Občasný seknutí PC

Zpráva

TanyCze · #1 Příspěvek od **TanyCze** » 13 bře 2019 20:00

Dobrý den, prosím o kontrolu logo. Stává se mi, že se mi z ničeho nic zasekne disk (A to mám dva) a pociťuji to hlavně ve hrách ale také přímo ve windows.
Přikládám FRST i výsledek AdwCleaneru, který našel 49 chyb! Děkuji

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 13.03.2019
Ran by Tany (administrator) on DESKTOP-2UKLSJC (13-03-2019 19:38:49)
Running from C:\Users\Tany\Desktop
Loaded Profiles: Tany (Available Profiles: Tany)
Platform: Windows 10 Home Version 1803 17134.590 (X64) Language: Čeština (Česko)
Default browser: Opera
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\vsserv.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Device Management\DevMgmtService.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Rivet Networks LLC -> Rivet Networks) C:\Program Files\Killer Networking\Network Manager\KillerService.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Nero AG -> Nero AG) C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.40.70.0_x64__kzf8qxf38zg5c\SkypeApp.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.40.70.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Rivet Networks LLC -> Rivet Networks) C:\Program Files\Killer Networking\Network Manager\NetworkManager.exe
(Intel® Corporation) [File not signed] C:\Program Files\Intel\ConnectCenter\bin\CCFManager.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdagent.exe
(KYE) [File not signed] C:\Program Files (x86)\Genius\Manticore\MTHid.exe
(Intel(R) iCDG WINS WSS CCF -> Intel Corporation) C:\Program Files\Intel\STCServ\STCServ.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_1.16.1012.0_x64__8wekyb3d8bbwe\GameBar.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\rempl\sedsvc.exe
(Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.40.70.0_x64__kzf8qxf38zg5c\SkypeBridge\SkypeBridge.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19011.19410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\Microsoft.WindowsStore_11811.1001.18.0_x64__8wekyb3d8bbwe\WinStore.App.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.19011.11311.0_x64__8wekyb3d8bbwe\Music.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(TeamSpeak Systems GmbH -> TeamSpeak Systems GmbH) C:\Users\Tany\AppData\Local\TeamSpeak 3 Client\ts3client_win64.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
(Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\UnrealCEFSubProcess.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [IntelConnectCenter] => C:\Program Files\Intel\ConnectCenter\bin\ICCLauncher.exe [90112 2015-03-16] (Intel® Corporation) [File not signed]
HKLM-x32\...\Run: [Manticore] => C:\Program Files (x86)\Genius\Manticore\MThid.exe [293376 2013-02-01] (KYE) [File not signed]
HKU\S-1-5-21-3070578639-1465572867-974185047-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3146016 2019-03-06] (Valve -> Valve Corporation)
HKU\S-1-5-21-3070578639-1465572867-974185047-1001\...\Run: [uTorrent] => C:\Users\Tany\AppData\Roaming\uTorrent\uTorrent.exe [1908920 2019-02-01] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-3070578639-1465572867-974185047-1001\...\Run: [Discord] => C:\Users\Tany\AppData\Local\Discord\app-0.0.304\Discord.exe [81747288 2019-01-15] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-3070578639-1465572867-974185047-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [35258768 2019-03-13] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-3070578639-1465572867-974185047-1001\...\MountPoints2: {7a2470c8-2f44-11e9-9bd3-448a5ba1d005} - "D:\Setup.exe"
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Killer Network Manager.lnk [2019-01-10]
ShortcutTarget: Killer Network Manager.lnk -> C:\Program Files\Killer Networking\Network Manager\NetworkManager.exe (Rivet Networks LLC -> Rivet Networks)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{636d0af1-d046-4bd0-be12-844b1548a3d7}: [NameServer] 1.1.1.1,208.67.220.220
Tcpip\..\Interfaces\{636d0af1-d046-4bd0-be12-844b1548a3d7}: [DhcpNameServer] 10.0.0.138

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-3070578639-1465572867-974185047-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKU\S-1-5-21-3070578639-1465572867-974185047-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3070578639-1465572867-974185047-1001 -> {BDF61FAE-9D19-40F0-8F34-688DEB334CA9} URL = hxxp://securedsearch.lavasoft.com/results.php?pr=vmn&id=webcompa&ent=ch_WCYID10438__190201&q={searchTerms}
BHO: Bitdefender - Portmonka -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender Security\pmbxie.dll [2019-02-01] (Bitdefender SRL -> Bitdefender)
BHO-x32: Bitdefender - Portmonka -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender Security\Antispam32\pmbxie.dll [2019-02-01] (Bitdefender SRL -> Bitdefender)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2019-03-08] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Ask Toolbar -> {D4027C7F-154A-4066-A1AD-4243D8127440} -> C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll [2010-05-21] (Ask.com -> Ask.com)
Toolbar: HKLM - Bitdefender - Portmonka - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender Security\pmbxie.dll [2019-02-01] (Bitdefender SRL -> Bitdefender)
Toolbar: HKLM-x32 - Bitdefender - Portmonka - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender Security\Antispam32\pmbxie.dll [2019-02-01] (Bitdefender SRL -> Bitdefender)
Toolbar: HKLM-x32 - Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll [2010-05-21] (Ask.com -> Ask.com)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-03-08] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-03-08] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-03-08] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-03-08] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-03-08] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-03-08] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-03-08] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-03-08] (Microsoft Corporation -> Microsoft Corporation)

FireFox:
========
FF HKLM\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi
FF Extension: (Bitdefender Wallet) - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi [2018-12-19]
FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext
FF Extension: (Bitdefender Antispam Toolbar) - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext [2019-02-15] [Legacy] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi
FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-03-08] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2019-03-08] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2019-01-11] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2019-01-11] (NVIDIA Corporation -> NVIDIA Corporation)

Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [gannpgaobkkhmpomoijebaigcapoeebl] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [nladljmabboanhihfkjacnnkgjhnokhj] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 BDAuxSrv; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [779152 2019-02-01] (Bitdefender SRL -> Bitdefender)
R2 BDProtSrv; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [779152 2019-02-01] (Bitdefender SRL -> Bitdefender)
R2 bdredline; C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe [2195320 2018-03-22] (Bitdefender SRL -> Bitdefender)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8403672 2019-02-14] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11129928 2019-03-01] (Microsoft Corporation -> Microsoft Corporation)
R2 DevMgmtService; C:\Program Files\Bitdefender\Bitdefender Device Management\DevMgmtService.exe [95520 2019-02-01] (Bitdefender SRL -> Bitdefender)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [780928 2019-03-03] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 Killer Service V2; C:\Program Files\Killer Networking\Network Manager\KillerService.exe [454872 2016-01-28] (Rivet Networks LLC -> Rivet Networks)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [787440 2018-12-06] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [787440 2018-12-06] (NVIDIA Corporation -> NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2298688 2019-02-05] (Electronic Arts, Inc. -> Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3171144 2019-02-05] (Electronic Arts, Inc. -> Electronic Arts)
R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [1293936 2018-11-15] (Bitdefender SRL -> Bitdefender)
R2 STCServ; C:\Program Files\Intel\STCServ\STCServ.exe [8095456 2015-03-16] (Intel(R) iCDG WINS WSS CCF -> Intel Corporation)
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe [114192 2019-02-01] (Bitdefender SRL -> Bitdefender)
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender Security\vsserv.exe [816616 2019-02-01] (Bitdefender SRL -> Bitdefender)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\NisSrv.exe [3880120 2019-01-27] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\MsMpEng.exe [114208 2019-01-27] (Microsoft Corporation -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvTelemetry\plugins" -r

