Pomalý PC - prosím o kontrolu logu Vyřešeno

Místo pro vaše HiJackThis logy a logy z dalších programů…

Moderátoři: Mods_senior, Security team

Kito
Level 1.5
Level 1.5
Příspěvky: 104
Registrován: srpen 09
Pohlaví: Muž
Stav:
Offline

Re: Pomalý PC - prosím o kontrolu logu

Příspěvekod Kito » 04 pro 2019 19:10

část 1.:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 02-12-2019
Ran by Radka (administrator) on RADKA-PC (MSI MS-7592) (04-12-2019 18:56:01)
Running from C:\Users\Radka\Desktop
Loaded Profiles: Radka (Available Profiles: Radka)
Platform: Windows 10 Home Version 1809 17763.864 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.342\GoogleCrashHandler.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.342\GoogleCrashHandler64.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11911.1001.9.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19101.10711.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1910.4-0\MsMpEng.exe
(VIA Technologies Inc. -> VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [WindowsDefender] => "%ProgramFiles%\Windows Defender\MSASCuiL.exe"
HKU\S-1-5-21-4093243053-2182908791-2126085259-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-10-16] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-4093243053-2182908791-2126085259-1001\...\Run: [GarminExpress] => C:\Program Files (x86)\Garmin\Express\express.exe [30871536 2019-09-18] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries)
HKU\S-1-5-21-4093243053-2182908791-2126085259-1001\...\MountPoints2: {1faecd92-bf79-11e9-bc42-8c89a560284a} - "E:\Lenovo_Suite.exe"
HKU\S-1-5-21-4093243053-2182908791-2126085259-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Bubbles.scr [807424 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-18\...\Run: [GarminExpress] => C:\Program Files (x86)\Garmin\Express\express.exe [30871536 2019-09-18] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\78.0.3904.108\Installer\chrmstp.exe [2019-11-19] (Google LLC -> Google LLC)
Startup: C:\Users\Radka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Backup and Sync from Google.lnk [2018-10-11]
ShortcutTarget: Backup and Sync from Google.lnk -> C:\Program Files\Google\Drive\googledrivesync.exe (Google LLC -> )

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {154A0B8E-1396-4FC1-A604-05EBF41C2703} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1873288 2019-09-18] (AVAST Software s.r.o. -> AVAST Software)
Task: {16B992CB-2A5D-4414-A377-EEB44D7C8CA3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-11-08] (Google Inc -> Google Inc.)
Task: {262885E3-28E8-4F4C-99B4-11C045A4B8B2} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26042680 2019-11-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {2FBB82E3-3952-4BE8-9AD5-EB78EED96E81} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26042680 2019-11-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {33534A89-6C06-40C7-8BCE-79ACC428FE42} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4400528 2019-11-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {394E95A3-8360-4573-8EC5-5D2FE49642E9} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [751920 2019-11-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {3E286AD7-82AE-4477-AC58-2B68CC39939D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-11-08] (Google Inc -> Google Inc.)
Task: {486B98B9-5615-4048-B42E-C499EA3103BB} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [40432 2019-09-18] (Garmin International, Inc. -> )
Task: {4D096F7B-63BC-4DC4-A085-92627121BCB0} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems)
Task: {58E66CB9-12C5-4709-A9CF-3ACEC8FB30E0} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [97016 2019-11-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {68AE8C37-4EFE-4DD3-AA1E-A7596729CB84} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1397144 2019-11-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {74D02389-C2F9-43D4-8502-C15AA5FBABD6} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1397144 2019-11-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {97D6F96F-8700-423C-8CF6-D343C31E7E34} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-16] (Piriform Software Ltd -> Piriform Ltd)
Task: {9E5A6AD2-40F4-4148-B444-5D064BF63BEF} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [97016 2019-11-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {D2C183E3-A826-4CE2-AE58-D2FA18656FC8} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4400528 2019-11-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {E6D55E5D-4A71-4C87-A16C-3A7C1AAAA03D} - System32\Tasks\AMHelper => C:\Program Files (x86)\Zemana\AntiMalware\AntiMalware.exe [659520 2019-11-04] (Zemana D.O.O. Sarajevo -> Zemana Ltd.)
Task: {F6E930E3-1D8D-4751-834A-2E80A85F30A8} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-16] (Piriform Software Ltd -> Piriform Software Ltd)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{450c32a7-b6ac-4e7f-95d3-0cf8ded414fd}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKU\S-1-5-21-4093243053-2182908791-2126085259-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/?clid=12454
HKU\S-1-5-21-4093243053-2182908791-2126085259-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxps://www.facebook.com/?ref=logo
SearchScopes: HKU\S-1-5-21-4093243053-2182908791-2126085259-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-4093243053-2182908791-2126085259-1001 -> {0E1DA270-ADBD-4632-A263-F13AE2834E04} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-4093243053-2182908791-2126085259-1001 -> {1E5DC009-5EF1-4947-89B5-CC1DB0B9E29F} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-4093243053-2182908791-2126085259-1001 -> {327D4B62-D438-4E75-9951-D0A9FBD98B92} URL = hxxp://www.mapy.cz/?query={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-4093243053-2182908791-2126085259-1001 -> {775A6032-F256-411F-9528-FAB5286358A3} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-4093243053-2182908791-2126085259-1001 -> {AA6EC8F4-1F2F-43D1-83E6-BA39BC522363} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-4093243053-2182908791-2126085259-1001 -> {B7F28F64-8487-4F57-8720-1618F4E620BC} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-4093243053-2182908791-2126085259-1001 -> {DA491073-E326-4D59-B3D0-19603CBE6C42} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-4093243053-2182908791-2126085259-1001 -> {DADBC135-95E5-43B7-BE6B-A7DA8B2DDBBB} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_12454
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2019-11-24] (Microsoft Corporation -> Microsoft Corporation)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2018-05-21] (Google Inc -> Google Inc.)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2019-07-20] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2018-05-21] (Google Inc -> Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2018-05-21] (Google Inc -> Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2018-05-21] (Google Inc -> Google Inc.)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-07-20] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-07-20] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-07-20] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-07-20] (Microsoft Corporation -> Microsoft Corporation)

Edge:
======
DownloadDir: C:\Users\Radka\Downloads
Edge Notifications: HKU\S-1-5-21-4093243053-2182908791-2126085259-1001 -> hxxps://www.kupi.cz

FireFox:
========
FF DefaultProfile: o0ohuhco.default
FF ProfilePath: C:\Users\Radka\AppData\Roaming\Mozilla\Firefox\Profiles\o0ohuhco.default [2019-12-03]
FF Homepage: Mozilla\Firefox\Profiles\o0ohuhco.default -> about:home
FF NewTab: Mozilla\Firefox\Profiles\o0ohuhco.default -> about:newtab
FF Extension: (Seznam pro Firefox - Esko) - C:\Users\Radka\AppData\Roaming\Mozilla\Firefox\Profiles\o0ohuhco.default\Extensions\sko-extension@firma.seznam.cz [2019-12-03]
FF Plugin: @videolan.org/vlc,version=2.2.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-07-20] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-07-20] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.342\npGoogleUpdate3.dll [2019-11-05] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.342\npGoogleUpdate3.dll [2019-11-05] (Google Inc -> Google LLC)

Reklama
Kito
Level 1.5
Level 1.5
Příspěvky: 104
Registrován: srpen 09
Pohlaví: Muž
Stav:
Offline

