Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Prosím o preventivní kontrolu logu děkuji

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Příspěvky: 17
Registrován: 05 lis 2014 00:59

Prosím o preventivní kontrolu logu děkuji

#1 Příspěvek od Petako1 »

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 03-02-2023
Ran by Dell (administrator) on DELL-PC (Dell Inc. Vostro 1520) (05-02-2023 07:00:37)
Running from C:\Users\Dell\Downloads
Loaded Profiles: Dell
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <37>
(Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd.) C:\Windows\OEM13Mon.exe
(services.exe ->) (Broadcom Corporation -> Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> O2Micro International) C:\Windows\System32\drivers\o2flash.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM-x32\...\Run: [OEM13Mon.exe] => C:\Windows\OEM13Mon.exe [36864 2022-09-14] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\109.0.5414.120\Installer\chrmstp.exe [2023-01-27] (Google LLC -> Google LLC)

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {02B21EBD-4B88-4532-B865-E38B60CC82CB} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\Driver Booster\Scheduler.exe /scheduler (No File)
Task: {6A09C06C-0A45-4EC0-BBBC-1E88DE94B39B} - System32\Tasks\Driver Booster SkipUAC (Dell) => C:\Program Files (x86)\Driver Booster\DriverBooster.exe /skipuac (No File)
Task: {A8E37870-FFDC-4794-AF1D-359C7572B662} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [661408 2023-02-01] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {AADFB3E3-0C7D-43B2-9B14-90523771C961} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\Driver Booster\AutoUpdate.exe /auto (No File)
Task: {CABE18EF-04B8-49A1-BD03-C26ED649FB43} - System32\Tasks\GoogleUpdateTaskMachineUA{54080F93-F6D1-4AB0-801E-5FC9147DB94F} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2022-09-14] (Google LLC -> Google LLC)
Task: {EC81809C-75C1-43BB-9FD3-A468CA265452} - System32\Tasks\GoogleUpdateTaskMachineCore{C726B95E-4014-42E9-9D88-60B7096251FD} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2022-09-14] (Google LLC -> Google LLC)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer]
Tcpip\..\Interfaces\{5AA6AFAD-843F-4A81-A3CA-96B84EFD583A}: [DhcpNameServer]
Tcpip\..\Interfaces\{A9099421-7873-4A11-8460-0B01C048FE5D}: [DhcpNameServer]

FF DefaultProfile: gopk9sy5.default
FF ProfilePath: C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\gopk9sy5.default [2022-11-08]
FF ProfilePath: C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\izpu5x73.default-release [2023-01-26]
FF Extension: (Český slovník pro kontrolu pravopisu) - C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\izpu5x73.default-release\Extensions\cs@dictionaries.addons.mozilla.org.xpi [2022-11-10]
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @videolan.org/vlc,version= -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]

