Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Windows 10

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
samsungs6edge
Návštěvník
Návštěvník
Příspěvky: 134
Registrován: 26 kvě 2017 14:48

Windows 10

#1 Příspěvek od samsungs6edge »

Dobrý den nainstaloval jsem Windows 10 Pro.Můžete prosím zkontrolovat zda je vše v pořádku?Děkuji moc



Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 19-05.2019
Ran by Administrator (administrator) on DESKTOP-49DKR3K (ASUSTeK Computer Inc. K52De) (20-05-2019 17:06:44)
Running from C:\Users\Administrator\Desktop
Loaded Profiles: Administrator (Available Profiles: Windows10Pro & Administrator)
Platform: Windows 10 Pro Version 1809 17763.379 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SoftwareDistribution\Download\Install\Windows-KB890830-x64-V5.72.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\MRT.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE64.EXE

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3242696 2015-10-07] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16174352 2015-11-09] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM\...\RunOnce: [DEL_ST_CPL] => CMD /C del "C:\Program Files\Realtek\Audio\HDA\ST_CPL.XML" /F
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-19\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup
HKU\S-1-5-20\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup
HKU\S-1-5-21-3226154382-1699614995-2887302509-500\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\74.0.3729.157\Installer\chrmstp.exe [2019-05-20] (Google LLC -> Google Inc.)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {3DF2271D-6603-44C5-8DAA-4BBB9495172B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-05-20] (Google Inc -> Google LLC)
Task: {8ED76FEB-F215-46CE-A766-F29328E6F472} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1411856 2015-11-09] (Realtek Semiconductor Corp -> Realtek Semiconductor)
Task: {B3CAD77A-3118-41E4-99D6-C4FFB4BDF2DA} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16174352 2015-11-09] (Realtek Semiconductor Corp -> Realtek Semiconductor)
Task: {C0A5ADDC-7D84-40EB-AC70-819945523137} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-05-20] (Google Inc -> Google LLC)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{9b8aa6f5-f0e2-4a46-8b4e-069fbc8f4783}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================

FireFox:
========
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-20] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-20] (Google Inc -> Google LLC)