Re: Pomalý PC - prosím o kontrolu logu

Příspěvekod Kito » 04 pro 2019 19:10

Část 2:
Chrome:
=======
CHR DefaultProfile: Profile 1
CHR HomePage: Profile 1 -> hxxp://www.seznam.cz/
CHR StartupUrls: Profile 1 -> "hxxps://mail.google.com/mail/u/0/?tab=wm#inbox","hxxp://www.seznam.cz/"
CHR Profile: C:\Users\Radka\AppData\Local\Google\Chrome\User Data\Profile 1 [2019-12-04]
CHR Extension: (Prezentace) - C:\Users\Radka\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-12-03]
CHR Extension: (Dokumenty) - C:\Users\Radka\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2019-12-03]
CHR Extension: (Disk Google) - C:\Users\Radka\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-12-03]
CHR Extension: (Seznam doplněk - Email) - C:\Users\Radka\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2019-12-03]
CHR Extension: (FromDocToPDF) - C:\Users\Radka\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\bhobjmphbnfocdghpbginkgnpookkcil [2019-12-04]
CHR Extension: (YouTube) - C:\Users\Radka\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-12-03]
CHR Extension: (Tabulky) - C:\Users\Radka\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-12-03]
CHR Extension: (Dokumenty Google offline) - C:\Users\Radka\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-12-04]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Radka\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2019-12-03]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Radka\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-12-03]
CHR Extension: (Seznam doplněk - Esko) - C:\Users\Radka\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2019-12-03]
CHR Extension: (Gmail) - C:\Users\Radka\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-12-03]
CHR Extension: (Chrome Media Router) - C:\Users\Radka\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-12-03]
CHR HKU\S-1-5-21-4093243053-2182908791-2126085259-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bgjpfhpjcgdppjbgnpnjllokbmcdllig]
CHR HKU\S-1-5-21-4093243053-2182908791-2126085259-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKU\S-1-5-21-4093243053-2182908791-2126085259-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11156336 2019-11-04] (Microsoft Corporation -> Microsoft Corporation)
S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6960640 2019-11-28] (Malwarebytes Inc -> Malwarebytes)
R2 VIAKaraokeService; C:\WINDOWS\system32\viakaraokesrv.exe [36504 2015-06-22] (VIA Technologies Inc. -> VIA Technologies, Inc.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\NisSrv.exe [3201616 2019-10-29] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MsMpEng.exe [103168 2019-10-29] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 AdobeARMservice; "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe" [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 amsdk; C:\WINDOWS\system32\drivers\amsdk.sys [232792 2019-12-04] (Zemana D.O.O. Sarajevo -> Copyright 2018.)
R3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 DSI_SiUSBXp_3_1; C:\WINDOWS\system32\drivers\DSI_SiUSBXp_3_1.sys [16384 2007-09-06] (Microsoft Windows Hardware Compatibility Publisher -> Silicon Laboratories)
S3 itecir; C:\WINDOWS\System32\drivers\itecir.sys [60416 2009-06-11] (Microsoft Windows Hardware Compatibility Publisher -> ITE Tech. Inc. )
R3 L1C; C:\WINDOWS\System32\drivers\L1C63x64.sys [121344 2018-09-15] (Microsoft Windows -> Qualcomm Atheros Co., Ltd.)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2019-11-28] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MTsensor; C:\WINDOWS\System32\drivers\ASACPI.sys [15416 2009-07-16] (ASUSTeK Computer Inc. -> )
S3 mv91cons; C:\WINDOWS\System32\drivers\mv91cons.sys [24880 2010-11-22] (Marvell Semiconductor -> Marvell Semiconductor Inc.)
S3 mv91xx; C:\WINDOWS\System32\drivers\mv91xx.sys [303408 2010-11-22] (Marvell Semiconductor -> Marvell Semiconductor, Inc.)
S3 mv91xxr; C:\WINDOWS\System32\drivers\mv91xxr.sys [302120 2010-10-21] (Marvell Semiconductor -> Marvell Semiconductor, Inc.)
S3 OxSer; C:\WINDOWS\System32\drivers\OxSer.sys [98352 2009-05-26] (Oxford Semiconductor Ltd -> OEM)
S3 SI3112; C:\WINDOWS\System32\drivers\SI3112.sys [83496 2007-06-28] (Silicon Image, Inc. -> Silicon Image, Inc)
S3 Si3124r5; C:\WINDOWS\System32\drivers\Si3124r5.sys [340008 2010-04-13] (Silicon Image, Inc. -> Silicon Image, Inc)
S3 Si3531; C:\WINDOWS\System32\drivers\Si3531.sys [333864 2009-02-09] (Silicon Image, Inc. -> Silicon Image, Inc)
R0 SiFilter; C:\WINDOWS\System32\drivers\SiWinAcc.sys [22056 2007-06-28] (Silicon Image, Inc. -> Silicon Image, Inc)
R0 SiRemFil; C:\WINDOWS\System32\drivers\SiRemFil.sys [17448 2007-06-28] (Silicon Image, Inc. -> Silicon Image, Inc)
R3 VIAHdAudAddService; C:\WINDOWS\system32\drivers\viahduaa.sys [701136 2015-06-22] (VIA Technologies Inc. -> VIA Technologies, Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [46472 2019-10-29] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [351968 2019-10-29] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [53984 2019-10-29] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-12-04 18:56 - 2019-12-04 18:57 - 000021436 _____ C:\Users\Radka\Desktop\FRST.txt
2019-12-04 18:55 - 2019-12-04 18:56 - 000000000 ____D C:\FRST
2019-12-04 18:51 - 2019-12-04 18:52 - 002263040 _____ (Farbar) C:\Users\Radka\Desktop\FRST64.exe
2019-12-04 16:42 - 2019-12-04 18:57 - 000112841 _____ C:\WINDOWS\ZAM.krnl.trace
2019-12-04 16:42 - 2019-12-04 16:42 - 000232792 _____ (Copyright 2018.) C:\WINDOWS\system32\Drivers\amsdk.sys
2019-12-04 16:42 - 2019-12-04 16:42 - 000003544 _____ C:\WINDOWS\system32\Tasks\AMHelper
2019-12-04 16:42 - 2019-12-04 16:42 - 000001333 _____ C:\Users\Public\Desktop\Zemana AntiMalware.lnk
2019-12-04 16:42 - 2019-12-04 16:42 - 000000000 ____D C:\Users\Radka\AppData\Local\Zemana
2019-12-04 16:42 - 2019-12-04 16:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zemana AntiMalware
2019-12-04 16:42 - 2019-12-04 16:42 - 000000000 ____D C:\Program Files (x86)\Zemana
2019-12-04 16:41 - 2019-12-04 16:54 - 000000000 ____D C:\Users\Radka\AppData\Local\AMSDK
2019-12-04 16:41 - 2019-12-04 16:41 - 012741568 _____ (Zemana Ltd. ) C:\Users\Radka\Desktop\AntiMalware_Setup.exe
2019-12-03 22:29 - 2019-12-03 22:29 - 000000000 ____D C:\Users\Radka\AppData\Local\cache
2019-12-03 22:23 - 2019-12-03 22:23 - 000000000 ____D C:\Users\Radka\AppData\Local\DBG
2019-12-03 22:19 - 2014-02-13 23:59 - 000024064 _____ C:\WINDOWS\zoek-delete.exe
2019-12-03 21:19 - 2019-12-03 22:07 - 000000000 ____D C:\zoek_backup
2019-12-03 21:18 - 2019-12-03 21:18 - 002038755 _____ C:\Users\Radka\Desktop\zoek.exe
2019-12-03 19:17 - 2019-12-03 19:17 - 001108641 _____ C:\Users\Radka\Documents\dotaznik_formular_cerpadlo--1---9-.pdf
2019-12-02 18:51 - 2019-12-02 18:51 - 000026241 _____ C:\Users\Radka\Documents\priloha_731326529_0_5236057977_20191130.pdf
2019-12-01 18:54 - 2019-12-01 18:54 - 000014062 _____ C:\Users\Radka\Desktop\MAlware_01122019.txt
2019-11-29 06:10 - 2019-11-29 07:20 - 000000000 ____D C:\ProgramData\RogueKiller
2019-11-28 23:36 - 2019-11-28 23:36 - 035130424 _____ C:\Users\Radka\Desktop\RogueKiller_portable64.exe
2019-11-28 23:28 - 2019-11-28 23:28 - 000000000 ____D C:\ProgramData\Sophos
2019-11-28 23:28 - 2019-11-28 23:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sophos
2019-11-28 23:27 - 2019-11-28 23:27 - 000000000 ____D C:\Program Files (x86)\Sophos
2019-11-28 23:23 - 2019-11-28 23:24 - 000014338 _____ C:\Users\Radka\Desktop\export_zázn_malware.txt
2019-11-28 23:16 - 2019-11-28 23:18 - 206758184 _____ (Sophos Limited) C:\Users\Radka\Desktop\Sophos Virus Removal Tool.exe
2019-11-28 23:11 - 2019-11-28 23:11 - 000000859 _____ C:\Users\Radka\Desktop\JRT.txt
2019-11-28 23:01 - 2019-11-28 23:01 - 001790024 _____ (Malwarebytes) C:\Users\Radka\Desktop\JRT.exe
2019-11-28 19:11 - 2019-11-28 19:11 - 000000000 ____D C:\Users\Radka\AppData\Local\mbam
2019-11-28 19:10 - 2019-12-03 21:44 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2019-11-28 19:10 - 2019-11-28 19:10 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2019-11-28 19:10 - 2019-11-28 19:10 - 000000000 ____D C:\Users\Radka\AppData\Local\mbamtray
2019-11-28 19:10 - 2019-11-28 19:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2019-11-28 19:10 - 2019-11-28 19:09 - 000020936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2019-11-28 19:09 - 2019-11-28 19:09 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-11-28 19:09 - 2019-11-28 19:09 - 000000000 ____D C:\Program Files\Malwarebytes
2019-11-28 19:07 - 2019-11-28 19:07 - 001883976 _____ (Malwarebytes) C:\Users\Radka\Desktop\MBSetup.exe
2019-11-28 19:05 - 2019-12-01 17:41 - 000000000 ____D C:\Users\Radka\AppData\Local\Adobe
2019-11-28 19:03 - 2019-11-28 22:52 - 000000000 ____D C:\AdwCleaner
2019-11-28 19:00 - 2019-11-28 19:00 - 008218800 _____ (Malwarebytes) C:\Users\Radka\Desktop\adwcleaner_8.0.0.exe
2019-11-19 17:40 - 2019-11-19 17:40 - 000879040 _____ C:\Users\Radka\Documents\O2_Family_tarify_01112019.pdf
2019-11-14 19:16 - 2019-11-14 19:16 - 000061103 _____ C:\Users\Radka\Documents\PDZ_00804-2019-PDZ.pdf
2019-11-14 19:15 - 2019-11-14 19:15 - 000002490 _____ C:\Users\Radka\Documents\priloha_726514343_0_message_pind4gfwg2_1573755123201.pdf
2019-11-14 19:01 - 2019-11-14 19:02 - 000027136 _____ C:\Users\Radka\Documents\pristupy.xlsx
2019-11-14 18:00 - 2019-11-14 18:00 - 006588578 _____ C:\Users\Radka\Downloads\Účinky gravitace.mp4
2019-11-13 18:55 - 2019-11-13 18:58 - 000099589 _____ C:\Users\Radka\Downloads\nový tarif.pdf
2019-11-13 18:53 - 2019-11-13 18:53 - 000611474 _____ C:\Users\Radka\Downloads\září_říjen.pdf
2019-11-13 17:19 - 2019-11-13 17:19 - 011724288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2019-11-13 17:19 - 2019-11-13 17:19 - 009941504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2019-11-13 17:19 - 2019-11-13 17:19 - 000249856 _____ (Gracenote, Inc.) C:\WINDOWS\SysWOW64\gnsdk_fp.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 023455232 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 019014144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 012960256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 012258816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 007872000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 006547896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 006318328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 006065152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 005770240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 005608336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 005436696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 004873216 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 004661760 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 003906560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 003703296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 003656792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 003550384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 003496448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AI.MachineLearning.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 002765312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 002393600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 002348544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 001677808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 001465472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 001388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 001312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 001291264 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 001267240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2019-11-13 17:18 - 2019-11-13 17:18 - 001200920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 001024712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 000877568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2019-11-13 17:18 - 2019-11-13 17:18 - 000842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 000729088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 000703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 000687104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 000676352 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 000661264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2019-11-13 17:18 - 2019-11-13 17:18 - 000642560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sud.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 000590336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 000548864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptui.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 000547328 _____ (Microsoft Corporation) C:\WINDOWS\system32\VAN.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 000495616 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 000481280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 000473832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 000462336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 000455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 000428032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 000350208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2019-11-13 17:18 - 2019-11-13 17:18 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 000284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 000263360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 000217088 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2019-11-13 17:18 - 2019-11-13 17:18 - 000180736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2019-11-13 17:18 - 2019-11-13 17:18 - 000177664 _____ (Microsoft Corporation) C:\WINDOWS\system32\spacebridge.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 000151552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ComposableShellProxyStub.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prntvpt.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 000105832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpenWith.exe
2019-11-13 17:18 - 2019-11-13 17:18 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usp10.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CapabilityAccessManagerClient.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ApiSetHost.AppExecutionAlias.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AssignedAccessRuntime.dll
2019-11-13 17:18 - 2019-11-13 17:18 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\compact.exe
2019-11-13 17:18 - 2019-11-13 17:18 - 000038912 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 022137120 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 009667896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-11-13 17:17 - 2019-11-13 17:17 - 007700696 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 007656072 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 007645392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 006934016 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 005575168 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 005573232 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 004866560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AI.MachineLearning.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 004413936 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2019-11-13 17:17 - 2019-11-13 17:17 - 004303872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 004049920 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 003872336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2019-11-13 17:17 - 2019-11-13 17:17 - 003637760 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-11-13 17:17 - 2019-11-13 17:17 - 003576832 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 003387392 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 003363640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-11-13 17:17 - 2019-11-13 17:17 - 003333632 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 003082752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 002918200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-11-13 17:17 - 2019-11-13 17:17 - 002871824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2019-11-13 17:17 - 2019-11-13 17:17 - 002848768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 002699976 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 002698752 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 002628112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-11-13 17:17 - 2019-11-13 17:17 - 002421248 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-11-13 17:17 - 2019-11-13 17:17 - 002192384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 002109960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 002072176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 002050560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 001994976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 001966096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2019-11-13 17:17 - 2019-11-13 17:17 - 001933408 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 001929728 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 001918792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 001904128 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 001751432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 001729024 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShell.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 001726480 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 001708544 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 001702600 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-11-13 17:17 - 2019-11-13 17:17 - 001674480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 001668784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 001668752 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 001666440 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 001644544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 001608192 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 001538560 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbengine.exe
2019-11-13 17:17 - 2019-11-13 17:17 - 001486472 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 001473296 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-11-13 17:17 - 2019-11-13 17:17 - 001388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 001346216 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-11-13 17:17 - 2019-11-13 17:17 - 001331536 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 001319936 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 001262592 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 001183504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-11-13 17:17 - 2019-11-13 17:17 - 001180248 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 001098136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 001054712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-11-13 17:17 - 2019-11-13 17:17 - 001050112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2019-11-13 17:17 - 2019-11-13 17:17 - 001022464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000981504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000948224 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000927232 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000888560 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000869888 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000862008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2019-11-13 17:17 - 2019-11-13 17:17 - 000856424 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000834048 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000811536 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000808272 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2019-11-13 17:17 - 2019-11-13 17:17 - 000807424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2019-11-13 17:17 - 2019-11-13 17:17 - 000801792 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000782968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000774144 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2019-11-13 17:17 - 2019-11-13 17:17 - 000773208 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskschd.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000750592 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000747536 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000741688 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000690688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000680184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000664576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000652088 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2019-11-13 17:17 - 2019-11-13 17:17 - 000638480 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000613376 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000604344 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2019-11-13 17:17 - 2019-11-13 17:17 - 000596992 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptui.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000591160 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000588816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2019-11-13 17:17 - 2019-11-13 17:17 - 000575488 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2019-11-13 17:17 - 2019-11-13 17:17 - 000574464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000553784 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000551936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2019-11-13 17:17 - 2019-11-13 17:17 - 000542320 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000535080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2019-11-13 17:17 - 2019-11-13 17:17 - 000520704 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000514600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000513544 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000509968 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2019-11-13 17:17 - 2019-11-13 17:17 - 000505640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000474936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2019-11-13 17:17 - 2019-11-13 17:17 - 000465416 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000462352 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000450632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000445752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2019-11-13 17:17 - 2019-11-13 17:17 - 000435512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fltMgr.sys
2019-11-13 17:17 - 2019-11-13 17:17 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2019-11-13 17:17 - 2019-11-13 17:17 - 000427832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2019-11-13 17:17 - 2019-11-13 17:17 - 000420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000415760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2019-11-13 17:17 - 2019-11-13 17:17 - 000408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000394240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000389408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000383288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2019-11-13 17:17 - 2019-11-13 17:17 - 000367104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wldap32.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000360960 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2019-11-13 17:17 - 2019-11-13 17:17 - 000324624 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000321024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wldap32.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ComposableShellProxyStub.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000303104 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000292352 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManager.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000262152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2019-11-13 17:17 - 2019-11-13 17:17 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnservice.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2019-11-13 17:17 - 2019-11-13 17:17 - 000226816 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000214528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000213304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2019-11-13 17:17 - 2019-11-13 17:17 - 000201528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2019-11-13 17:17 - 2019-11-13 17:17 - 000198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000193336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2019-11-13 17:17 - 2019-11-13 17:17 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\prntvpt.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000164368 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2019-11-13 17:17 - 2019-11-13 17:17 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000160272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pacer.sys
2019-11-13 17:17 - 2019-11-13 17:17 - 000154624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_AppExecutionAlias.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000152896 _____ (Microsoft Corporation) C:\WINDOWS\system32\userenv.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_BackgroundApps.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000141736 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000138112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\userenv.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000132608 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2019-11-13 17:17 - 2019-11-13 17:17 - 000124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tunnel.sys
2019-11-13 17:17 - 2019-11-13 17:17 - 000120352 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpenWith.exe
2019-11-13 17:17 - 2019-11-13 17:17 - 000118480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000112168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys
2019-11-13 17:17 - 2019-11-13 17:17 - 000111104 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstSv.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManagerClient.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShellExtFramework.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2019-11-13 17:17 - 2019-11-13 17:17 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApiSetHost.AppExecutionAlias.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000086840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\npfs.sys
2019-11-13 17:17 - 2019-11-13 17:17 - 000086744 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhostw.exe
2019-11-13 17:17 - 2019-11-13 17:17 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2019-11-13 17:17 - 2019-11-13 17:17 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\usp10.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000071696 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AssignedAccessRuntime.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwm.exe
2019-11-13 17:17 - 2019-11-13 17:17 - 000047616 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\compact.exe
2019-11-13 17:17 - 2019-11-13 17:17 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiredNetworkCSP.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000036368 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2019-11-13 17:17 - 2019-11-13 17:17 - 000023768 _____ (Microsoft Corporation) C:\WINDOWS\system32\nsi.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000020144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nsi.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2019-11-13 17:17 - 2019-11-13 17:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-11-13 17:17 - 2019-11-13 17:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-11-13 17:17 - 2019-11-13 17:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-11-13 17:17 - 2019-11-13 17:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-11-13 17:17 - 2019-11-13 17:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-11-13 17:17 - 2019-11-13 17:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-11-13 17:17 - 2019-11-13 17:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-11-13 17:17 - 2019-11-13 17:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2019-11-13 17:16 - 2019-11-13 17:16 - 002707968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-11-13 17:16 - 2019-11-13 17:16 - 002645504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2019-11-13 17:16 - 2019-11-13 17:16 - 001294792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2019-11-13 17:16 - 2019-11-13 17:16 - 001258512 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-11-13 17:16 - 2019-11-13 17:16 - 001054224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2019-11-13 17:16 - 2019-11-13 17:16 - 001049608 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-11-13 17:16 - 2019-11-13 17:16 - 000775768 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
2019-11-13 17:16 - 2019-11-13 17:16 - 000667664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2019-11-13 17:16 - 2019-11-13 17:16 - 000536320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskschd.dll
2019-11-13 17:16 - 2019-11-13 17:16 - 000520208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Vid.sys
2019-11-13 17:16 - 2019-11-13 17:16 - 000385848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-11-13 17:16 - 2019-11-13 17:16 - 000198968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys
2019-11-13 17:16 - 2019-11-13 17:16 - 000166400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spacebridge.dll
2019-11-13 17:16 - 2019-11-13 17:16 - 000110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinHvPlatform.dll
2019-11-13 17:16 - 2019-11-13 17:16 - 000090632 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-11-13 17:16 - 2019-11-13 17:16 - 000087080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhvr.sys
2019-11-13 17:16 - 2019-11-13 17:16 - 000080400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2019-11-13 17:16 - 2019-11-13 17:16 - 000061480 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvhostsvc.dll
2019-11-10 15:26 - 2019-11-10 15:26 - 000000922 _____ C:\Users\Radka\Desktop\Tunis_2005 – zástupce.lnk
2019-11-05 16:36 - 2019-11-05 16:36 - 000000000 ____D C:\Users\Radka\Desktop\docs
2019-11-05 16:36 - 2014-10-29 11:18 - 007908160 _____ C:\Users\Radka\Desktop\kindlegen.exe
2019-11-05 16:35 - 2019-11-05 16:35 - 002791762 _____ C:\Users\Radka\Downloads\kindlegen_win32_v2_9.zip
2019-11-04 18:07 - 2019-11-04 19:21 - 816479616 _____ C:\Users\Radka\Downloads\Ženy v běhu-komedie ČR 2019.avi
2019-11-04 18:06 - 2019-11-04 18:06 - 004264258 _____ C:\Users\Radka\Documents\drive-download-20191104T170607Z-001.zip