CHR Profile: C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default [2023-02-05]
CHR Notifications: Default -> hxxps://www.youtube.com
CHR StartupUrls: Default -> "hxxp://seznam.cz/"
CHR Extension: (Plná Peněženka Lištička) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\ecmgkhgjmodembdmiimbacpjgcdimiek [2022-12-18]
CHR Extension: (Dokumenty Google offline) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-01-27]
CHR Extension: (Klarna | Shop now. Pay later.) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfapbcheiepjppjbnkphkmegjlipojba [2023-01-14]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-09-14]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 O2FLASH; C:\Windows\system32\DRIVERS\o2flash.exe [65536 2022-09-14] (Microsoft Windows Hardware Compatibility Publisher -> O2Micro International)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2019-01-17] (Microsoft Windows -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 nvme; C:\Windows\system32\drivers\nvme.sys [77488 2016-08-17] (Lite-On Technology Corporation -> Windows (R) Win 7 DDK provider)
R3 O2SDGRDR; C:\Windows\System32\DRIVERS\o2sdgx64.sys [50976 2022-09-14] (O2Micro Inc. -> O2Micro)
S3 ocznvme; C:\Windows\system32\drivers\ocznvme.sys [99592 2016-06-10] (Toshiba America Electronic Components, Inc. -> TOSHIBA CORPORATION)
R0 ocztrimfilter; C:\Windows\System32\drivers\ocztrimfilter.sys [29064 2016-06-10] (Toshiba America Electronic Components, Inc. -> TOSHIBA CORPORATION)
R3 OEM13Vfx; C:\Windows\System32\DRIVERS\OEM13Vfx.sys [12288 2022-09-14] (Microsoft Windows Hardware Compatibility Publisher -> EyePower Games Pte. Ltd.)
R3 OEM13Vid; C:\Windows\System32\DRIVERS\OEM13Vid.sys [267296 2022-09-14] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd.)
S3 secnvme; C:\Windows\system32\drivers\secnvme.sys [91352 2018-02-13] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd)
R0 secnvmeF; C:\Windows\System32\drivers\secnvmeF.sys [30624 2018-02-13] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-02-05 07:00 - 2023-02-05 07:01 - 000007456 _____ C:\Users\Dell\Downloads\FRST.txt
2023-02-05 07:00 - 2023-02-05 07:01 - 000000000 ____D C:\FRST
2023-02-05 06:59 - 2023-02-05 06:59 - 002376704 _____ (Farbar) C:\Users\Dell\Downloads\FRST64.exe
2023-02-05 06:43 - 2020-08-08 12:41 - 006875040 _____ (Stanislav Polshyn & Trend Micro Inc.) C:\Users\Dell\Desktop\HiJackThis.exe
2023-02-05 06:41 - 2023-02-05 06:41 - 000000000 ____D C:\Users\Dell\Desktop\HiJackThis
2023-02-05 06:39 - 2023-02-05 06:40 - 002045714 _____ C:\Users\Dell\Downloads\HiJackThis.zip
2023-02-05 05:15 - 2023-02-05 05:15 - 029675912 _____ C:\Users\Dell\Downloads\168367-da21c2f4970c5006ff015d9c681f30a2.mp4
2023-02-01 03:59 - 2023-02-02 02:27 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-01-30 20:17 - 2023-01-30 20:17 - 000134445 _____ C:\Users\Dell\Downloads\priloha_1136171354_0_709202300125905.pdf
2023-01-28 11:56 - 2023-01-28 11:56 - 000025503 _____ C:\Users\Dell\Downloads\Kop270123.PDF
2023-01-28 11:50 - 2023-01-28 11:50 - 000049932 _____ C:\Users\Dell\Downloads\Potvrzeni_o_odchozi_uhrade.pdf
2023-01-22 16:01 - 2023-01-22 16:01 - 000052224 ___SH C:\Users\Dell\Documents\Thumbs.db
2023-01-07 14:46 - 2023-01-07 14:46 - 000073394 _____ C:\Users\Dell\Downloads\421130653.pdf
2023-01-06 01:41 - 2023-01-06 01:41 - 000070220 _____ C:\Users\Dell\Downloads\priloha_1124732164_0_O-30.12.2022_-_42_770_810_0499.pdf

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-02-05 06:57 - 2009-07-14 05:45 - 000026064 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2023-02-05 06:57 - 2009-07-14 05:45 - 000026064 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2023-02-05 06:02 - 2022-09-14 22:57 - 000000000 ____D C:\Program Files (x86)\Google
2023-02-05 05:59 - 2022-11-08 20:58 - 000000000 ____D C:\Users\Dell\AppData\LocalLow\Mozilla
2023-02-05 03:12 - 2011-04-12 09:34 - 000668376 _____ C:\Windows\system32\perfh005.dat
2023-02-05 03:12 - 2011-04-12 09:34 - 000141004 _____ C:\Windows\system32\perfc005.dat
2023-02-05 03:12 - 2009-07-14 06:13 - 001582262 _____ C:\Windows\system32\PerfStringBackup.INI
2023-02-05 03:12 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2023-02-05 03:08 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2023-02-03 16:01 - 2022-09-22 03:06 - 000013015 _____ C:\Users\Dell\Documents\Untitled 1.ods
2023-02-02 02:27 - 2022-11-08 20:58 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-01-30 00:58 - 2009-07-14 06:08 - 000032616 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2023-01-27 04:49 - 2022-09-14 22:59 - 000002170 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-01-27 04:49 - 2022-09-14 22:59 - 000002129 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2023-01-26 23:02 - 2022-11-08 20:58 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-01-20 11:24 - 2022-10-11 18:34 - 000000000 ____D C:\Users\Dell\AppData\Local\ElevatedDiagnostics
2023-01-18 20:42 - 2022-09-14 22:57 - 000000000 ____D C:\Users\Dell\AppData\Roaming\vlc

==================== Files in the root of some directories ========

2022-10-04 21:09 - 2022-10-04 21:09 - 003337703 _____ () C:\Program Files (x86)\Internet Explorer.rar

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

LastRegBack: 2023-02-01 22:08
==================== End of FRST.txt ========================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 03-02-2023
Ran by Dell (05-02-2023 07:02:02)
Running from C:\Users\Dell\Downloads
Microsoft Windows 7 Home Premium Service Pack 1 (X64) (2022-09-14 21:51:51)
Boot Mode: Normal