Chrome:
=======
CHR Profile: C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default [2019-05-20]
CHR Extension: (Prezentace) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-05-20]
CHR Extension: (Dokumenty) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-05-20]
CHR Extension: (Disk Google) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-05-20]
CHR Extension: (YouTube) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-05-20]
CHR Extension: (Tabulky) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-05-20]
CHR Extension: (Dokumenty Google offline) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-05-20]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-05-20]
CHR Extension: (Gmail) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-20]
CHR Extension: (Chrome Media Router) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-05-20]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [255472 2019-05-08] (Microsoft Windows Hardware Compatibility Publisher -> AMD)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [351944 2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
S2 ETDService; C:\Program Files\Elantech\ETDService.exe [144072 2015-10-07] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [315664 2015-11-09] (Realtek Semiconductor Corp -> Realtek Semiconductor)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5381128 2019-03-12] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3830128 2019-03-12] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [110944 2018-09-15] (Microsoft Corporation -> Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [21648880 2019-05-08] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [674288 2019-05-08] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R2 AODDriver4.3; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R3 athr; C:\Windows\System32\drivers\athw10x.sys [4321160 2019-05-08] (Qualcomm Atheros -> Qualcomm Atheros Communications, Inc.)
R3 NETJME; C:\Windows\System32\drivers\NETJME.sys [137728 2018-09-15] (Microsoft Windows -> JMicron Technology Corp.)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46584 2018-09-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [340008 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [61992 2018-09-15] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-05-20 17:06 - 2019-05-20 17:06 - 000000000 ____D C:\Users\Administrator\AppData\Local\DBG
2019-05-20 17:05 - 2019-05-20 17:09 - 000009739 _____ C:\Users\Administrator\Desktop\FRST.txt
2019-05-20 17:05 - 2019-05-20 17:05 - 132445408 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2019-05-20 17:05 - 2019-05-20 17:05 - 000000000 ____D C:\Windows\system32\MRT
2019-05-20 17:05 - 2019-05-20 17:05 - 000000000 ____D C:\Users\Administrator\AppData\Local\D3DSCache
2019-05-20 17:04 - 2019-05-20 17:05 - 000000000 ____D C:\FRST
2019-05-20 17:03 - 2019-05-20 17:04 - 002435072 _____ (Farbar) C:\Users\Administrator\Desktop\FRST64.exe
2019-05-20 17:01 - 2019-05-20 17:01 - 000000000 ____D C:\ProgramData\Packages
2019-05-20 16:58 - 2019-05-20 16:58 - 000000000 ____D C:\Users\Administrator\AppData\Local\Google
2019-05-20 16:56 - 2019-05-20 16:56 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Macromedia
2019-05-20 16:52 - 2019-05-20 16:52 - 000002373 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-05-20 16:52 - 2019-05-20 16:52 - 000002332 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-05-20 16:51 - 2019-05-20 16:52 - 000000000 ____D C:\Program Files (x86)\Google
2019-05-20 16:51 - 2019-05-20 16:51 - 000003472 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2019-05-20 16:51 - 2019-05-20 16:51 - 000003348 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2019-05-20 16:49 - 2019-05-20 16:49 - 000003260 _____ C:\Windows\System32\Tasks\RtHDVBg_ListenToDevice
2019-05-20 16:49 - 2019-05-20 16:49 - 000003194 _____ C:\Windows\System32\Tasks\RTKCPL
2019-05-20 16:49 - 2019-05-20 16:49 - 000000000 ____D C:\Windows\SysWOW64\RTCOM
2019-05-20 16:49 - 2019-05-20 16:49 - 000000000 ____D C:\Windows\system32\SRSLabs
2019-05-20 16:49 - 2019-05-20 16:49 - 000000000 ____D C:\Program Files\Realtek
2019-05-20 16:47 - 2019-05-20 16:47 - 000000000 ____D C:\Program Files\Elantech
2019-05-20 16:46 - 2019-05-20 16:46 - 000000000 ___HD C:\Users\Administrator\MicrosoftEdgeBackups
2019-05-20 16:46 - 2019-05-20 16:46 - 000000000 ____D C:\Users\Administrator\AppData\Local\Comms
2019-05-20 16:45 - 2019-05-20 15:59 - 000000000 ____D C:\Windows\Panther
2019-05-20 16:43 - 2019-05-20 16:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2019-05-20 16:43 - 2019-05-20 16:43 - 000000000 ____D C:\ProgramData\AMD
2019-05-20 16:43 - 2019-05-20 16:43 - 000000000 ____D C:\Program Files\ATI Technologies
2019-05-20 16:42 - 2019-05-20 16:43 - 000000000 ____D C:\Program Files (x86)\ATI Technologies
2019-05-20 16:42 - 2019-05-20 16:42 - 000000000 ____D C:\ProgramData\Package Cache
2019-05-20 16:41 - 2019-05-20 16:41 - 000000000 ____D C:\Program Files\Common Files\ATI Technologies
2019-05-20 16:41 - 2019-05-20 16:41 - 000000000 ____D C:\Program Files\AMD
2019-05-20 16:41 - 2019-05-20 16:41 - 000000000 ____D C:\AMD
2019-05-20 16:41 - 2019-05-20 16:41 - 000000000 _____ C:\Windows\ativpsrm.bin
2019-05-20 16:37 - 2019-05-20 16:50 - 000000000 ____D C:\Users\Administrator\AppData\Local\MicrosoftEdge
2019-05-20 16:37 - 2019-05-20 16:37 - 000001446 _____ C:\Users\Administrator\Desktop\Microsoft Edge.lnk
2019-05-20 16:36 - 2019-05-20 17:01 - 000000000 ____D C:\Users\Administrator\AppData\Local\Packages
2019-05-20 16:36 - 2019-05-20 16:46 - 000000000 ____D C:\Users\Administrator
2019-05-20 16:36 - 2019-05-20 16:37 - 000000000 ____D C:\Users\Administrator\AppData\Local\ConnectedDevicesPlatform
