Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Spomalený sys., FRST log

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
kroenen2
Návštěvník
Návštěvník
Příspěvky: 270
Registrován: 30 čer 2008 11:52

Spomalený sys., FRST log

#1 Příspěvek od kroenen2 »

Ahoj, windows strašne pomalý, spôsobujú to zrejme aktualizácie, ktoré sa nevedia nainštalovať. Po každom reštarte spraví toto:
img2.jpg
img2.jpg (16.6 KiB) Zobrazeno 1073 x
disk stále zaťažený na 100%

Prosím o kontrolu a pomoc.

>>> ADW CLEANEROM prečistené vopred. <<<

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15-11-2022
Ran by 42190 (administrator) on LAPTOP-D9ATGAGP (HP HP 250 G7 Notebook PC) (17-11-2022 14:00:02)
Running from C:\Users\42190\Desktop
Loaded Profiles: 42190
Platform: Microsoft Windows 10 Home Version 21H1 19043.1766 (X64) Language: Slovenčina (Slovensko)
Default browser: Edge
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCopyAccelerator.exe
(DriverStore\FileRepository\hpanalyticscomp.inf_amd64_970b3aa928c32e35\x64\TouchpointAnalyticsClientService.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_970b3aa928c32e35\x64\TouchpointGpuInfo.exe
(DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f0454c515430e99a\x64\SysInfoCap.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f0454c515430e99a\x64\BridgeCommunication.exe <2>
(DriverStore\FileRepository\igdlh64.inf_amd64_31f4e71363bfa9b6\igfxCUIService.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_31f4e71363bfa9b6\igfxEM.exe
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek) C:\Program Files (x86)\Realtek\PCIE Wireless LAN\RtlS5Wake\RtlS5Wake.exe
(HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.3.2.0_x64__v10z8vjag6ke6\SystemEventUtility\HPSystemEventUtilityHost.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_970b3aa928c32e35\x64\TouchpointAnalyticsClientService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f0454c515430e99a\x64\AppHelperCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f0454c515430e99a\x64\DiagsCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f0454c515430e99a\x64\NetworkCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f0454c515430e99a\x64\SysInfoCap.exe
(services.exe ->) (HP Inc. -> HP) C:\Program Files (x86)\HP\Shared\hpqwmiex.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_21306a77b30fd6e0\esif_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_ba273d0ffb93e225\RstMwService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_7c484f80872e1cd8\jhi_service.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_31f4e71363bfa9b6\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_31f4e71363bfa9b6\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_31f4e71363bfa9b6\IntelCpHeciSvc.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MsMpEng.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_bb0c442560f99618\RtkAudUService64.exe <2>
(services.exe ->) (Sound Research Corporation -> Sound Research, Corp.) C:\Windows\System32\SECOMN64.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnhService.exe
(svchost.exe ->) (Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(svchost.exe ->) (HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPJumpStarts_1.10.1627.0_x64__v10z8vjag6ke6\HP.JumpStarts.exe
(svchost.exe ->) (McAfee LLC.) C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.68.0_x64__wafk5atnkzcwy\mcafee-security.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeC2RClient.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\SDXHelper.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\42190\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe <2>
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20970.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.2180_none_7e328fe47c714aab\TiWorker.exe
(SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnh.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_bb0c442560f99618\RtkAudUService64.exe [1253232 2021-03-10] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtlS5Wake] => C:\Program Files (x86)\Realtek\PCIE Wireless LAN\RtlS5Wake\RtlS5Wake.exe [2097600 2018-04-18] (Realtek Semiconductor Corp. -> Realtek)
HKU\S-1-5-21-2643017835-1131655027-1768847235-1001\...\Run: [MicrosoftEdgeAutoLaunch_28181F3E893B5E10456FE0F36129192C] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3892128 2022-11-10] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\107.0.5304.107\Installer\chrmstp.exe [2022-11-11] (Google LLC -> Google LLC)

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {09164ACA-E2F7-4F53-A4A5-02630F5544AE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCmdRun.exe [1567360 2022-11-14] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {0E62D216-7D0C-4AC8-B8C5-E624403A645A} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [66936 2022-11-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {0F991F5E-79C4-4379-92A5-93057F9AD673} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144280 2022-11-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {17B312E4-350B-4237-BE75-695732CDDE07} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCmdRun.exe [1567360 2022-11-14] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {1810A1C3-D1AC-49F4-B08C-5C6C566339B9} - System32\Tasks\Hewlett-Packard\HP Diagnostics\ShowUI => cmd /c start hpdiags:
Task: {216208A3-96D6-4B51-9A6B-81323139280C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2021-04-30] (Google Inc -> Google LLC)
Task: {3A2D8E7D-EE87-4AB2-B263-292936BED2CB} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2021-04-30] (Google Inc -> Google LLC)
Task: {5C073920-458C-4242-A9A4-A529EA9B0247} - System32\Tasks\Microsoft\Windows\WaaSMedic\MaintenanceWork => {72566E27-1ABB-4EB3-B4F0-EB431CB1CB32}
Task: {66FC87C4-9E17-4E1C-B99D-4230FA89C450} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26154376 2022-11-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {736B8EAE-D750-4307-B217-C0D2C8F00245} - System32\Tasks\HP\Consent Manager Launcher => sc start hptouchpointanalyticsservice
Task: {7A8AEB9E-A868-42A8-9708-E022F7F3D87C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCmdRun.exe [1567360 2022-11-14] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7AF2F1ED-FF73-42B2-B206-9CCC85963689} - System32\Tasks\Hewlett-Packard\HP Diagnostics\ABO => cmd /c start hpdiags://ABO
Task: {8775C020-73D0-426E-8161-9F04C4048138} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BHM1 => cmd /c start hpdiags://BHM1
Task: {8CEDC24F-7B0C-47B7-B9A8-CF209F56E5B0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCmdRun.exe [1567360 2022-11-14] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8FB43B8C-8B31-4A77-B472-91980A74276E} - System32\Tasks\Hewlett-Packard\HP Diagnostics\LaunchUI => cmd /c start hpdiags://LaunchUI
Task: {9B9FE210-2DB4-4DFC-B9AC-BB677E4889E9} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144280 2022-11-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {AEDCC189-21D9-4E11-BC48-E51A8D85CB4A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPSFReport.exe [138328 2022-10-26] (HP Inc. -> HP Inc.)
Task: {BEFC51CF-034C-4C11-B3A5-646D897BACD6} - System32\Tasks\Hewlett-Packard\HP Diagnostics\SmartCheckError => cmd /c start hpdiags://SmartCheckError
Task: {BF3D71EE-20AE-4738-8F16-4A80509092D7} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BHM2 => cmd /c start hpdiags://BHM2
Task: {C87BEB85-5669-4995-A82D-6B03D6F61A68} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BatteryStatusError => cmd /c start hpdiags://BatteryStatusError
Task: {CD5D6600-7287-4048-8E99-832F013776F6} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Update Notice => C:\Program Files (x86)\HP\HP Support Framework\Resources\BingPopup\BingPopup.exe [847392 2022-10-26] (HP Inc. -> HP Inc.)
Task: {E0E2F500-F10A-4F38-BA3F-15F9ECE0F388} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26154376 2022-11-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {E30EF11E-BBC4-4862-9C48-A1A5CA2310B5} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BCF => cmd /c start hpdiags://BCF

