Zpomalene pc

[davsa]

Dobrý den prosím o kontrolu logu,nějak začalo byt pc zpomalené a ještě třeba přestane pracovat a musim to zrestartovat ale není to pořad,děkuji a přeji hezky den

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 28-08-2019 02
Ran by Davsa (administrator) on DESKTOP-U4PTRNG (29-08-2019 20:13:12)
Running from C:\Users\Davsa\Desktop
Loaded Profiles: Davsa (Available Profiles: Davsa)
Platform: Windows 10 Pro Version 1803 17134.950 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ICEpower a/s -> ICEpower) C:\Windows\System32\ICEsoundService64.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18041.14611.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Michel Krämer) [File not signed] C:\Program Files\Spamihilator\spamihilator.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Symantec Corporation -> Symantec Corporation) C:\Program Files\Norton Security\Engine\22.18.0.213\NortonSecurity.exe
(Symantec Corporation -> Symantec Corporation) C:\Program Files\Norton Security\Engine\22.18.0.213\NortonSecurity.exe
(Symantec Corporation -> Symantec Corporation) C:\Program Files\Norton Security\Engine\22.18.0.213\nsWscSvc.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-2007123980-1391105969-2254186040-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [35813264 2019-08-14] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-2007123980-1391105969-2254186040-1001\...\Run: [Zoner Photo Studio Autoupdate] => C:\PROGRAM FILES\ZONER\PHOTO STUDIO 17\Program32\ZPSTRAY.EXE [563416 2015-07-12] (ZONER software, a.s. -> ZONER software)
HKU\S-1-5-21-2007123980-1391105969-2254186040-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-2007123980-1391105969-2254186040-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\ssText3d.scr [217088 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
Lsa: [Authentication Packages] msv1_0 SshdPinAuthLsa
Startup: C:\Users\Davsa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Spamihilator.lnk [2018-06-03]
ShortcutTarget: Spamihilator.lnk -> C:\Program Files\Spamihilator\spamihilator.exe (Michel Krämer) [File not signed]

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {01308C35-8446-4227-985B-8B5CE6812628} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton Security\Upgrade.exe [2230976 2019-07-20] (Symantec Corporation -> Symantec Corporation)
Task: {068552E5-D67F-454A-A67F-FB442DE02ECC} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_30_0_0_154_Plugin.exe [1449472 2018-08-21] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {4AA03D9B-8E4F-430F-B9FB-AEFDF3F16EB4} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [548824 2018-10-23] (Piriform Software Ltd -> Piriform Ltd)
Task: {5B3D5D13-CA68-419F-8719-13DD2AB2CAF8} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\UpdateAssistantAllUsersRun => C:\WINDOWS\UpdateAssistant\UpdateAssistant.exe [0 0000-00-00] (Microsoft Corporation) (Access Denied)
Task: {5FEDB124-CEF6-44FA-A773-F8F57B5E6B9D} - System32\Tasks\Norton Security\Norton Security Autofix => C:\Program Files\Norton Security\Engine\22.18.0.213\SymErr.exe [103952 2019-07-20] (Symantec Corporation -> Symantec Corporation)
Task: {670E01E1-6ADF-43AA-B1EE-0D7E1869C4FA} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335872 2018-08-21] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {7A34E88F-8D80-4524-A45D-735168763396} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [14544792 2018-10-23] (Piriform Software Ltd -> Piriform Ltd)
Task: {86FB5571-2652-4A68-B937-1E8AEBFAAE79} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\UpdateAssistantCalendarRun => C:\WINDOWS\UpdateAssistant\UpdateAssistant.exe [0 0000-00-00] (Microsoft Corporation) (Access Denied)
Task: {9CFAF9BB-19E4-46B6-9AB3-5058A4D78BF5} - System32\Tasks\HPCustParticipation HP DeskJet 5000 series => C:\Program Files\HP\HP DeskJet 5000 series\Bin\HPCustPartic.exe [6658184 2017-07-11] (Hewlett Packard -> HP Inc.)
Task: {AA8C5217-A2EB-40A7-9899-8DB4DC662887} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\UpdateAssistant => C:\WINDOWS\UpdateAssistant\UpdateAssistant.exe [0 0000-00-00] (Microsoft Corporation) (Access Denied)
Task: {AAD53295-C489-42EB-A353-A2F18DE9E040} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\UpdateAssistantWakeupRun => C:\WINDOWS\UpdateAssistant\UpdateAssistant.exe [0 0000-00-00] (Microsoft Corporation) (Access Denied)
Task: {B94BB73A-1985-4AF5-9159-98F93767EBE1} - System32\Tasks\Norton Security\Norton Security Error Analyzer => C:\Program Files\Norton Security\Engine\22.18.0.213\SymErr.exe [103952 2019-07-20] (Symantec Corporation -> Symantec Corporation)
Task: {D2B6FB63-331D-4822-A5D7-5933341264DA} - System32\Tasks\Norton WSC Integration => C:\Program Files\Norton Security\Engine\22.18.0.213\WSCStub.exe [2230976 2019-07-20] (Symantec Corporation -> Symantec Corporation)
Task: {FB00BFF6-B050-4167-B152-96298BFF5ECA} - System32\Tasks\Norton Security\Norton Security Error Processor => C:\Program Files\Norton Security\Engine\22.18.0.213\SymErr.exe [103952 2019-07-20] (Symantec Corporation -> Symantec Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{1a8d7f2e-dbf5-4313-8483-c072d688d212}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
BHO: Norton Password Manager -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files\Norton Security\Engine\22.18.0.213\coIEPlg.dll [2019-07-20] (Symantec Corporation -> Symantec Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2019-08-13] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2019-08-13] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Norton Password Manager -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files\Norton Security\Engine32\22.18.0.213\coIEPlg.dll [2019-07-20] (Symantec Corporation -> Symantec Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\ssv.dll [2018-08-31] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\jp2ssv.dll [2018-08-31] (Oracle America, Inc. -> Oracle Corporation)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security\Engine\22.18.0.213\coIEPlg.dll [2019-07-20] (Symantec Corporation -> Symantec Corporation)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security\Engine32\22.18.0.213\coIEPlg.dll [2019-07-20] (Symantec Corporation -> Symantec Corporation)

FireFox:
========
FF DefaultProfile: 5egyowql.default
FF ProfilePath: C:\Users\Davsa\AppData\Roaming\Mozilla\Firefox\Profiles\5egyowql.default [2019-08-29]
FF DownloadDir: C:\Program Files
FF Homepage: Mozilla\Firefox\Profiles\5egyowql.default -> hxxp://www.seznam.cz/
FF NetworkProxy: Mozilla\Firefox\Profiles\5egyowql.default -> gopher", ""
FF HomepageOverride: Mozilla\Firefox\Profiles\5egyowql.default -> Disabled: _65Members_@download.fromdoctopdf.com
FF NewTabOverride: Mozilla\Firefox\Profiles\5egyowql.default -> Disabled: _65Members_@download.fromdoctopdf.com
FF Extension: (Adblock Plus Pop-up Addon) - C:\Users\Davsa\AppData\Roaming\Mozilla\Firefox\Profiles\5egyowql.default\Extensions\adblockpopups@jessehakanen.net.xpi [2015-05-29] [Legacy]
FF Extension: (Flash Video Downloader) - C:\Users\Davsa\AppData\Roaming\Mozilla\Firefox\Profiles\5egyowql.default\Extensions\artur.dubovoy@gmail.com.xpi [2019-03-19]
FF Extension: (Add-on Compatibility Reporter) - C:\Users\Davsa\AppData\Roaming\Mozilla\Firefox\Profiles\5egyowql.default\Extensions\compatibility@addons.mozilla.org.xpi [2015-05-29] [Legacy]
FF Extension: (Noia 4 Theme Manager) - C:\Users\Davsa\AppData\Roaming\Mozilla\Firefox\Profiles\5egyowql.default\Extensions\Noia4Options@ArisT2.xpi [2014-05-24] [Legacy] [not signed]
FF Extension: (Noia Fox options) - C:\Users\Davsa\AppData\Roaming\Mozilla\Firefox\Profiles\5egyowql.default\Extensions\NoiaFoxoption@davidvincent.tld.xpi [2015-06-21] [Legacy]
FF Extension: (Norton Safe Web) - C:\Users\Davsa\AppData\Roaming\Mozilla\Firefox\Profiles\5egyowql.default\Extensions\nortonsafeweb@symantec.com.xpi [2019-07-26]
FF Extension: (Download Manager (S3)) - C:\Users\Davsa\AppData\Roaming\Mozilla\Firefox\Profiles\5egyowql.default\Extensions\s3download@statusbar.xpi [2019-07-09]
FF Extension: (1-Click YouTube Video Downloader) - C:\Users\Davsa\AppData\Roaming\Mozilla\Firefox\Profiles\5egyowql.default\Extensions\YoutubeDownloader@PeterOlayev.com.xpi [2018-07-07]
FF Extension: (NoScript) - C:\Users\Davsa\AppData\Roaming\Mozilla\Firefox\Profiles\5egyowql.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2019-08-22]
FF Extension: (Noia Fox) - C:\Users\Davsa\AppData\Roaming\Mozilla\Firefox\Profiles\5egyowql.default\Extensions\{7b90e860-5d61-11e0-80e3-0800200c9a66}.xpi [2015-08-04] [Legacy]
FF Extension: (ImTranslator: Překladač, Slovník, Hlas) - C:\Users\Davsa\AppData\Roaming\Mozilla\Firefox\Profiles\5egyowql.default\Extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}.xpi [2019-08-29]
FF Extension: (No Name) - C:\Users\Davsa\AppData\Roaming\Mozilla\Firefox\Profiles\5egyowql.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2019-08-22]
FF Extension: (Download Statusbar) - C:\Users\Davsa\AppData\Roaming\Mozilla\Firefox\Profiles\5egyowql.default\Extensions\{D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}.xpi [2015-05-29] [Legacy]
FF Extension: (Aliexpress SuperStar česky, Historie cen a koruny) - C:\Users\Davsa\AppData\Roaming\Mozilla\Firefox\Profiles\5egyowql.default\Extensions\{ea692a27-4873-406e-bbc6-010c2dd9e9b5}.xpi [2019-08-27]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_30_0_0_154.dll [2018-08-21] (Adobe Systems Incorporated -> )
FF Plugin: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2019-08-13] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2019-08-13] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_30_0_0_154.dll [2018-08-21] (Adobe Systems Incorporated -> )
FF Plugin-x32: @java.com/DTPlugin,version=11.181.2 -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\dtplugin\npDeployJava1.dll [2018-08-31] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.181.2 -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\plugin2\npjp2.dll [2018-08-31] (Oracle America, Inc. -> Oracle Corporation)