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-12-04 18:46 - 2015-01-29 18:13 - 000000000 ____D C:\Users\Radka\Desktop\PC_HELP
2019-12-04 18:41 - 2018-07-31 16:50 - 000000000 ____D C:\Users\Radka\AppData\Local\CrashDumps
2019-12-04 18:40 - 2018-09-15 08:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-12-04 18:37 - 2015-12-10 15:37 - 000000000 ___RD C:\Users\Radka\Disk Google
2019-12-04 18:29 - 2019-01-23 18:08 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-12-04 18:28 - 2018-09-15 07:09 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-12-04 17:01 - 2017-11-08 22:11 - 000000000 ____D C:\Users\Radka\AppData\Local\VirtualStore
2019-12-04 16:43 - 2018-09-15 08:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-12-04 16:43 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-12-03 21:08 - 2019-01-23 17:42 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-12-03 20:01 - 2018-09-15 08:31 - 000000000 ____D C:\WINDOWS\INF
2019-11-28 22:52 - 2019-01-27 18:50 - 000000000 ____D C:\Users\Radka\AppData\Roaming\IObit
2019-11-28 22:52 - 2019-01-27 18:50 - 000000000 ____D C:\ProgramData\IObit
2019-11-28 19:10 - 2018-09-15 08:33 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2019-11-28 18:43 - 2017-11-08 22:20 - 000000000 ____D C:\Users\Radka\AppData\Local\Comms
2019-11-26 15:20 - 2019-06-09 17:01 - 000002365 _____ C:\Users\Radka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-11-26 15:20 - 2019-01-23 18:08 - 000003366 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4093243053-2182908791-2126085259-1001
2019-11-26 15:20 - 2016-08-02 16:32 - 000000000 ___RD C:\Users\Radka\OneDrive
2019-11-24 16:49 - 2017-11-08 22:46 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2019-11-20 22:35 - 2019-01-23 17:48 - 000000000 ____D C:\Users\Radka
2019-11-20 19:53 - 2013-01-26 08:53 - 000000000 ____D C:\Users\Radka\Documents\Záloha
2019-11-19 15:31 - 2017-11-08 22:24 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-11-19 15:31 - 2017-11-08 22:24 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-11-17 16:47 - 2019-03-05 15:26 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-11-14 19:01 - 2017-12-10 20:41 - 000000000 ____D C:\Users\Radka\AppData\Local\Packages
2019-11-14 17:43 - 2019-01-23 17:58 - 001693640 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-11-14 17:43 - 2018-09-15 18:32 - 000716944 _____ C:\WINDOWS\system32\perfh005.dat
2019-11-14 17:43 - 2018-09-15 18:32 - 000145024 _____ C:\WINDOWS\system32\perfc005.dat
2019-11-14 17:37 - 2017-12-10 21:04 - 000000000 ___RD C:\Users\Radka\3D Objects
2019-11-14 17:37 - 2016-08-02 16:22 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-11-14 17:35 - 2019-01-23 17:42 - 000441416 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-11-13 21:37 - 2018-09-15 08:33 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2019-11-13 21:37 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2019-11-13 21:37 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-11-13 21:37 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\appraiser
2019-11-13 21:37 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-11-13 21:37 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2019-11-13 21:37 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-11-13 21:37 - 2018-09-15 07:09 - 000000000 ____D C:\WINDOWS\system32\Dism
2019-11-13 17:33 - 2017-11-09 16:26 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-11-13 17:26 - 2018-09-15 08:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-11-13 17:26 - 2017-11-09 16:22 - 128443096 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-11-13 16:47 - 2017-11-09 16:33 - 000748816 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2019-11-12 19:20 - 2017-12-10 08:48 - 000000000 ____D C:\Users\Radka\AppData\Roaming\vlc
2019-11-12 19:11 - 2017-12-10 08:47 - 000000916 _____ C:\Users\Public\Desktop\VLC media player.lnk
2019-11-10 19:56 - 2018-08-27 18:03 - 000000000 ____D C:\Program Files\CCleaner
2019-11-09 15:03 - 2013-10-31 15:20 - 000162816 _____ C:\Users\Radka\Uniplánkal 1 .xls
2019-11-05 16:25 - 2019-01-23 18:08 - 000003474 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2019-11-05 16:25 - 2019-01-23 18:08 - 000003350 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2019-11-05 16:24 - 2017-11-08 22:24 - 000000000 ____D C:\Program Files (x86)\Google