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{f589e042-3d0b-454e-b6ec-e948a34092f1}: [DhcpNameServer] 192.168.1.1

Edge:
=======
DownloadDir: C:\Users\42190\Downloads
Edge Notifications: HKU\S-1-5-21-2643017835-1131655027-1768847235-1001 -> hxxps://www.facebook.com
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Default
Edge Profile: C:\Users\42190\AppData\Local\Microsoft\Edge\User Data\Default [2022-11-15]
Edge DownloadDir: Default -> C:\Users\42190\Downloads
Edge Notifications: Default -> hxxps://eu.contestdn.click; hxxps://o.ourtopstories.com; hxxps://www.facebook.com

FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-11-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-11-04] (Microsoft Corporation -> Microsoft Corporation)

Chrome:
=======
CHR Profile: C:\Users\42190\AppData\Local\Google\Chrome\User Data\Default [2022-11-17]
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR Session Restore: Default -> is enabled.
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\42190\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-11-05]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\42190\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-04-30]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12515768 2022-11-14] (Microsoft Corporation -> Microsoft Corporation)
R2 HPAppHelperCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f0454c515430e99a\x64\AppHelperCap.exe [786888 2022-09-28] (HP Inc. -> HP Inc.)
R2 HPDiagsCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f0454c515430e99a\x64\DiagsCap.exe [785896 2022-09-28] (HP Inc. -> HP Inc.)
R2 HPNetworkCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f0454c515430e99a\x64\NetworkCap.exe [782296 2022-09-28] (HP Inc. -> HP Inc.)
R3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1149480 2018-06-07] (HP Inc. -> HP)
R2 HPSysInfoCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_f0454c515430e99a\x64\SysInfoCap.exe [786392 2022-09-28] (HP Inc. -> HP Inc.)
R2 HpTouchpointAnalyticsService; C:\WINDOWS\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_970b3aa928c32e35\x64\TouchpointAnalyticsClientService.exe [493680 2022-09-28] (HP Inc. -> HP Inc.)
S2 IObitUnSvr; C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [167432 2022-10-20] (IObit CO., LTD -> IObit)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\NisSrv.exe [3191272 2022-11-14] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MsMpEng.exe [133544 2022-11-14] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 HP Comm Recover; "C:\Program Files\HPCommRecovery\HPCommRecovery.exe" [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AmUStor; C:\WINDOWS\system32\drivers\AmUStorU.sys [127936 2019-03-26] (Alcorlink Corp. -> )
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 HPCustomCapDriver; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapdriver.inf_amd64_a955fa431e522f5e\x64\hpcustomcapdriver.sys [25592 2021-09-16] (HP Inc. -> HP Inc.)
R3 MpKsl519a4b17; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{CE6ACAC9-1300-4DF4-B625-F34F306D9AA7}\MpKslDrv.sys [214280 2022-11-16] (Microsoft Windows -> Microsoft Corporation)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167544 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49616 2022-11-14] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [469288 2022-11-14] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [95520 2022-11-14] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [40104 2022-06-17] (HP Inc. -> HP)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-11-17 14:00 - 2022-11-17 14:03 - 000019133 _____ C:\Users\42190\Desktop\FRST.txt
2022-11-17 13:59 - 2022-11-17 14:01 - 000000000 ____D C:\FRST
2022-11-17 13:44 - 2022-11-17 13:44 - 000000000 ___HD C:\$WinREAgent
2022-11-16 00:11 - 2022-11-16 00:11 - 002375168 _____ (Farbar) C:\Users\42190\Desktop\FRST64.exe
2022-11-15 12:54 - 2022-11-15 13:29 - 000000000 ____D C:\ProgramData\ProductData
2022-11-15 06:46 - 2022-11-15 06:51 - 000000000 ____D C:\AdwCleaner
2022-11-14 22:10 - 2022-11-14 22:56 - 000000000 ____D C:\Users\42190\AppData\LocalLow\IObit
2022-11-14 22:10 - 2022-11-14 22:10 - 000001435 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller.lnk
2022-11-14 22:10 - 2022-11-14 22:10 - 000001423 _____ C:\Users\Public\Desktop\IObit Uninstaller.lnk
2022-11-14 22:10 - 2022-11-14 22:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
2022-11-14 22:09 - 2022-11-14 22:56 - 000000000 ____D C:\Users\42190\AppData\Roaming\IObit
2022-11-14 22:09 - 2022-11-14 22:10 - 000000000 ____D C:\ProgramData\IObit
2022-11-14 22:09 - 2022-11-14 22:09 - 000000000 ____D C:\Program Files (x86)\IObit
2022-11-14 22:08 - 2022-11-14 22:08 - 029162464 _____ (IObit ) C:\Users\42190\Downloads\iobituninstaller.exe
2022-11-14 22:07 - 2022-11-14 22:08 - 008791352 _____ (Malwarebytes) C:\Users\42190\Desktop\adwcleaner.exe
2022-11-14 19:48 - 2022-11-14 19:48 - 001790024 _____ (Malwarebytes) C:\Users\42190\Desktop\JRT.exe
2022-11-14 05:55 - 2022-11-14 05:55 - 000001491 _____ C:\Users\42190\Desktop\[OFFICIAL VIDEO] Hallelujah - Pentatonix – odkaz.lnk
2022-11-11 03:59 - 2022-11-13 18:38 - 000000000 ____D C:\Program Files\RUXIM
2022-11-06 00:35 - 2022-11-06 00:35 - 000000000 ____D C:\WINDOWS\Panther
2022-11-04 05:55 - 2022-11-04 05:54 - 000270552 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2022-11-04 05:55 - 2022-11-04 05:54 - 000221944 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw92f1fa198e15f9e8.tmp
2022-10-31 05:59 - 2022-10-31 05:59 - 000025576 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw934bd31f334f7227.tmp
2022-10-31 05:50 - 2022-10-31 05:50 - 000000000 ____D C:\mix piesne
2022-10-31 05:48 - 2022-10-31 05:48 - 000000000 ____D C:\Zdenka ludovky
2022-10-31 05:46 - 2022-10-31 05:46 - 000000000 ____D C:\15vyrocie kozmetika2
2022-10-31 05:43 - 2022-10-31 05:44 - 000000000 ____D C:\15vyrocie kozmetika1