2019-05-20 16:36 - 2019-05-20 16:36 - 000000020 ___SH C:\Users\Administrator\ntuser.ini
2019-05-20 16:36 - 2019-05-20 16:36 - 000000000 _SHDL C:\Users\Administrator\Šablony
2019-05-20 16:36 - 2019-05-20 16:36 - 000000000 _SHDL C:\Users\Administrator\Soubory cookie
2019-05-20 16:36 - 2019-05-20 16:36 - 000000000 _SHDL C:\Users\Administrator\Poslední
2019-05-20 16:36 - 2019-05-20 16:36 - 000000000 _SHDL C:\Users\Administrator\Okolní tiskárny
2019-05-20 16:36 - 2019-05-20 16:36 - 000000000 _SHDL C:\Users\Administrator\Okolní síť
2019-05-20 16:36 - 2019-05-20 16:36 - 000000000 _SHDL C:\Users\Administrator\Nabídka Start
2019-05-20 16:36 - 2019-05-20 16:36 - 000000000 _SHDL C:\Users\Administrator\Dokumenty
2019-05-20 16:36 - 2019-05-20 16:36 - 000000000 _SHDL C:\Users\Administrator\Documents\Obrázky
2019-05-20 16:36 - 2019-05-20 16:36 - 000000000 _SHDL C:\Users\Administrator\Documents\Hudba
2019-05-20 16:36 - 2019-05-20 16:36 - 000000000 _SHDL C:\Users\Administrator\Documents\Filmy
2019-05-20 16:36 - 2019-05-20 16:36 - 000000000 _SHDL C:\Users\Administrator\Data aplikací
2019-05-20 16:36 - 2019-05-20 16:36 - 000000000 _SHDL C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2019-05-20 16:36 - 2019-05-20 16:36 - 000000000 _SHDL C:\Users\Administrator\AppData\Local\Data aplikací
2019-05-20 16:36 - 2019-05-20 16:36 - 000000000 ___RD C:\Users\Administrator\3D Objects
2019-05-20 16:36 - 2019-05-20 16:36 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Adobe
2019-05-20 16:36 - 2018-09-15 09:29 - 000001105 _____ C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-05-20 16:31 - 2019-05-20 16:31 - 000000000 ____D C:\Users\Windows10Pro\AppData\Local\PlaceholderTileLogoFolder
2019-05-20 16:29 - 2019-05-20 16:29 - 000001446 _____ C:\Users\Windows10Pro\Desktop\Microsoft Edge.lnk
2019-05-20 16:29 - 2019-05-20 16:29 - 000000000 ____D C:\Users\Windows10Pro\AppData\Local\MicrosoftEdge
2019-05-20 16:27 - 2019-05-20 16:36 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-05-20 16:27 - 2019-05-20 16:29 - 000000000 ____D C:\Users\Windows10Pro\AppData\Local\Packages
2019-05-20 16:27 - 2019-05-20 16:29 - 000000000 ____D C:\Users\Windows10Pro\AppData\Local\ConnectedDevicesPlatform
2019-05-20 16:27 - 2019-05-20 16:27 - 000000000 ___RD C:\Users\Windows10Pro\3D Objects
2019-05-20 16:27 - 2019-05-20 16:27 - 000000000 ____D C:\Users\Windows10Pro\AppData\Roaming\Adobe
2019-05-20 16:27 - 2019-05-20 16:27 - 000000000 ____D C:\Users\Windows10Pro\AppData\Local\VirtualStore
2019-05-20 16:26 - 2019-05-20 16:27 - 000000000 ____D C:\Users\Windows10Pro
2019-05-20 16:26 - 2019-05-20 16:26 - 000000020 ___SH C:\Users\Windows10Pro\ntuser.ini
2019-05-20 16:26 - 2019-05-20 16:26 - 000000000 _SHDL C:\Users\Windows10Pro\Šablony
2019-05-20 16:26 - 2019-05-20 16:26 - 000000000 _SHDL C:\Users\Windows10Pro\Soubory cookie
2019-05-20 16:26 - 2019-05-20 16:26 - 000000000 _SHDL C:\Users\Windows10Pro\Poslední
2019-05-20 16:26 - 2019-05-20 16:26 - 000000000 _SHDL C:\Users\Windows10Pro\Okolní tiskárny
2019-05-20 16:26 - 2019-05-20 16:26 - 000000000 _SHDL C:\Users\Windows10Pro\Okolní síť
2019-05-20 16:26 - 2019-05-20 16:26 - 000000000 _SHDL C:\Users\Windows10Pro\Nabídka Start
2019-05-20 16:26 - 2019-05-20 16:26 - 000000000 _SHDL C:\Users\Windows10Pro\Dokumenty
2019-05-20 16:26 - 2019-05-20 16:26 - 000000000 _SHDL C:\Users\Windows10Pro\Documents\Obrázky
2019-05-20 16:26 - 2019-05-20 16:26 - 000000000 _SHDL C:\Users\Windows10Pro\Documents\Hudba
2019-05-20 16:26 - 2019-05-20 16:26 - 000000000 _SHDL C:\Users\Windows10Pro\Documents\Filmy
2019-05-20 16:26 - 2019-05-20 16:26 - 000000000 _SHDL C:\Users\Windows10Pro\Data aplikací
2019-05-20 16:26 - 2019-05-20 16:26 - 000000000 _SHDL C:\Users\Windows10Pro\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2019-05-20 16:26 - 2019-05-20 16:26 - 000000000 _SHDL C:\Users\Windows10Pro\AppData\Local\Data aplikací
2019-05-20 16:26 - 2018-09-15 09:29 - 000001105 _____ C:\Users\Windows10Pro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-05-20 16:09 - 2019-05-20 16:43 - 001606102 _____ C:\Windows\system32\PerfStringBackup.INI
2019-05-20 16:09 - 2019-05-20 16:09 - 000000000 ____D C:\Windows\CSC
2019-05-20 16:08 - 2019-03-12 08:29 - 002865152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2019-05-20 16:03 - 2019-05-20 16:03 - 000000000 _SHDL C:\Users\Public\Documents\Obrázky
2019-05-20 16:03 - 2019-05-20 16:03 - 000000000 _SHDL C:\Users\Public\Documents\Hudba
2019-05-20 16:03 - 2019-05-20 16:03 - 000000000 _SHDL C:\Users\Public\Documents\Filmy
2019-05-20 16:03 - 2019-05-20 16:03 - 000000000 _SHDL C:\Users\Default\Šablony
2019-05-20 16:03 - 2019-05-20 16:03 - 000000000 _SHDL C:\Users\Default\Soubory cookie
2019-05-20 16:03 - 2019-05-20 16:03 - 000000000 _SHDL C:\Users\Default\Poslední
2019-05-20 16:03 - 2019-05-20 16:03 - 000000000 _SHDL C:\Users\Default\Okolní tiskárny
2019-05-20 16:03 - 2019-05-20 16:03 - 000000000 _SHDL C:\Users\Default\Okolní síť
2019-05-20 16:03 - 2019-05-20 16:03 - 000000000 _SHDL C:\Users\Default\Nabídka Start
2019-05-20 16:03 - 2019-05-20 16:03 - 000000000 _SHDL C:\Users\Default\Dokumenty
2019-05-20 16:03 - 2019-05-20 16:03 - 000000000 _SHDL C:\Users\Default\Documents\Obrázky
2019-05-20 16:03 - 2019-05-20 16:03 - 000000000 _SHDL C:\Users\Default\Documents\Hudba
2019-05-20 16:03 - 2019-05-20 16:03 - 000000000 _SHDL C:\Users\Default\Documents\Filmy
2019-05-20 16:03 - 2019-05-20 16:03 - 000000000 _SHDL C:\Users\Default\Data aplikací
2019-05-20 16:03 - 2019-05-20 16:03 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2019-05-20 16:03 - 2019-05-20 16:03 - 000000000 _SHDL C:\Users\Default\AppData\Local\Data aplikací
2019-05-20 16:03 - 2019-05-20 16:03 - 000000000 _SHDL C:\Users\Default User\Documents\Obrázky