Chrome:
=======
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8473200 2019-06-28] (BattlEye Innovations e.K. -> )
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2019-06-28] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 ICEsoundService; C:\WINDOWS\system32\ICEsoundService64.exe [806352 2019-04-06] (ICEpower a/s -> ICEpower)
R2 NortonSecurity; C:\Program Files\Norton Security\Engine\22.18.0.213\NortonSecurity.exe [225608 2019-07-20] (Symantec Corporation -> Symantec Corporation)
R2 nsWscSvc; C:\Program Files\Norton Security\Engine\22.18.0.213\nsWscSvc.exe [936296 2019-07-20] (Symantec Corporation -> Symantec Corporation)
S4 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5074128 2019-08-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 sshd; C:\WINDOWS\System32\OpenSSH\sshd.exe [970240 2018-05-20] (Microsoft Windows -> )
S3 SshdBroker; C:\WINDOWS\System32\SshdBroker.dll [285696 2019-02-16] (Microsoft Windows -> Microsoft Corporation)
S4 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4413440 2019-03-14] (Microsoft Corporation -> Microsoft Corporation)
S4 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [107160 2019-02-16] (Microsoft Corporation -> Microsoft Corporation)
S3 WiseBootAssistant; C:\Program Files (x86)\Wise\Wise Care 365\BootTime.exe [658600 2018-07-20] (Lespeed Technology Ltd. -> WiseCleaner.com)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AmUStor; C:\WINDOWS\system32\drivers\AmUStor.SYS [109504 2018-12-17] (Alcorlink Corp. -> )
R1 BHDrvx64; C:\Program Files\Norton Security\NortonData\22.17.2.46\Definitions\BASHDefs\20190826.001\BHDrvx64.sys [1935880 2019-06-25] (Symantec Corporation -> Symantec Corporation)
R1 ccSet_NGC; C:\WINDOWS\System32\drivers\NGCx64\1612000.0D5\ccSetx64.sys [193224 2019-07-20] (Symantec Corporation -> Symantec Corporation)
S3 CH341SER_A64; C:\WINDOWS\System32\Drivers\CH341S64.SYS [59904 2015-02-06] (Microsoft Windows Hardware Compatibility Publisher -> www.winchiphead.com)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [515592 2019-06-10] (Symantec Corporation -> Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [153096 2019-06-15] (Symantec Corporation -> Symantec Corporation)
S3 FTDIBUS; C:\WINDOWS\system32\drivers\ftdibus.sys [129448 2017-09-19] (Future Technology Devices International Ltd -> Future Technology Devices International Ltd.)
S3 FTSER2K; C:\WINDOWS\system32\drivers\ftser2k.sys [89792 2017-09-19] (Future Technology Devices International Ltd -> Future Technology Devices International Ltd.)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2018-06-04] (Martin Malik - REALiX -> REALiX(tm))
R1 IDSVia64; C:\Program Files\Norton Security\NortonData\22.17.2.46\Definitions\IPSDefs\20190828.061\IDSvia64.sys [1451016 2019-08-06] (Symantec Corporation -> Symantec Corporation)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_7a8e74171e1b8492\nvlddmkm.sys [20736208 2019-04-06] (NVIDIA Corporation -> NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [1138136 2019-04-06] (Realtek Semiconductor Corp. -> Realtek )
R3 SRTSP; C:\WINDOWS\System32\drivers\NGCx64\1612000.0D5\SRTSP64.SYS [883720 2019-07-20] (Symantec Corporation -> Symantec Corporation)
R1 SRTSPX; C:\WINDOWS\System32\drivers\NGCx64\1612000.0D5\SRTSPX64.SYS [49672 2019-07-20] (Symantec Corporation -> Symantec Corporation)
R0 SymEFASI; C:\WINDOWS\System32\drivers\NGCx64\1612000.0D5\SYMEFASI64.SYS [1956080 2019-07-20] (Symantec Corporation -> Symantec Corporation)
S0 SymELAM; C:\WINDOWS\System32\drivers\NGCx64\1612000.0D5\SymELAM.sys [25744 2019-07-20] (Microsoft Windows Early Launch Anti-malware Publisher -> Symantec Corporation)
R3 SymEvent; C:\WINDOWS\system32\Drivers\SYMEVENT64x86.SYS [100064 2019-04-03] (Symantec Corporation -> Symantec Corporation)
S4 SymEvnt; C:\Program Files\Norton Security\NortonData\22.17.2.46\SymPlatform\SymEvnt.sys [719240 2019-08-16] (Symantec Corporation -> Symantec Corporation)
R1 SymIRON; C:\WINDOWS\System32\drivers\NGCx64\1612000.0D5\Ironx64.SYS [316656 2019-07-20] (Symantec Corporation -> Symantec Corporation)
R1 SymNetS; C:\WINDOWS\System32\drivers\NGCx64\1612000.0D5\symnets.sys [573448 2019-07-20] (Symantec Corporation -> Symantec Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44616 2018-04-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [331680 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [151184 2016-07-15] (NGO -> MBB)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [44032 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
S3 WiseHDInfo; C:\WINDOWS\WiseHDInfo64.dll [33864 2018-12-29] (Beijing Lang Xingda Network Technology Co., Ltd -> wisecleaner.com)
S3 WiseRegNotify; C:\WINDOWS\WiseRegNotify.sys [51272 2018-12-29] (Beijing Lang Xingda Network Technology Co., Ltd -> WiseCleaner.com)
S3 wpCtrlDrv_NGC; C:\WINDOWS\System32\drivers\NGCx64\1612000.0D5\wpCtrlDrv.sys [1012120 2019-07-20] (Symantec Corporation -> Symantec Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-08-29 20:13 - 2019-08-29 20:15 - 000019591 _____ C:\Users\Davsa\Desktop\FRST.txt
2019-08-29 20:08 - 2019-08-29 20:08 - 007623880 _____ (Malwarebytes) C:\Users\Davsa\Desktop\adwcleaner_7.4.exe
2019-08-29 20:07 - 2019-08-29 20:07 - 007025360 _____ (Malwarebytes) C:\Users\Davsa\Desktop\adwcleaner_7.3.exe
2019-08-29 20:03 - 2019-08-29 20:03 - 001222144 _____ C:\Users\Davsa\Desktop\RSITx64.exe
2019-08-29 20:02 - 2019-08-29 20:02 - 001613824 _____ (Farbar) C:\Users\Davsa\Desktop\FRST64.exe
2019-08-29 13:38 - 2019-08-29 13:38 - 000000000 ____D C:\WINDOWS\System32\Tasks\Remediation
2019-08-29 13:35 - 2019-08-29 13:35 - 000000000 ___HD C:\$WINDOWS.~BT
2019-08-22 22:18 - 2019-08-22 22:18 - 000003071 _____ C:\Users\Davsa\Desktop\WFZMaker.lnk
2019-08-22 22:18 - 2019-08-22 22:18 - 000003031 _____ C:\Users\Davsa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WFZMaker.lnk
2019-08-22 22:18 - 2019-08-22 22:18 - 000000000 ____D C:\Users\Davsa\Documents\WFZMaker
2019-08-22 22:18 - 2019-08-22 22:18 - 000000000 ____D C:\Program Files (x86)\VIzzAR
2019-08-22 21:41 - 2019-08-22 21:41 - 000001074 _____ C:\Users\Davsa\Desktop\Free WMA MP3 Converter.lnk
2019-08-22 21:41 - 2019-08-22 21:41 - 000000000 ____D C:\Users\Davsa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Free WMA MP3 Converter
2019-08-22 21:41 - 2019-08-22 21:41 - 000000000 ____D C:\Program Files (x86)\Free WMA MP3 Converter
2019-08-16 22:39 - 2019-08-16 22:39 - 013254573 _____ C:\Users\Davsa\Desktop\AmazMod-service-1902.apk
2019-08-16 22:38 - 2019-08-16 22:39 - 008032057 _____ C:\Users\Davsa\Desktop\AmazMod-app-216.apk
2019-08-16 22:11 - 2019-08-16 21:44 - 003262827 _____ C:\Users\Davsa\GreatFit.4.0-Stratos-Pace-Stable.apk
2019-08-16 21:45 - 2019-08-16 21:46 - 000000000 ____D C:\Users\Davsa\Desktop\GreatFit-4.0
2019-08-16 21:44 - 2019-08-16 22:40 - 003262827 _____ C:\Users\Davsa\Desktop\GreatFit.4.0-Stratos-Pace-Stable.apk
2019-08-15 10:02 - 2019-08-15 10:06 - 000000000 ____D C:\Users\Davsa\Desktop\Nová složka (4)
2019-08-14 22:22 - 2019-08-14 22:22 - 000000000 ____D C:\Users\Davsa\.android
2019-08-14 22:01 - 2019-08-16 22:26 - 000000195 _____ C:\Users\Davsa\Desktop\Nový textový dokument.txt
2019-08-14 20:01 - 2019-08-27 19:55 - 000000000 ____D C:\WINDOWS\System32\Tasks\Norton Security
2019-08-14 19:54 - 2019-08-16 21:32 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security
2019-08-14 19:54 - 2019-08-14 19:54 - 000003378 _____ C:\WINDOWS\System32\Tasks\Norton WSC Integration
2019-08-13 22:21 - 2019-08-13 22:21 - 000000000 ____D C:\Users\Davsa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Android SDK Tools
2019-08-13 22:20 - 2019-08-13 22:20 - 139471724 _____ (Google Inc.) C:\Users\Davsa\Desktop\installer_r24.3.2-windows.exe
2019-08-13 22:04 - 2019-08-13 22:04 - 000000000 ____D C:\Users\Davsa\Desktop\bin
2019-08-13 21:03 - 2019-08-13 21:03 - 000000000 ____D C:\Users\Davsa\AppData\LocalLow\Oracle
2019-08-13 21:03 - 2019-08-13 21:03 - 000000000 _____ C:\WINDOWS\system32\REN485.tmp
2019-08-13 21:02 - 2019-08-13 21:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2019-08-13 21:01 - 2019-08-13 21:02 - 000000000 ____D C:\Program Files\Java
2019-08-13 21:00 - 2019-08-07 15:18 - 001786680 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll
2019-08-13 21:00 - 2019-08-07 15:18 - 001427768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll
2019-08-13 21:00 - 2019-08-07 15:13 - 021389776 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2019-08-13 21:00 - 2019-08-07 15:13 - 001632112 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-08-13 21:00 - 2019-08-07 15:13 - 001515904 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2019-08-13 21:00 - 2019-08-07 15:13 - 000790208 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2019-08-13 21:00 - 2019-08-07 14:55 - 008626688 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2019-08-13 21:00 - 2019-08-07 14:54 - 004783104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2019-08-13 21:00 - 2019-08-07 14:53 - 003614208 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-08-13 21:00 - 2019-08-07 14:52 - 001663488 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2019-08-13 21:00 - 2019-08-07 14:43 - 001453416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-08-13 21:00 - 2019-08-07 14:41 - 001322688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2019-08-13 21:00 - 2019-08-07 14:41 - 000662112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2019-08-13 21:00 - 2019-08-07 14:40 - 020384344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2019-08-13 21:00 - 2019-08-07 14:27 - 007990272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2019-08-13 21:00 - 2019-08-07 14:25 - 004175360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2019-08-13 21:00 - 2019-08-07 14:24 - 002882048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-08-13 21:00 - 2019-08-07 14:24 - 001472000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2019-08-13 21:00 - 2019-08-07 10:09 - 001328440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2019-08-13 21:00 - 2019-08-07 10:09 - 001219896 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-08-13 21:00 - 2019-08-07 10:09 - 001098064 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2019-08-13 21:00 - 2019-08-07 10:09 - 001027384 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-08-13 21:00 - 2019-08-07 10:09 - 000568104 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-08-13 21:00 - 2019-08-07 10:09 - 000095008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2019-08-13 21:00 - 2019-08-07 10:08 - 007435720 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-08-13 21:00 - 2019-08-07 10:08 - 002810680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-08-13 21:00 - 2019-08-07 10:08 - 002470648 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-08-13 21:00 - 2019-08-07 10:08 - 001566736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2019-08-13 21:00 - 2019-08-07 10:08 - 001141712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-08-13 21:00 - 2019-08-07 10:08 - 000723216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2019-08-13 21:00 - 2019-08-07 10:08 - 000710232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2019-08-13 21:00 - 2019-08-07 10:08 - 000494992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2019-08-13 21:00 - 2019-08-07 10:08 - 000227744 _____ (Microsoft Corporation) C:\WINDOWS\system32\xmllite.dll
2019-08-13 21:00 - 2019-08-07 10:07 - 009084432 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-08-13 21:00 - 2019-08-07 10:07 - 007520112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-08-13 21:00 - 2019-08-07 10:07 - 002719240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-08-13 21:00 - 2019-08-07 10:07 - 001459328 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-08-13 21:00 - 2019-08-07 10:07 - 001260992 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-08-13 21:00 - 2019-08-07 10:07 - 001031696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2019-08-13 21:00 - 2019-08-07 10:07 - 000984152 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-08-13 21:00 - 2019-08-07 10:07 - 000786288 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2019-08-13 21:00 - 2019-08-07 09:57 - 000081256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll
2019-08-13 21:00 - 2019-08-07 09:56 - 006570368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-08-13 21:00 - 2019-08-07 09:56 - 006044008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-08-13 21:00 - 2019-08-07 09:56 - 001993344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-08-13 21:00 - 2019-08-07 09:56 - 001427768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll
2019-08-13 21:00 - 2019-08-07 09:56 - 000357336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2019-08-13 21:00 - 2019-08-07 09:56 - 000192608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xmllite.dll
2019-08-13 21:00 - 2019-08-07 09:55 - 000603792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2019-08-13 21:00 - 2019-08-07 09:49 - 025857536 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-08-13 21:00 - 2019-08-07 09:47 - 022017536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-08-13 21:00 - 2019-08-07 09:44 - 008189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-08-13 21:00 - 2019-08-07 09:42 - 022717952 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-08-13 21:00 - 2019-08-07 09:39 - 019372544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-08-13 21:00 - 2019-08-07 09:38 - 006661632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2019-08-13 21:00 - 2019-08-07 09:38 - 004385792 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-08-13 21:00 - 2019-08-07 09:36 - 007572480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-08-13 21:00 - 2019-08-07 09:35 - 000624640 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2019-08-13 21:00 - 2019-08-07 09:35 - 000567808 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2019-08-13 21:00 - 2019-08-07 09:34 - 005769728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-08-13 21:00 - 2019-08-07 09:34 - 001826816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2019-08-13 21:00 - 2019-08-07 09:34 - 001680384 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShell.dll
2019-08-13 21:00 - 2019-08-07 09:34 - 001549824 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2019-08-13 21:00 - 2019-08-07 09:34 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2019-08-13 21:00 - 2019-08-07 09:33 - 001220608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2019-08-13 21:00 - 2019-08-07 09:32 - 004938240 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-08-13 21:00 - 2019-08-07 09:32 - 004516864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-08-13 21:00 - 2019-08-07 09:32 - 002165760 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-08-13 21:00 - 2019-08-07 09:32 - 001154048 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2019-08-13 21:00 - 2019-08-07 09:32 - 000669184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-08-13 21:00 - 2019-08-07 09:32 - 000318976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2019-08-13 21:00 - 2019-08-07 09:31 - 000947200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2019-08-13 21:00 - 2019-08-07 09:31 - 000925696 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2019-08-13 21:00 - 2019-08-07 09:31 - 000793088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2019-08-13 21:00 - 2019-08-07 09:31 - 000776192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-08-13 21:00 - 2019-08-07 09:31 - 000544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-08-13 21:00 - 2019-08-07 09:31 - 000531968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-08-13 21:00 - 2019-07-11 03:30 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-08-13 21:00 - 2019-07-09 10:07 - 001627664 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVIntegration.dll
2019-08-13 21:00 - 2019-07-09 10:07 - 001038352 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPolicy.dll
2019-08-13 21:00 - 2019-07-09 10:07 - 000954384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVManifest.dll
2019-08-13 21:00 - 2019-07-09 10:07 - 000830480 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVOrchestration.dll
2019-08-13 21:00 - 2019-07-09 10:07 - 000827920 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVClient.exe
2019-08-13 21:00 - 2019-07-09 10:07 - 000825360 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntStreamingManager.dll
2019-08-13 21:00 - 2019-07-09 10:07 - 000750096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVReporting.dll
2019-08-13 21:00 - 2019-07-09 10:07 - 000400696 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVScripting.dll
2019-08-13 21:00 - 2019-07-09 10:01 - 004527792 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2019-08-13 21:00 - 2019-07-09 10:00 - 001616824 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-08-13 21:00 - 2019-07-09 09:44 - 012757504 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-08-13 21:00 - 2019-07-09 09:43 - 004718080 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2019-08-13 21:00 - 2019-07-09 09:41 - 002019840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2019-08-13 21:00 - 2019-07-09 09:38 - 000740864 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2019-08-13 21:00 - 2019-07-09 08:42 - 011943424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-08-13 21:00 - 2019-07-09 05:29 - 000375312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2019-08-13 21:00 - 2019-07-09 05:23 - 001213264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2019-08-13 21:00 - 2019-07-09 05:23 - 001035040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-08-13 21:00 - 2019-07-09 05:21 - 005625160 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2019-08-13 21:00 - 2019-07-09 05:19 - 002769472 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-08-13 21:00 - 2019-07-09 05:19 - 002371504 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2019-08-13 21:00 - 2019-07-09 05:19 - 001674216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2019-08-13 21:00 - 2019-07-09 05:19 - 000799248 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2019-08-13 21:00 - 2019-07-09 05:19 - 000767232 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2019-08-13 21:00 - 2019-07-09 05:12 - 002331480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2019-08-13 21:00 - 2019-07-09 05:12 - 001286528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2019-08-13 21:00 - 2019-07-09 05:12 - 000573808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2019-08-13 21:00 - 2019-07-09 05:11 - 002257336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-08-13 21:00 - 2019-07-09 05:11 - 000576528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2019-08-13 21:00 - 2019-07-09 04:55 - 002700288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2019-08-13 21:00 - 2019-07-09 04:53 - 003708416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-08-13 21:00 - 2019-07-09 04:52 - 002258944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2019-08-13 21:00 - 2019-07-09 04:51 - 000608768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-08-13 21:00 - 2019-07-09 04:50 - 004861440 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-08-13 21:00 - 2019-07-09 04:50 - 001003008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2019-08-13 21:00 - 2019-07-09 04:50 - 000835584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2019-08-13 21:00 - 2019-07-09 04:50 - 000681472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2019-08-13 21:00 - 2019-07-09 04:49 - 000856576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2019-08-13 21:00 - 2019-07-09 04:49 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2019-08-13 21:00 - 2019-07-09 04:49 - 000348160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2019-08-13 21:00 - 2019-07-09 04:48 - 003402240 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-08-13 21:00 - 2019-07-09 04:47 - 003392000 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2019-08-13 21:00 - 2019-07-09 04:47 - 002738688 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2019-08-13 21:00 - 2019-07-09 04:47 - 002176000 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-08-13 21:00 - 2019-07-09 04:47 - 000928768 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-08-13 21:00 - 2019-07-09 04:47 - 000894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-08-13 21:00 - 2019-07-09 04:47 - 000808448 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-08-13 21:00 - 2019-07-09 04:46 - 002912256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2019-08-13 21:00 - 2019-07-09 04:46 - 001561088 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-08-13 21:00 - 2019-07-09 04:46 - 000532992 _____ (Microsoft Corporation) C:\WINDOWS\system32\QuietHours.dll
2019-08-13 21:00 - 2019-07-09 04:45 - 001400832 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2019-08-13 21:00 - 2019-07-09 04:45 - 001218560 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2019-08-13 21:00 - 2019-07-09 04:45 - 000510976 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2019-08-13 21:00 - 2019-07-09 04:45 - 000504832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2019-08-13 21:00 - 2019-07-09 04:44 - 001058304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2019-08-13 21:00 - 2019-07-09 04:44 - 000922112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2019-08-13 21:00 - 2019-07-09 04:44 - 000629248 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2019-08-13 21:00 - 2019-07-09 04:43 - 001854976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2019-08-13 21:00 - 2019-07-09 04:43 - 001398272 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2019-08-13 21:00 - 2019-07-09 04:43 - 000917504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2019-08-13 21:00 - 2019-07-09 04:43 - 000582144 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll
2019-08-13 20:59 - 2019-08-07 15:14 - 000303928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mssecflt.sys
2019-08-13 20:59 - 2019-08-07 14:58 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2019-08-13 20:59 - 2019-08-07 14:58 - 000123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2019-08-13 20:59 - 2019-08-07 14:55 - 000424448 _____ (Microsoft Corporation) C:\WINDOWS\system32\P2PGraph.dll
2019-08-13 20:59 - 2019-08-07 14:55 - 000210944 _____ (Microsoft Corporation) C:\WINDOWS\system32\P2P.dll
2019-08-13 20:59 - 2019-08-07 14:53 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll
2019-08-13 20:59 - 2019-08-07 14:53 - 000202752 _____ (Microsoft Corporation) C:\WINDOWS\system32\p2pnetsh.dll
2019-08-13 20:59 - 2019-08-07 14:51 - 000424960 _____ (Microsoft Corporation) C:\WINDOWS\system32\p2psvc.dll
2019-08-13 20:59 - 2019-08-07 14:30 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2019-08-13 20:59 - 2019-08-07 14:30 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2019-08-13 20:59 - 2019-08-07 14:26 - 000366592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\P2PGraph.dll
2019-08-13 20:59 - 2019-08-07 14:26 - 000174592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\P2P.dll
2019-08-13 20:59 - 2019-08-07 14:24 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\p2pnetsh.dll
2019-08-13 20:59 - 2019-08-07 11:40 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MixedRealityCapture.dll
2019-08-13 20:59 - 2019-08-07 10:09 - 000194352 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
2019-08-13 20:59 - 2019-08-07 10:09 - 000192824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2019-08-13 20:59 - 2019-08-07 10:09 - 000134968 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-08-13 20:59 - 2019-08-07 10:08 - 000170296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2019-08-13 20:59 - 2019-08-07 10:08 - 000130840 _____ (Microsoft Corporation) C:\WINDOWS\system32\rmclient.dll
2019-08-13 20:59 - 2019-08-07 10:08 - 000091568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpfve.sys
2019-08-13 20:59 - 2019-08-07 10:07 - 000115728 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdnet.dll
2019-08-13 20:59 - 2019-08-07 09:56 - 000101400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rmclient.dll
2019-08-13 20:59 - 2019-08-07 09:38 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2019-08-13 20:59 - 2019-08-07 09:38 - 000113664 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShellExtFramework.dll
2019-08-13 20:59 - 2019-08-07 09:37 - 000386048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Diagnostics.dll
2019-08-13 20:59 - 2019-08-07 09:37 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\appsruprov.dll
2019-08-13 20:59 - 2019-08-07 09:37 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2019-08-13 20:59 - 2019-08-07 09:36 - 000462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2019-08-13 20:59 - 2019-08-07 09:36 - 000354816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2019-08-13 20:59 - 2019-08-07 09:36 - 000326144 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flights.dll