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-11-17 14:02 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-11-17 13:46 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-11-17 13:44 - 2021-04-30 22:29 - 000000000 ____D C:\Program Files (x86)\Google
2022-11-17 13:44 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-11-17 13:41 - 2020-12-22 12:23 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-11-17 13:41 - 2019-12-25 12:09 - 000000000 __SHD C:\Users\42190\IntelGraphicsProfiles
2022-11-16 23:22 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2022-11-16 23:22 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2022-11-16 23:13 - 2020-12-22 12:38 - 000847728 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-11-16 23:11 - 2020-12-22 12:23 - 000541096 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-11-16 23:10 - 2020-12-22 12:53 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-11-16 23:10 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2022-11-16 23:10 - 2019-10-22 18:57 - 000000000 ____D C:\Intel
2022-11-16 23:08 - 2019-12-07 10:03 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2022-11-16 23:05 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2022-11-16 23:04 - 2020-12-22 11:16 - 000000000 ____D C:\WINDOWS\HoloShell
2022-11-16 23:04 - 2019-12-07 15:39 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2022-11-16 23:04 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2022-11-16 23:04 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2022-11-16 23:04 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-11-16 23:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-11-16 23:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-11-16 23:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2022-11-16 23:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2022-11-16 23:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2022-11-16 23:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2022-11-16 23:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-11-16 23:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2022-11-16 23:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-11-16 23:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2022-11-16 23:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2022-11-16 23:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2022-11-16 23:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2022-11-16 23:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2022-11-16 23:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-11-16 23:03 - 2019-12-07 10:15 - 000206848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2022-11-16 23:02 - 2019-12-07 10:14 - 000230912 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2022-11-16 06:58 - 2021-12-11 20:21 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2643017835-1131655027-1768847235-1001
2022-11-16 06:58 - 2021-07-08 04:26 - 000002378 _____ C:\Users\42190\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-11-16 06:58 - 2020-12-22 12:53 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2643017835-1131655027-1768847235-1001
2022-11-15 17:54 - 2021-04-30 22:31 - 000002266 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-11-15 17:54 - 2021-04-30 22:31 - 000002225 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2022-11-15 17:54 - 2020-07-22 00:59 - 000002451 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-11-15 17:54 - 2020-07-22 00:59 - 000002289 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2022-11-15 13:25 - 2021-10-12 00:17 - 000000000 ____D C:\Users\42190\AppData\Local\D3DSCache
2022-11-15 12:52 - 2019-10-22 18:38 - 000000000 ____D C:\ProgramData\Hewlett-Packard
2022-11-15 06:52 - 2019-05-09 07:24 - 000000000 ____D C:\ProgramData\HP
2022-11-15 06:51 - 2019-12-25 12:29 - 000000000 ____D C:\Users\42190\AppData\Roaming\Hewlett-Packard
2022-11-15 06:51 - 2019-05-09 07:24 - 000000000 ____D C:\Program Files (x86)\HP
2022-11-15 06:51 - 2019-04-26 21:22 - 000000000 ___HD C:\hp
2022-11-15 06:31 - 2019-10-22 19:16 - 000000000 ____D C:\ProgramData\McAfee
2022-11-15 06:31 - 2019-10-22 19:16 - 000000000 ____D C:\Program Files\McAfee
2022-11-15 06:26 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-11-15 06:26 - 2019-12-07 10:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2022-11-14 23:15 - 2019-05-09 07:28 - 000000000 ____D C:\Program Files\Microsoft Office
2022-11-14 23:10 - 2019-04-15 16:38 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2022-11-14 22:59 - 2019-12-25 11:46 - 000803176 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2022-11-14 22:58 - 2021-04-07 18:33 - 000000000 ____D C:\ProgramData\Avast Software
2022-11-14 19:40 - 2021-04-07 18:36 - 000382504 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw98dee77f87038a4e.tmp
2022-11-14 12:16 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2022-11-14 08:33 - 2020-11-17 21:44 - 000000000 ____D C:\vianocne pesnicky
2022-11-14 03:03 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-11-14 02:55 - 2020-12-22 12:53 - 000000000 ____D C:\WINDOWS\system32\Tasks\Hewlett-Packard
2022-11-12 03:15 - 2020-12-22 12:53 - 000003632 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-11-12 03:15 - 2020-12-22 12:53 - 000003508 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-11-10 05:43 - 2020-01-08 23:05 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-11-10 05:38 - 2020-01-08 23:05 - 146960040 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-11-08 05:01 - 2021-04-30 22:30 - 000003386 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2022-11-08 05:01 - 2021-04-30 22:30 - 000003162 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2022-11-08 05:01 - 2020-12-22 12:53 - 000002856 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2643017835-1131655027-1768847235-500
2022-11-06 17:07 - 2021-04-25 17:47 - 000000000 ____D C:\Users\42190\AppData\Local\CrashDumps
2022-11-05 21:19 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2022-11-04 05:54 - 2021-04-07 18:36 - 000862936 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw36821b6fe017f798.tmp
2022-11-04 05:54 - 2021-04-07 18:36 - 000672272 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw4b9ef409c58065a2.tmp
2022-11-04 05:54 - 2021-04-07 18:36 - 000564304 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw5240a2fc03d8cce9.tmp
2022-11-04 05:54 - 2021-04-07 18:36 - 000390096 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys.166843052634301
2022-11-04 05:54 - 2021-04-07 18:36 - 000327896 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw589a9d1ed6442c63.tmp
2022-11-04 05:54 - 2021-04-07 18:36 - 000306128 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw3a9d6b49e7140774.tmp
2022-11-04 05:54 - 2021-04-07 18:36 - 000276520 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw8cadd16d78e217aa.tmp
2022-11-04 05:54 - 2021-04-07 18:36 - 000238152 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw8ea302d78d20e33c.tmp
2022-11-04 05:54 - 2021-04-07 18:36 - 000114464 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw42d166c5ef5168c2.tmp
2022-11-04 05:54 - 2021-04-07 18:36 - 000105936 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw7cdd0a1185340836.tmp
2022-11-04 05:54 - 2021-04-07 18:36 - 000090008 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw7437f032642f0e43.tmp
2022-11-04 05:54 - 2021-04-07 18:36 - 000048512 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw885ea4ad651d3590.tmp
2022-11-04 05:54 - 2021-04-07 18:36 - 000042304 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswfd7b9f6aec584645.tmp
2022-11-04 00:31 - 2020-12-22 12:29 - 000000000 ____D C:\Users\42190
2022-11-01 08:53 - 2022-09-02 11:57 - 000000000 ____D C:\Users\42190\AppData\Local\ElevatedDiagnostics