==================== Accounts: =============================

(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-824820190-1206371229-631915323-500 - Administrator - Disabled)
Dell (S-1-5-21-824820190-1206371229-631915323-1000 - Administrator - Enabled) => C:\Users\Dell
Guest (S-1-5-21-824820190-1206371229-631915323-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-824820190-1206371229-631915323-1002 - Limited - Enabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

CrystalDiskInfo 8.7.0 (HKLM\...\CrystalDiskInfo_is1) (Version: 8.7.0 - Crystal Dew World)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 109.0.5414.120 - Google LLC)
Laptop Integrated Webcam Driver ( (HKLM\...\Creative OEM013) (Version: - )
Microsoft .NET Framework 4.8 (HKLM\...\{16735AF7-1D8D-3681-94A5-C578A61EC832}) (Version: 4.8.03761 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox 109.0.1 (x64 cs)) (Version: 109.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 106.0.5 - Mozilla)
OpenOffice 4.1.13 (HKLM-x32\...\{D86F0E67-2C02-4DFF-A46A-6871BA809A51}) (Version: 4.113.9810 - Apache Software Foundation)
Skype verze 8.92 (HKLM-x32\...\Skype_is1) (Version: 8.92 - Skype Technologies S.A.)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 10.51 - Ghisler Software GmbH)
VLC media player (HKLM\...\VLC media player) (Version: - VideoLAN)
WinRAR 6.02 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.02.0 - win.rar GmbH)
Zoom (HKU\S-1-5-21-824820190-1206371229-631915323-1000\...\ZoomUMX) (Version: 5.12.0 (8964) - Zoom Video Communications, Inc.)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]

==================== Loaded Modules (Whitelisted) =============

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Version 11) (Whitelisted) ==========

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2009-06-10 22:00 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-824820190-1206371229-631915323-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

MSCONFIG\Services: WSearch => 2
MSCONFIG\Services: wuauserv => 2

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{BBA31792-571C-49C3-9C60-22B2AC85304B}] => (Allow) C:\Users\Dell\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{81FADE9C-1050-4CE1-A181-2224E0203026}] => (Allow) C:\Users\Dell\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{E1D7C0F8-E1B5-41C1-8B56-C6FCC03F4D7C}] => (Allow) C:\Users\Dell\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{EFA47519-6F0D-4FC6-B8FE-45FBD178E36D}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{1D71C38C-BFE0-49E8-ADDF-9833416D631D}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{229D13B8-7136-4D02-BC23-52376CF67222}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{BD677B94-5DAE-4F2B-B151-4B15B68596AD}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{EDC28A36-8C8E-4943-829C-5EDC4CEDABF4}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{ADB4CC43-70ED-416A-AA0D-AC2B02C6FD2C}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E780C713-F7DC-4CB6-907F-1D0C43387578}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{82293C60-C116-45BE-8AE0-2336A6042173}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)

==================== Restore Points =========================

31-12-2022 15:58:59 Naplánovaný kontrolní bod
08-01-2023 05:16:47 Naplánovaný kontrolní bod
16-01-2023 22:58:28 Naplánovaný kontrolní bod
25-01-2023 23:02:35 Naplánovaný kontrolní bod
05-02-2023 00:03:13 Naplánovaný kontrolní bod

==================== Faulty Device Manager Devices ============

Name: Periferní zařízení Bluetooth
Description: Periferní zařízení Bluetooth
Class Guid:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Periferní zařízení Bluetooth
Description: Periferní zařízení Bluetooth
Class Guid:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Periferní zařízení Bluetooth
Description: Periferní zařízení Bluetooth
Class Guid:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Periferní zařízení Bluetooth
Description: Periferní zařízení Bluetooth
Class Guid:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Periferní zařízení Bluetooth
Description: Periferní zařízení Bluetooth
Class Guid:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

==================== Event log errors: ========================

Application errors:
Error: (02/05/2023 03:10:20 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (02/04/2023 08:03:48 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (02/03/2023 03:33:35 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (02/02/2023 02:29:38 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (02/01/2023 01:27:39 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (02/01/2023 03:41:45 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (01/31/2023 02:18:18 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (01/30/2023 01:00:03 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

System errors:
Error: (02/05/2023 07:05:30 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {BB6DF56B-CACE-11DC-9992-0019B93A3A84} se v daném časovém limitu neregistroval u služby DCOM.

Error: (02/04/2023 07:37:08 AM) (Source: BTHUSB) (EventID: 17) (User: )
Description: Místní adaptér Bluetooth selhal. Důvod selhaní nebylo možno určit a adaptér nebude používán. Ovladač vysílače byl vyjmut z paměti.