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 atc; C:\WINDOWS\System32\DRIVERS\atc.sys [1423680 2019-01-21] (Bitdefender SRL -> BitDefender S.R.L. Bucharest, ROMANIA)
R2 BdDci; C:\WINDOWS\System32\DRIVERS\bddci.sys [367096 2019-01-29] (Bitdefender SRL -> Bitdefender)
S0 bdelam; C:\WINDOWS\System32\drivers\bdelam.sys [23032 2018-04-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Bitdefender)
R0 bdprivmon; C:\WINDOWS\System32\DRIVERS\bdprivmon.sys [45728 2018-09-17] (Bitdefender SRL -> © Bitdefender SRL)
R1 BDVEDISK; C:\WINDOWS\system32\DRIVERS\bdvedisk.sys [96448 2018-04-27] (Bitdefender SRL -> BitDefender)
R1 BfLwf; C:\WINDOWS\system32\DRIVERS\bwcW10x64.sys [144456 2016-01-22] (Rivet Networks LLC -> Rivet Networks, LLC.)
R0 Gemma; C:\WINDOWS\System32\DRIVERS\gemma.sys [374632 2018-11-19] (Bitdefender SRL -> BitDefender S.R.L. Bucharest, ROMANIA)
R0 gzflt; C:\WINDOWS\System32\DRIVERS\gzflt.sys [201000 2018-11-20] (Bitdefender SRL -> BitDefender LLC)
R2 Ignis; C:\WINDOWS\system32\DRIVERS\ignis.sys [196352 2018-10-26] (Bitdefender SRL -> Bitdefender)
R3 KillerEth; C:\WINDOWS\System32\drivers\e2xw10x64.sys [145920 2018-04-12] (Microsoft Windows -> Qualcomm Atheros, Inc.)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_5db32447b43ce666\nvlddmkm.sys [20461984 2019-01-12] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2018-10-25] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [70024 2018-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [74576 2018-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
R0 trufos; C:\WINDOWS\System32\DRIVERS\trufos.sys [610640 2019-01-14] (Bitdefender SRL -> Bitdefender)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46680 2019-01-27] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [330936 2019-01-27] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [62136 2019-01-27] (Microsoft Windows -> Microsoft Corporation)
S3 Shenzunjdao; \??\C:\WINDOWS\system32\Shenzunjdao.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-03-13 19:38 - 2019-03-13 19:40 - 000020417 _____ C:\Users\Tany\Desktop\FRST.txt
2019-03-13 19:38 - 2019-03-13 19:38 - 000000000 ____D C:\FRST
2019-03-13 19:37 - 2019-03-13 19:37 - 002434560 _____ (Farbar) C:\Users\Tany\Desktop\FRST64.exe
2019-03-13 09:31 - 2019-03-13 09:31 - 000560296 _____ C:\Users\Tany\Downloads\zaverecna_prace (1).pdf
2019-03-12 16:15 - 2019-03-12 16:15 - 003587584 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerInstaller.exe
2019-03-12 15:15 - 2019-03-12 15:15 - 000079375 _____ C:\Users\Tany\Downloads\prihlaska.pdf
2019-03-12 15:15 - 2019-03-12 15:15 - 000000000 ____D C:\Users\Tany\AppData\LocalLow\Temp
2019-03-08 18:47 - 2019-03-08 18:47 - 000002511 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk
2019-03-08 18:47 - 2019-03-08 18:47 - 000002488 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk
2019-03-08 18:47 - 2019-03-08 18:47 - 000002483 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk
2019-03-08 18:47 - 2019-03-08 18:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje Microsoft Office 2016
2019-03-03 16:49 - 2019-03-03 16:49 - 000000222 _____ C:\Users\Tany\Desktop\Paladins.url
2019-02-27 17:09 - 2019-02-27 17:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero
2019-02-27 17:09 - 2019-02-27 17:09 - 000002793 _____ C:\Users\Public\Desktop\Nero StartSmart Essentials.lnk
2019-02-27 17:09 - 2019-02-27 17:09 - 000000000 ____D C:\Program Files (x86)\Nero
2019-02-27 17:07 - 2019-02-27 17:07 - 000000000 ____D C:\Program Files (x86)\Nero Free
2019-02-27 16:57 - 2019-02-27 17:16 - 000000000 ____D C:\Users\Tany\AppData\Roaming\Nero
2019-02-27 16:56 - 2019-02-27 17:09 - 000000000 ____D C:\ProgramData\Nero
2019-02-27 16:52 - 2019-02-27 16:52 - 000003930 _____ C:\WINDOWS\System32\Tasks\Scheduled Update for Ask Toolbar
2019-02-27 16:52 - 2019-02-27 16:52 - 000000000 ____D C:\Program Files (x86)\Ask.com
2019-02-27 16:50 - 2019-02-27 16:50 - 000000000 ____D C:\Program Files (x86)\Nero Burn Lite
2019-02-27 08:47 - 2019-03-03 10:15 - 000000000 ____D C:\ProgramData\KMSAutoS
2019-02-27 08:46 - 2019-02-27 08:47 - 000000000 ____D C:\Users\Tany\AppData\Local\MSfree Inc
2019-02-27 08:41 - 2019-02-27 08:41 - 002999449 _____ C:\Users\Tany\Downloads\ActivatePass123 (1).rar
2019-02-27 08:38 - 2019-02-27 08:38 - 002999449 _____ C:\Users\Tany\Downloads\ActivatePass123.rar
2019-02-27 08:26 - 2019-02-27 08:26 - 006470213 _____ C:\Users\Tany\Downloads\Office KMS Activator 2018 Ultimate by Graphic evolved.zip
2019-02-25 15:26 - 2019-02-25 15:26 - 000829458 _____ C:\Users\Tany\Downloads\zaverecna_prace.pdf
2019-02-24 18:19 - 2019-02-24 18:19 - 000013269 _____ C:\Users\Tany\Downloads\literatura.xlsx
2019-02-24 10:05 - 2019-03-12 16:15 - 000004664 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2019-02-24 10:05 - 2019-03-12 16:15 - 000004506 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2019-02-23 14:49 - 2019-03-03 19:05 - 000000000 ____D C:\Users\Tany\AppData\Roaming\EasyAntiCheat
2019-02-23 10:10 - 2019-02-23 10:10 - 000072717 _____ C:\ProgramData\dm.update.1550912990.bdinstall.bin
2019-02-23 10:10 - 2019-02-23 10:10 - 000034936 _____ C:\ProgramData\dm.uninstall.1550912999.bdinstall.bin
2019-02-23 10:01 - 2019-03-01 14:37 - 000000000 ____D C:\Users\Tany\AppData\Local\ElevatedDiagnostics
2019-02-23 05:16 - 2019-03-08 21:27 - 000003719 _____ C:\bdlog.txt
2019-02-22 22:45 - 2019-02-22 22:45 - 001045867 _____ C:\Users\Tany\Downloads\ceník A.xlsx
2019-02-22 19:35 - 2019-02-22 19:35 - 000000000 ____D C:\Users\Tany\AppData\Roaming\QuickScan
2019-02-22 18:23 - 2019-02-22 18:23 - 000000000 _____ C:\ProgramData\vpn.uninstall.1550856208.bdinstall.bin
2019-02-22 18:19 - 2019-02-22 18:19 - 000000000 ____D C:\ProgramData\Bitdefender VPN
2019-02-22 18:19 - 2019-02-22 18:19 - 000000000 _____ C:\ProgramData\vpn.1550855912.bdinstall.bin
2019-02-22 18:16 - 2019-02-22 18:16 - 000000000 ____D C:\ProgramData\Bitdefender Device Management
2019-02-22 18:15 - 2019-02-22 18:15 - 000809284 _____ C:\ProgramData\cl.1550855479.bdinstall.v2.bin
2019-02-22 18:15 - 2019-02-22 18:15 - 000101904 _____ C:\ProgramData\cl.kit.1550855470.bdinstall.v2.bin
2019-02-22 18:15 - 2019-02-22 18:15 - 000003420 _____ C:\WINDOWS\System32\Tasks\Bitdefender AgentTask_AD394AE64E874073B10A89FEEC305A3C
2019-02-22 18:15 - 2019-02-22 18:15 - 000000000 ____D C:\ProgramData\Gemma
2019-02-22 18:15 - 2019-02-22 18:15 - 000000000 ____D C:\ProgramData\Atc
2019-02-22 18:12 - 2019-02-22 18:12 - 000002338 _____ C:\Users\Public\Desktop\Bitdefender.lnk
2019-02-22 18:12 - 2019-02-22 18:12 - 000000000 ____D C:\WINDOWS\system32\elambkup