2019-05-20 16:03 - 2019-05-20 16:03 - 000000000 _SHDL C:\Users\Default User\Documents\Hudba
2019-05-20 16:03 - 2019-05-20 16:03 - 000000000 _SHDL C:\Users\Default User\Documents\Filmy
2019-05-20 16:03 - 2019-05-20 16:03 - 000000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2019-05-20 16:03 - 2019-05-20 16:03 - 000000000 _SHDL C:\Users\Default User\AppData\Local\Data aplikací
2019-05-20 16:03 - 2019-05-20 16:03 - 000000000 _SHDL C:\ProgramData\Šablony
2019-05-20 16:03 - 2019-05-20 16:03 - 000000000 _SHDL C:\ProgramData\Plocha
2019-05-20 16:03 - 2019-05-20 16:03 - 000000000 _SHDL C:\ProgramData\Nabídka Start
2019-05-20 16:03 - 2019-05-20 16:03 - 000000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programy
2019-05-20 16:03 - 2019-05-20 16:03 - 000000000 _SHDL C:\ProgramData\Dokumenty
2019-05-20 16:03 - 2019-05-20 16:03 - 000000000 _SHDL C:\ProgramData\Data aplikací
2019-05-20 16:03 - 2019-05-20 16:03 - 000000000 _SHDL C:\Documents and Settings
2019-05-20 15:52 - 2019-05-20 15:52 - 000000000 ____D C:\ProgramData\USOShared
2019-05-20 15:50 - 2019-05-20 15:50 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2019-05-20 15:49 - 2019-05-20 16:03 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-05-20 15:49 - 2019-05-20 15:49 - 000000000 ____D C:\Windows\system32\Drivers\wd
2019-05-20 15:48 - 2019-05-20 15:50 - 000000000 ____D C:\Windows\system32\SleepStudy
2019-05-20 15:48 - 2019-05-20 15:48 - 000000000 ____D C:\Windows\ServiceProfiles
2019-05-20 15:47 - 2019-05-20 15:48 - 000258088 _____ C:\Windows\system32\FNTCACHE.DAT
2019-05-20 15:02 - 2019-05-08 13:10 - 004321160 _____ (Qualcomm Atheros Communications, Inc.) C:\Windows\system32\Drivers\athw10x.sys
2019-05-20 15:01 - 2019-05-08 13:08 - 000874480 _____ (AMD) C:\Windows\system32\coinst_15.20.dll
2019-05-20 15:01 - 2019-05-08 13:08 - 000243696 _____ C:\Windows\system32\clinfo.exe
2019-05-20 15:01 - 2019-05-08 13:08 - 000136176 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll
2019-05-20 15:01 - 2019-05-08 13:08 - 000122352 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll
2019-05-20 15:01 - 2019-05-08 13:08 - 000111600 _____ C:\Windows\system32\hsa-thunk64.dll
2019-05-20 15:01 - 2019-05-08 13:08 - 000111088 _____ C:\Windows\SysWOW64\hsa-thunk.dll
2019-05-20 15:01 - 2019-05-08 13:08 - 000103408 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll
2019-05-20 15:01 - 2019-05-08 13:08 - 000096752 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll
2019-05-20 15:01 - 2019-05-08 13:08 - 000012784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\detoured.dll
2019-05-20 15:01 - 2019-05-08 13:08 - 000012784 _____ (Microsoft Corporation) C:\Windows\system32\detoured.dll
2019-05-20 15:01 - 2019-05-08 13:07 - 030775792 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll
2019-05-20 15:01 - 2019-05-08 13:07 - 025320432 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll
2019-05-20 15:01 - 2019-05-08 13:07 - 021648880 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2019-05-20 15:01 - 2019-05-08 13:07 - 015725552 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd64.dll
2019-05-20 15:01 - 2019-05-08 13:07 - 014310896 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticaldd.dll
2019-05-20 15:01 - 2019-05-08 13:07 - 012088000 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx64.dll
2019-05-20 15:01 - 2019-05-08 13:07 - 010211016 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atidxx32.dll
2019-05-20 15:01 - 2019-05-08 13:07 - 009355016 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdxc64.dll
2019-05-20 15:01 - 2019-05-08 13:07 - 008982432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6a.dll
2019-05-20 15:01 - 2019-05-08 13:07 - 008864920 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd64.dll
2019-05-20 15:01 - 2019-05-08 13:07 - 008009360 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdva.dll
2019-05-20 15:01 - 2019-05-08 13:07 - 007482560 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdag.dll
2019-05-20 15:01 - 2019-05-08 13:07 - 003471376 _____ C:\Windows\SysWOW64\atiumdva.cap
2019-05-20 15:01 - 2019-05-08 13:07 - 003437632 _____ C:\Windows\system32\atiumd6a.cap
2019-05-20 15:01 - 2019-05-08 13:07 - 001479808 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll
2019-05-20 15:01 - 2019-05-08 13:07 - 001256432 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2019-05-20 15:01 - 2019-05-08 13:07 - 001223544 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll
2019-05-20 15:01 - 2019-05-08 13:07 - 000935408 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2019-05-20 15:01 - 2019-05-08 13:07 - 000935408 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxx.dll
2019-05-20 15:01 - 2019-05-08 13:07 - 000737410 _____ C:\Windows\system32\atiicdxx.dat
2019-05-20 15:01 - 2019-05-08 13:07 - 000683504 _____ (AMD) C:\Windows\system32\atieclxx.exe
2019-05-20 15:01 - 2019-05-08 13:07 - 000674288 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2019-05-20 15:01 - 2019-05-08 13:07 - 000662400 _____ C:\Windows\SysWOW64\atiapfxx.blb
2019-05-20 15:01 - 2019-05-08 13:07 - 000662400 _____ C:\Windows\system32\atiapfxx.blb
2019-05-20 15:01 - 2019-05-08 13:07 - 000451056 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll
2019-05-20 15:01 - 2019-05-08 13:07 - 000375792 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2019-05-20 15:01 - 2019-05-08 13:07 - 000341488 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODE.exe
2019-05-20 15:01 - 2019-05-08 13:07 - 000322868 _____ C:\Windows\system32\ativvaxy_vi.dat
2019-05-20 15:01 - 2019-05-08 13:07 - 000321200 _____ C:\Windows\system32\ativvaxy_vi_nd.dat
2019-05-20 15:01 - 2019-05-08 13:07 - 000255808 _____ C:\Windows\system32\ativvaxy_cz_nd.dat