Error: (01/26/2023 04:48:28 PM) (Source: BTHUSB) (EventID: 17) (User: )
Description: Místní adaptér Bluetooth selhal. Důvod selhaní nebylo možno určit a adaptér nebude používán. Ovladač vysílače byl vyjmut z paměti.

Error: (01/25/2023 12:34:24 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.

Error: (01/22/2023 07:02:32 PM) (Source: BTHUSB) (EventID: 17) (User: )
Description: Místní adaptér Bluetooth selhal. Důvod selhaní nebylo možno určit a adaptér nebude používán. Ovladač vysílače byl vyjmut z paměti.

Error: (01/14/2023 03:21:46 AM) (Source: BTHUSB) (EventID: 17) (User: )
Description: Místní adaptér Bluetooth selhal. Důvod selhaní nebylo možno určit a adaptér nebude používán. Ovladač vysílače byl vyjmut z paměti.

Error: (01/13/2023 05:23:03 PM) (Source: BTHUSB) (EventID: 17) (User: )
Description: Místní adaptér Bluetooth selhal. Důvod selhaní nebylo možno určit a adaptér nebude používán. Ovladač vysílače byl vyjmut z paměti.

Error: (01/11/2023 05:26:22 PM) (Source: BTHUSB) (EventID: 17) (User: )
Description: Místní adaptér Bluetooth selhal. Důvod selhaní nebylo možno určit a adaptér nebude používán. Ovladač vysílače byl vyjmut z paměti.

==================== Memory info ===========================

BIOS: Dell Inc. A08 03/05/2010
Motherboard: Dell Inc. 0T816J
Processor: Intel(R) Core(TM)2 Duo CPU T6570 @ 2.10GHz
Percentage of memory in use: 70%
Total physical RAM: 4056.96 MB
Available physical RAM: 1207 MB
Total Virtual: 8112.05 MB
Available Virtual: 3949.78 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:232.79 GB) (Free:197.16 GB) (Model: Hitachi HTS543225L9SA00 ATA Device) NTFS

\\?\Volume{4538d036-3473-11ed-b0b2-806e6f6e6963}\ (Rezervováno systémem) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS

==================== MBR & Partition Table ====================

Disk: 0 (MBR Code: Windows 7/8/10) (Size: 232.9 GB) (Disk ID: ABABABAB)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=232.8 GB) - (Type=07 NTFS)

==================== End of Addition.txt =======================

Uživatelský avatar
Site Admin
Site Admin
Příspěvky: 118357
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosím o preventivní kontrolu logu děkuji

#2 Příspěvek od Rudy »

Otevřte poznámkový blok a zkopírujte do něj:


Task: {02B21EBD-4B88-4532-B865-E38B60CC82CB} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\Driver Booster\Scheduler.exe /scheduler (No File)
Task: {6A09C06C-0A45-4EC0-BBBC-1E88DE94B39B} - System32\Tasks\Driver Booster SkipUAC (DeTask: {AADFB3E3-0C7D-43B2-9B14-90523771C961} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\Driver Booster\AutoUpdate.exe Task: {AADFB3E3-0C7D-43B2-9B14-90523771C961} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\Driver Booster\AutoUpdate.exe /auto (No File)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FirewallRules: [{81FADE9C-1050-4CE1-A181-2224E0203026}] => (Allow) C:\Users\Dell\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{E1D7C0F8-E1B5-41C1-8B56-C6FCC03F4D7C}] => (Allow) C:\Users\Dell\AppData\Roaming\Zoom\bin\airhost.exe => No File

Uložte do C:\Users\Dell\Downloads jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!

Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Příspěvky: 17
Registrován: 05 lis 2014 00:59

Re: Prosím o preventivní kontrolu logu děkuji

#3 Příspěvek od Petako1 »

Provedeno, děkuji, níže je log

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 09-02-2023 01
Ran by Dell (10-02-2023 06:00:58)
Running from C:\Users\Dell\Downloads
Microsoft Windows 7 Home Premium Service Pack 1 (X64) (2022-09-14 21:51:51)
Boot Mode: Normal

==================== Accounts: =============================

(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-824820190-1206371229-631915323-500 - Administrator - Disabled)
Dell (S-1-5-21-824820190-1206371229-631915323-1000 - Administrator - Enabled) => C:\Users\Dell
Guest (S-1-5-21-824820190-1206371229-631915323-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-824820190-1206371229-631915323-1002 - Limited - Enabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