2019-02-22 18:12 - 2019-02-22 18:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender Security
2019-02-22 18:12 - 2019-02-22 18:12 - 000000000 ____D C:\ProgramData\BDLogging
2019-02-22 18:12 - 2018-11-19 13:10 - 000374632 _____ (BitDefender S.R.L. Bucharest, ROMANIA) C:\WINDOWS\system32\Drivers\gemma.sys
2019-02-22 18:12 - 2018-04-19 07:37 - 000023032 _____ (Bitdefender) C:\WINDOWS\system32\Drivers\bdelam.sys
2019-02-22 18:12 - 2007-04-11 10:11 - 000511328 _____ (Microsoft Corporation) C:\WINDOWS\capicom.dll
2019-02-22 18:11 - 2019-03-01 14:44 - 000000000 ____D C:\ProgramData\Bitdefender
2019-02-22 18:11 - 2019-02-23 09:39 - 000000000 ____D C:\Program Files\Bitdefender
2019-02-22 18:11 - 2019-02-22 18:16 - 000000000 ____D C:\Users\Tany\AppData\Roaming\Bitdefender
2019-02-22 18:11 - 2019-02-22 18:11 - 000000000 ____D C:\Program Files\Common Files\Bitdefender
2019-02-22 18:11 - 2019-01-29 09:39 - 000367096 _____ (Bitdefender) C:\WINDOWS\system32\Drivers\bddci.sys
2019-02-22 18:11 - 2019-01-21 01:58 - 001423680 _____ (BitDefender S.R.L. Bucharest, ROMANIA) C:\WINDOWS\system32\Drivers\atc.sys
2019-02-22 18:11 - 2019-01-14 16:25 - 000610640 _____ (Bitdefender) C:\WINDOWS\system32\Drivers\trufos.sys
2019-02-22 18:11 - 2018-11-20 10:42 - 000201000 _____ (BitDefender LLC) C:\WINDOWS\system32\Drivers\gzflt.sys
2019-02-22 18:11 - 2018-10-26 10:57 - 000196352 _____ (Bitdefender) C:\WINDOWS\system32\Drivers\ignis.sys
2019-02-22 18:11 - 2018-09-17 04:36 - 000045728 _____ (© Bitdefender SRL) C:\WINDOWS\system32\Drivers\bdprivmon.sys
2019-02-22 18:11 - 2018-04-27 07:45 - 000096448 _____ (BitDefender) C:\WINDOWS\system32\Drivers\bdvedisk.sys
2019-02-22 18:08 - 2019-02-22 18:08 - 000003802 _____ C:\WINDOWS\System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864
2019-02-22 18:06 - 2019-02-22 18:16 - 000000000 ____D C:\Program Files\Bitdefender Agent
2019-02-22 18:06 - 2019-02-22 18:06 - 000105392 _____ C:\ProgramData\agent.1550855177.bdinstall.v2.bin
2019-02-22 18:06 - 2019-02-22 18:06 - 000000000 ____D C:\ProgramData\Bitdefender Agent
2019-02-20 17:39 - 2019-02-20 17:39 - 000686982 _____ C:\Users\Tany\Downloads\Katalog pozadavku 2018 CJL.pdf
2019-02-20 17:38 - 2019-02-20 17:38 - 000099821 _____ C:\Users\Tany\Downloads\CJL-TEST_IT_2015.pdf
2019-02-19 18:12 - 2019-02-19 18:12 - 000064487 _____ C:\Users\Tany\Downloads\CzTHalloween_2018_CZ_EN_1080pHD_.torrent
2019-02-15 20:02 - 2019-02-15 20:02 - 000029740 _____ C:\Users\Tany\Downloads\[CzT]Vybijena_2015_CZ_720pHD_.torrent
2019-02-13 05:29 - 2019-02-13 05:29 - 000000000 ____D C:\Users\Tany\Documents\Share Link
2019-02-13 05:25 - 2019-02-13 05:28 - 000000000 ____D C:\Users\Tany\AppData\Local\Share Link
2019-02-13 05:25 - 2019-02-13 05:25 - 000003392 _____ C:\WINDOWS\System32\Tasks\IntelBootstrapCCDashExe
2019-02-13 05:25 - 2019-02-13 05:25 - 000001198 _____ C:\Users\Public\Desktop\Share Link.lnk
2019-02-13 05:25 - 2019-02-13 05:25 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Connect Center
2019-02-13 05:25 - 2019-02-13 05:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2019-02-13 05:25 - 2019-02-13 05:25 - 000000000 ____D C:\ProgramData\Intel
2019-02-13 05:25 - 2019-02-13 05:25 - 000000000 ____D C:\Program Files\Intel
2019-02-13 05:25 - 2019-02-13 05:25 - 000000000 ____D C:\Program Files (x86)\ASUS
2019-02-12 20:08 - 2019-02-06 08:54 - 004527584 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2019-02-12 20:08 - 2019-02-06 08:53 - 001634704 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-02-12 20:08 - 2019-02-06 08:35 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2019-02-12 20:08 - 2019-02-06 08:32 - 003648512 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-02-12 20:08 - 2019-02-06 08:30 - 004052992 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2019-02-12 20:08 - 2019-02-06 08:30 - 001662464 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2019-02-12 20:08 - 2019-02-06 08:30 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-02-12 20:08 - 2019-02-06 08:11 - 001454648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-02-12 20:08 - 2019-02-06 07:57 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2019-02-12 20:08 - 2019-02-06 07:52 - 004053504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2019-02-12 20:08 - 2019-02-06 07:52 - 002891776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-02-12 20:08 - 2019-02-06 07:52 - 001470976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2019-02-12 20:08 - 2019-02-06 04:01 - 001989040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-02-12 20:08 - 2019-02-06 04:01 - 001221432 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-02-12 20:08 - 2019-02-06 04:01 - 001029944 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-02-12 20:08 - 2019-02-06 04:01 - 000720480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2019-02-12 20:08 - 2019-02-06 04:01 - 000566568 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-02-12 20:08 - 2019-02-06 04:01 - 000134968 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-02-12 20:08 - 2019-02-06 04:01 - 000076088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2019-02-12 20:08 - 2019-02-06 04:01 - 000033576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NtlmShared.dll
2019-02-12 20:08 - 2019-02-06 04:00 - 009084432 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-02-12 20:08 - 2019-02-06 04:00 - 007520112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-02-12 20:08 - 2019-02-06 04:00 - 006572416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-02-12 20:08 - 2019-02-06 04:00 - 002719760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-02-12 20:08 - 2019-02-06 04:00 - 002465792 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-02-12 20:08 - 2019-02-06 04:00 - 002421264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-02-12 20:08 - 2019-02-06 04:00 - 001257904 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-02-12 20:08 - 2019-02-06 04:00 - 001140680 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-02-12 20:08 - 2019-02-06 04:00 - 001130568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2019-02-12 20:08 - 2019-02-06 04:00 - 001098272 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2019-02-12 20:08 - 2019-02-06 04:00 - 000945680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys
2019-02-12 20:08 - 2019-02-06 04:00 - 000899728 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2019-02-12 20:08 - 2019-02-06 04:00 - 000466960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2019-02-12 20:08 - 2019-02-06 04:00 - 000376120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2019-02-12 20:08 - 2019-02-06 04:00 - 000043536 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser_broker.exe
2019-02-12 20:08 - 2019-02-06 04:00 - 000038792 _____ (Microsoft Corporation) C:\WINDOWS\system32\NtlmShared.dll
2019-02-12 20:08 - 2019-02-06 03:59 - 001922064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2019-02-12 20:08 - 2019-02-06 03:59 - 001457248 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-02-12 20:08 - 2019-02-06 03:59 - 000983128 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-02-12 20:08 - 2019-02-06 03:59 - 000144288 _____ (Microsoft Corporation) C:\WINDOWS\system32\smss.exe
2019-02-12 20:08 - 2019-02-06 03:52 - 022014464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-02-12 20:08 - 2019-02-06 03:45 - 019404288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-02-12 20:08 - 2019-02-06 03:42 - 003711488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-02-12 20:08 - 2019-02-06 03:41 - 025853952 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-02-12 20:08 - 2019-02-06 03:41 - 005307392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2019-02-12 20:08 - 2019-02-06 03:40 - 005792256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-02-12 20:08 - 2019-02-06 03:40 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\npmproxy.dll
2019-02-12 20:08 - 2019-02-06 03:38 - 000608768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-02-12 20:08 - 2019-02-06 03:38 - 000561152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2019-02-12 20:08 - 2019-02-06 03:37 - 004515840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-02-12 20:08 - 2019-02-06 03:37 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-02-12 20:08 - 2019-02-06 03:33 - 022714880 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-02-12 20:08 - 2019-02-06 03:29 - 004865536 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-02-12 20:08 - 2019-02-06 03:28 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2019-02-12 20:08 - 2019-02-06 03:28 - 000039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\npmproxy.dll
2019-02-12 20:08 - 2019-02-06 03:27 - 000894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-02-12 20:08 - 2019-02-06 03:27 - 000808448 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-02-12 20:08 - 2019-02-06 03:27 - 000358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\exfat.sys
2019-02-12 20:08 - 2019-02-06 03:27 - 000266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2019-02-12 20:08 - 2019-02-06 03:26 - 007599616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-02-12 20:08 - 2019-02-06 03:26 - 000726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2019-02-12 20:08 - 2019-02-06 03:26 - 000324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys
2019-02-12 20:08 - 2019-02-06 03:26 - 000174592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2019-02-12 20:08 - 2019-02-06 03:26 - 000154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2019-02-12 20:08 - 2019-02-06 03:25 - 000736256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2019-02-12 20:08 - 2019-02-06 03:25 - 000507392 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2019-02-12 20:08 - 2019-02-06 03:24 - 004937728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-02-12 20:08 - 2019-02-06 03:24 - 000466432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2019-02-12 20:08 - 2019-02-06 03:23 - 000393216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2019-02-12 20:08 - 2019-02-06 03:22 - 000960512 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2019-02-12 20:08 - 2019-02-06 03:22 - 000885760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2019-02-12 20:08 - 2019-02-06 03:21 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cdfs.sys
2019-02-12 20:08 - 2019-02-06 02:04 - 000001314 _____ C:\WINDOWS\system32\tcbres.wim
2019-02-12 20:08 - 2019-01-12 09:56 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll
2019-02-12 20:08 - 2019-01-12 03:28 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-02-12 20:08 - 2019-01-08 10:08 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MixedRealityCapture.dll
2019-02-12 20:08 - 2019-01-08 04:06 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2019-02-12 20:08 - 2019-01-08 04:06 - 000313344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd2x40.dll
2019-02-12 20:08 - 2019-01-08 04:06 - 000000072 _____ C:\WINDOWS\system32\edgehtmlpluginpolicy.bin
2019-02-12 18:34 - 2019-02-12 18:34 - 000000000 _____ C:\Users\Public\Shared Files
2019-02-12 18:29 - 2019-02-12 18:29 - 000000000 ____D C:\Users\Tany\AppData\Local\Speech Graphics
2019-02-12 18:28 - 2019-02-12 18:28 - 000000000 ____D C:\Users\Tany\AppData\Local\FortniteGame
2019-02-12 18:24 - 2019-02-12 18:24 - 000000314 _____ C:\Users\Tany\Desktop\Fortnite.url
2019-02-12 15:37 - 2019-02-12 15:37 - 000000000 ____D C:\Program Files\Epic Games
2019-02-12 15:36 - 2019-02-12 15:36 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2019-02-12 15:36 - 2019-02-12 15:36 - 000000000 ____D C:\Program Files\Reference Assemblies
2019-02-12 15:36 - 2019-02-12 15:36 - 000000000 ____D C:\Program Files\MSBuild
2019-02-12 15:36 - 2019-02-12 15:36 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2019-02-12 15:36 - 2019-02-12 15:36 - 000000000 ____D C:\Program Files (x86)\MSBuild
2019-02-12 15:34 - 2018-03-05 16:07 - 000778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2019-02-12 15:34 - 2018-03-05 16:07 - 000103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2019-02-12 15:34 - 2018-03-05 16:07 - 000035456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2019-02-12 15:34 - 2018-02-14 16:21 - 001166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2019-02-12 15:34 - 2018-02-14 16:21 - 000124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2019-02-12 15:34 - 2018-02-14 16:21 - 000035456 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2019-02-12 15:30 - 2019-02-12 15:32 - 000000000 ____D C:\ProgramData\Epic
2019-02-12 15:30 - 2019-02-12 15:30 - 000001270 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk
2019-02-12 15:30 - 2019-02-12 15:30 - 000001258 _____ C:\Users\Public\Desktop\Epic Games Launcher.lnk
2019-02-12 15:30 - 2019-02-12 15:30 - 000000000 ____D C:\Users\Tany\AppData\Local\UnrealEngineLauncher
2019-02-12 15:30 - 2019-02-12 15:30 - 000000000 ____D C:\Users\Tany\AppData\Local\EpicGamesLauncher
2019-02-12 15:30 - 2019-02-12 15:30 - 000000000 ____D C:\Program Files (x86)\Epic Games