==================== Files in the root of some directories ========

2017-11-09 16:54 - 2017-11-09 16:54 - 000037051 _____ () C:\Users\Radka\AppData\Roaming\Hodnoty oddělené čárkami.ADR
2019-02-11 16:49 - 2019-02-11 16:49 - 000000001 _____ () C:\Users\Radka\AppData\Local\llftool.4.40.agreement
2018-08-08 16:29 - 2018-08-08 16:29 - 000000017 _____ () C:\Users\Radka\AppData\Local\resmon.resmoncfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Kito
Level 1.5
Level 1.5
Příspěvky: 104
Registrován: srpen 09
Pohlaví: Muž
Stav:
Offline

Re: Pomalý PC - prosím o kontrolu logu

Příspěvekod Kito » 04 pro 2019 19:11

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 02-12-2019
Ran by Radka (04-12-2019 18:58:54)
Running from C:\Users\Radka\Desktop
Windows 10 Home Version 1809 17763.864 (X64) (2019-01-23 17:09:45)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-4093243053-2182908791-2126085259-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-4093243053-2182908791-2126085259-503 - Limited - Disabled)
Guest (S-1-5-21-4093243053-2182908791-2126085259-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-4093243053-2182908791-2126085259-1002 - Limited - Enabled)
Radka (S-1-5-21-4093243053-2182908791-2126085259-1001 - Administrator - Enabled) => C:\Users\Radka
WDAGUtilityAccount (S-1-5-21-4093243053-2182908791-2126085259-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 19.021.20056 - Adobe Systems Incorporated)
ANT Drivers Installer x64 (HKLM\...\{13411D72-7171-440B-978A-ECAA06920C4C}) (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden
Backup and Sync from Google (HKLM\...\{93EBD8BA-7A14-4636-8F1F-E929ADF2C3A9}) (Version: 3.47.7654.0300 - Google, Inc.)
Balíček ovladače systému Windows - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.)
Balíček ovladače systému Windows - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software)
CCleaner (HKLM\...\CCleaner) (Version: 5.62 - Piriform)
Elevated Installer (HKLM-x32\...\{4E108B93-9865-45BF-A565-865AE20AC7FC}) (Version: 6.18.0.0 - Garmin Ltd or its subsidiaries) Hidden
FastStone Image Viewer 6.4 (HKLM-x32\...\FastStone Image Viewer) (Version: 6.4 - FastStone Soft)
Garmin Express (HKLM-x32\...\{D646C2CC-7782-4B95-B1C8-D9503409A40A}) (Version: 6.18.0.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin Express (HKLM-x32\...\{ffecb7df-db17-4a27-9f6b-d61ba2d7bcff}) (Version: 6.18.0.0 - Garmin Ltd or its subsidiaries)
Garmin MapSource (HKLM-x32\...\{AFBAB9A0-DDE8-49AE-8C17-A01B61BEE64B}) (Version: 6.16.3 - Garmin Ltd or its subsidiaries)
Garmin USB Drivers (HKLM-x32\...\{510D2239-6C2E-457B-9590-485EC552D94D}) (Version: 2.3.0.0 - Garmin Ltd or its subsidiaries)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 78.0.3904.108 - Google LLC)
Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.341 - Google LLC) Hidden
Malwarebytes version 4.0.4.49 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.0.4.49 - Malwarebytes)
Microsoft Office 365 ProPlus - cs-cz (HKLM\...\O365ProPlusRetail - cs-cz) (Version: 16.0.11328.20468 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 - cs-cz (HKLM\...\ProPlusRetail - cs-cz) (Version: 16.0.11328.20468 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-4093243053-2182908791-2126085259-1001\...\OneDriveSetup.exe) (Version: 19.192.0926.0012 - Microsoft Corporation)
MoZiLive 1.5.9.8 (HKLM-x32\...\{D1464D57-8585-4CE1-B219-D977157E530E}_is1) (Version: 1.5.9.8 - KlaMa)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.11328.20468 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.11328.20468 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.11328.20468 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.11328.20468 - Microsoft Corporation) Hidden
Rajče průvodce verze 1.59.54.269 (HKLM-x32\...\rajce.net_is1) (Version: - rajce.net)
Sophos Virus Removal Tool (HKLM-x32\...\{B829E117-D072-41EA-9606-9826A38D34C1}) (Version: 2.7.0 - Sophos Limited)
TOPO Czech PRO 2013 (HKLM-x32\...\{8E2A1F3F-0E67-4B33-B8F4-A2A53FDDD844}) (Version: 7.00 - PICODAS PRAHA, spol. s r.o.)
Total Commander 64+32-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.10 - Ghisler Software GmbH)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{F814D094-197F-43C8-87FA-3210BB780486}) (Version: 2.53.0.0 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.8 - VideoLAN)
Windows Driver Package - Garmin (grmnusb) GARMIN Devices (06/03/2009 2.3.0.0) (HKLM\...\49CF605F02C7954F4E139D18828DE298CD59217C) (Version: 06/03/2009 2.3.0.0 - Garmin)
Zemana AntiMalware verze 3.1.495 (HKLM-x32\...\{4E1F3677-C72E-4F7D-B66E-85467B1A289E}_is1) (Version: 3.1.495 - Zemana)

Packages:
=========
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2019-11-05] (Autodesk Inc.)
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.151.300.0_x86__kgqvnymyfvs32 [2019-10-31] (king.com)
Horizon Go CZ -> C:\Program Files\WindowsApps\LibertyGlobal.HorizonGoCZ_2.12.0.0_x64__gmwgfebrpy77e [2019-08-07] (Liberty Global)
Keeper - Password Manager & Secure File Storage -> C:\Program Files\WindowsApps\KeeperSecurityInc.Keeper_14.0.33.0_x64__kejf07qmg0jnm [2019-07-29] (Keeper Security Inc)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-28] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-28] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.4.11052.0_x64__8wekyb3d8bbwe [2019-11-08] (Microsoft Studios) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.33.13253.0_x64__8wekyb3d8bbwe [2019-11-24] (Microsoft Corporation) [MS Ad]
Pošta a Kalendář -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12228.20276.0_x64__8wekyb3d8bbwe [2019-11-25] (Microsoft Corporation) [MS Ad]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-10-24] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-10-24] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-10-24] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [2.0 Zemana AntiMalware] -> {6ABB1C11-E261-4CEA-BBB5-3836225689DD} => C:\Program Files (x86)\Zemana\AntiMalware\AM_ShellExt64.dll [2019-11-04] (Zemana D.O.O. Sarajevo -> Advanced Malware Protection. Copyright 2019.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2019-10-24] (Google LLC -> Google)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-11-28] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2019-10-24] (Google LLC -> Google)
ContextMenuHandlers6: [2.0 Zemana AntiMalware] -> {6ABB1C11-E261-4CEA-BBB5-3836225689DD} => C:\Program Files (x86)\Zemana\AntiMalware\AM_ShellExt64.dll [2019-11-04] (Zemana D.O.O. Sarajevo -> Advanced Malware Protection. Copyright 2019.)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-11-28] (Malwarebytes Corporation -> Malwarebytes)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\Radka\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 1"