2019-05-20 15:01 - 2019-05-08 13:07 - 000255472 _____ (AMD) C:\Windows\system32\atiesrxx.exe
2019-05-20 15:01 - 2019-05-08 13:07 - 000250884 _____ C:\Windows\system32\ativvaxy_FJ.dat
2019-05-20 15:01 - 2019-05-08 13:07 - 000249088 _____ C:\Windows\system32\ativvaxy_FJ_nd.dat
2019-05-20 15:01 - 2019-05-08 13:07 - 000234420 _____ C:\Windows\system32\ativvaxy_cik.dat
2019-05-20 15:01 - 2019-05-08 13:07 - 000232752 _____ C:\Windows\system32\ativvaxy_cik_nd.dat
2019-05-20 15:01 - 2019-05-08 13:07 - 000204952 _____ C:\Windows\SysWOW64\ativvsvl.dat
2019-05-20 15:01 - 2019-05-08 13:07 - 000204952 _____ C:\Windows\system32\ativvsvl.dat
2019-05-20 15:01 - 2019-05-08 13:07 - 000199664 _____ (AMD) C:\Windows\system32\atitmm64.dll
2019-05-20 15:01 - 2019-05-08 13:07 - 000177344 _____ C:\Windows\system32\ativce03.dat
2019-05-20 15:01 - 2019-05-08 13:07 - 000168944 _____ C:\Windows\system32\atieah64.exe
2019-05-20 15:01 - 2019-05-08 13:07 - 000165360 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2019-05-20 15:01 - 2019-05-08 13:07 - 000162232 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxp64.dll
2019-05-20 15:01 - 2019-05-08 13:07 - 000157144 _____ C:\Windows\SysWOW64\ativvsva.dat
2019-05-20 15:01 - 2019-05-08 13:07 - 000157144 _____ C:\Windows\system32\ativvsva.dat
2019-05-20 15:01 - 2019-05-08 13:07 - 000152560 _____ C:\Windows\SysWOW64\atieah32.exe
2019-05-20 15:01 - 2019-05-08 13:07 - 000150512 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2019-05-20 15:01 - 2019-05-08 13:07 - 000143056 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll
2019-05-20 15:01 - 2019-05-08 13:07 - 000130064 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll
2019-05-20 15:01 - 2019-05-08 13:07 - 000112360 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiu9pag.dll
2019-05-20 15:01 - 2019-05-08 13:07 - 000100816 _____ C:\Windows\system32\ativce02.dat
2019-05-20 15:01 - 2019-05-08 13:07 - 000088000 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2019-05-20 15:01 - 2019-05-08 13:07 - 000083952 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll
2019-05-20 15:01 - 2019-05-08 13:07 - 000081160 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2019-05-20 15:01 - 2019-05-08 13:07 - 000078320 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll
2019-05-20 15:01 - 2019-05-08 13:07 - 000078320 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2019-05-20 15:01 - 2019-05-08 13:07 - 000073712 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2019-05-20 15:01 - 2019-05-08 13:07 - 000071152 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt64.dll
2019-05-20 15:01 - 2019-05-08 13:07 - 000068080 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2019-05-20 15:01 - 2019-05-08 13:07 - 000064496 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl64.dll
2019-05-20 15:01 - 2019-05-08 13:07 - 000060912 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalrt.dll
2019-05-20 15:01 - 2019-05-08 13:07 - 000059888 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODCLI.exe
2019-05-20 15:01 - 2019-05-08 13:07 - 000057840 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalcl.dll
2019-05-20 15:01 - 2019-05-08 13:07 - 000052208 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2019-05-20 15:01 - 2019-05-08 13:07 - 000038384 _____ (AMD) C:\Windows\system32\atimuixx.dll
2019-05-20 15:00 - 2019-05-08 13:07 - 047794160 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll
2019-05-20 15:00 - 2019-05-08 13:07 - 039720944 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll
2019-05-20 15:00 - 2019-05-08 13:07 - 027544560 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl12cl64.dll
2019-05-20 15:00 - 2019-05-08 13:07 - 022327280 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl12cl.dll
2019-05-20 15:00 - 2019-05-08 13:07 - 007683096 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdxc32.dll
2019-05-20 15:00 - 2019-05-08 13:07 - 006686192 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmantle64.dll
2019-05-20 15:00 - 2019-05-08 13:07 - 005216240 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmantle32.dll
2019-05-20 15:00 - 2019-05-08 13:07 - 001196032 _____ C:\Windows\system32\amdocl_as64.exe
2019-05-20 15:00 - 2019-05-08 13:07 - 001070592 _____ C:\Windows\system32\amdocl_ld64.exe
2019-05-20 15:00 - 2019-05-08 13:07 - 001004032 _____ C:\Windows\SysWOW64\amdocl_as32.exe
2019-05-20 15:00 - 2019-05-08 13:07 - 000833800 _____ C:\Windows\system32\amdicdxx.dat
2019-05-20 15:00 - 2019-05-08 13:07 - 000807424 _____ C:\Windows\SysWOW64\amdocl_ld32.exe
2019-05-20 15:00 - 2019-05-08 13:07 - 000631792 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdlvr64.dll
2019-05-20 15:00 - 2019-05-08 13:07 - 000524272 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdlvr32.dll
2019-05-20 15:00 - 2019-05-08 13:07 - 000471320 _____ C:\Windows\system32\amdmiracast.dll
2019-05-20 15:00 - 2019-05-08 13:07 - 000143344 _____ C:\Windows\system32\amdhdl64.dll
2019-05-20 15:00 - 2019-05-08 13:07 - 000132080 _____ C:\Windows\SysWOW64\amdhdl32.dll
2019-05-20 15:00 - 2019-05-08 13:07 - 000088000 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2019-05-20 15:00 - 2019-05-08 13:07 - 000081160 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2019-05-20 15:00 - 2019-05-08 13:07 - 000059376 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmmcl6.dll
2019-05-20 15:00 - 2019-05-08 13:07 - 000048112 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmmcl.dll
2019-05-20 15:00 - 2019-05-08 13:06 - 000213488 _____ C:\Windows\system32\amdgfxinfo64.dll
2019-05-20 15:00 - 2019-05-08 13:06 - 000198640 _____ C:\Windows\SysWOW64\amdgfxinfo32.dll
2019-05-20 15:00 - 2019-05-08 13:06 - 000175648 _____ C:\Windows\system32\amde31a.dat