2019-08-13 20:59 - 2019-08-07 09:36 - 000311296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Diagnostics.dll
2019-08-13 20:59 - 2019-08-07 09:36 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountTokenProvider.dll
2019-08-13 20:59 - 2019-08-07 09:36 - 000154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2019-08-13 20:59 - 2019-08-07 09:35 - 001361408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSPhotography.dll
2019-08-13 20:59 - 2019-08-07 09:35 - 000726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PEAuth.sys
2019-08-13 20:59 - 2019-08-07 09:35 - 000619520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncController.dll
2019-08-13 20:59 - 2019-08-07 09:35 - 000265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2019-08-13 20:59 - 2019-08-07 09:35 - 000153088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountTokenProvider.dll
2019-08-13 20:59 - 2019-08-07 09:34 - 000786432 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2019-08-13 20:59 - 2019-08-07 09:34 - 000521216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncController.dll
2019-08-13 20:59 - 2019-08-07 09:34 - 000278528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ComposableShellProxyStub.dll
2019-08-13 20:59 - 2019-08-07 09:34 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2019-08-13 20:59 - 2019-08-07 09:33 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ssdpsrv.dll
2019-08-13 20:59 - 2019-08-07 09:33 - 000115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2019-08-13 20:59 - 2019-08-07 09:32 - 001235968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpbase.dll
2019-08-13 20:59 - 2019-08-07 09:32 - 000330752 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll
2019-08-13 20:59 - 2019-08-07 09:32 - 000275968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptprov.dll
2019-08-13 20:59 - 2019-08-07 09:32 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ComposableShellProxyStub.dll
2019-08-13 20:59 - 2019-08-07 09:31 - 001421312 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpbase.dll
2019-08-13 20:59 - 2019-08-07 09:31 - 000965632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2019-08-13 20:59 - 2019-08-07 09:31 - 000367616 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2019-08-13 20:59 - 2019-08-07 08:15 - 000001310 _____ C:\WINDOWS\system32\tcbres.wim
2019-08-13 20:59 - 2019-07-11 08:48 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll
2019-08-13 20:59 - 2019-07-11 03:30 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2019-08-13 20:59 - 2019-07-11 03:30 - 000313344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd2x40.dll
2019-08-13 20:59 - 2019-07-09 10:07 - 000670224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVCatalog.dll
2019-08-13 20:59 - 2019-07-09 10:07 - 000652304 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPublishing.dll
2019-08-13 20:59 - 2019-07-09 10:07 - 000506088 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2019-08-13 20:59 - 2019-07-09 10:07 - 000495632 _____ (Microsoft Corporation) C:\WINDOWS\system32\TransportDSA.dll
2019-08-13 20:59 - 2019-07-09 10:04 - 000348664 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2019-08-13 20:59 - 2019-07-09 09:44 - 000039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsUpdateElevatedInstaller.exe
2019-08-13 20:59 - 2019-07-09 09:43 - 000124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2019-08-13 20:59 - 2019-07-09 09:43 - 000123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdshext.dll
2019-08-13 20:59 - 2019-07-09 09:40 - 000677888 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2019-08-13 20:59 - 2019-07-09 09:39 - 001210880 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdclt.exe
2019-08-13 20:59 - 2019-07-09 09:39 - 001193472 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll
2019-08-13 20:59 - 2019-07-09 09:39 - 001121792 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2019-08-13 20:59 - 2019-07-09 09:37 - 001180672 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2019-08-13 20:59 - 2019-07-09 09:37 - 000517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\newdev.dll
2019-08-13 20:59 - 2019-07-09 09:37 - 000174080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngOnline.dll
2019-08-13 20:59 - 2019-07-09 09:37 - 000167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvinst.exe
2019-08-13 20:59 - 2019-07-09 08:59 - 000022840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hvsicontainerservice.dll
2019-08-13 20:59 - 2019-07-09 08:38 - 000908288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2019-08-13 20:59 - 2019-07-09 08:37 - 000485888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\newdev.dll
2019-08-13 20:59 - 2019-07-09 05:29 - 000230200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2019-08-13 20:59 - 2019-07-09 05:29 - 000031032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\uefi.sys
2019-08-13 20:59 - 2019-07-09 05:21 - 000133136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ImplatSetup.dll
2019-08-13 20:59 - 2019-07-09 05:20 - 000500536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2019-08-13 20:59 - 2019-07-09 05:20 - 000275512 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2019-08-13 20:59 - 2019-07-09 05:20 - 000227640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2019-08-13 20:59 - 2019-07-09 05:19 - 000713488 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2019-08-13 20:59 - 2019-07-09 05:19 - 000152104 _____ (Microsoft Corporation) C:\WINDOWS\system32\KerbClientShared.dll
2019-08-13 20:59 - 2019-07-09 05:19 - 000142352 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2019-08-13 20:59 - 2019-07-09 05:19 - 000046608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\werkernel.sys
2019-08-13 20:59 - 2019-07-09 05:12 - 000125504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KerbClientShared.dll
2019-08-13 20:59 - 2019-07-09 05:11 - 000108560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2019-08-13 20:59 - 2019-07-09 04:56 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2019-08-13 20:59 - 2019-07-09 04:56 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hmkd.dll
2019-08-13 20:59 - 2019-07-09 04:55 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetDriverInstall.dll
2019-08-13 20:59 - 2019-07-09 04:55 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2019-08-13 20:59 - 2019-07-09 04:53 - 000288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2019-08-13 20:59 - 2019-07-09 04:52 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\hmkd.dll
2019-08-13 20:59 - 2019-07-09 04:51 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-08-13 20:59 - 2019-07-09 04:51 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2019-08-13 20:59 - 2019-07-09 04:51 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2019-08-13 20:59 - 2019-07-09 04:51 - 000115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatecsp.dll
2019-08-13 20:59 - 2019-07-09 04:51 - 000108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\DuCsps.dll
2019-08-13 20:59 - 2019-07-09 04:51 - 000106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
2019-08-13 20:59 - 2019-07-09 04:51 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2019-08-13 20:59 - 2019-07-09 04:51 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\UsoClient.exe
2019-08-13 20:59 - 2019-07-09 04:50 - 000659456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2019-08-13 20:59 - 2019-07-09 04:50 - 000414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
2019-08-13 20:59 - 2019-07-09 04:50 - 000141312 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2019-08-13 20:59 - 2019-07-09 04:50 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetCfgNotifyObjectHost.exe
2019-08-13 20:59 - 2019-07-09 04:50 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdcpw.dll
2019-08-13 20:59 - 2019-07-09 04:50 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2019-08-13 20:59 - 2019-07-09 04:49 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2019-08-13 20:59 - 2019-07-09 04:49 - 000372736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2019-08-13 20:59 - 2019-07-09 04:49 - 000345088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2019-08-13 20:59 - 2019-07-09 04:49 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2019-08-13 20:59 - 2019-07-09 04:49 - 000110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetDriverInstall.dll
2019-08-13 20:59 - 2019-07-09 04:48 - 000697344 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2019-08-13 20:59 - 2019-07-09 04:48 - 000395776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2019-08-13 20:59 - 2019-07-09 04:48 - 000335360 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2019-08-13 20:59 - 2019-07-09 04:48 - 000227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2019-08-13 20:59 - 2019-07-09 04:48 - 000175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2019-08-13 20:59 - 2019-07-09 04:48 - 000142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2019-08-13 20:59 - 2019-07-09 04:47 - 000726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2019-08-13 20:59 - 2019-07-09 04:46 - 000300544 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2019-08-13 20:59 - 2019-07-09 04:45 - 000773120 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2019-08-13 20:59 - 2019-07-09 04:44 - 000796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2019-08-13 20:59 - 2019-07-09 04:44 - 000466432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2019-08-13 20:59 - 2019-07-09 04:44 - 000406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2019-08-13 20:59 - 2019-07-09 04:44 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2019-08-13 20:59 - 2019-06-20 04:21 - 000058882 _____ C:\WINDOWS\system32\srms.dat
2019-08-13 20:54 - 2019-08-13 22:21 - 000000000 ____D C:\Users\Davsa\AppData\Local\Android
2019-08-13 20:53 - 2019-08-13 20:53 - 000000000 ____D C:\Users\Davsa\AppData\Roaming\Google
2019-08-13 20:52 - 2019-08-13 20:52 - 000000000 ____D C:\Users\Davsa\.AndroidStudio3.4
2019-08-13 20:50 - 2019-08-13 20:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Android Studio
2019-08-13 20:46 - 2019-08-13 21:31 - 000000000 ____D C:\Program Files\Android
2019-08-12 22:32 - 2019-08-12 22:32 - 000000000 ____D C:\Users\Davsa\AppData\Roaming\apkpure
2019-08-12 22:32 - 2019-08-12 22:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pure APK Install
2019-08-12 22:32 - 2019-08-12 22:32 - 000000000 ____D C:\Program Files (x86)\Pure APK Install
2019-08-12 21:25 - 2019-08-16 22:39 - 000000000 ____D C:\Users\Davsa\AppData\Local\Deployment
2019-08-12 21:25 - 2019-08-12 21:25 - 000000332 _____ C:\Users\Davsa\Desktop\Huami_AMAZFIT_Tool.appref-ms
2019-08-12 21:25 - 2019-08-12 21:25 - 000000000 ____D C:\Users\Davsa\Desktop\Application Files
2019-08-12 21:25 - 2019-08-12 21:25 - 000000000 ____D C:\Users\Davsa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Huami_AMAZFIT_Tool
2019-08-12 21:25 - 2019-08-12 21:25 - 000000000 ____D C:\Users\Davsa\AppData\Local\Apps\2.0
2019-08-12 21:25 - 2018-04-04 11:24 - 000791520 _____ () C:\Users\Davsa\Desktop\setup.exe
2019-08-12 21:25 - 2018-04-04 11:24 - 000005724 _____ C:\Users\Davsa\Desktop\Huami_AMAZFIT_Tool.application
2019-08-12 19:16 - 2019-08-12 19:37 - 000000000 ____D C:\Users\Davsa\Desktop\FCB Ocelové figuríny
2019-08-09 21:26 - 2019-08-09 21:39 - 000000000 ____D C:\Users\Davsa\Desktop\Hamleys+motýlí dům
2019-08-09 21:13 - 2019-08-09 21:26 - 000000000 ____D C:\Users\Davsa\Desktop\Čertovy hlavy,Klácelka
2019-08-09 20:04 - 2019-08-09 20:20 - 000000000 ____D C:\Users\Davsa\Desktop\FCB Egypt
2019-08-09 19:19 - 2019-08-09 19:30 - 000000000 ____D C:\Users\Davsa\Desktop\Egypt 2019
2019-08-09 18:58 - 2019-08-15 10:02 - 000000000 ____D C:\Users\Davsa\Desktop\Mirakulum
2019-08-09 18:49 - 2019-08-15 10:05 - 000000000 ____D C:\Users\Davsa\Desktop\Hamleys
2019-08-09 18:49 - 2019-08-09 21:15 - 000000000 ____D C:\Users\Davsa\Desktop\Sochy
2019-08-09 18:48 - 2019-08-09 18:57 - 000000000 ____D C:\Users\Davsa\Desktop\Ocelovy figuryny
2019-08-09 18:48 - 2019-08-09 18:52 - 000000000 ____D C:\Users\Davsa\Desktop\Hurghada
2019-08-05 22:20 - 2019-08-12 18:57 - 000000000 ____D C:\Users\Davsa\AppData\Roaming\ApkInstaller
2019-08-04 21:18 - 2019-08-04 21:18 - 000580249 _____ C:\Users\Davsa\Desktop\EGYPT 2019.pptx