==================== Loaded Modules (Whitelisted) =============

2019-12-04 18:30 - 2019-12-04 18:30 - 000114176 _____ () [File not signed] C:\Users\Radka\AppData\Local\Temp\_MEI70842\_ctypes.pyd
2019-12-04 18:30 - 2019-12-04 18:30 - 000173056 _____ () [File not signed] C:\Users\Radka\AppData\Local\Temp\_MEI70842\_elementtree.pyd
2019-12-04 18:30 - 2019-12-04 18:30 - 001808896 _____ () [File not signed] C:\Users\Radka\AppData\Local\Temp\_MEI70842\_hashlib.pyd
2019-12-04 18:30 - 2019-12-04 18:30 - 000032256 _____ () [File not signed] C:\Users\Radka\AppData\Local\Temp\_MEI70842\_multiprocessing.pyd
2019-12-04 18:30 - 2019-12-04 18:30 - 000046080 _____ () [File not signed] C:\Users\Radka\AppData\Local\Temp\_MEI70842\_psutil_windows.pyd
2019-12-04 18:30 - 2019-12-04 18:30 - 000047616 _____ () [File not signed] C:\Users\Radka\AppData\Local\Temp\_MEI70842\_socket.pyd
2019-12-04 18:30 - 2019-12-04 18:30 - 002241024 _____ () [File not signed] C:\Users\Radka\AppData\Local\Temp\_MEI70842\_ssl.pyd
2019-12-04 18:30 - 2019-12-04 18:30 - 000026112 _____ () [File not signed] C:\Users\Radka\AppData\Local\Temp\_MEI70842\_yappi.pyd
2019-12-04 18:30 - 2019-12-04 18:30 - 000080896 _____ () [File not signed] C:\Users\Radka\AppData\Local\Temp\_MEI70842\bz2.pyd
2019-12-04 18:30 - 2019-12-04 18:30 - 000016384 _____ () [File not signed] C:\Users\Radka\AppData\Local\Temp\_MEI70842\common.time34.pyd
2019-12-04 18:30 - 2019-12-04 18:30 - 000007680 _____ () [File not signed] C:\Users\Radka\AppData\Local\Temp\_MEI70842\hashobjs_ext.pyd
2019-12-04 18:30 - 2019-12-04 18:30 - 000301568 _____ () [File not signed] C:\Users\Radka\AppData\Local\Temp\_MEI70842\PIL._imaging.pyd
2019-12-04 18:30 - 2019-12-04 18:30 - 000169472 _____ () [File not signed] C:\Users\Radka\AppData\Local\Temp\_MEI70842\pyexpat.pyd
2019-12-04 18:30 - 2019-12-04 18:30 - 001084416 _____ () [File not signed] C:\Users\Radka\AppData\Local\Temp\_MEI70842\pysqlite2._sqlite.pyd
2019-12-04 18:30 - 2019-12-04 18:30 - 000548864 _____ () [File not signed] C:\Users\Radka\AppData\Local\Temp\_MEI70842\pythoncom27.dll
2019-12-04 18:30 - 2019-12-04 18:30 - 000137728 _____ () [File not signed] C:\Users\Radka\AppData\Local\Temp\_MEI70842\pywintypes27.dll
2019-12-04 18:30 - 2019-12-04 18:30 - 000010752 _____ () [File not signed] C:\Users\Radka\AppData\Local\Temp\_MEI70842\select.pyd
2019-12-04 18:30 - 2019-12-04 18:30 - 000020992 _____ () [File not signed] C:\Users\Radka\AppData\Local\Temp\_MEI70842\thumbnails_ext.pyd
2019-12-04 18:30 - 2019-12-04 18:30 - 000689664 _____ () [File not signed] C:\Users\Radka\AppData\Local\Temp\_MEI70842\unicodedata.pyd
2019-12-04 18:30 - 2019-12-04 18:30 - 000119808 _____ () [File not signed] C:\Users\Radka\AppData\Local\Temp\_MEI70842\usb_ext.pyd
2019-12-04 18:30 - 2019-12-04 18:30 - 000128512 _____ () [File not signed] C:\Users\Radka\AppData\Local\Temp\_MEI70842\win32api.pyd
2019-12-04 18:30 - 2019-12-04 18:30 - 000438784 _____ () [File not signed] C:\Users\Radka\AppData\Local\Temp\_MEI70842\win32com.shell.shell.pyd
2019-12-04 18:30 - 2019-12-04 18:30 - 000011776 _____ () [File not signed] C:\Users\Radka\AppData\Local\Temp\_MEI70842\win32crypt.pyd
2019-12-04 18:30 - 2019-12-04 18:30 - 000023040 _____ () [File not signed] C:\Users\Radka\AppData\Local\Temp\_MEI70842\win32event.pyd
2019-12-04 18:30 - 2019-12-04 18:30 - 000149504 _____ () [File not signed] C:\Users\Radka\AppData\Local\Temp\_MEI70842\win32file.pyd
2019-12-04 18:30 - 2019-12-04 18:30 - 000223232 _____ () [File not signed] C:\Users\Radka\AppData\Local\Temp\_MEI70842\win32gui.pyd
2019-12-04 18:30 - 2019-12-04 18:30 - 000048128 _____ () [File not signed] C:\Users\Radka\AppData\Local\Temp\_MEI70842\win32inet.pyd
2019-12-04 18:30 - 2019-12-04 18:30 - 000029696 _____ () [File not signed] C:\Users\Radka\AppData\Local\Temp\_MEI70842\win32pdh.pyd
2019-12-04 18:30 - 2019-12-04 18:30 - 000027648 _____ () [File not signed] C:\Users\Radka\AppData\Local\Temp\_MEI70842\win32pipe.pyd
2019-12-04 18:30 - 2019-12-04 18:30 - 000044032 _____ () [File not signed] C:\Users\Radka\AppData\Local\Temp\_MEI70842\win32process.pyd
2019-12-04 18:30 - 2019-12-04 18:30 - 000020480 _____ () [File not signed] C:\Users\Radka\AppData\Local\Temp\_MEI70842\win32profile.pyd
2019-12-04 18:30 - 2019-12-04 18:30 - 000136192 _____ () [File not signed] C:\Users\Radka\AppData\Local\Temp\_MEI70842\win32security.pyd
2019-12-04 18:30 - 2019-12-04 18:30 - 000026624 _____ () [File not signed] C:\Users\Radka\AppData\Local\Temp\_MEI70842\win32ts.pyd
2019-12-04 18:30 - 2019-12-04 18:30 - 000034816 _____ () [File not signed] C:\Users\Radka\AppData\Local\Temp\_MEI70842\windows.conditional.pyd
2019-12-04 18:30 - 2019-12-04 18:30 - 000038400 _____ () [File not signed] C:\Users\Radka\AppData\Local\Temp\_MEI70842\windows.connectivity.pyd
2019-12-04 18:30 - 2019-12-04 18:30 - 000071680 _____ () [File not signed] C:\Users\Radka\AppData\Local\Temp\_MEI70842\windows.device_monitor.pyd
2019-12-04 18:30 - 2019-12-04 18:30 - 000109056 _____ () [File not signed] C:\Users\Radka\AppData\Local\Temp\_MEI70842\windows.volumes.pyd
2019-12-04 18:30 - 2019-12-04 18:30 - 000020480 _____ () [File not signed] C:\Users\Radka\AppData\Local\Temp\_MEI70842\windows.winwrap.pyd
2019-12-04 18:30 - 2019-12-04 18:30 - 001325056 _____ () [File not signed] C:\Users\Radka\AppData\Local\Temp\_MEI70842\wx._controls_.pyd
2019-12-04 18:30 - 2019-12-04 18:30 - 001489408 _____ () [File not signed] C:\Users\Radka\AppData\Local\Temp\_MEI70842\wx._core_.pyd
2019-12-04 18:30 - 2019-12-04 18:30 - 001007104 _____ () [File not signed] C:\Users\Radka\AppData\Local\Temp\_MEI70842\wx._gdi_.pyd
2019-12-04 18:30 - 2019-12-04 18:30 - 000103424 _____ () [File not signed] C:\Users\Radka\AppData\Local\Temp\_MEI70842\wx._html2.pyd
2019-12-04 18:30 - 2019-12-04 18:30 - 000916992 _____ () [File not signed] C:\Users\Radka\AppData\Local\Temp\_MEI70842\wx._misc_.pyd
2019-12-04 18:30 - 2019-12-04 18:30 - 001039872 _____ () [File not signed] C:\Users\Radka\AppData\Local\Temp\_MEI70842\wx._windows_.pyd
2019-12-04 18:30 - 2019-12-04 18:30 - 003042816 _____ (Python Software Foundation) [File not signed] C:\Users\Radka\AppData\Local\Temp\_MEI70842\python27.dll
2019-12-04 18:30 - 2019-12-04 18:30 - 000202240 _____ (wxWidgets development team) [File not signed] C:\Users\Radka\AppData\Local\Temp\_MEI70842\wxbase30u_net_vc90_x64.dll
2019-12-04 18:30 - 2019-12-04 18:30 - 002831872 _____ (wxWidgets development team) [File not signed] C:\Users\Radka\AppData\Local\Temp\_MEI70842\wxbase30u_vc90_x64.dll
2019-12-04 18:30 - 2019-12-04 18:30 - 001654784 _____ (wxWidgets development team) [File not signed] C:\Users\Radka\AppData\Local\Temp\_MEI70842\wxmsw30u_adv_vc90_x64.dll
2019-12-04 18:30 - 2019-12-04 18:30 - 006542336 _____ (wxWidgets development team) [File not signed] C:\Users\Radka\AppData\Local\Temp\_MEI70842\wxmsw30u_core_vc90_x64.dll
2019-12-04 18:30 - 2019-12-04 18:30 - 000773632 _____ (wxWidgets development team) [File not signed] C:\Users\Radka\AppData\Local\Temp\_MEI70842\wxmsw30u_html_vc90_x64.dll
2019-12-04 18:30 - 2019-12-04 18:30 - 000137216 _____ (wxWidgets development team) [File not signed] C:\Users\Radka\AppData\Local\Temp\_MEI70842\wxmsw30u_webview_vc90_x64.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\amsdk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\amsdk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-4093243053-2182908791-2126085259-1001\...\sharepoint.com -> hxxps://vigcz-files.sharepoint.com

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2017-11-08 21:32 - 2019-12-03 21:28 - 000000841 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-4093243053-2182908791-2126085259-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is disabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKU\S-1-5-21-4093243053-2182908791-2126085259-1001\...\StartupApproved\Run: => "GarminExpressTrayApp"
HKU\S-1-5-21-4093243053-2182908791-2126085259-1001\...\StartupApproved\Run: => "GarminExpress"
HKU\S-1-5-21-4093243053-2182908791-2126085259-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{B6EBFCC2-820D-4AD1-8891-E6A29943E154}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{09E57421-947E-4147-A84C-238B276301BD}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{B6FEEAEF-568E-4BD2-A731-D0FDAD736B7A}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1518CAA8-BE1D-42F8-96DE-174B7437A849}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{9D1FE1A4-47DD-49ED-8E3A-6025851DF5DA}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{127862F7-E6EA-4B06-86F7-E9FC8B7B64B2}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{17D538FB-8E90-492E-8A59-54EBF80F6062}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{3071F8AA-7004-44FB-866F-250FD8DE34D0}C:\program files (x86)\mozilive\mozilive.exe] => (Allow) C:\program files (x86)\mozilive\mozilive.exe (KlaMa -> Home Made) [File not signed]
FirewallRules: [TCP Query User{6469078D-81B2-4E4F-AA74-76D241FB9FDB}C:\program files (x86)\mozilive\mozilive.exe] => (Allow) C:\program files (x86)\mozilive\mozilive.exe (KlaMa -> Home Made) [File not signed]
FirewallRules: [UDP Query User{AEB49398-D55A-4EC4-82F6-19FE7FE050E9}C:\totalcmd\totalcmd.exe] => (Allow) C:\totalcmd\totalcmd.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [TCP Query User{BBA578D1-5B3F-4D55-B99D-0119AAAD6612}C:\totalcmd\totalcmd.exe] => (Allow) C:\totalcmd\totalcmd.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [UDP Query User{D0F367F3-E4E8-4169-B9DE-43281E379A5B}C:\mozigo\mozigo.exe] => (Allow) C:\mozigo\mozigo.exe (Home) [File not signed]
FirewallRules: [TCP Query User{CBD880F2-EA02-4564-B2C4-21D2EB1E5AF0}C:\mozigo\mozigo.exe] => (Allow) C:\mozigo\mozigo.exe (Home) [File not signed]
FirewallRules: [{86ED4DE8-7C88-4055-B637-997A70476624}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