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-03-13 19:31 - 2018-04-12 00:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-03-13 18:46 - 2019-01-10 17:32 - 000000000 ____D C:\Program Files (x86)\Steam
2019-03-13 16:30 - 2019-01-10 18:28 - 000000000 ____D C:\Users\Tany\AppData\Roaming\TS3Client
2019-03-13 15:18 - 2019-01-10 17:59 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-03-13 15:14 - 2019-01-10 17:59 - 127411920 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-03-13 15:13 - 2018-04-12 00:30 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-03-13 14:34 - 2019-01-10 16:40 - 001689050 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-03-13 14:34 - 2018-04-12 16:50 - 000715034 _____ C:\WINDOWS\system32\perfh005.dat
2019-03-13 14:34 - 2018-04-12 16:50 - 000144328 _____ C:\WINDOWS\system32\perfc005.dat
2019-03-13 14:34 - 2018-04-12 00:36 - 000000000 ____D C:\WINDOWS\INF
2019-03-13 14:33 - 2018-04-11 22:04 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2019-03-13 14:32 - 2019-01-10 16:58 - 000000000 ____D C:\ProgramData\NVIDIA
2019-03-13 14:29 - 2019-01-27 13:12 - 000000000 ___HD C:\Users\Tany
2019-03-13 14:28 - 2019-01-27 13:18 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-03-13 14:28 - 2019-01-27 13:04 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-03-13 09:00 - 2019-01-10 16:38 - 000000000 ____D C:\Users\Tany\AppData\Local\Packages
2019-03-12 19:12 - 2019-01-10 18:21 - 000000000 ____D C:\Users\Tany\AppData\Roaming\vlc
2019-03-12 16:15 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2019-03-12 16:15 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\system32\Macromed
2019-03-10 15:37 - 2019-01-27 13:18 - 000003374 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3070578639-1465572867-974185047-1001
2019-03-10 15:37 - 2019-01-27 13:12 - 000002384 _____ C:\Users\Tany\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-03-10 15:37 - 2019-01-10 16:40 - 000000000 ___RD C:\Users\Tany\OneDrive
2019-03-10 15:32 - 2018-04-12 00:38 - 000000000 ___HD C:\Program Files\WindowsApps
2019-03-10 15:32 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-03-08 21:27 - 2018-04-11 22:04 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-03-08 18:47 - 2018-04-12 00:38 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2019-03-08 18:46 - 2019-01-10 18:07 - 000000000 ____D C:\Program Files\Microsoft Office
2019-03-03 19:06 - 2019-01-10 19:51 - 000000000 ____D C:\Users\Tany\Documents\My Games
2019-03-03 18:20 - 2019-01-27 13:04 - 000260576 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-03-03 16:49 - 2019-01-10 18:22 - 000000000 ____D C:\Users\Tany\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2019-03-03 12:38 - 2019-02-05 17:51 - 000000000 ____D C:\Program Files (x86)\Origin Games
2019-03-03 12:38 - 2019-02-05 12:07 - 000000000 ____D C:\Users\Tany\AppData\Roaming\Origin
2019-03-03 12:38 - 2019-02-05 12:07 - 000000000 ____D C:\ProgramData\Origin
2019-03-01 17:49 - 2018-04-12 00:38 - 000000000 ___SD C:\WINDOWS\Downloaded Program Files
2019-03-01 17:49 - 2018-04-12 00:38 - 000000000 ___RD C:\WINDOWS\Offline Web Pages
2019-03-01 14:09 - 2019-01-31 14:16 - 000004198 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1548940558
2019-03-01 14:09 - 2019-01-31 14:16 - 000001396 _____ C:\Users\Tany\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2019-03-01 14:09 - 2019-01-10 17:59 - 000000000 ____D C:\Program Files\rempl
2019-02-27 17:10 - 2019-01-10 17:28 - 000000000 ____D C:\Users\Tany\Desktop\Složky
2019-02-27 12:30 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\system32\NDF
2019-02-24 10:05 - 2019-02-05 13:11 - 000000000 ____D C:\Users\Tany\AppData\Local\Adobe
2019-02-21 15:54 - 2019-01-10 17:40 - 000000000 ____D C:\Users\Tany\AppData\Roaming\uTorrent
2019-02-17 17:49 - 2019-01-10 16:46 - 000000000 ____D C:\ProgramData\Killer
2019-02-13 05:25 - 2019-01-10 16:47 - 000000000 ____D C:\ProgramData\Package Cache
2019-02-12 20:37 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\TextInput
2019-02-12 20:37 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-02-12 18:34 - 2018-04-12 00:38 - 000000000 __SHD C:\Users\Public\Libraries
2019-02-12 18:28 - 2019-01-18 11:49 - 000000000 ____D C:\Users\Tany\AppData\Local\UnrealEngine
2019-02-12 18:01 - 2019-02-10 11:54 - 000000000 ____D C:\Users\Tany\AppData\Roaming\Discord
2019-02-12 15:36 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2019-02-12 15:36 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\system32\MUI
2019-02-12 15:33 - 2019-01-27 17:48 - 000000000 ____D C:\Users\Tany\AppData\Local\D3DSCache