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-05-20 17:04 - 2018-09-15 09:23 - 000000000 ____D C:\Windows\CbsTemp
2019-05-20 17:03 - 2018-09-15 09:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-05-20 17:02 - 2018-09-15 09:33 - 000000000 ____D C:\Windows\AppReadiness
2019-05-20 16:59 - 2018-09-15 08:09 - 000000000 ____D C:\Windows\servicing
2019-05-20 16:50 - 2018-09-15 09:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-05-20 16:49 - 2018-09-15 09:31 - 000000000 ____D C:\Windows\INF
2019-05-20 16:45 - 2018-09-15 09:31 - 000028672 _____ C:\Windows\system32\config\BCD-Template
2019-05-20 16:43 - 2018-09-15 19:39 - 000683600 _____ C:\Windows\system32\perfh005.dat
2019-05-20 16:43 - 2018-09-15 19:39 - 000137282 _____ C:\Windows\system32\perfc005.dat
2019-05-20 16:09 - 2018-09-15 09:33 - 000000000 ____D C:\Windows\system32\spool
2019-05-20 16:09 - 2018-09-15 09:33 - 000000000 ____D C:\Windows\system32\FxsTmp
2019-05-20 16:03 - 2018-09-15 09:33 - 000000000 ____D C:\Program Files\windows nt
2019-05-20 15:59 - 2018-09-15 08:09 - 000524288 _____ C:\Windows\system32\config\BBI
2019-05-20 15:53 - 2018-09-15 09:33 - 000000000 ___RD C:\Windows\PrintDialog
2019-05-20 15:53 - 2018-09-15 09:33 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2019-05-20 15:51 - 2018-09-15 08:09 - 000032768 _____ C:\Windows\system32\config\ELAM
2019-05-20 15:49 - 2018-09-15 09:33 - 000000000 ____D C:\Windows\ServiceState