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================


Additional scan result of Farbar Recovery Scan Tool (x64) Version: 15-11-2022
Ran by 42190 (17-11-2022 14:04:58)
Running from C:\Users\42190\Desktop
Microsoft Windows 10 Home Version 21H1 19043.1766 (X64) (2020-12-22 11:55:40)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

42190 (S-1-5-21-2643017835-1131655027-1768847235-1001 - Administrator - Enabled) => C:\Users\42190
Administrator (S-1-5-21-2643017835-1131655027-1768847235-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2643017835-1131655027-1768847235-503 - Limited - Disabled)
Guest (S-1-5-21-2643017835-1131655027-1768847235-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-2643017835-1131655027-1768847235-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Google Chrome (HKLM-x32\...\Google Chrome) (Version: 107.0.5304.107 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.13 - Google LLC) Hidden
HP Audio Switch (HKLM-x32\...\{20A40E7C-E470-4E9F-9B5C-DDB2C205E856}) (Version: 1.0.154.0 - HP Inc.)
HP Documentation (HKLM\...\HP_Documentation) (Version: 1.0.0.0 - HP Inc.)
HP Software Framework (HKLM-x32\...\{71E18A14-1BDB-4B58-A67F-1BCDA12462FD}) (Version: 7.1.15.1 - HP)
Intel(R) Chipset Device Software (HKLM\...\{631C57C3-B765-4327-822A-057C34D691CC}) (Version: 10.1.17695.8086 - Intel Corporation) Hidden
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 17.2.8.1029 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{66FD390A-B5DD-45F6-9225-45CEB1BDCDF1}) (Version: 17.2.8.1029 - Intel Corporation) Hidden
Intel® Chipset Device Software (HKLM-x32\...\{eb0d4a41-3065-42b0-a868-c60d42d3ea98}) (Version: 10.1.17695.8086 - Intel(R) Corporation) Hidden
Intel® Optane™ Pinning Explorer Extensions (HKLM\...\{94979CD2-0904-47DE-A4AC-04F1C4524650}) (Version: 17.2.8.1029 - Intel Corporation)
IObit Uninstaller 12 (HKLM-x32\...\IObitUninstall) (Version: 12.1.0.5 - IObit)
Microsoft 365 - cs-cz (HKLM\...\O365HomePremRetail - cs-cz) (Version: 16.0.15726.20202 - Microsoft Corporation)
Microsoft 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 16.0.15726.20202 - Microsoft Corporation)
Microsoft 365 - sk-sk (HKLM\...\O365HomePremRetail - sk-sk) (Version: 16.0.15726.20202 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 107.0.1418.42 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 107.0.1418.42 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2643017835-1131655027-1768847235-1001\...\OneDriveSetup.exe) (Version: 22.225.1026.0001 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{7B1FCD52-8F6B-4F12-A143-361EA39F5E7C}) (Version: 3.67.0.0 - Microsoft Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.15726.20202 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.15726.20202 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-1000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0409-1000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{C22F49B1-0F67-47DC-A490-E8B4B6558EA9}) (Version: 8.91.0.0 - Microsoft Corporation)
Windows Kontrola stavu počítača (HKLM\...\{8D6B9DC1-A437-41E0-8DF1-9F37748394AE}) (Version: 3.6.2204.08001 - Microsoft Corporation)