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-08-29 20:13 - 2018-10-08 21:16 - 000000000 ____D C:\FRST
2019-08-29 20:11 - 2018-06-15 22:04 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-08-29 20:11 - 2018-06-03 21:57 - 000000000 ____D C:\Users\Davsa\AppData\Roaming\Spamihilator
2019-08-29 20:11 - 2018-06-03 21:04 - 000000000 ____D C:\ProgramData\NVIDIA
2019-08-29 20:11 - 2018-04-12 01:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-08-29 20:10 - 2018-04-11 23:04 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-08-29 20:09 - 2019-04-27 12:24 - 000000000 ____D C:\Users\Davsa\AppData\Roaming\Samsung
2019-08-29 20:07 - 2018-06-03 21:19 - 000000000 ____D C:\Users\Davsa\AppData\LocalLow\Mozilla
2019-08-29 19:57 - 2018-06-15 22:04 - 000004212 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{A92D99ED-6E4F-42A9-8236-553811600E44}
2019-08-29 13:36 - 2018-06-15 18:24 - 000000000 ___DC C:\WINDOWS\Panther
2019-08-29 13:22 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-08-27 20:02 - 2018-06-15 21:50 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-08-27 19:55 - 2018-04-11 23:04 - 000016384 _____ C:\WINDOWS\system32\config\ELAM
2019-08-22 21:52 - 2018-06-03 21:47 - 000000000 ____D C:\Muzika
2019-08-22 21:41 - 2018-12-25 14:36 - 000000000 ____D C:\Users\Davsa\AppData\Roaming\Eusing
2019-08-22 21:36 - 2018-06-03 21:45 - 000000000 ___RD C:\Users\Davsa\Desktop\Programy
2019-08-16 22:11 - 2018-06-15 21:57 - 000000000 ____D C:\Users\Davsa
2019-08-16 22:10 - 2019-04-27 12:21 - 000000000 ____D C:\Program Files (x86)\Samsung
2019-08-16 22:08 - 2018-04-12 01:36 - 000000000 ____D C:\WINDOWS\INF
2019-08-16 22:04 - 2019-04-27 12:24 - 000000000 ____D C:\Users\Davsa\AppData\Local\Samsung
2019-08-16 22:04 - 2019-04-27 12:21 - 000000000 ____D C:\ProgramData\Samsung
2019-08-16 22:04 - 2018-09-14 21:33 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2019-08-16 22:01 - 2018-12-29 23:37 - 000000000 ____D C:\Users\Davsa\AppData\Roaming\Wise Uninstaller
2019-08-16 22:01 - 2018-09-17 20:40 - 000000000 ____D C:\Program Files\Malwarebytes
2019-08-16 21:33 - 2018-09-14 21:06 - 000000000 ____D C:\Users\Davsa\AppData\Local\D3DSCache
2019-08-16 21:32 - 2019-04-03 19:36 - 000002417 _____ C:\Users\Public\Desktop\Norton Security.lnk
2019-08-14 22:02 - 2018-06-04 21:13 - 000000000 ____D C:\Program Files\Common Files\AV
2019-08-14 19:55 - 2019-04-03 19:35 - 000000000 ____D C:\WINDOWS\system32\Drivers\NGCx64
2019-08-14 19:55 - 2018-06-15 22:05 - 000000000 ___RD C:\Users\Davsa\3D Objects
2019-08-14 19:55 - 2015-09-10 07:44 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-08-14 19:54 - 2019-05-20 19:00 - 000416664 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-08-13 22:51 - 2018-04-12 17:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2019-08-13 22:51 - 2018-04-12 01:38 - 000000000 ___SD C:\WINDOWS\system32\UNP
2019-08-13 22:51 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\TextInput
2019-08-13 22:51 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-08-13 22:51 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-08-13 22:51 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\Provisioning
2019-08-13 22:51 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2019-08-13 22:51 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-08-13 21:20 - 2018-04-12 01:30 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-08-13 21:02 - 2018-08-31 22:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2019-08-13 20:59 - 2018-06-03 21:21 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-08-13 20:53 - 2018-06-03 21:21 - 134272480 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-08-12 19:37 - 2018-06-08 19:34 - 000000000 ____D C:\Users\Davsa\AppData\Local\CrashDumps
2019-08-09 18:29 - 2018-06-03 21:47 - 000000000 ____D C:\Stahnuté
2019-08-08 20:41 - 2019-06-05 20:09 - 000000000 ____D C:\Users\Davsa\Desktop\niceboy vega michal
2019-08-08 20:27 - 2018-06-03 21:04 - 001601516 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-08-08 20:27 - 2018-04-12 17:51 - 000680616 _____ C:\WINDOWS\system32\perfh005.dat
2019-08-08 20:27 - 2018-04-12 17:51 - 000136548 _____ C:\WINDOWS\system32\perfc005.dat
2019-08-04 21:18 - 2018-06-03 21:46 - 000000000 ____D C:\Users\Davsa\AppData\Roaming\AIMP
2019-08-04 20:52 - 2018-06-03 21:22 - 000000000 ____D C:\Program Files\rempl