CrystalDiskInfo 8.7.0 (HKLM\...\CrystalDiskInfo_is1) (Version: 8.7.0 - Crystal Dew World)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 109.0.5414.120 - Google LLC)
Laptop Integrated Webcam Driver ( (HKLM\...\Creative OEM013) (Version: - )
Microsoft .NET Framework 4.8 (HKLM\...\{16735AF7-1D8D-3681-94A5-C578A61EC832}) (Version: 4.8.03761 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox 109.0.1 (x64 cs)) (Version: 109.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 106.0.5 - Mozilla)
OpenOffice 4.1.13 (HKLM-x32\...\{D86F0E67-2C02-4DFF-A46A-6871BA809A51}) (Version: 4.113.9810 - Apache Software Foundation)
Skype verze 8.92 (HKLM-x32\...\Skype_is1) (Version: 8.92 - Skype Technologies S.A.)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 10.51 - Ghisler Software GmbH)
VLC media player (HKLM\...\VLC media player) (Version: - VideoLAN)
WinRAR 6.02 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.02.0 - win.rar GmbH)
Zoom (HKU\S-1-5-21-824820190-1206371229-631915323-1000\...\ZoomUMX) (Version: 5.12.0 (8964) - Zoom Video Communications, Inc.)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]

==================== Loaded Modules (Whitelisted) =============

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Version 11) (Whitelisted) ==========

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2009-06-10 22:00 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-824820190-1206371229-631915323-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

MSCONFIG\Services: WSearch => 2
MSCONFIG\Services: wuauserv => 2

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{BBA31792-571C-49C3-9C60-22B2AC85304B}] => (Allow) C:\Users\Dell\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{EFA47519-6F0D-4FC6-B8FE-45FBD178E36D}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{1D71C38C-BFE0-49E8-ADDF-9833416D631D}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{229D13B8-7136-4D02-BC23-52376CF67222}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{BD677B94-5DAE-4F2B-B151-4B15B68596AD}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{EDC28A36-8C8E-4943-829C-5EDC4CEDABF4}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{ADB4CC43-70ED-416A-AA0D-AC2B02C6FD2C}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E780C713-F7DC-4CB6-907F-1D0C43387578}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{82293C60-C116-45BE-8AE0-2336A6042173}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)

==================== Restore Points =========================

31-12-2022 15:58:59 Naplánovaný kontrolní bod
08-01-2023 05:16:47 Naplánovaný kontrolní bod
16-01-2023 22:58:28 Naplánovaný kontrolní bod
25-01-2023 23:02:35 Naplánovaný kontrolní bod
05-02-2023 00:03:13 Naplánovaný kontrolní bod

==================== Faulty Device Manager Devices ============

Name: Periferní zařízení Bluetooth
Description: Periferní zařízení Bluetooth
Class Guid:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Periferní zařízení Bluetooth
Description: Periferní zařízení Bluetooth
Class Guid:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Periferní zařízení Bluetooth
Description: Periferní zařízení Bluetooth
Class Guid:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Periferní zařízení Bluetooth
Description: Periferní zařízení Bluetooth
Class Guid:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Periferní zařízení Bluetooth
Description: Periferní zařízení Bluetooth
Class Guid:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

==================== Event log errors: ========================

Application errors:
Error: (02/10/2023 05:59:09 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (02/10/2023 02:27:43 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (02/09/2023 02:18:09 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (02/08/2023 02:46:25 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (02/07/2023 06:33:19 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (02/06/2023 07:40:59 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (02/05/2023 02:05:14 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (02/05/2023 10:06:17 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

System errors:
Error: (02/10/2023 06:04:13 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {BB6DF56B-CACE-11DC-9992-0019B93A3A84} se v daném časovém limitu neregistroval u služby DCOM.

Error: (02/10/2023 05:55:05 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba Windows Media Player Network Sharing byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.

Error: (02/10/2023 05:55:05 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba O2FLASH byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (02/10/2023 05:55:05 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Bluetooth Driver Management Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (02/05/2023 07:05:30 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {BB6DF56B-CACE-11DC-9992-0019B93A3A84} se v daném časovém limitu neregistroval u služby DCOM.

Error: (02/04/2023 07:37:08 AM) (Source: BTHUSB) (EventID: 17) (User: )
Description: Místní adaptér Bluetooth selhal. Důvod selhaní nebylo možno určit a adaptér nebude používán. Ovladač vysílače byl vyjmut z paměti.

Error: (01/26/2023 04:48:28 PM) (Source: BTHUSB) (EventID: 17) (User: )
Description: Místní adaptér Bluetooth selhal. Důvod selhaní nebylo možno určit a adaptér nebude používán. Ovladač vysílače byl vyjmut z paměti.

Error: (01/25/2023 12:34:24 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.