Packages:
=========
Amazon -> C:\Program Files\WindowsApps\Amazon.com.Amazon_2018.519.2815.0_x64__343d40qqvtj1t [2021-07-09] (Amazon.com)
Booking.com EMEA: Big savings on hotels in 96,000 destinations worldwide -> C:\Program Files\WindowsApps\PricelinePartnerNetwork.Booking.comEMEABigsavingso_2.0.5.0_x64__mgae2k3ys4ra0 [2021-07-09] (Priceline Partner Network)
Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_7.26.33.0_x64__kgqvnymyfvs32 [2022-11-12] (king.com)
Candy Crush Friends -> C:\Program Files\WindowsApps\king.com.CandyCrushFriends_1.92.3.0_x64__kgqvnymyfvs32 [2022-11-12] (king.com)
Doplnok mediálneho nástroja pre Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-09-06] (Microsoft Corporation)
Dropbox promotion -> C:\Program Files\WindowsApps\C27EB4BA.DropboxOEM_22.4.18.0_x64__xbfy0k16fey96 [2022-09-09] (Dropbox Inc.)
Energy Star -> C:\Program Files\WindowsApps\AD2F1837.HPInc.EnergyStar_1.2.0.0_x64__v10z8vjag6ke6 [2019-10-22] (HP Inc.)
Facebook -> C:\Program Files\WindowsApps\FACEBOOK.FACEBOOK_2021.927.1.0_neutral__8xx8rvfyw5nnt [2021-10-11] (Facebook Inc)
HP Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.HPAudioControl_1.10.216.0_x64__dt26b99r8h8gj [2021-01-04] (Realtek Semiconductor Corp)
HP JumpStarts -> C:\Program Files\WindowsApps\AD2F1837.HPJumpStarts_1.10.1627.0_x64__v10z8vjag6ke6 [2021-07-09] (HP Inc.)
HP PC Hardware Diagnostics Windows -> C:\Program Files\WindowsApps\AD2F1837.HPPCHardwareDiagnosticsWindows_1.8.3.0_x64__v10z8vjag6ke6 [2022-10-31] (HP Inc.)
HP Privacy Settings -> C:\Program Files\WindowsApps\AD2F1837.HPPrivacySettings_1.1.54.0_x64__v10z8vjag6ke6 [2022-11-01] (HP Inc.)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_140.1.307.0_x64__v10z8vjag6ke6 [2022-11-05] (HP Inc.)
HP Support Assistant -> C:\Program Files\WindowsApps\AD2F1837.HPSupportAssistant_9.21.30.0_x64__v10z8vjag6ke6 [2022-11-03] (HP Inc.)
HP System Event Utility -> C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.3.2.0_x64__v10z8vjag6ke6 [2022-08-22] (HP Inc.)
Intel® Optane™ Memory and Storage Management -> C:\Program Files\WindowsApps\AppUp.IntelOptaneMemoryandStorageManagement_18.1.1037.0_x64__8j3eq9eme6ctt [2022-11-01] (INTEL CORP)
LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_2.1.7098.0_neutral__w1wdnht996qgy [2020-01-08] (LinkedIn)
McAfee® Personal Security -> C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.68.0_x64__wafk5atnkzcwy [2021-11-14] (McAfee LLC.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-01-08] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-01-08] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.14.9130.0_x64__8wekyb3d8bbwe [2022-10-31] (Microsoft Studios) [MS Ad]
sMedio True DVD for HP -> C:\Program Files\WindowsApps\0E3921EB.sMedioTrueDVDforHP_1.1.156.0_x64__agwrg61xdd7p4 [2022-07-15] (sMedio Inc.)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.198.691.0_x86__zpdnekdrzrea0 [2022-11-14] (Spotify AB) [Startup Task]
Synaptics TouchPad -> C:\Program Files\WindowsApps\SynapticsIncorporated.SynHPConsumerDApp_19005.35054.0.0_x64__807d65c4rvak2 [2020-03-21] (Synaptics Incorporated)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [ OptaneIconOverlay] -> {A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9} => C:\WINDOWS\System32\DriverStore\FileRepository\iastorpinningcomponent.inf_amd64_59691a4ee8d947dd\OptaneShellExt.dll [2021-10-12] (Intel Corporation -> )
ContextMenuHandlers1: [IObitUninstaller] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2022-10-20] (IObit CO., LTD -> IObit)
ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:\WINDOWS\System32\DriverStore\FileRepository\iastorpinningcomponent.inf_amd64_59691a4ee8d947dd\OptaneShellExt.dll [2021-10-12] (Intel Corporation -> )
ContextMenuHandlers4: [IObitUninstaller] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2022-10-20] (IObit CO., LTD -> IObit)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_31f4e71363bfa9b6\igfxDTCM.dll [2021-01-19] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [IObitUninstaller] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2022-10-20] (IObit CO., LTD -> IObit)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2020-12-22 09:32 - 2020-12-22 09:32 - 001165824 _____ () [File not signed] C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.68.0_x64__wafk5atnkzcwy\e_sqlite3.dll
2022-01-29 04:50 - 2022-01-29 04:51 - 001469440 _____ () [File not signed] C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_140.1.307.0_x64__v10z8vjag6ke6\e_sqlite3.dll
2022-11-05 21:41 - 2022-11-05 21:42 - 126286848 _____ (HP Development Company, L.P.) [File not signed] C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_140.1.307.0_x64__v10z8vjag6ke6\HP.Smart.dll
2022-08-24 16:08 - 2022-08-24 16:09 - 008856064 _____ (HP Development Company, L.P.) [File not signed] C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_140.1.307.0_x64__v10z8vjag6ke6\HPPageLift.UWP.dll
2022-11-05 21:41 - 2022-11-05 21:41 - 000133632 _____ (HP Inc) [File not signed] C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_140.1.307.0_x64__v10z8vjag6ke6\HP.OneDriver.UserForms.dll
2022-03-22 07:29 - 2022-03-22 07:30 - 000013824 _____ (HP Inc.) [File not signed] C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_140.1.307.0_x64__v10z8vjag6ke6\NativeRpcClient.dll
2020-07-19 11:22 - 2020-07-19 11:22 - 000014336 _____ (HP Inc.) [File not signed] C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.3.2.0_x64__v10z8vjag6ke6\SystemEventUtility\NativeRpcClient.DLL
2021-11-14 07:03 - 2021-11-14 07:03 - 016742912 _____ (McAfee LLC) [File not signed] C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.68.0_x64__wafk5atnkzcwy\mcafee-security.dll
2020-04-27 15:01 - 2020-04-27 15:01 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems64.dll] C:\Program Files\Microsoft Office\root\Office16\AppVIsvSubsystems64.dll
2020-04-27 15:01 - 2020-04-27 15:01 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R64.dll] C:\Program Files\Microsoft Office\root\Office16\c2r64.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp17win10.msn.com/?pc=HCTE
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
HKU\S-1-5-21-2643017835-1131655027-1768847235-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp17win10.msn.com/?pc=HCTE
HKU\S-1-5-21-2643017835-1131655027-1768847235-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
SearchScopes: HKLM -> {CC8C6ABE-6178-4A85-BE85-102280B44DFF} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2022-10-20] (IObit Information Technology -> IObit)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2022-11-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-11-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-11-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-11-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-11-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-11-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-11-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-11-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-11-04] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-03-19 05:49 - 2019-03-19 05:49 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2643017835-1131655027-1768847235-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\42190\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\20211005_182845.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKU\S-1-5-21-2643017835-1131655027-1768847235-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2643017835-1131655027-1768847235-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_28181F3E893B5E10456FE0F36129192C"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{C601AA37-75FE-4329-88A9-D7F683A06B79}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{052550C8-BEEF-40F8-B827-0DFE1222EDF5}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{6C4B75DD-2609-44A9-A4B9-87785594315E}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\107.0.1418.42\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{ECEBB481-8A15-4F67-B840-6739D52D010D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.198.691.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{FF652E3C-8381-46BE-94AF-B879A77A2C9D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.198.691.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{4E9F656A-BC13-48D7-B271-D436FF2CA22B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.198.691.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{79E25DC0-5107-4857-AFE7-E2DBD55D0645}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.198.691.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{0D5E026D-4405-44F7-A3CB-45EA6E42DB22}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.198.691.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{72586597-B9F3-43EC-AF05-ECA7546485FE}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.198.691.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{9711DAFA-FBC4-422B-9EA7-2DDFC70A6636}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.198.691.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{5F4BD2D3-3259-4816-8F9D-8C01F0A1F1C0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.198.691.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{26C556B4-CFA7-4B28-8854-AA7A245F033E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{5885416E-7941-49D9-AAAD-A9A4A323A98B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{656FCDE9-DE14-4899-AEAC-3B6CE99015EC}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E020A6E9-D9BC-45A0-950D-3D2BF1694B14}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)

==================== Restore Points =========================


==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (11/17/2022 02:01:19 PM) (Source: VSS) (EventID: 12293) (User: )
Description: Volume Shadow Copy Service error: Error calling a routine on a Shadow Copy Provider {b5946137-7b9f-4925-af80-51abd60b20d5}. Routine details Cannot ask provider {b5946137-7b9f-4925-af80-51abd60b20d5} if volume is supported. [0x8000ffff] [hr = 0x8000ffff, Catastrophic failure
].