==================== Files in the root of some directories ================

2018-12-25 14:36 - 2019-04-19 19:10 - 000000040 _____ () C:\Users\Davsa\AppData\Roaming\cdr.ini
2018-06-23 13:10 - 2019-03-15 21:08 - 000003584 _____ () C:\Users\Davsa\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2018-11-11 00:32 - 2018-11-11 00:32 - 000000017 _____ () C:\Users\Davsa\AppData\Local\resmon.resmoncfg

==================== FLock ================

2018-06-08 19:07 C:\WINDOWS\UpdateAssistant

==================== SigCheck ===============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ============================

[Rudy]

Zdravím!

Spusťte tuto utilitu:

Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

[davsa]

Děkuji tady to je ale nic to nenašlo

-------------------------------
# Malwarebytes AdwCleaner 7.4.0.0
# -------------------------------
# Build: 07-23-2019
# Database: 2019-08-27.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 08-29-2019
# Duration: 00:00:24
# OS: Windows 10 Pro
# Scanned: 35522
# Detected: 0


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.

***** [ Preinstalled Software ] *****

No Preinstalled Software found.


AdwCleaner[S00].txt - [1595 octets] - [28/07/2018 22:47:07]
AdwCleaner[S01].txt - [1656 octets] - [28/07/2018 22:49:06]
AdwCleaner[C01].txt - [1764 octets] - [28/07/2018 22:49:17]
AdwCleaner[S02].txt - [1925 octets] - [16/09/2018 21:42:40]
AdwCleaner[C02].txt - [2015 octets] - [16/09/2018 21:43:10]
AdwCleaner[S03].txt - [1554 octets] - [08/10/2018 20:59:19]
AdwCleaner[S04].txt - [1615 octets] - [10/11/2018 23:38:41]
AdwCleaner[S05].txt - [2508 octets] - [24/07/2019 19:46:40]
AdwCleaner[C05].txt - [2528 octets] - [24/07/2019 19:47:07]
AdwCleaner[S06].txt - [2334 octets] - [16/08/2019 21:53:00]
AdwCleaner[C06].txt - [2457 octets] - [16/08/2019 21:54:04]
AdwCleaner[S07].txt - [1997 octets] - [29/08/2019 20:05:39]
AdwCleaner[S08].txt - [2058 octets] - [29/08/2019 20:08:42]
AdwCleaner[C08].txt - [2257 octets] - [29/08/2019 20:09:43]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S09].txt ##########

[Rudy]

OK. Ještě přidejte log Addition (v souboru addition.txt, který máte na ploše) a dočistíme ručně.

[davsa]