12-11-2019 19:41:19 Naplánovaný kontrolní bod
21-11-2019 18:43:04 Naplánovaný kontrolní bod
28-11-2019 23:06:48 JRT Pre-Junkware Removal
03-12-2019 19:59:33 Windows Update

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (12/04/2019 06:41:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: MicrosoftEdge.exe, verze: 11.0.17763.831, časové razítko: 0x5d969e25
Název chybujícího modulu: edgeIso.dll, verze: 11.0.17763.771, časové razítko: 0x9eff4e22
Kód výjimky: 0xc0000409
Posun chyby: 0x0000000000031c4a
ID chybujícího procesu: 0x1698
Čas spuštění chybující aplikace: 0x01d5aaca0a70e3a1
Cesta k chybující aplikaci: C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\edgeIso.dll
ID zprávy: c3329e00-6236-47eb-b8d6-399e07d7768a
Úplný název chybujícího balíčku: Microsoft.MicrosoftEdge_44.17763.831.0_neutral__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: MicrosoftEdge

Error: (12/04/2019 06:33:45 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: MicrosoftEdge.exe, verze: 11.0.17763.831, časové razítko: 0x5d969e25
Název chybujícího modulu: edgeIso.dll, verze: 11.0.17763.771, časové razítko: 0x9eff4e22
Kód výjimky: 0xc0000409
Posun chyby: 0x0000000000031c4a
ID chybujícího procesu: 0x20a0
Čas spuštění chybující aplikace: 0x01d5aac8f723a101
Cesta k chybující aplikaci: C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\edgeIso.dll
ID zprávy: 795a2efc-6e08-478a-aa02-54726f19bb04
Úplný název chybujícího balíčku: Microsoft.MicrosoftEdge_44.17763.831.0_neutral__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: MicrosoftEdge

Error: (12/04/2019 06:33:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: MicrosoftEdge.exe, verze: 11.0.17763.831, časové razítko: 0x5d969e25
Název chybujícího modulu: edgeIso.dll, verze: 11.0.17763.771, časové razítko: 0x9eff4e22
Kód výjimky: 0xc0000409
Posun chyby: 0x0000000000031c4a
ID chybujícího procesu: 0x1d50
Čas spuštění chybující aplikace: 0x01d5aac8a3f21218
Cesta k chybující aplikaci: C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\edgeIso.dll
ID zprávy: e6a1d704-2a19-4df2-a574-60775e33ebdd
Úplný název chybujícího balíčku: Microsoft.MicrosoftEdge_44.17763.831.0_neutral__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: MicrosoftEdge

Error: (12/04/2019 06:33:02 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program MicrosoftEdge.exe verze 11.0.17763.831 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 1d50

Čas spuštění: 01d5aac8a3f21218

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe

ID hlášení: 818b490c-7b96-4516-9d7a-6401b68fd18e

Úplný název balíčku s chybou: Microsoft.MicrosoftEdge_44.17763.831.0_neutral__8wekyb3d8bbwe

ID aplikace relativní podle balíčku s chybou: MicrosoftEdge

Typ zablokování: Unknown

Error: (12/04/2019 06:29:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: MicrosoftEdge.exe, verze: 11.0.17763.831, časové razítko: 0x5d969e25
Název chybujícího modulu: edgeIso.dll, verze: 11.0.17763.771, časové razítko: 0x9eff4e22
Kód výjimky: 0xc0000409
Posun chyby: 0x0000000000031c4a
ID chybujícího procesu: 0x1658
Čas spuštění chybující aplikace: 0x01d5aac8672af421
Cesta k chybující aplikaci: C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\edgeIso.dll
ID zprávy: 02be6055-bc39-4173-ab7c-2a3837db4942
Úplný název chybujícího balíčku: Microsoft.MicrosoftEdge_44.17763.831.0_neutral__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: MicrosoftEdge

Error: (12/04/2019 06:27:33 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: MicrosoftEdge.exe, verze: 11.0.17763.831, časové razítko: 0x5d969e25
Název chybujícího modulu: edgeIso.dll, verze: 11.0.17763.771, časové razítko: 0x9eff4e22
Kód výjimky: 0xc0000409
Posun chyby: 0x0000000000031c4a
ID chybujícího procesu: 0x23c
Čas spuštění chybující aplikace: 0x01d5aac81ba00739
Cesta k chybující aplikaci: C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\edgeIso.dll
ID zprávy: 705fb854-15c9-407d-801f-25845824b0e4
Úplný název chybujícího balíčku: Microsoft.MicrosoftEdge_44.17763.831.0_neutral__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: MicrosoftEdge

Error: (12/04/2019 06:27:21 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: MicrosoftEdge.exe, verze: 11.0.17763.831, časové razítko: 0x5d969e25
Název chybujícího modulu: edgeIso.dll, verze: 11.0.17763.771, časové razítko: 0x9eff4e22
Kód výjimky: 0xc0000409
Posun chyby: 0x0000000000031c4a
ID chybujícího procesu: 0x212c
Čas spuštění chybující aplikace: 0x01d5aac814f68c7a
Cesta k chybující aplikaci: C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\edgeIso.dll
ID zprávy: 1a0916f8-373c-42f6-b97c-fb016015f436
Úplný název chybujícího balíčku: Microsoft.MicrosoftEdge_44.17763.831.0_neutral__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: MicrosoftEdge

Error: (12/04/2019 06:26:46 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: MicrosoftEdge.exe, verze: 11.0.17763.831, časové razítko: 0x5d969e25
Název chybujícího modulu: edgeIso.dll, verze: 11.0.17763.771, časové razítko: 0x9eff4e22
Kód výjimky: 0xc0000409
Posun chyby: 0x0000000000031c4a
ID chybujícího procesu: 0xbec
Čas spuštění chybující aplikace: 0x01d5aac7ffae8a3c
Cesta k chybující aplikaci: C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\edgeIso.dll
ID zprávy: 538dec1b-eb86-4b15-8240-89638a3f202f
Úplný název chybujícího balíčku: Microsoft.MicrosoftEdge_44.17763.831.0_neutral__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: MicrosoftEdge


System errors:
=============
Error: (12/04/2019 06:47:28 PM) (Source: DCOM) (EventID: 10016) (User: Radka-PC)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
a APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
uživateli Radka-PC\Radka (SID: S-1-5-21-4093243053-2182908791-2126085259-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (12/04/2019 06:41:39 PM) (Source: DCOM) (EventID: 10016) (User: Radka-PC)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
a APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
uživateli Radka-PC\Radka (SID: S-1-5-21-4093243053-2182908791-2126085259-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (12/04/2019 06:35:34 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID
Windows.SecurityCenter.SecurityAppBroker
a APPID
Není k dispozici
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (12/04/2019 06:35:34 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID
Windows.SecurityCenter.WscBrokerManager
a APPID
Není k dispozici
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (12/04/2019 06:33:53 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Zprostředkovatel monitorování Ochrany System Guard v režimu runtime přestala během spouštění reagovat.

Error: (12/04/2019 06:30:55 PM) (Source: DCOM) (EventID: 10016) (User: Radka-PC)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
a APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
uživateli Radka-PC\Radka (SID: S-1-5-21-4093243053-2182908791-2126085259-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (12/04/2019 06:27:57 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: Služba DCOM zjistila chybu 1115 při pokusu o spuštění služby SecurityHealthService s argumenty Není k dispozici za účelem spuštění serveru:
{2D15188C-D298-4E10-83B2-64666CCBEBBD}

Error: (12/04/2019 05:05:11 PM) (Source: DCOM) (EventID: 10016) (User: Radka-PC)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
a APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
uživateli Radka-PC\Radka (SID: S-1-5-21-4093243053-2182908791-2126085259-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.


Windows Defender:
===================================
Date: 2019-11-20 22:06:34.757
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {1788565C-58A2-4B55-B2D6-49209350BFA8}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2019-11-20 20:16:03.102
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {A9FB3D99-ECE1-46AD-9A99-E23F0B116B9A}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2019-11-14 20:19:09.354
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {7A68679E-42F1-4B84-9572-0BBFC808492C}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2019-10-13 19:52:47.329
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {23291A74-15D9-4C64-8FDA-36C6CA87A51F}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2019-10-13 19:37:17.185
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {8763910F-C71F-4500-918B-729459014549}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2019-11-29 07:22:22.763
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o načtení podpisů a pokusí se o obnovení sady podpisů, jejichž správnost je potvrzena.
Podpisy, které se měly načíst: Zálohování
Kód chyby: 0x80004004
Popis chyby: Operace přerušena
Verze podpisu: 1.305.2893.0;1.305.2893.0
Verze modulu: 1.1.16500.1

Date: 2019-11-29 07:22:21.458
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o načtení podpisů a pokusí se o obnovení sady podpisů, jejichž správnost je potvrzena.
Podpisy, které se měly načíst: Aktuální
Kód chyby: 0x80508001
Popis chyby: Potíže neumožňují spuštění programu. Nainstalujte všechny dostupné aktualizace a zkuste daný program spustit znovu. Informace o instalaci aktualizací najdete v nápovědě a podpoře.
Verze podpisu: 1.305.2994.0;1.305.2994.0
Verze modulu: 1.1.16500.1

Date: 2019-11-01 19:01:37.962
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.305.1165.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16500.1
Kód chyby: 0x80240016
Popis chyby :Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.

Date: 2019-10-30 17:57:20.101
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.305.926.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16500.1
Kód chyby: 0x80240016
Popis chyby :Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.

Date: 2019-10-13 18:15:31.877
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.303.1350.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16400.2
Kód chyby: 0x80240016
Popis chyby :Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.

CodeIntegrity:
===================================

Date: 2019-12-04 16:47:29.095
Description:
Windows blocked file \Device\HarddiskVolume2\Windows\System32\scrobj.dll which has been disallowed for protected processes.

Date: 2019-12-04 16:47:29.062
Description:
Windows blocked file \Device\HarddiskVolume2\Windows\System32\scrobj.dll which has been disallowed for protected processes.

Date: 2019-12-04 16:47:29.038
Description:
Windows blocked file \Device\HarddiskVolume2\Windows\System32\scrobj.dll which has been disallowed for protected processes.

Date: 2019-12-04 16:47:29.012
Description:
Windows blocked file \Device\HarddiskVolume2\Windows\System32\scrobj.dll which has been disallowed for protected processes.

