC\LSCHardwareScanPostpone => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\LSC\LSCHardwareScanPostpone" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{15201B14-D813-4FDA-877F-ACABC4758A06}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{15201B14-D813-4FDA-877F-ACABC4758A06}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{3296F705-B7BF-4C0B-9F0B-81E12C9394F4}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3296F705-B7BF-4C0B-9F0B-81E12C9394F4}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{352E6CA0-7314-4DF4-89C4-682368D80D57}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{352E6CA0-7314-4DF4-89C4-682368D80D57}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1AF64359-FBBA-4F7A-ACCC-4AF642BB2C47}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1AF64359-FBBA-4F7A-ACCC-4AF642BB2C47}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{47ADCBD4-408C-4BEA-880A-AEB597999DE5}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{47ADCBD4-408C-4BEA-880A-AEB597999DE5}" => removed successfully
C:\WINDOWS\System32\Tasks\AVAST Software\Avast settings backup => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AVAST Software\Avast settings backup" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{481E4DB0-F01F-449E-9B78-10657D02CE69}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{481E4DB0-F01F-449E-9B78-10657D02CE69}" => removed successfully
C:\WINDOWS\System32\Tasks\Lenovo\LSC\LSCHardwareScan => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\LSC\LSCHardwareScan" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{510D5606-6522-4E34-BE43-728C169145AF}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{510D5606-6522-4E34-BE43-728C169145AF}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{58F8D0A8-1D72-4D09-87C9-8E6A6F116B08}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{58F8D0A8-1D72-4D09-87C9-8E6A6F116B08}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5CB43BFC-C5B2-4F32-BCCC-ABEDB4BC9B81}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5CB43BFC-C5B2-4F32-BCCC-ABEDB4BC9B81}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5D802841-01E2-4516-B56A-40F104BD36B1}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5D802841-01E2-4516-B56A-40F104BD36B1}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UNP\RunCampaignManager" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6100EC74-8AD5-44A2-8B4F-900B9230FFEC}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6100EC74-8AD5-44A2-8B4F-900B9230FFEC}" => removed successfully
C:\WINDOWS\System32\Tasks\Lenovo\Lenovo Customer Feedback Program => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\Lenovo Customer Feedback Program" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{64E92760-1B0B-4A57-A80E-16B455D12A56}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{64E92760-1B0B-4A57-A80E-16B455D12A56}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{761C8FDF-CF82-4590-8747-1224047982A2}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{761C8FDF-CF82-4590-8747-1224047982A2}" => removed successfully
C:\WINDOWS\System32\Tasks\Lenovo\Lenovo Solution Center Launcher => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\Lenovo Solution Center Launcher" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{84A09945-15EF-4AAE-BA0F-9D7612627818}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{84A09945-15EF-4AAE-BA0F-9D7612627818}" => removed successfully
C:\WINDOWS\System32\Tasks\Lenovo\LSC\RebootCountTask => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\LSC\RebootCountTask" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{879EE49F-3B3E-414D-984F-2EC627F2F796}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{879EE49F-3B3E-414D-984F-2EC627F2F796}" => removed successfully
C:\WINDOWS\System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\LSC\Lenovo Solution Center Notifications" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{89B7E79E-646B-415B-8CAE-3065929DC5AE}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{89B7E79E-646B-415B-8CAE-3065929DC5AE}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{97936944-5A5D-4A2C-A80D-D8A944E53EAB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{97936944-5A5D-4A2C-A80D-D8A944E53EAB}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\PLA\LSC Memory => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\PLA\LSC Memory" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{9E3733FF-FD78-427B-AB13-8896D9D4E476}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9E3733FF-FD78-427B-AB13-8896D9D4E476}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A67705F9-A840-4E57-BC86-69EED8D3175A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A67705F9-A840-4E57-BC86-69EED8D3175A}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Setup\UpgradeTriggers\UpgradeNowTask => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\UpgradeTriggers\UpgradeNowTask" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{AF3AB9E0-F6A9-4C19-AEFC-1C1BE7612E7E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AF3AB9E0-F6A9-4C19-AEFC-1C1BE7612E7E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B1244E00-4314-4F5F-AC2C-885A32D9C421}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B1244E00-4314-4F5F-AC2C-885A32D9C421}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CA55AE75-F472-4860-B9FE-D6A3DB241DB2}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CA55AE75-F472-4860-B9FE-D6A3DB241DB2}" => removed successfully
C:\WINDOWS\System32\Tasks\Lenovo\LSC\Time72Task => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\LSC\Time72Task" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{D469C25D-A25A-4F65-B3E4-D866825FBA17}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D469C25D-A25A-4F65-B3E4-D866825FBA17}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E59630B8-5797-497F-B2D9-882C0001D6E8}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E59630B8-5797-497F-B2D9-882C0001D6E8}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F0C83366-87AB-46FC-BE47-47BE2307AD52}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F0C83366-87AB-46FC-BE47-47BE2307AD52}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent" => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\BookReader_B171F20233094AC88D05A8EF7B9763E8 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => removed successfully
C:\WINDOWS\SET3428.tmp => moved successfully
C:\WINDOWS\LastGood.Tmp => moved successfully
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat => moved successfully
C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat => moved successfully

=========== EmptyTemp: ==========

FlushDNS => completed
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 20063928 B
Java, Discord, Steam htmlcache => 0 B
Windows/system/drivers => 404097287 B
Edge => 191146 B
Chrome => 104611682 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 6656 B
ProgramData => 6656 B
Public => 6656 B
systemprofile => 6656 B
systemprofile32 => 6656 B
LocalService => 23662 B
NetworkService => 44616 B
Jaroslav => 1045413688 B

RecycleBin => 332186220 B
EmptyTemp: => 1.8 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 19:58:17 ====
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118275
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Spomalený notebook

#9 Příspěvek od Rudy »

Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
rudiberger
Návštěvník
Návštěvník
Příspěvky: 23
Registrován: 26 kvě 2015 11:46

Re: Spomalený notebook

#10 Příspěvek od rudiberger »

Urcitty pokrok nastal vdaka. Aj procesor uz nieje maximalne vytazovany.
Po prihlaseni sa do uctu sytemu windows ale dlhsie trva kym sa sa pospustaju aplikacie, potom po cca 5 min je to uz OK.

V spravcovi uloh je pamat vytazovana na 90percent. neviem ktory software ju tak vytazuje.
Este medzi casom skusam nejake antiviraky preskenovat system ESET. ESET online scanner,
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118275
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Spomalený notebook

#11 Příspěvek od Rudy »

Zkuste defragmentovat disk a zjistit, který proces vytěžuje paměť nejvíce.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
antonin1
Návštěvník
Návštěvník
Příspěvky: 55
Registrován: 16 bře 2010 02:50

Re: Spomalený notebook

#12 Příspěvek od antonin1 »

Zkusím. Každopádně děkuji za pomoc!
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118275
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Spomalený notebook

#13 Příspěvek od Rudy »

Rádo se stalo! :)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
rudiberger
Návštěvník
Návštěvník
Příspěvky: 23
Registrován: 26 kvě 2015 11:46

Re: Spomalený notebook

#14 Příspěvek od rudiberger »

Rudy píše: 17 zář 2022 10:19 Zkuste defragmentovat disk a zjistit, který proces vytěžuje paměť nejvíce.
Nakoniec pomohla aktualizacie w windows update. Problem vyrieseny. Vdaka za pomoc. :thumbsup:
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118275
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Spomalený notebook

#15 Příspěvek od Rudy »

OK. I to je jedna z možností. Nemáte zač! :)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Zamčeno

Zpět na „Řešení problémů, logy“