==================== Memory info ===========================

BIOS: Dell Inc. A08 03/05/2010
Motherboard: Dell Inc. 0T816J
Processor: Intel(R) Core(TM)2 Duo CPU T6570 @ 2.10GHz
Percentage of memory in use: 68%
Total physical RAM: 4056.96 MB
Available physical RAM: 1283.41 MB
Total Virtual: 8112.05 MB
Available Virtual: 4034.15 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:232.79 GB) (Free:196.28 GB) (Model: Hitachi HTS543225L9SA00 ATA Device) NTFS

\\?\Volume{4538d036-3473-11ed-b0b2-806e6f6e6963}\ (Rezervováno systémem) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS

==================== MBR & Partition Table ====================

Disk: 0 (MBR Code: Windows 7/8/10) (Size: 232.9 GB) (Disk ID: ABABABAB)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=232.8 GB) - (Type=07 NTFS)

==================== End of Addition.txt =======================

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 09-02-2023 01
Ran by Dell (administrator) on DELL-PC (Dell Inc. Vostro 1520) (10-02-2023 05:58:23)
Running from C:\Users\Dell\Downloads
Loaded Profiles: Dell
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(explorer.exe ->) (Ghisler Software GmbH -> Ghisler Software GmbH) C:\Program Files\totalcmd\TOTALCMD64.EXE
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd.) C:\Windows\OEM13Mon.exe
(services.exe ->) (Broadcom Corporation -> Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> O2Micro International) C:\Windows\System32\drivers\o2flash.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM-x32\...\Run: [OEM13Mon.exe] => C:\Windows\OEM13Mon.exe [36864 2022-09-14] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\109.0.5414.120\Installer\chrmstp.exe [2023-01-27] (Google LLC -> Google LLC)

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {A8E37870-FFDC-4794-AF1D-359C7572B662} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [661408 2023-02-01] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {AADFB3E3-0C7D-43B2-9B14-90523771C961} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\Driver Booster\AutoUpdate.exe /auto (No File)
Task: {CABE18EF-04B8-49A1-BD03-C26ED649FB43} - System32\Tasks\GoogleUpdateTaskMachineUA{54080F93-F6D1-4AB0-801E-5FC9147DB94F} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2022-09-14] (Google LLC -> Google LLC)
Task: {EC81809C-75C1-43BB-9FD3-A468CA265452} - System32\Tasks\GoogleUpdateTaskMachineCore{C726B95E-4014-42E9-9D88-60B7096251FD} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2022-09-14] (Google LLC -> Google LLC)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer]
Tcpip\..\Interfaces\{5AA6AFAD-843F-4A81-A3CA-96B84EFD583A}: [DhcpNameServer]
Tcpip\..\Interfaces\{A9099421-7873-4A11-8460-0B01C048FE5D}: [DhcpNameServer]

FF DefaultProfile: gopk9sy5.default
FF ProfilePath: C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\gopk9sy5.default [2023-02-10]
FF ProfilePath: C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\izpu5x73.default-release [2023-02-10]
FF Extension: (Český slovník pro kontrolu pravopisu) - C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\izpu5x73.default-release\Extensions\cs@dictionaries.addons.mozilla.org.xpi [2022-11-10]
FF Plugin: @videolan.org/vlc,version= -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)