Operation:
Check If Volume Is Supported by Provider
Add a Volume to a Shadow Copy Set

Context:
Execution Context: Coordinator
Provider ID: {00000000-0000-0000-0000-000000000000}
Volume Name: \\?\Volume{41101b59-9fc0-4069-81a8-e536eb22efc1}\
Execution Context: Coordinator

Error: (11/17/2022 01:59:19 PM) (Source: VSS) (EventID: 12293) (User: )
Description: Volume Shadow Copy Service error: Error calling a routine on a Shadow Copy Provider {b5946137-7b9f-4925-af80-51abd60b20d5}. Routine details Cannot ask provider {b5946137-7b9f-4925-af80-51abd60b20d5} if volume is supported. [0x8000ffff] [hr = 0x8000ffff, Catastrophic failure
].


Operation:
Check If Volume Is Supported by Provider
Add a Volume to a Shadow Copy Set

Context:
Execution Context: Coordinator
Provider ID: {00000000-0000-0000-0000-000000000000}
Volume Name: \\?\Volume{41101b59-9fc0-4069-81a8-e536eb22efc1}\
Execution Context: Coordinator

Error: (11/17/2022 01:47:11 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvorenie bodu obnovenia zlyhalo. (Proces = C:\WINDOWS\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.2180_none_7e328fe47c714aab\TiWorker.exe -Embedding; Popis = Inštalátor modulov systému Windows; Chyba = 0x8004230f).

Error: (11/17/2022 01:47:06 PM) (Source: VSS) (EventID: 12293) (User: )
Description: Volume Shadow Copy Service error: Error calling a routine on a Shadow Copy Provider {b5946137-7b9f-4925-af80-51abd60b20d5}. Routine details IVssSnapshotProvider::IsVolumeSupported() failed with 0x8000ffff [hr = 0x8000ffff, Catastrophic failure
].


Operation:
Check If Volume Is Supported by Provider
Add a Volume to a Shadow Copy Set

Context:
Execution Context: Coordinator
Provider ID: {b5946137-7b9f-4925-af80-51abd60b20d5}
Volume Name: \\?\Volume{41101b59-9fc0-4069-81a8-e536eb22efc1}\
Execution Context: Coordinator

Error: (11/17/2022 01:46:50 PM) (Source: VSS) (EventID: 12293) (User: )
Description: Volume Shadow Copy Service error: Error calling a routine on a Shadow Copy Provider {b5946137-7b9f-4925-af80-51abd60b20d5}. Routine details IVssSnapshotProvider::IsVolumeSupported() failed with 0x8000ffff [hr = 0x8000ffff, Catastrophic failure
].


Operation:
Check If Volume Is Supported by Provider
Add a Volume to a Shadow Copy Set

Context:
Execution Context: Coordinator
Provider ID: {b5946137-7b9f-4925-af80-51abd60b20d5}
Volume Name: \\?\Volume{41101b59-9fc0-4069-81a8-e536eb22efc1}\
Execution Context: Coordinator

Error: (11/17/2022 01:46:37 PM) (Source: VSS) (EventID: 12293) (User: )
Description: Volume Shadow Copy Service error: Error calling a routine on a Shadow Copy Provider {b5946137-7b9f-4925-af80-51abd60b20d5}. Routine details IVssSnapshotProvider::IsVolumeSupported() failed with 0x8000ffff [hr = 0x8000ffff, Catastrophic failure
].


Operation:
Check If Volume Is Supported by Provider
Add a Volume to a Shadow Copy Set

Context:
Execution Context: Coordinator
Provider ID: {b5946137-7b9f-4925-af80-51abd60b20d5}
Volume Name: \\?\Volume{41101b59-9fc0-4069-81a8-e536eb22efc1}\
Execution Context: Coordinator

Error: (11/17/2022 01:46:23 PM) (Source: VSS) (EventID: 12293) (User: )
Description: Volume Shadow Copy Service error: Error calling a routine on a Shadow Copy Provider {b5946137-7b9f-4925-af80-51abd60b20d5}. Routine details IVssSnapshotProvider::IsVolumeSupported() failed with 0x8000ffff [hr = 0x8000ffff, Catastrophic failure
].


Operation:
Check If Volume Is Supported by Provider
Add a Volume to a Shadow Copy Set

Context:
Execution Context: Coordinator
Provider ID: {b5946137-7b9f-4925-af80-51abd60b20d5}
Volume Name: \\?\Volume{41101b59-9fc0-4069-81a8-e536eb22efc1}\
Execution Context: Coordinator

Error: (11/17/2022 01:46:10 PM) (Source: VSS) (EventID: 12293) (User: )
Description: Volume Shadow Copy Service error: Error calling a routine on a Shadow Copy Provider {b5946137-7b9f-4925-af80-51abd60b20d5}. Routine details IVssSnapshotProvider::IsVolumeSupported() failed with 0x8000ffff [hr = 0x8000ffff, Catastrophic failure
].


Operation:
Check If Volume Is Supported by Provider
Add a Volume to a Shadow Copy Set

Context:
Execution Context: Coordinator
Provider ID: {b5946137-7b9f-4925-af80-51abd60b20d5}
Volume Name: \\?\Volume{41101b59-9fc0-4069-81a8-e536eb22efc1}\
Execution Context: Coordinator


System errors:
=============
Error: (11/16/2022 11:22:39 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Zlyhanie inštalácie: Systému Windows sa nepodarilo nainštalovať nasledujúcu aktualizáciu. Vyskytla sa chyba 0x8024200b: 2022-08 Aktualizácia zabezpečenia pre Windows 10 Version 21H1 pre systémy s procesorom typu x64 (KB5012170).