==================== SigCheck ===============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ============================



Additional scan result of Farbar Recovery Scan Tool (x64) Version: 19-05.2019
Ran by Administrator (20-05-2019 17:10:06)
Running from C:\Users\Administrator\Desktop
Windows 10 Pro Version 1809 17763.379 (X64) (2019-05-20 14:08:59)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3226154382-1699614995-2887302509-500 - Administrator - Enabled) => C:\Users\Administrator
DefaultAccount (S-1-5-21-3226154382-1699614995-2887302509-503 - Limited - Disabled)
Guest (S-1-5-21-3226154382-1699614995-2887302509-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-3226154382-1699614995-2887302509-504 - Limited - Disabled)
Windows10Pro (S-1-5-21-3226154382-1699614995-2887302509-1001 - Administrator - Enabled) => C:\Users\Windows10Pro

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

AMD Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD)
ELAN Touchpad 11.15.0.18_X64 (HKLM\...\Elantech) (Version: 11.15.0.18 - ELAN Microelectronic Corp.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 74.0.3729.157 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.11 - Google LLC) Hidden
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7571 - Realtek Semiconductor Corp.)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2015-11-04 16:43 - 2015-11-04 16:43 - 000127488 _____ () [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
2015-11-04 16:40 - 2015-11-04 16:40 - 000005120 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiamcsy.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2018-09-15 09:31 - 2018-09-15 09:31 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3226154382-1699614995-2887302509-500\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "ETDCtrl"
HKLM\...\StartupApproved\Run32: => "StartCCC"
HKU\S-1-5-21-3226154382-1699614995-2887302509-500\...\StartupApproved\Run: => "OneDriveSetup"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{07A4240F-011D-46F4-9770-079F676C5E57}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.)

==================== Restore Points =========================

ATTENTION: System Restore is disabled

==================== Faulty Device Manager Devices =============

Name: Základní systémové zařízení
Description: Základní systémové zařízení
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Základní systémové zařízení
Description: Základní systémové zařízení
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Základní systémové zařízení
Description: Základní systémové zařízení
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (05/20/2019 05:06:21 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program FRST64.exe verze 19.5.2019.0 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 53c

Čas spuštění: 01d50f1d555fcba0

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Users\Administrator\Desktop\FRST64.exe

ID hlášení: 6eb6293d-4316-4531-953e-abe4d10c8891

Úplný název balíčku s chybou:

ID aplikace relativní podle balíčku s chybou:

Typ zablokování: Top level window is idle

Error: (05/20/2019 04:43:04 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: atiesrxx.exe, verze: 6.14.11.1199, časové razítko: 0x563a76a1
Název chybujícího modulu: ntdll.dll, verze: 10.0.17763.348, časové razítko: 0xca65c822
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000004df23
ID chybujícího procesu: 0xcac
Čas spuštění chybující aplikace: 0x01d50f1a302b62a8
Cesta k chybující aplikaci: C:\Windows\system32\atiesrxx.exe
Cesta k chybujícímu modulu: C:\Windows\SYSTEM32\ntdll.dll
ID zprávy: 0201e6ed-5f02-4d60-aa5d-4b098f01c071
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (05/20/2019 04:29:40 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Aktivace licence (slui.exe) se nezdařila s následujícím kódem chyby:
hr=0x80072EE7
Argument příkazového řádku:
RuleId=31e71c49-8da7-4a2f-ad92-45d98a1c79ba;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=4de7cb65-cdf1-4de9-8ae8-e3cce27b9f2c;NotificationInterval=1440;Trigger=UserLogon;SessionId=2

Error: (05/20/2019 04:29:39 PM) (Source: Software Protection Platform Service) (EventID: 1014) (User: )
Description: Získání licence koncového uživatele se nezdařilo. hr=0x80072EE7
ID SKU=4de7cb65-cdf1-4de9-8ae8-e3cce27b9f2c

Error: (05/20/2019 04:29:39 PM) (Source: Software Protection Platform Service) (EventID: 8200) (User: )
Description: Podrobnosti chyby získávání licence
hr=0x80072EE7

Error: (05/20/2019 04:12:39 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Aktivace licence (slui.exe) se nezdařila s následujícím kódem chyby:
hr=0x80072EE7
Argument příkazového řádku:
RuleId=31e71c49-8da7-4a2f-ad92-45d98a1c79ba;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=4de7cb65-cdf1-4de9-8ae8-e3cce27b9f2c;NotificationInterval=1440;Trigger=TimerEvent

Error: (05/20/2019 04:12:39 PM) (Source: Software Protection Platform Service) (EventID: 1014) (User: )
Description: Získání licence koncového uživatele se nezdařilo. hr=0x80072EE7
ID SKU=4de7cb65-cdf1-4de9-8ae8-e3cce27b9f2c

Error: (05/20/2019 04:12:39 PM) (Source: Software Protection Platform Service) (EventID: 8200) (User: )
Description: Podrobnosti chyby získávání licence
hr=0x80072EE7


System errors:
=============
Error: (05/20/2019 04:58:43 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-49DKR3K)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
a APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
uživateli DESKTOP-49DKR3K\Administrator (SID: S-1-5-21-3226154382-1699614995-2887302509-500) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (05/20/2019 04:42:34 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby AMD External Events Utility bylo dosaženo časového limitu (30000 ms).