CHR Profile: C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default [2023-02-10]
CHR Notifications: Default -> hxxps://www.youtube.com
CHR StartupUrls: Default -> "hxxp://seznam.cz/"
CHR Extension: (Plná Peněženka Lištička) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\ecmgkhgjmodembdmiimbacpjgcdimiek [2022-12-18]
CHR Extension: (Dokumenty Google offline) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-01-27]
CHR Extension: (Klarna | Shop now. Pay later.) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfapbcheiepjppjbnkphkmegjlipojba [2023-02-07]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-09-14]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 O2FLASH; C:\Windows\system32\DRIVERS\o2flash.exe [65536 2022-09-14] (Microsoft Windows Hardware Compatibility Publisher -> O2Micro International)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2019-01-17] (Microsoft Windows -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 nvme; C:\Windows\system32\drivers\nvme.sys [77488 2016-08-17] (Lite-On Technology Corporation -> Windows (R) Win 7 DDK provider)
R3 O2SDGRDR; C:\Windows\System32\DRIVERS\o2sdgx64.sys [50976 2022-09-14] (O2Micro Inc. -> O2Micro)
S3 ocznvme; C:\Windows\system32\drivers\ocznvme.sys [99592 2016-06-10] (Toshiba America Electronic Components, Inc. -> TOSHIBA CORPORATION)
R0 ocztrimfilter; C:\Windows\System32\drivers\ocztrimfilter.sys [29064 2016-06-10] (Toshiba America Electronic Components, Inc. -> TOSHIBA CORPORATION)
R3 OEM13Vfx; C:\Windows\System32\DRIVERS\OEM13Vfx.sys [12288 2022-09-14] (Microsoft Windows Hardware Compatibility Publisher -> EyePower Games Pte. Ltd.)
R3 OEM13Vid; C:\Windows\System32\DRIVERS\OEM13Vid.sys [267296 2022-09-14] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd.)
S3 secnvme; C:\Windows\system32\drivers\secnvme.sys [91352 2018-02-13] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd)
R0 secnvmeF; C:\Windows\System32\drivers\secnvmeF.sys [30624 2018-02-13] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-02-10 05:59 - 2023-02-10 05:59 - 000000000 ____D C:\Program Files\chrome_BITS_2532_445099612
2023-02-10 05:58 - 2023-02-10 06:00 - 000000000 ____D C:\Program Files\chrome_url_fetcher_2532_852354353
2023-02-10 05:55 - 2023-02-10 05:56 - 000003659 _____ C:\Users\Dell\Downloads\Fixlog.txt
2023-02-10 05:54 - 2023-02-10 05:54 - 000000000 ____D C:\Users\Dell\Downloads\FRST-OlderVersion
2023-02-10 04:27 - 2023-02-10 04:27 - 000063269 _____ C:\Users\Dell\Downloads\noname.pdf
2023-02-10 04:26 - 2023-02-10 04:26 - 000046243 _____ C:\Users\Dell\Downloads\314803.pdf
2023-02-08 02:49 - 2023-02-08 02:49 - 000157994 _____ C:\Users\Dell\Downloads\Kopeščanský.pdf
2023-02-06 04:25 - 2023-02-06 04:25 - 000134445 _____ C:\Users\Dell\Downloads\1136171354_709202300125905.pdf
2023-02-06 04:24 - 2023-02-06 04:25 - 000070220 _____ C:\Users\Dell\Downloads\1124732164_O-30.12.2022_-_42_770_810_0499.pdf
2023-02-06 01:01 - 2023-02-06 01:01 - 006671678 _____ C:\Users\Dell\Downloads\Full_Setup_Passwrd_1234.rar
2023-02-05 16:04 - 2023-02-05 16:04 - 029203482 _____ C:\Users\Dell\Downloads\170783-ebbd8c59b2162f9e8ca378e231ab1042.mov
2023-02-05 07:02 - 2023-02-05 07:06 - 000015923 _____ C:\Users\Dell\Downloads\Addition.txt
2023-02-05 07:00 - 2023-02-10 06:00 - 000007088 _____ C:\Users\Dell\Downloads\FRST.txt
2023-02-05 07:00 - 2023-02-10 05:59 - 000000000 ____D C:\FRST
2023-02-05 06:59 - 2023-02-10 05:54 - 002378240 _____ (Farbar) C:\Users\Dell\Downloads\FRST64.exe
2023-02-05 06:39 - 2023-02-05 06:40 - 002045714 _____ C:\Users\Dell\Downloads\HiJackThis.zip
2023-02-05 05:15 - 2023-02-05 05:15 - 029675912 _____ C:\Users\Dell\Downloads\168367-da21c2f4970c5006ff015d9c681f30a2.mp4
2023-02-01 03:59 - 2023-02-02 02:27 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-01-30 20:17 - 2023-01-30 20:17 - 000134445 _____ C:\Users\Dell\Downloads\priloha_1136171354_0_709202300125905.pdf
2023-01-28 11:56 - 2023-01-28 11:56 - 000025503 _____ C:\Users\Dell\Downloads\Kop270123.PDF
2023-01-28 11:50 - 2023-01-28 11:50 - 000049932 _____ C:\Users\Dell\Downloads\Potvrzeni_o_odchozi_uhrade.pdf
2023-01-22 16:01 - 2023-01-22 16:01 - 000052224 ___SH C:\Users\Dell\Documents\Thumbs.db