Error: (11/16/2022 11:19:13 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Zlyhanie inštalácie: Systému Windows sa nepodarilo nainštalovať nasledujúcu aktualizáciu. Vyskytla sa chyba 0x800f0922: Aktualizácia funkcií na Windows 10, verzia 22H2.

Error: (11/16/2022 11:19:13 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Zlyhanie inštalácie: Systému Windows sa nepodarilo nainštalovať nasledujúcu aktualizáciu. Vyskytla sa chyba 0x800f0922: 2022-11 – Kumulatívna aktualizácia pre .NET Framework 3.5, 4.8 a 4.8.1 pre Windows 10 Version 21H1 pre x64 (KB5020801).

Error: (11/16/2022 11:13:42 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spustenie služby HP Comm Recovery zlyhalo kvôli nasledujúcej chybe:
The system cannot find the file specified.

Error: (11/16/2022 11:09:47 PM) (Source: volmgr) (EventID: 45) (User: )
Description: The system could not sucessfully load the crash dump driver.

Error: (11/16/2022 11:09:12 PM) (Source: volmgr) (EventID: 46) (User: )
Description: Crash dump initialization failed!

Error: (11/16/2022 11:09:12 PM) (Source: volmgr) (EventID: 45) (User: )
Description: The system could not sucessfully load the crash dump driver.

Error: (11/16/2022 11:08:44 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Služba Background Intelligent Transfer Service bola ukončená s nasledujúcou chybou služby:
%%2147943515 = A system shutdown is in progress.


Windows Defender:
================
Date: 2022-11-15 06:20:45
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2022-11-14 23:10:43
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2021-04-06 11:55:33
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2021-04-04 12:39:53
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2021-04-03 18:09:14
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Event[0]:

Date: 2022-11-16 23:08:39
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.379.459.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.19800.4
Error code: 0x8024001e
Error description: Počas vyhľadávania aktualizácií sa vyskytol neočakávaný problém. Informácie o inštalácii aktualizácií a riešení problémov s aktualizáciami nájdete v Pomoci a technickej podpore.

Date: 2022-11-16 09:04:30
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.379.409.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.19800.4
Error code: 0x8024001e
Error description: Počas vyhľadávania aktualizácií sa vyskytol neočakávaný problém. Informácie o inštalácii aktualizácií a riešení problémov s aktualizáciami nájdete v Pomoci a technickej podpore.

Date: 2022-11-15 18:07:25
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.379.386.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.19800.4
Error code: 0x80240022
Error description: Program nemôže skontrolovať aktualizácie definícií.

Date: 2022-11-15 18:07:25
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.379.386.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.19800.4
Error code: 0x80240022
Error description: Program nemôže skontrolovať aktualizácie definícií.

CodeIntegrity:
===============
Date: 2022-11-17 13:41:40
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_31f4e71363bfa9b6\igd10iumd64.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2022-11-16 23:25:17
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info ===========================

BIOS: Insyde F.23 11/29/2019
Motherboard: HP 84A6
Processor: Intel(R) Core(TM) i3-7020U CPU @ 2.30GHz
Percentage of memory in use: 76%
Total physical RAM: 8103.1 MB
Available physical RAM: 1875.91 MB
Total Virtual: 13479.1 MB
Available Virtual: 6928.27 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:930.68 GB) (Free:816.66 GB) (Model: ST1000LM035-1RK172) NTFS

\\?\Volume{371eba26-787f-4d32-9fe9-041c2868eea4}\ () (Fixed) (Total:0.55 GB) (Free:0.08 GB) NTFS
\\?\Volume{82bc9726-cf69-46cd-8ca6-219136d0aebf}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.18 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 19FCEDE9)

Partition: GPT.

==================== End of Addition.txt =======================

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Spomalený sys., FRST log

#2 Příspěvek od Rudy »

Zdravím!
Otevřte poznámkový blok a zkopírujte do něj:
Start
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
C:\WINDOWS\system32\Drivers\asw92f1fa198e15f9e8.tmp
C:\WINDOWS\system32\Drivers\asw934bd31f334f7227.tmp
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
C:\WINDOWS\system32\Drivers\asw36821b6fe017f798.tmp
C:\WINDOWS\system32\Drivers\asw4b9ef409c58065a2.tmp
C:\WINDOWS\system32\Drivers\asw5240a2fc03d8cce9.tmp
C:\WINDOWS\system32\Drivers\asw589a9d1ed6442c63.tmp
C:\WINDOWS\system32\Drivers\asw3a9d6b49e7140774.tmp
C:\WINDOWS\system32\Drivers\asw8cadd16d78e217aa.tmp
C:\WINDOWS\system32\Drivers\asw8ea302d78d20e33c.tmp
C:\WINDOWS\system32\Drivers\asw42d166c5ef5168c2.tmp
C:\WINDOWS\system32\Drivers\asw7cdd0a1185340836.tmp
C:\WINDOWS\system32\Drivers\asw7437f032642f0e43.tmp
C:\WINDOWS\system32\Drivers\asw885ea4ad651d3590.tmp
C:\WINDOWS\system32\Drivers\aswfd7b9f6aec584645.tmp
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File

EmptyTemp:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

kroenen2
Návštěvník
Návštěvník
Příspěvky: 270
Registrován: 30 čer 2008 11:52

Re: Spomalený sys., FRST log

#3 Příspěvek od kroenen2 »

Fix result of Farbar Recovery Scan Tool (x64) Version: 15-11-2022
Ran by 42190 (18-11-2022 14:06:09) Run:1
Running from C:\Users\42190\Desktop
Loaded Profiles: 42190
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\ SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\System not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not
foundtmp
C:\WINDOWS\system32\Drivers\asw934bd31f334f7227.tmp
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachine C
:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
C:\WINDOWS\system
\Drivers\asw4b9ef409c58065a2.tmp
C:\WINDOWS\system32\Drivers\asw5240a2fc03d8cce9.tmp
C:\WINDOWS\system32\Drivers\asw589a9d1ed6442c63.tmp
C:\WINDOWS\system32\Drivers\asw3a9d6b49e7140774.tmp
C:\WINDOWS\system32\Drivers \asw8cadd16d78e217aa.tmp
C:\WINDOWS\system32\Drivers\asw8ea302d78d20e33c.tmp
C:\WINDOWS\system32\Drivers\asw42d166c5ef5168c2.tmp
C:\WINDOWS\system32\Drivers\asw7cdd0a1185340836.tmp
C:\WINDOWS\system32\Drivers\asw7437f032642f0e43 .tmp
C:\WINDOWS\system32\Drivers\asw885ea4ad651d3590.tmp
C:\WINDOWS\system32\Drivers\aswfd7b9f6aec584645.tmp
ContextMenuHandlers 5: [igfxcui] -