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 28-08-2019 02
Ran by Davsa (29-08-2019 20:16:21)
Running from C:\Users\Davsa\Desktop
Windows 10 Pro Version 1803 17134.950 (X64) (2018-06-15 20:04:52)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2007123980-1391105969-2254186040-500 - Administrator - Disabled)
Davsa (S-1-5-21-2007123980-1391105969-2254186040-1001 - Administrator - Enabled) => C:\Users\Davsa
DefaultAccount (S-1-5-21-2007123980-1391105969-2254186040-503 - Limited - Disabled)
Guest (S-1-5-21-2007123980-1391105969-2254186040-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-2007123980-1391105969-2254186040-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Norton Security (Enabled - Up to date) {A2708B76-6835-6565-CB96-694212954A75}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Norton Security (Enabled) {9A4B0A53-225A-643D-E0C9-C077EC460D0E}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 30 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 30.0.0.154 - Adobe Systems Incorporated)
AIMP (HKLM-x32\...\AIMP) (Version: v4.02.1717, 08.05.2016 - AIMP DevTeam)
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
Android SDK Tools (HKLM-x32\...\Android SDK Tools) (Version: 1.16 - Google Inc.)
Ant Download Manager version 1.11.0 (HKLM-x32\...\{754CB6A3-3FE2-40DA-9FE5-2864909BD1CC}_is1) (Version: 1.11.0 - AntGROUP, Inc.)
Ashampoo Burning Studio 19 (HKLM-x32\...\{91B33C97-BA3F-5C99-C2A6-0EB17CC9054B}_is1) (Version: 19.0.1 - Ashampoo GmbH & Co. KG)
Call of Juarez - Bound in Blood (HKLM-x32\...\{FEFAF112-4DA8-479C-89E2-7DE25091711A}) (Version: 1.01.0000 - Ubisoft) Hidden
Call of Juarez - Bound in Blood (HKLM-x32\...\InstallShield_{FEFAF112-4DA8-479C-89E2-7DE25091711A}) (Version: 1.01.0000 - Ubisoft)
Call of Juarez - Bound in Blood SP Demo (HKLM-x32\...\{07BB11DD-175B-4BC5-9E8B-5F226C826031}) (Version: 1.00.0000 - Techland ) Hidden
Call of Juarez - Bound in Blood SP Demo (HKLM-x32\...\{674DA379-28EE-4773-A2C1-8A856117803D}) (Version: 1.00.0000 - Techland )
CCleaner (HKLM\...\CCleaner) (Version: 5.48 - Piriform)
DaVinci Resolve (HKLM\...\{BEE169F9-736C-4D36-9F47-E184BA35CF28}) (Version: 15.1.2008 - Blackmagic Design)
DaVinci Resolve Panels (HKLM\...\{B1782967-E600-4BBD-B2F1-AEF3F2FE0A12}) (Version: 1.2.1.0 - Blackmagic Design)
Epic Games Launcher (HKLM-x32\...\{AFC6C4B8-57A3-43C3-9F1C-C4239CAECDAC}) (Version: 1.1.215.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 7.3.0.118 - Foxit Software Inc.)
Free FLAC to MP3 Converter 1.4 (HKLM-x32\...\{A54C01BD-1277-4722-B42B-EC9800A90B1E}_is1) (Version: 1.4 - PolySoft Solutions)
Free WMA MP3 Converter (HKLM-x32\...\Free WMA MP3 Converter) (Version: - )
HP DeskJet 5000 series Nápověda (HKLM-x32\...\{28ACE6E5-992C-46A1-9908-C81CDFFBE144}) (Version: 44.0.0 - HP)
HP Dropbox Plugin (HKLM-x32\...\{2B241F10-5647-4C07-B982-CC0B81682A59}) (Version: 36.0.102.68541 - HP)
HP EmailSMTP Plugin (HKLM-x32\...\{FBCFDA37-DD90-4465-9E8B-26C2D2260EFF}) (Version: 43.0.0.0 - HP)
HP FTP Plugin (HKLM-x32\...\{5B4F8499-E03E-4A81-850D-81B27CC8EC9C}) (Version: 43.0.0.0 - HP)
HP Google Drive Plugin (HKLM-x32\...\{489527CD-23E4-4F60-82CB-F85DF758049F}) (Version: 36.0.102.68541 - HP)
HP OneDrive Plugin (HKLM-x32\...\{904BE479-2821-419D-B44F-C963042CB6FD}) (Version: 36.0.0.0 - HP)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.9572 - HP)
HP SharePoint Plugin (HKLM-x32\...\{86B04693-5E1B-4A2A-8715-6E1E1B5AE8C2}) (Version: 43.0.0.0 - HP)
Huami_AMAZFIT_Tool (HKU\S-1-5-21-2007123980-1391105969-2254186040-1001\...\8385ccc556a67422) (Version: 1.0.1.1 - Huami_AMAZFIT_Tool)
IZArc 4.3 (HKLM-x32\...\{97C82B44-D408-4F14-9252-47FC1636D23E}_is1) (Version: 4.3 - Ivan Zahariev)
Java 8 Update 181 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180181F0}) (Version: 8.0.1810.13 - Oracle Corporation)
Java 8 Update 45 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418045F0}) (Version: 8.0.450 - Oracle Corporation)
Java SE Development Kit 8 Update 45 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180450}) (Version: 8.0.450.14 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Lenovo Moto Smart Assistant (HKLM-x32\...\Lenovo Moto Smart Assistant) (Version: 3.10.0.9 - Lenovo)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2007123980-1391105969-2254186040-1001\...\OneDriveSetup.exe) (Version: 18.151.0729.0012 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.10.25017 (HKLM-x32\...\{e9d78d68-c26c-4da7-9158-99355d8ef3ad}) (Version: 14.10.25017.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.10.25017 (HKLM-x32\...\{58b3beca-b999-4f6f-a48c-81681136a620}) (Version: 14.10.25017.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
MotoGP (HKLM-x32\...\MotoGP_is1) (Version: - THQ)
MozBackup 1.5.1 (HKLM-x32\...\MozBackup) (Version: - Pavel Cvrcek)
Mozilla Firefox 68.0 (x64 cs) (HKLM\...\Mozilla Firefox 68.0 (x64 cs)) (Version: 68.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 57.0.2 - Mozilla)
Mozilla Thunderbird 38.6.0 (x86 cs) (HKLM-x32\...\Mozilla Thunderbird 38.6.0 (x86 cs)) (Version: 38.6.0 - Mozilla)
Need for Speed™ Carbon (HKLM-x32\...\{259C0ABB-A3B2-4D70-008F-BF7EE491B70B}) (Version: - )
Norton Security (HKLM-x32\...\NGC) (Version: 22.18.0.213 - Symantec Corporation)
NVIDIA Systémový software PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
Ovládací panel NVIDIA 419.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 419.35 - NVIDIA Corporation) Hidden
PICAXE PDF Printer (HKLM\...\PICAXE PDF Printer) (Version: - )
Programming Editor (HKLM-x32\...\{428A38D6-791D-4FE5-BA82-D093D26D1D9F}) (Version: 5.5.5 - Revolution Education Ltd)
Pure APK Install version 1.4.0583 (HKLM-x32\...\085A5308-DFBB-A19F-29DF-244998E2CD84_is1) (Version: 1.4.0583 - APKPure Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8581 - Realtek Semiconductor Corp.)
Smart View (HKLM-x32\...\{1800D8A5-F7B2-4C20-868E-1CF55CBBDF21}) (Version: 1.0.0.0 - Samsung )
Spamihilator 1.6.0 (64 bit) (HKLM\...\{4F7A5C94-1A9E-4F41-BD1B-1D32A799F7DD}) (Version: 1.6.0 - Michel Krämer)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Studie vylepšování produktu HP DeskJet 5000 series (HKLM\...\{86A340F5-B6F2-4ED9-8A6F-F1D97296DCD3}) (Version: 44.1.2550.17192 - HP Inc.)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.0a - Ghisler Software GmbH)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{16AD6161-2E47-4BF1-AA77-0946EFE93E08}) (Version: 2.61.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{B0D957AA-9ADA-4396-9757-B7EF0FCA648C}) (Version: 1.17.0.0 - Microsoft Corporation) Hidden
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.5.0.0 - Elaborate Bytes)
Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden
WFZMaker (HKLM-x32\...\{04F38C20-D7CA-480C-AF73-61914B0D737A}) (Version: 2.0.1 - VIzzAR)
Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version: - )
Wise Care 365 5.2.1 (HKLM-x32\...\Wise Care 365_is1) (Version: 5.2.1 - WiseCleaner.com, Inc.)
Wise Program Uninstaller 2.2.9 (HKLM-x32\...\Wise Program Uninstaller_is1) (Version: 2.2.9 - WiseCleaner.com, Inc.)
Základní software zařízení HP DeskJet 5000 series (HKLM\...\{179AE65C-B64D-4D32-A9F3-05076100786A}) (Version: 44.1.2550.17192 - HP Inc.)
Zoner Photo Studio 17 (HKLM\...\ZonerPhotoStudio17_CZ_is1) (Version: 17.0.1.12 - ZONER software)

Packages:
=========
Arduino IDE -> C:\Program Files\WindowsApps\ArduinoLLC.ArduinoIDE_1.8.19.0_x86__mdqgnx93n4wtt [2018-12-23] (Arduino LLC)
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_1.8.1.0_x64__tf1gferkr813w [2018-06-17] (Autodesk Inc.)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_2.2.173.0_x64__rz1tebttyb220 [2018-06-17] (Dolby Laboratories)
EdgeDevtoolsPlugin -> C:\WINDOWS\SystemApps\Microsoft.EdgeDevtoolsPlugin_cw5n1h2txyewy [2018-08-21] (Microsoft Corporation)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_86.1.466.1000_x64__v10z8vjag6ke6 [2018-09-27] (HP Inc.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1806.3.0_x64__8wekyb3d8bbwe [2018-06-17] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1806.3.0_x86__8wekyb3d8bbwe [2018-06-17] (Microsoft Corporation) [MS Ad]
Microsoft Lidé -> C:\Program Files\WindowsApps\Microsoft.People_10.1805.1361.0_x64__8wekyb3d8bbwe [2018-06-17] (Microsoft Corporation) [MS Ad]
Microsoft Průvodce pro telefon -> C:\Program Files\WindowsApps\Microsoft.WindowsPhone_10.1802.311.0_x64__8wekyb3d8bbwe [2018-06-03] (Microsoft Corporation)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.1.5252.0_x86__8wekyb3d8bbwe [2018-06-17] (Microsoft Studios) [MS Ad]
MSN News -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.24.11382.0_x64__8wekyb3d8bbwe [2018-06-17] (Microsoft Corporation) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.24.11294.0_x64__8wekyb3d8bbwe [2018-06-17] (Microsoft Corporation) [MS Ad]
MSN Sports -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.24.11294.0_x64__8wekyb3d8bbwe [2018-06-17] (Microsoft Corporation) [MS Ad]
Pošta a Kalendář -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.9330.20915.0_x64__8wekyb3d8bbwe [2018-06-17] (Microsoft Corporation) [MS Ad]