==================== Files in the root of some directories =======

2019-01-10 16:46 - 2019-01-10 16:46 - 000000000 _____ () C:\Users\Tany\AppData\Local\Driver_LOM_8161Present.flag

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\dllhost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\dllhost.exe => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2019-01-27 13:04

==================== End of FRST.txt ============================

# -------------------------------
# Malwarebytes AdwCleaner 7.2.7.0
# -------------------------------
# Build: 01-30-2019
# Database: 2019-03-11.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 03-13-2019
# Duration: 00:00:23
# OS: Windows 10 Home
# Cleaned: 49
# Failed: 0

***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted C:\Windows\installer\{86d4b82a-abed-442a-be86-96357b70f4fe}

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

Deleted C:\Windows\System32\Tasks\Scheduled Update for Ask Toolbar

***** [ Registry ] *****

Deleted HKCU\Software\AppDataLow\Software\AskToolbar
Deleted HKU\S-1-5-18\Software\AskToolbar
Deleted HKU\.DEFAULT\Software\AskToolbar
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E03438E1-0926-485B-A1B2-57544BD40D2C}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E03438E1-0926-485B-A1B2-57544BD40D2C}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Scheduled Update for Ask Toolbar
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Deleted HKLM\Software\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Deleted HKLM\Software\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Deleted HKLM\Software\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Deleted HKLM\Software\Wow6432Node\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
Deleted HKLM\Software\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|Web Companion
Deleted HKCU\Software\AppDataLow\AskToolbarInfo
Deleted HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B66FFAB725B92594C986DE826A867888
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F928123A039649549966d4C29D35B1C9
Deleted HKLM\Software\Classes\Installer\UpgradeCodes\F928123A039649549966d4C29D35B1C9
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9D4F5849367142E4685ED8C25E44C5ED
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A5875B04372C19545BEB90D4D606C472
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A876D9E80B896EC44A8620248CC79296
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF
Deleted HKLM\Software\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF
Deleted HKLM\Software\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\261F213D1F55267499B1F87D0CC3BCF7
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7DE196B10195F5647A2B21B761F3DE01
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\741B4ADF27276464790022C965AB6DA8
Deleted HKLM\Software\Wow6432Node\Classes\AppID\GenericAskToolbar.DLL
Deleted HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Deleted HKLM\Software\Wow6432Node\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Deleted HKLM\Software\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Deleted HKLM\Software\Wow6432Node\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}
Deleted HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Deleted HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Deleted HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Toolbar|{D4027C7F-154A-4066-A1AD-4243D8127440}
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Deleted HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}
Deleted HKLM\Software\Wow6432Node\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}
Deleted HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BDF61FAE-9D19-40F0-8F34-688DEB334CA9}
Deleted HKCU\Software\Lavasoft\Web Companion
Deleted HKLM\Software\Wow6432Node\Lavasoft\Web Companion
Deleted HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
Deleted HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [7030 octets] - [13/03/2019 19:54:00]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

#2 Příspěvek od **Rudy** » 13 bře 2019 20:07

Zdravím!
Spusťte tuto utilitu:

Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

TanyCze · #3 Příspěvek od **TanyCze** » 13 bře 2019 20:23

To už jsem dělal. LOG je v příspěvku taky napsaný. Psal jsem to hned na začátek. Našel mi 49 chyb

Ale i tak prosím o kontrolu. Děkuji

#4 Příspěvek od **Rudy** » 13 bře 2019 21:00

OK, přehlédl jsem to, omlouvám se. Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
HKU\S-1-5-21-3070578639-1465572867-974185047-1001\...\MountPoints2: {7a2470c8-2f44-11e9-9bd3-448a5ba1d005} - "D:\Setup.exe"
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
SearchScopes: HKU\S-1-5-21-3070578639-1465572867-974185047-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3070578639-1465572867-974185047-1001 -> {BDF61FAE-9D19-40F0-8F34-688DEB334CA9} URL = hxxp://securedsearch.lavasoft.com/resul ... _190201&q={searchTerms}
BHO-x32: Ask Toolbar -> {D4027C7F-154A-4066-A1AD-4243D8127440} -> C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll [2010-05-21] (Ask.com -> Ask.com)
C:\Program Files (x86)\Ask.com
Toolbar: HKLM-x32 - Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll [2010-05-21] (Ask.com -> Ask.com)
S3 Shenzunjdao; \??\C:\WINDOWS\system32\Shenzunjdao.sys [X]
C:\WINDOWS\System32\Tasks\Scheduled Update for Ask Toolbar
C:\Program Files (x86)\Ask.com
C:\ProgramData\KMSAutoS
SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No File
SSODL-x32: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No File
Task: {608BCD9C-94C0-4593-8071-8F419F64244A} - \KMSAutoNet -> No File <==== ATTENTION
Task: {E03438E1-0926-485B-A1B2-57544BD40D2C} - System32\Tasks\Scheduled Update for Ask Toolbar => C:\Program Files (x86)\Ask.com\UpdateTask.exe (Ask.com -> ) <==== ATTENTION
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [476]
FirewallRules: [UDP Query User{9761D0A4-8322-4F62-A62E-6D4C47ADE637}C:\windows\temp\files\bin\kmss.exe] => (Allow) C:\windows\temp\files\bin\kmss.exe No File
FirewallRules: [TCP Query User{E59090AD-ACA2-4D48-96FA-BEA096096438}C:\windows\temp\files\bin\kmss.exe] => (Allow) C:\windows\temp\files\bin\kmss.exe No File
FirewallRules: [TCP Query User{8BFBE3C1-A8F5-4529-BB1A-1E9F9A803659}C:\program files (x86)\origin games\apex\r5apex.exe] => (Allow) C:\program files (x86)\origin games\apex\r5apex.exe No File
FirewallRules: [UDP Query User{CBDAF4C0-AC89-4237-A594-64EF9D97E4FE}C:\program files (x86)\origin games\apex\r5apex.exe] => (Allow) C:\program files (x86)\origin games\apex\r5apex.exe No File