>
End
*****************

HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\BookReader_B171F20233094AC88D05A8EF7B9763E8 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => removed successfully
foundtmp => Error: No automatic fix found for this entry.
C:\WINDOWS\system32\Drivers\asw934bd31f334f7227.tmp => moved successfully
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachine C" => not found
:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore => Error: No automatic fix found for this entry.
C:\WINDOWS\system => moved successfully
\Drivers\asw4b9ef409c58065a2.tmp => Error: No automatic fix found for this entry.
C:\WINDOWS\system32\Drivers\asw5240a2fc03d8cce9.tmp => moved successfully
C:\WINDOWS\system32\Drivers\asw589a9d1ed6442c63.tmp => moved successfully
C:\WINDOWS\system32\Drivers\asw3a9d6b49e7140774.tmp => moved successfully
"C:\WINDOWS\system32\Drivers \asw8cadd16d78e217aa.tmp" => not found
C:\WINDOWS\system32\Drivers\asw8ea302d78d20e33c.tmp => moved successfully
C:\WINDOWS\system32\Drivers\asw42d166c5ef5168c2.tmp => moved successfully
C:\WINDOWS\system32\Drivers\asw7cdd0a1185340836.tmp => moved successfully
"C:\WINDOWS\system32\Drivers\asw7437f032642f0e43 .tmp" => not found
C:\WINDOWS\system32\Drivers\asw885ea4ad651d3590.tmp => moved successfully
C:\WINDOWS\system32\Drivers\aswfd7b9f6aec584645.tmp => moved successfully
ContextMenuHandlers 5: [igfxcui] - => Error: No automatic fix found for this entry.
> => Error: No automatic fix found for this entry.

==== End of Fixlog 14:06:12 ====

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Spomalený sys., FRST log

#4 Příspěvek od Rudy »

Vy jste vymazal příkaz EmptyTemp:?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

kroenen2
Návštěvník
Návštěvník
Příspěvky: 270
Registrován: 30 čer 2008 11:52

Re: Spomalený sys., FRST log

#5 Příspěvek od kroenen2 »

nič som nemazal, robil som presne podľa Vášho návodu, ako vždy.

Už je systém trochu rýchlejší ale tie aktualizácie sa stále snažia a nakoniec fail. :(

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Spomalený sys., FRST log

#6 Příspěvek od Rudy »

Ve fixlogu chybí záznam o činnosti příkazu EmptyTemp: . Ten maže všechny dočasné soubory internetu. Pro jistotu proveďte:

Otevřte poznámkový blok a zkopírujte do něj:
Start
CloseProcesses:

EmptyTemp:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

kroenen2
Návštěvník
Návštěvník
Příspěvky: 270
Registrován: 30 čer 2008 11:52

Re: Spomalený sys., FRST log

#7 Příspěvek od kroenen2 »

Fix result of Farbar Recovery Scan Tool (x64) Version: 18-11-2022
Ran by Zdenka_Valkova (19-11-2022 11:37:35) Run:2
Running from C:\Users\42190\Desktop
Loaded Profiles: Zdenka_Valkova
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:

EmptyTemp:
End
*****************

Processes closed successfully.

=========== EmptyTemp: ==========

FlushDNS => completed
BITS transfer queue => 1048576 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 90484349 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 0 B
Windows/system/drivers => 46887149 B
Edge => 9007224 B
Chrome => 472938033 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 123545660 B
systemprofile32 => 123545660 B
LocalService => 125409686 B
NetworkService => 134724232 B
42190 => 224471905 B

RecycleBin => 38868113 B
EmptyTemp: => 1.3 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 11:39:24 ====

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Spomalený sys., FRST log

#8 Příspěvek od Rudy »

Nyní je to OK. Ty nedokončené aktualizace bude zapotřebí odstranit, znovu dát načíst a nainstalovat. Viz: https://www.windowsnoticias.com/cs/nepo ... tualizace/ .
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

kroenen2
Návštěvník
Návštěvník
Příspěvky: 270
Registrován: 30 čer 2008 11:52

Re: Spomalený sys., FRST log

#9 Příspěvek od kroenen2 »

Akoby niečo stále blokovalo aplikovanie tých aktualizácií po štarte. Už som to skúsil mnohokrát ako píšete, ale vždy nakoniec vypíše, že vracia zmeny, nepodarilo sa aktualizovať :?:

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Spomalený sys., FRST log

#10 Příspěvek od Rudy »

Zkuste obnovu systému k datu před těmi aktualizacemi. Pak se je pokuste znovu nainstalovat. Problém malware to zřejmě nebude.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

kroenen2
Návštěvník
Návštěvník
Příspěvky: 270
Registrován: 30 čer 2008 11:52

Re: Spomalený sys., FRST log

#11 Příspěvek od kroenen2 »

Bohužiaľ, systém nemá vytvorený žiadny bod,
stojí za úvahu obnova na výrobné nastavenia?

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Spomalený sys., FRST log

#12 Příspěvek od Rudy »

Nejen stojí, ale podle mého názoru už nyní nic jiného nezbývá. Pokuste se o návrat do tov. nastavení se zachováním vašich souborů. Instalovat pak budete pouze aplikace.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

kroenen2
Návštěvník
Návštěvník
Příspěvky: 270
Registrován: 30 čer 2008 11:52

Re: Spomalený sys., FRST log

#13 Příspěvek od kroenen2 »

Po dlhšej dobe som sa k tomu vrátil, zapnem PC,
20min trvá spustenie systému
ďalších 10 min otvorenie int.prehliadača (0 stránok)
Už 2h v kuse HDD 100% horúci.
Dal som výrobné nastavenia:
obnovenie_err.png
obnovenie_err.png (73.49 KiB) Zobrazeno 785 x

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Spomalený sys., FRST log

#14 Příspěvek od Rudy »

V tom případě je systém vážně poškozen. Zbývá už jen reinstal.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Odpovědět