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-02-10 05:59 - 2022-09-14 22:57 - 000000000 ____D C:\Program Files (x86)\Google
2023-02-10 05:57 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2023-02-10 04:59 - 2022-11-08 20:58 - 000000000 ____D C:\Users\Dell\AppData\LocalLow\Mozilla
2023-02-10 04:45 - 2009-07-14 05:45 - 000026064 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2023-02-10 04:45 - 2009-07-14 05:45 - 000026064 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2023-02-10 02:30 - 2011-04-12 09:34 - 000668376 _____ C:\Windows\system32\perfh005.dat
2023-02-10 02:30 - 2011-04-12 09:34 - 000141004 _____ C:\Windows\system32\perfc005.dat
2023-02-10 02:30 - 2009-07-14 06:13 - 001582262 _____ C:\Windows\system32\PerfStringBackup.INI
2023-02-10 02:30 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2023-02-07 08:02 - 2022-09-22 03:06 - 000013472 _____ C:\Users\Dell\Documents\Untitled 1.ods
2023-02-05 16:05 - 2022-09-14 22:57 - 000000000 ____D C:\Users\Dell\AppData\Roaming\vlc
2023-02-02 02:27 - 2022-11-08 20:58 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-01-30 00:58 - 2009-07-14 06:08 - 000032616 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2023-01-27 04:49 - 2022-09-14 22:59 - 000002170 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-01-27 04:49 - 2022-09-14 22:59 - 000002129 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2023-01-26 23:02 - 2022-11-08 20:58 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-01-20 11:24 - 2022-10-11 18:34 - 000000000 ____D C:\Users\Dell\AppData\Local\ElevatedDiagnostics

==================== Files in the root of some directories ========

2022-10-04 21:09 - 2022-10-04 21:09 - 003337703 _____ () C:\Program Files (x86)\Internet Explorer.rar

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

LastRegBack: 2023-02-01 22:08
==================== End of FRST.txt ========================

Uživatelský avatar
Site Admin
Site Admin
Příspěvky: 118357
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosím o preventivní kontrolu logu děkuji

#4 Příspěvek od Rudy »

Potřebuji vidět obsah souboru fixlog.txt. Je v C:\Users\Dell\Downloads. Dějuji.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!

Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Příspěvky: 17
Registrován: 05 lis 2014 00:59

Re: Prosím o preventivní kontrolu logu děkuji

#5 Příspěvek od Petako1 »

Fix result of Farbar Recovery Scan Tool (x64) Version: 09-02-2023 01
Ran by Dell (10-02-2023 05:55:05) Run:1
Running from C:\Users\Dell\Downloads
Loaded Profiles: Dell
Boot Mode: Normal

fixlist content:

Task: {02B21EBD-4B88-4532-B865-E38B60CC82CB} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\Driver Booster\Scheduler.exe /scheduler (No File)
Task: {6A09C06C-0A45-4EC0-BBBC-1E88DE94B39B} - System32\Tasks\Driver Booster SkipUAC (DeTask: {AADFB3E3-0C7D-43B2-9B14-90523771C961} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\Driver Booster\AutoUpdate.exe Task: {AADFB3E3-0C7D-43B2-9B14-90523771C961} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\Driver Booster\AutoUpdate.exe /auto (No File)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FirewallRules: [{81FADE9C-1050-4CE1-A181-2224E0203026}] => (Allow) C:\Users\Dell\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{E1D7C0F8-E1B5-41C1-8B56-C6FCC03F4D7C}] => (Allow) C:\Users\Dell\AppData\Roaming\Zoom\bin\airhost.exe => No File


Processes closed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{02B21EBD-4B88-4532-B865-E38B60CC82CB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{02B21EBD-4B88-4532-B865-E38B60CC82CB}" => removed successfully
C:\Windows\System32\Tasks\Driver Booster Scheduler => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Driver Booster Scheduler" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6A09C06C-0A45-4EC0-BBBC-1E88DE94B39B}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6A09C06C-0A45-4EC0-BBBC-1E88DE94B39B}" => removed successfully
"C:\Windows\System32\Tasks\Driver Booster SkipUAC (DeTask: {AADFB3E3-0C7D-43B2-9B14-90523771C961} - System32\Tasks\Driver Booster Update" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Driver Booster SkipUAC (DeTask: {AADFB3E3-0C7D-43B2-9B14-90523771C961} - System32\Tasks\Driver Booster Update" => not found
HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE => removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{81FADE9C-1050-4CE1-A181-2224E0203026}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E1D7C0F8-E1B5-41C1-8B56-C6FCC03F4D7C}" => removed successfully

=========== EmptyTemp: ==========

FlushDNS => completed
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 4307558 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 0 B
Windows/system/drivers => 41134386 B
Edge => 0 B
Chrome => 760259616 B
Firefox => 230757568 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 16802 B
systemprofile32 => 83030 B
LocalService => 83030 B
NetworkService => 133542 B
Dell => 15213153 B

RecycleBin => 0 B
EmptyTemp: => 1003.3 MB temporary data Removed.


The system needed a reboot.

==== End of Fixlog 05:56:32 ====

Uživatelský avatar
Site Admin
Site Admin
Příspěvky: 118357
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosím o preventivní kontrolu logu děkuji

#6 Příspěvek od Rudy »

Smazáno, log je již OK,
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!

Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