Date: 2019-12-04 16:47:29.005
Description:
Windows blocked file \Device\HarddiskVolume2\Windows\System32\scrobj.dll which has been disallowed for protected processes.

Date: 2019-12-04 16:47:28.977
Description:
Windows blocked file \Device\HarddiskVolume2\Windows\System32\scrobj.dll which has been disallowed for protected processes.

Date: 2019-12-04 16:47:28.970
Description:
Windows blocked file \Device\HarddiskVolume2\Windows\System32\scrobj.dll which has been disallowed for protected processes.

Date: 2019-12-04 16:47:28.958
Description:
Windows blocked file \Device\HarddiskVolume2\Windows\System32\scrobj.dll which has been disallowed for protected processes.

==================== Memory info ===========================

BIOS: American Megatrends Inc. V26.7 08/09/2011
Motherboard: MSI G41M-P26 (MS-7592)
Processor: Intel(R) Celeron(R) CPU E3400 @ 2.60GHz
Percentage of memory in use: 49%
Total physical RAM: 4061.24 MB
Available physical RAM: 2049.09 MB
Total Virtual: 5725.24 MB
Available Virtual: 3528.62 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:465.56 GB) (Free:278.51 GB) NTFS

\\?\Volume{0c81697b-5270-11e1-b6d5-806e6f6e6963}\ () (Fixed) (Total:0.2 GB) (Free:0.16 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: ECA31D0F)
Partition 1: (Active) - (Size=200 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.6 GB) - (Type=07 NTFS)

==================== End of Addition.txt =======================

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43054
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Pomalý PC - prosím o kontrolu logu

Příspěvekod jaro3 » 04 pro 2019 22:01

Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.

Kód: Vybrat vše

Start
CreateRestorePoint:
CloseProcesses:
HKU\S-1-5-21-4093243053-2182908791-2126085259-1001\...\MountPoints2: {1faecd92-bf79-11e9-bc42-8c89a560284a} - "E:\Lenovo_Suite.exe"
Task: {16B992CB-2A5D-4414-A377-EEB44D7C8CA3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-11-08] (Google Inc -> Google Inc.)
Task: {3E286AD7-82AE-4477-AC58-2B68CC39939D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-11-08] (Google Inc -> Google Inc.)
SearchScopes: HKU\S-1-5-21-4093243053-2182908791-2126085259-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-4093243053-2182908791-2126085259-1001 -> {0E1DA270-ADBD-4632-A263-F13AE2834E04} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-4093243053-2182908791-2126085259-1001 -> {1E5DC009-5EF1-4947-89B5-CC1DB0B9E29F} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-4093243053-2182908791-2126085259-1001 -> {327D4B62-D438-4E75-9951-D0A9FBD98B92} URL = hxxp://www.mapy.cz/?query={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-4093243053-2182908791-2126085259-1001 -> {775A6032-F256-411F-9528-FAB5286358A3} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-4093243053-2182908791-2126085259-1001 -> {AA6EC8F4-1F2F-43D1-83E6-BA39BC522363} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-4093243053-2182908791-2126085259-1001 -> {B7F28F64-8487-4F57-8720-1618F4E620BC} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-4093243053-2182908791-2126085259-1001 -> {DA491073-E326-4D59-B3D0-19603CBE6C42} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-4093243053-2182908791-2126085259-1001 -> {DADBC135-95E5-43B7-BE6B-A7DA8B2DDBBB} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_12454
FF Plugin: @videolan.org/vlc,version=2.2.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
CHR HKU\S-1-5-21-4093243053-2182908791-2126085259-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bgjpfhpjcgdppjbgnpnjllokbmcdllig]
CHR HKU\S-1-5-21-4093243053-2182908791-2126085259-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKU\S-1-5-21-4093243053-2182908791-2126085259-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak]
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
C:\Users\Radka\AppData\Local\Temp\_MEI70842

EmptyTemp:
End

(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).

Ulož jej na na plochu jako fixlist.txt


Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.

MicrosoftEdge přeinstalovat , jsou tam chyby..

Stáhni si CrystalDiskInfo
Spusť program a klikni na Úpravy-Kopírovat. Poté sem vlož pomocí Ctrl+V obsah logu.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

Kito
Level 1.5
Level 1.5
Příspěvky: 104
Registrován: srpen 09
Pohlaví: Muž
Stav:
Offline

Re: Pomalý PC - prosím o kontrolu logu

Příspěvekod Kito » 05 pro 2019 06:26

OK, díky, večer na to vlítnu :) ...

Kito
Level 1.5
Level 1.5
Příspěvky: 104
Registrován: srpen 09
Pohlaví: Muž
Stav:
Offline

Re: Pomalý PC - prosím o kontrolu logu

Příspěvekod Kito » 05 pro 2019 16:45

Fix result of Farbar Recovery Scan Tool (x64) Version: 04-12-2019 01
Ran by Radka (05-12-2019 16:31:28) Run:1
Running from C:\Users\Radka\Desktop
Loaded Profiles: Radka (Available Profiles: Radka)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CreateRestorePoint:
CloseProcesses:
HKU\S-1-5-21-4093243053-2182908791-2126085259-1001\...\MountPoints2: {1faecd92-bf79-11e9-bc42-8c89a560284a} - "E:\Lenovo_Suite.exe"
Task: {16B992CB-2A5D-4414-A377-EEB44D7C8CA3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-11-08] (Google Inc -> Google Inc.)
Task: {3E286AD7-82AE-4477-AC58-2B68CC39939D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-11-08] (Google Inc -> Google Inc.)
SearchScopes: HKU\S-1-5-21-4093243053-2182908791-2126085259-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-4093243053-2182908791-2126085259-1001 -> {0E1DA270-ADBD-4632-A263-F13AE2834E04} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-4093243053-2182908791-2126085259-1001 -> {1E5DC009-5EF1-4947-89B5-CC1DB0B9E29F} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-4093243053-2182908791-2126085259-1001 -> {327D4B62-D438-4E75-9951-D0A9FBD98B92} URL = hxxp://www.mapy.cz/?query={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-4093243053-2182908791-2126085259-1001 -> {775A6032-F256-411F-9528-FAB5286358A3} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-4093243053-2182908791-2126085259-1001 -> {AA6EC8F4-1F2F-43D1-83E6-BA39BC522363} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-4093243053-2182908791-2126085259-1001 -> {B7F28F64-8487-4F57-8720-1618F4E620BC} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-4093243053-2182908791-2126085259-1001 -> {DA491073-E326-4D59-B3D0-19603CBE6C42} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-4093243053-2182908791-2126085259-1001 -> {DADBC135-95E5-43B7-BE6B-A7DA8B2DDBBB} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_12454
FF Plugin: @videolan.org/vlc,version=2.2.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
CHR HKU\S-1-5-21-4093243053-2182908791-2126085259-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bgjpfhpjcgdppjbgnpnjllokbmcdllig]
CHR HKU\S-1-5-21-4093243053-2182908791-2126085259-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKU\S-1-5-21-4093243053-2182908791-2126085259-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak]
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
C:\Users\Radka\AppData\Local\Temp\_MEI70842

EmptyTemp:
End

*****************

Restore point was successfully created.
Processes closed successfully.
HKU\S-1-5-21-4093243053-2182908791-2126085259-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1faecd92-bf79-11e9-bc42-8c89a560284a} => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{16B992CB-2A5D-4414-A377-EEB44D7C8CA3}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{16B992CB-2A5D-4414-A377-EEB44D7C8CA3}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3E286AD7-82AE-4477-AC58-2B68CC39939D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3E286AD7-82AE-4477-AC58-2B68CC39939D}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
HKU\S-1-5-21-4093243053-2182908791-2126085259-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} => removed successfully
HKU\S-1-5-21-4093243053-2182908791-2126085259-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0E1DA270-ADBD-4632-A263-F13AE2834E04} => removed successfully
HKU\S-1-5-21-4093243053-2182908791-2126085259-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{1E5DC009-5EF1-4947-89B5-CC1DB0B9E29F} => removed successfully
HKU\S-1-5-21-4093243053-2182908791-2126085259-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{327D4B62-D438-4E75-9951-D0A9FBD98B92} => removed successfully
HKU\S-1-5-21-4093243053-2182908791-2126085259-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{775A6032-F256-411F-9528-FAB5286358A3} => removed successfully
HKU\S-1-5-21-4093243053-2182908791-2126085259-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AA6EC8F4-1F2F-43D1-83E6-BA39BC522363} => removed successfully
HKU\S-1-5-21-4093243053-2182908791-2126085259-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B7F28F64-8487-4F57-8720-1618F4E620BC} => removed successfully
HKU\S-1-5-21-4093243053-2182908791-2126085259-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{DA491073-E326-4D59-B3D0-19603CBE6C42} => removed successfully
HKU\S-1-5-21-4093243053-2182908791-2126085259-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{DADBC135-95E5-43B7-BE6B-A7DA8B2DDBBB} => removed successfully
"HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.2.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN" => not found
C:\Program Files\VideoLAN\VLC\npvlc.dll => moved successfully
"HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=3.0.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN" => not found
"C:\Program Files\VideoLAN\VLC\npvlc.dll" => not found
"HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=3.0.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN" => not found
"C:\Program Files\VideoLAN\VLC\npvlc.dll" => not found
"HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN" => not found
"C:\Program Files\VideoLAN\VLC\npvlc.dll" => not found
"HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN" => not found
"C:\Program Files\VideoLAN\VLC\npvlc.dll" => not found
HKU\S-1-5-21-4093243053-2182908791-2126085259-1001\SOFTWARE\Google\Chrome\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig => removed successfully
HKU\S-1-5-21-4093243053-2182908791-2126085259-1001\SOFTWARE\Google\Chrome\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh => removed successfully
HKU\S-1-5-21-4093243053-2182908791-2126085259-1001\SOFTWARE\Google\Chrome\Extensions\olfeabkoenfaoljndfecamgilllcpiak => removed successfully
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore" => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00asw => removed successfully
"C:\Users\Radka\AppData\Local\Temp\_MEI70842" => not found

=========== EmptyTemp: ==========

BITS transfer queue => 10248192 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 306447631 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 320892 B
Edge => 33792 B
Chrome => 361145957 B
Firefox => 229534 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 4236 B
NetworkService => 10858 B
Radka => 374147968 B

RecycleBin => 0 B
EmptyTemp: => 1003.8 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 16:36:48 ====

Kito
Level 1.5
Level 1.5
Příspěvky: 104
Registrován: srpen 09
Pohlaví: Muž
Stav:
Offline

Re: Pomalý PC - prosím o kontrolu logu

Příspěvekod Kito » 05 pro 2019 16:50

----------------------------------------------------------------------------
CrystalDiskInfo 8.3.2 (C) 2008-2019 hiyohiyo
Crystal Dew World: https://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows 10 [10.0 Build 17763] (x64)
Date : 2019/12/05 16:50:04