Error: (05/20/2019 04:36:17 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
a APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (05/20/2019 04:36:17 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
a APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (05/20/2019 04:27:23 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
a APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (05/20/2019 04:27:23 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
a APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (05/20/2019 04:09:38 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
a APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (05/20/2019 04:09:38 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
a APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.


==================== Memory info ===========================

BIOS: American Megatrends Inc. K52De.210 01/27/2011
Motherboard: ASUSTeK Computer Inc. K52De
Processor: AMD Athlon(tm) II P360 Dual-Core Processor
Percentage of memory in use: 73%
Total physical RAM: 4093.83 MB
Available physical RAM: 1070.82 MB
Total Virtual: 5501.83 MB
Available Virtual: 2189.28 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:107.89 GB) (Free:93.01 GB) NTFS
Drive d: () (Fixed) (Total:97.06 GB) (Free:69.65 GB) NTFS
Drive e: () (Fixed) (Total:390.62 GB) (Free:390.51 GB) NTFS

\\?\Volume{9cb6883a-b6dd-440d-bcb2-61fa57bef34f}\ (Obnovení) (Fixed) (Total:0.49 GB) (Free:0.09 GB) NTFS
\\?\Volume{72a546b7-9172-46d4-9199-02d0703b9e4b}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Protective MBR) (Size: 596.2 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt ============================

samsungs6edge
Návštěvník
Návštěvník
Příspěvky: 134
Registrován: 26 kvě 2017 14:48

Re: Windows 10

#2 Příspěvek od samsungs6edge »

# -------------------------------
# Malwarebytes AdwCleaner 7.3.0.0
# -------------------------------
# Build: 04-04-2019
# Database: 2019-04-29.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 05-20-2019
# Duration: 00:00:17
# OS: Windows 10 Pro
# Scanned: 27335
# Detected: 0


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.



########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Windows 10

#3 Příspěvek od Rudy »

Zdravím!

Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
Task: {3DF2271D-6603-44C5-8DAA-4BBB9495172B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-05-20] (Google Inc -> Google LLC)
Task: {C0A5ADDC-7D84-40EB-AC70-819945523137} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-05-20] (Google Inc -> Google LLC)
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File

EmptyTemp:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

samsungs6edge
Návštěvník
Návštěvník
Příspěvky: 134
Registrován: 26 kvě 2017 14:48

Re: Windows 10

#4 Příspěvek od samsungs6edge »

Fix result of Farbar Recovery Scan Tool (x64) Version: 19-05.2019
Ran by Administrator (20-05-2019 17:34:48) Run:1
Running from C:\Users\Administrator\Desktop
Loaded Profiles: Administrator (Available Profiles: Windows10Pro & Administrator)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
Task: {3DF2271D-6603-44C5-8DAA-4BBB9495172B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-05-20] (Google Inc -> Google LLC)
Task: {C0A5ADDC-7D84-40EB-AC70-819945523137} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-05-20] (Google Inc -> Google LLC)
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File

EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{3DF2271D-6603-44C5-8DAA-4BBB9495172B}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3DF2271D-6603-44C5-8DAA-4BBB9495172B}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C0A5ADDC-7D84-40EB-AC70-819945523137}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C0A5ADDC-7D84-40EB-AC70-819945523137}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore" => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1 => removed successfully
HKLM\Software\Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524} => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2 => removed successfully
HKLM\Software\Classes\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282} => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3 => removed successfully
HKLM\Software\Classes\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30} => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4 => removed successfully
HKLM\Software\Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A} => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5 => removed successfully
HKLM\Software\Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive6 => removed successfully
HKLM\Software\Classes\CLSID\{9AA2F32D-362A-42D9-9328-24A483E2CCC3} => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7 => removed successfully
HKLM\Software\Classes\CLSID\{C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1 => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524} => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2 => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282} => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3 => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30} => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4 => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A} => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5 => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive6 => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{9AA2F32D-362A-42D9-9328-24A483E2CCC3} => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7 => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => not found

=========== EmptyTemp: ==========

BITS transfer queue => 6053888 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 12656632 B
Java, Flash, Steam htmlcache => 1670 B
Windows/system/drivers => 781935 B
Edge => 20025688 B
Chrome => 31793875 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 904 B
LocalService => 0 B
NetworkService => 1304 B
NetworkService => 0 B
Windows10Pro => 30986 B
Administrator => 7214268 B

RecycleBin => 0 B
EmptyTemp: => 74.9 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 17:36:05 ====

samsungs6edge
Návštěvník
Návštěvník
Příspěvky: 134
Registrován: 26 kvě 2017 14:48

Re: Windows 10

#5 Příspěvek od samsungs6edge »

Děkuji moc za kontrolu.

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Windows 10

#6 Příspěvek od Rudy »

Smazáno. Nemáte zač! :)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Zamčeno