EmptyTemp:
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

TanyCze · #5 Příspěvek od **TanyCze** » 13 bře 2019 22:14

ix result of Farbar Recovery Scan Tool (x64) Version: 13.03.2019 01
Ran by Tany (13-03-2019 22:08:46) Run:1
Running from C:\Users\Tany\Desktop
Loaded Profiles: Tany (Available Profiles: Tany)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKU\S-1-5-21-3070578639-1465572867-974185047-1001\...\MountPoints2: {7a2470c8-2f44-11e9-9bd3-448a5ba1d005} - "D:\Setup.exe"
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
SearchScopes: HKU\S-1-5-21-3070578639-1465572867-974185047-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3070578639-1465572867-974185047-1001 -> {BDF61FAE-9D19-40F0-8F34-688DEB334CA9} URL = hxxp://securedsearch.lavasoft.com/resul ... _190201&q={searchTerms}
BHO-x32: Ask Toolbar -> {D4027C7F-154A-4066-A1AD-4243D8127440} -> C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll [2010-05-21] (Ask.com -> Ask.com)
C:\Program Files (x86)\Ask.com
Toolbar: HKLM-x32 - Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll [2010-05-21] (Ask.com -> Ask.com)
S3 Shenzunjdao; \??\C:\WINDOWS\system32\Shenzunjdao.sys [X]
C:\WINDOWS\System32\Tasks\Scheduled Update for Ask Toolbar
C:\Program Files (x86)\Ask.com
C:\ProgramData\KMSAutoS
SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No File
SSODL-x32: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No File
Task: {608BCD9C-94C0-4593-8071-8F419F64244A} - \KMSAutoNet -> No File <==== ATTENTION
Task: {E03438E1-0926-485B-A1B2-57544BD40D2C} - System32\Tasks\Scheduled Update for Ask Toolbar => C:\Program Files (x86)\Ask.com\UpdateTask.exe (Ask.com -> ) <==== ATTENTION
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [476]
FirewallRules: [UDP Query User{9761D0A4-8322-4F62-A62E-6D4C47ADE637}C:\windows\temp\files\bin\kmss.exe] => (Allow) C:\windows\temp\files\bin\kmss.exe No File
FirewallRules: [TCP Query User{E59090AD-ACA2-4D48-96FA-BEA096096438}C:\windows\temp\files\bin\kmss.exe] => (Allow) C:\windows\temp\files\bin\kmss.exe No File
FirewallRules: [TCP Query User{8BFBE3C1-A8F5-4529-BB1A-1E9F9A803659}C:\program files (x86)\origin games\apex\r5apex.exe] => (Allow) C:\program files (x86)\origin games\apex\r5apex.exe No File
FirewallRules: [UDP Query User{CBDAF4C0-AC89-4237-A594-64EF9D97E4FE}C:\program files (x86)\origin games\apex\r5apex.exe] => (Allow) C:\program files (x86)\origin games\apex\r5apex.exe No File

EmptyTemp:
End
*****************

Processes closed successfully.
HKU\S-1-5-21-3070578639-1465572867-974185047-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{7a2470c8-2f44-11e9-9bd3-448a5ba1d005} => removed successfully
HKLM\Software\Classes\CLSID\{7a2470c8-2f44-11e9-9bd3-448a5ba1d005} => not found
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Search_URL => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Search_URL => value restored successfully
"HKU\S-1-5-21-3070578639-1465572867-974185047-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
HKU\S-1-5-21-3070578639-1465572867-974185047-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BDF61FAE-9D19-40F0-8F34-688DEB334CA9} => not found
HKLM\Software\Classes\CLSID\{BDF61FAE-9D19-40F0-8F34-688DEB334CA9} => not found
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440} => not found
HKLM\Software\Wow6432Node\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440} => not found
C:\Program Files (x86)\Ask.com => moved successfully
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{D4027C7F-154A-4066-A1AD-4243D8127440}" => not found
HKLM\Software\Wow6432Node\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440} => not found
HKLM\System\CurrentControlSet\Services\Shenzunjdao => removed successfully
Shenzunjdao => service removed successfully
"C:\WINDOWS\System32\Tasks\Scheduled Update for Ask Toolbar" => not found
"C:\Program Files (x86)\Ask.com" => not found
C:\ProgramData\KMSAutoS => moved successfully
"HKLM\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck" => removed successfully
HKLM\Software\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED} => not found
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck" => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED} => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{608BCD9C-94C0-4593-8071-8F419F64244A}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{608BCD9C-94C0-4593-8071-8F419F64244A}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\KMSAutoNet" => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E03438E1-0926-485B-A1B2-57544BD40D2C}" => not found
"C:\WINDOWS\System32\Tasks\Scheduled Update for Ask Toolbar" => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Scheduled Update for Ask Toolbar" => not found
C:\Users\Public\Shared Files => ":VersionCache" ADS removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{9761D0A4-8322-4F62-A62E-6D4C47ADE637}C:\windows\temp\files\bin\kmss.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{E59090AD-ACA2-4D48-96FA-BEA096096438}C:\windows\temp\files\bin\kmss.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{8BFBE3C1-A8F5-4529-BB1A-1E9F9A803659}C:\program files (x86)\origin games\apex\r5apex.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{CBDAF4C0-AC89-4237-A594-64EF9D97E4FE}C:\program files (x86)\origin games\apex\r5apex.exe" => removed successfully

=========== EmptyTemp: ==========

BITS transfer queue => 7921664 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 65070873 B
Java, Flash, Steam htmlcache => 219791622 B
Windows/system/drivers => 2734368 B
Edge => 1407750 B
Chrome => 0 B
Firefox => 0 B
Opera => 417780987 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 14490 B
LocalService => 0 B
NetworkService => 65416 B
NetworkService => 0 B
Tany => 49073045 B

RecycleBin => 0 B
EmptyTemp: => 728.5 MB temporary data Removed.

================================

The system needed a reboot.

==== End of Fixlog 22:10:20 ====

#6 Příspěvek od **Rudy** » 14 bře 2019 09:53

Smazáno. Nastala nějaká změna?

TanyCze · #7 Příspěvek od **TanyCze** » 14 bře 2019 11:12

Zatím se mi to neseklo takže asi ano, děkuji

#8 Příspěvek od **Rudy** » 14 bře 2019 14:03

To jsem rád. Nemáte zač!

VIRY.CZ

Občasný seknutí PC

Občasný seknutí PC

Re: Občasný seknutí PC

Re: Občasný seknutí PC

Re: Občasný seknutí PC

Re: Občasný seknutí PC

Re: Občasný seknutí PC

Re: Občasný seknutí PC

Re: Občasný seknutí PC