-- Controller Map ----------------------------------------------------------
+ Intel(R) N10/ICH7 Family Serial ATA Storage Controller - 27C0 [ATA]
+ ATA Channel 0 (0)
- WDC WD5000AAKX-001CA0 ATA Device
+ ATA Channel 1 (1)
- TSSTcorp CDDVDW SH-222AB ATA Device
+ Intel(R) ICH7 Family Ultra ATA Storage Controllers - 27DF [ATA]
- ATA Channel 0 (0)
- ATA Channel 1 (1)
- Řadič prostorů úložišť [SCSI]

-- Disk List ---------------------------------------------------------------
(1) WDC WD5000AAKX-001CA0 : 500,1 GB [0/2/0, pd1] - wd

----------------------------------------------------------------------------
(1) WDC WD5000AAKX-001CA0
----------------------------------------------------------------------------
Model : WDC WD5000AAKX-001CA0
Firmware : 15.01H15
Serial Number : WD-WCAYUFK22803
Disk Size : 500,1 GB (8,4/137,4/500,1/500,1)
Buffer Size : 16384 KB
Queue Depth : 32
# of Sectors : 976773168
Rotation Rate : Neznámy údaj
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ----
Transfer Mode : SATA/300 | SATA/600
Power On Hours : 10594 hod.
Power On Count : 2358 krát
Temperature : 36 C (96 F)
Health Status : Dobrý
Features : S.M.A.R.T., 48bit LBA, NCQ
APM Level : ----
AAM Level : ----
Drive Letter : C:

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 200 200 _51 000000000000 Počet chyb čtení
03 141 140 _21 000000000F55 Čas na roztočení ploten
04 _98 _98 __0 000000000B9A Počet spuštění/zastavení
05 200 200 140 000000000000 Počet přemapovaných sektorů
07 100 253 __0 000000000000 Počet chybných hledání
09 _86 _86 __0 000000002962 Hodin v činnosti
0A 100 100 __0 000000000000 Počet opakovaných pokusů o roztočení ploten
0B 100 100 __0 000000000000 Počet pokusů o překalibrování
0C _98 _98 __0 000000000936 Počet cyklů zapnutí zařízení
C0 200 200 __0 000000000029 Počet vypnutí disku
C1 200 200 __0 000000000B70 Počet cyklů načítání/vymazání
C2 107 _97 __0 000000000024 Teplota
C4 200 200 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 200 200 __0 000000000000 Počet podezřelých sektorů
C6 200 200 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
C8 200 200 __0 000000000000 Počet chyb při zápisu sektorů

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 427A 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 2020 2020 2057 442D 5743 4159 5546 4B32 3238 3033
020: 0000 8000 0032 3135 2E30 3148 3135 5744 4320 5744
030: 3530 3030 4141 4B58 2D30 3031 4341 3020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4001 0000 0000 0007 3FFF 0010 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 170E 0004 0044 0040
080: 01FE 0000 746B 7D61 4123 7469 BC41 4123 207F 002D
090: 002D 0000 FFFE 0000 0000 0000 0000 0000 0000 0000
100: 6030 3A38 0000 0000 0000 0000 0000 0000 5001 4EE1
110: 0489 F5CE 0000 0000 0000 0000 0000 0000 0000 4018
120: 4018 0000 0000 0000 0000 0000 0000 0000 0029 0000
130: 0000 0000 0000 16FE 0125 0000 0000 0000 0000 0000
140: 0000 0000 0004 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 3037 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
220: 0000 0000 103E 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 1000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 77A5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 2F 00 C8 C8 00 00 00 00 00 00 00 03 27
010: 00 8D 8C 55 0F 00 00 00 00 00 04 32 00 62 62 9A
020: 0B 00 00 00 00 00 05 33 00 C8 C8 00 00 00 00 00
030: 00 00 07 2E 00 64 FD 00 00 00 00 00 00 00 09 32
040: 00 56 56 62 29 00 00 00 00 00 0A 32 00 64 64 00
050: 00 00 00 00 00 00 0B 32 00 64 64 00 00 00 00 00
060: 00 00 0C 32 00 62 62 36 09 00 00 00 00 00 C0 32
070: 00 C8 C8 29 00 00 00 00 00 00 C1 32 00 C8 C8 70
080: 0B 00 00 00 00 00 C2 22 00 6B 61 24 00 00 00 00
090: 00 00 C4 32 00 C8 C8 00 00 00 00 00 00 00 C5 32
0A0: 00 C8 C8 00 00 00 00 00 00 00 C6 30 00 C8 C8 00
0B0: 00 00 00 00 00 00 C7 32 00 C8 C8 00 00 00 00 00
0C0: 00 00 C8 08 00 C8 C8 00 00 00 00 00 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 82 00 B0 22 01 7B
170: 03 00 01 00 02 5A 05 00 00 00 00 00 00 00 00 00
180: 00 00 01 02 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 9F

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 33 C8 C8 00 00 00 00 00 00 00 00 03 15
010: 00 00 00 00 00 00 00 00 00 00 04 00 00 00 00 00
020: 00 00 00 00 00 00 05 8C 00 00 00 00 00 00 00 00
030: 00 00 07 00 64 64 00 00 00 00 00 00 00 00 09 00
040: 00 00 00 00 00 00 00 00 00 00 0A 00 00 00 00 00
050: 00 00 00 00 00 00 0B 00 00 00 00 00 00 00 00 00
060: 00 00 0C 00 00 00 00 00 00 00 00 00 00 00 C0 00
070: 00 00 00 00 00 00 00 00 00 00 C1 00 00 00 00 00
080: 00 00 00 00 00 00 C2 00 00 00 00 00 00 00 00 00
090: 00 00 C4 00 00 00 00 00 00 00 00 00 00 00 C5 00
0A0: 00 00 00 00 00 00 00 00 00 00 C6 00 00 00 00 00
0B0: 00 00 00 00 00 00 C7 00 00 00 00 00 00 00 00 00
0C0: 00 00 C8 00 C8 C8 00 00 00 00 00 00 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 D5

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43054
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Pomalý PC - prosím o kontrolu logu

Příspěvekod jaro3 » 05 pro 2019 17:46

Stáhni si zde DelFix
Další odkazy:
https://toolslib.net/downloads/viewdownload/2-delfix/
http://ccm.net/download/download-24087-delfix
https://www.bleepingcomputer.com/download/delfix/

ulož si soubor na plochu.
Poklepáním na ikonu spusť nástroj Delfix.exe
( Ve Windows Vista, Windows 7, 8 a10 musíš spustit soubor pravým tlačítkem myši -> Spustit jako správce .
V hlavním menu, zkontroluj tyto možnosti - Odstranění dezinfekce nástrojů (Remove desinfection tools) – Vyčistit body obnovy (Purge System Restore)
Poté klikněte na tlačítko Spustit (Run) a nech nástroj dělat svoji práci

Poté se zpráva se otevře (DelFix.txt). Vlož celý obsah zprávy sem.Jinak je zpráva zde:
v C: \ DelFix.txt

Co problémy?
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

Kito
Level 1.5
Level 1.5
Příspěvky: 104
Registrován: srpen 09
Pohlaví: Muž
Stav:
Offline

Re: Pomalý PC - prosím o kontrolu logu

Příspěvekod Kito » 05 pro 2019 18:55

# DelFix v1.013 - Logfile created 05/12/2019 at 18:47:06
# Updated 17/04/2016 by Xplode
# Username : Radka - RADKA-PC
# Operating System : Windows 10 Home (64 bits)

~ Removing disinfection tools ...

Deleted : C:\FRST
Deleted : C:\zoek_backup
Deleted : C:\AdwCleaner
Deleted : C:\Users\Radka\Desktop\FRST-OlderVersion
Deleted : C:\zoek-results.log
Deleted : C:\Users\Radka\Desktop\Addition.txt
Deleted : C:\Users\Radka\Desktop\adwcleaner_8.0.0.exe
Deleted : C:\Users\Radka\Desktop\Fixlog.txt
Deleted : C:\Users\Radka\Desktop\FRST.txt
Deleted : C:\Users\Radka\Desktop\FRST64.exe
Deleted : C:\Users\Radka\Desktop\JRT.exe
Deleted : C:\Users\Radka\Desktop\JRT.txt
Deleted : C:\Users\Radka\Desktop\RogueKiller_portable64.exe
Deleted : C:\Users\Radka\Desktop\zoek.exe
Deleted : HKLM\SOFTWARE\OldTimer Tools
Deleted : HKLM\SOFTWARE\TrendMicro\Hijackthis

~ Cleaning system restore ...

Deleted : RP #44 [Naplánovaný kontrolní bod | 11/12/2019 18:41:19]
Deleted : RP #45 [Naplánovaný kontrolní bod | 11/21/2019 17:43:04]
Deleted : RP #46 [JRT Pre-Junkware Removal | 11/28/2019 22:06:48]
Deleted : RP #47 [Windows Update | 12/03/2019 18:59:33]

New restore point created !

########## - EOF - ##########

Kito
Level 1.5
Level 1.5
Příspěvky: 104
Registrován: srpen 09
Pohlaví: Muž
Stav:
Offline

Re: Pomalý PC - prosím o kontrolu logu

Příspěvekod Kito » 05 pro 2019 18:56

Jinak se zdá že je PC pružnější a živější, ale myslím, že to stále není ono
Jinak díky za rady ...

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43054
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Pomalý PC - prosím o kontrolu logu

Příspěvekod jaro3 » 05 pro 2019 21:10

Stáhni si Memtest:

Políčko , ve kterém je napsáno:
All unused RAM , změň na 2048.
-dej Start , nech nejméně 2h běžet , pokud bude po 2h stále 0 errors , jsou v pořádku.
V případě vyšších kapacit RAM je třeba Memtest spustit několikrát , pro 2GB ( jednotlivá největší kapacita RAM) 2x , pro 4GB 3x , pro 8Gb 4x ap.
poklepej na Memtest , pak znovu a znovu , do políček všech Memtestů napiš 2048 , pak dej u všech Memtestů "Start".

Vyčisti systém CCleanerem
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

Kito
Level 1.5
Level 1.5
Příspěvky: 104
Registrován: srpen 09
Pohlaví: Muž
Stav:
Offline

Re: Pomalý PC - prosím o kontrolu logu

Příspěvekod Kito » 06 pro 2019 08:18

tak Memtest nenašel žádné chyby. Vyčistil jsme to ccleanerem. Jinak se zda, že to běží svižněji tak snad to bude OK. Díky za rady a pomoc.


Zpět na “HiJackThis”

Kdo je online

Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 11 hostů