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2217832 2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files\Norton Security\Engine\22.18.0.213\buShell.dll [2019-07-20] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files\Norton Security\Engine\22.18.0.213\buShell.dll [2019-07-20] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files\Norton Security\Engine\22.18.0.213\buShell.dll [2019-07-20] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers-x32: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files\Norton Security\Engine\22.18.0.213\buShell.dll [2019-07-20] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers-x32: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files\Norton Security\Engine\22.18.0.213\buShell.dll [2019-07-20] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers-x32: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files\Norton Security\Engine\22.18.0.213\buShell.dll [2019-07-20] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers1: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files\Norton Security\Engine\22.18.0.213\buShell.dll [2019-07-20] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers1: [IZArcCM] -> {BC593DF5-466F-44EC-8FFD-C4DBC603B917} => C:\Program Files (x86)\IZArc\IZArcCM64.dll [2012-07-20] () [File not signed]
ContextMenuHandlers1: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security\Engine\22.18.0.213\NavShExt.dll [2019-07-20] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers2: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security\Engine\22.18.0.213\NavShExt.dll [2019-07-20] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers4: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => C:\Program Files (x86)\AIMP\System\aimp_menu64.dll [2018-06-03] (Artem Izmaylov -> AIMP DevTeam) [File not signed]
ContextMenuHandlers4: [IZArcCM] -> {BC593DF5-466F-44EC-8FFD-C4DBC603B917} => C:\Program Files (x86)\IZArc\IZArcCM64.dll [2012-07-20] () [File not signed]
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2019-03-01] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files\Norton Security\Engine\22.18.0.213\buShell.dll [2019-07-20] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers6: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security\Engine\22.18.0.213\NavShExt.dll [2019-07-20] (Symantec Corporation -> Symantec Corporation)

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2018-06-03 21:21 - 2012-07-20 14:39 - 002469888 _____ () [File not signed] C:\Program Files (x86)\IZArc\IZArcCM64.dll
2018-06-03 21:56 - 2018-06-03 21:56 - 000380928 _____ () [File not signed] C:\Program Files\Spamihilator\sqlite3.dll
2018-06-03 21:56 - 2018-06-03 21:56 - 000073728 _____ () [File not signed] C:\Program Files\Spamihilator\zlib1.dll
2018-09-25 19:30 - 2008-07-19 17:26 - 000087040 _____ () [File not signed] C:\WINDOWS\System32\custmon64.dll
2018-06-03 21:56 - 2018-06-03 21:56 - 000018944 _____ (Michel Krämer) [File not signed] C:\Program Files\Spamihilator\crashhandler.dll
2018-06-03 21:56 - 2018-06-03 21:56 - 000158720 _____ (Michel Krämer) [File not signed] C:\Program Files\Spamihilator\plugins3\attachmentfilter.dll
2018-06-03 21:56 - 2018-06-03 21:56 - 000170496 _____ (Michel Krämer) [File not signed] C:\Program Files\Spamihilator\plugins3\dccfilter.dll
2018-06-03 21:56 - 2018-06-03 21:56 - 000013824 _____ (Michel Krämer) [File not signed] C:\Program Files\Spamihilator\plugins3\imagefilter.dll
2018-06-03 21:56 - 2018-06-03 21:56 - 000114688 _____ (Michel Krämer) [File not signed] C:\Program Files\Spamihilator\plugins3\learningfilter.dll
2018-06-03 21:56 - 2018-06-03 21:56 - 000309760 _____ (Michel Krämer) [File not signed] C:\Program Files\Spamihilator\plugins3\linkfilter.dll
2018-06-03 21:56 - 2018-06-03 21:56 - 000214528 _____ (Michel Krämer) [File not signed] C:\Program Files\Spamihilator\plugins3\newsletter.dll
2018-06-03 21:56 - 2018-06-03 21:56 - 000516608 _____ (Michel Krämer) [File not signed] C:\Program Files\Spamihilator\plugins3\rulefilter.dll
2018-06-03 21:56 - 2018-06-03 21:56 - 000333824 _____ (Michel Krämer) [File not signed] C:\Program Files\Spamihilator\plugins3\spamwordfilter.dll
2018-06-03 21:56 - 2018-06-03 21:56 - 000952320 _____ (Michel Krämer) [File not signed] C:\Program Files\Spamihilator\splpp.dll
2018-06-03 21:56 - 2018-06-03 21:56 - 000105984 _____ (Michel Krämer) [File not signed] C:\Program Files\Spamihilator\spsock.dll
2018-06-03 21:56 - 2018-06-03 21:56 - 000885760 _____ (Michel Krämer) [File not signed] C:\Program Files\Spamihilator\spssl.dll
2018-06-03 21:56 - 2018-06-03 21:56 - 000131584 _____ (Michel Krämer) [File not signed] C:\Program Files\Spamihilator\spu.dll
2018-06-03 21:56 - 2018-06-03 21:56 - 000143872 _____ (Michel Krämer) [File not signed] C:\Program Files\Spamihilator\spu2.dll
2018-06-03 21:56 - 2018-06-03 21:56 - 000091136 _____ (Michel Krämer) [File not signed] C:\Program Files\Spamihilator\spudb.dll
2018-06-03 21:56 - 2018-06-03 21:56 - 000080896 _____ (Michel Krämer) [File not signed] C:\Program Files\Spamihilator\uclanguage.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [478]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2015-07-31 00:42 - 2015-07-31 00:39 - 000000824 ____N C:\WINDOWS\system32\drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common
HKU\S-1-5-21-2007123980-1391105969-2254186040-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Davsa\Pictures\Legendy 2018\DSCN8515.JPG
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKU\S-1-5-21-2007123980-1391105969-2254186040-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-2007123980-1391105969-2254186040-1001\...\StartupApproved\Run: => "Zoner Photo Studio Autoupdate"
HKU\S-1-5-21-2007123980-1391105969-2254186040-1001\...\StartupApproved\Run: => "Gaijin.Net Agent"
HKU\S-1-5-21-2007123980-1391105969-2254186040-1001\...\StartupApproved\Run: => "EpicGamesLauncher"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{A537F903-E46C-47A8-B9F8-E1B1E491E07F}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{1F944CDC-0457-4894-8309-4B837596A07F}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{7F92E920-AAE6-4E9A-A1ED-9C7D6FA7A03D}] => (Allow) C:\Program Files\Zoner\Photo Studio 17\Program32\MediaServer.exe (ZONER software, a.s. -> ZONER software)
FirewallRules: [{1F9CBEFB-040C-476D-8875-78A7CCC8B1BF}] => (Allow) C:\Program Files\Spamihilator\dccproc.exe () [File not signed]
FirewallRules: [{DF839508-683A-4B80-A7F4-D9958121DA7F}] => (Allow) C:\Program Files\Spamihilator\cdcc.exe () [File not signed]
FirewallRules: [{0375D62D-3DD7-47F1-956C-4D16A84ECD4C}] => (Allow) C:\Program Files\Spamihilator\spamihilator.exe (Michel Krämer) [File not signed]
FirewallRules: [OpenSSH-Server-In-TCP] => (Allow) %SystemRoot%\system32\OpenSSH\sshd.exe (Microsoft Windows -> )
FirewallRules: [{4D4EF0AD-184D-47C5-80C3-0F69EA4F5BA9}] => (Allow) C:\Program Files\HP\HP DeskJet 5000 series\Bin\DeviceSetup.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{617FFD0F-D7B2-472A-AD16-B22403163C35}] => (Allow) LPort=5357
FirewallRules: [{49208B9D-9161-46DE-89CE-1DF73DA295F5}] => (Allow) C:\Program Files\HP\HP DeskJet 5000 series\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{AE31B019-5B6E-44FD-9A96-E883890720E4}] => (Allow) C:\Users\Davsa\Searches\Nová složka\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{4F0F36CC-B82C-4BD5-A884-A963DCE74BBA}] => (Allow) C:\Users\Davsa\Searches\Nová složka\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{6A3EE986-6E8F-418F-820C-858955A88047}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\Resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [{220C0205-4F37-4098-AC73-A10DEF89BB5C}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\bmdpaneld.exe () [File not signed]
FirewallRules: [{A405C145-47BF-41DB-948D-9342EC61E03B}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\DaVinciPanelDaemon.exe () [File not signed]
FirewallRules: [{725BF10B-F685-415F-B864-DA6047E96AA4}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\JLCooperPanelDaemon.exe () [File not signed]
FirewallRules: [{4D738632-993A-4B05-A617-18B36A52B2FA}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\EuphonixPanelDaemon.exe () [File not signed]
FirewallRules: [{AAC1125E-286D-4B83-B0C3-851AA74A5212}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\TangentPanelDaemon.exe () [File not signed]
FirewallRules: [{F23AB30F-A515-4406-841F-FDB513FE7E93}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\ElementsPanelDaemon.exe () [File not signed]
FirewallRules: [{406F132F-5133-4143-B941-D5141B431F4D}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\OxygenPanelDaemon.exe () [File not signed]
FirewallRules: [{177CC456-00A4-4D06-BB7F-BE0B048FB559}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\DPDecoder.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{8BD2CDE8-B421-45D2-AC5C-D819F4F35D6C}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Ltd)
FirewallRules: [{CD27FE9E-77ED-49A5-9BA6-40B55C4859D6}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Ltd)

==================== Restore Points =========================

12-08-2019 20:00:50 Naplánovaný kontrolní bod
22-08-2019 20:44:36 Naplánovaný kontrolní bod
29-08-2019 20:09:03 AdwCleaner_BeforeCleaning_29/08/2019_20:09:02

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (08/16/2019 10:03:54 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny QueryFullProcessImageNameW došlo k neočekávané chybě. hr= 0x80070006, Neplatný popisovač.
.


Operace:
Spouštění asynchronní operace

Kontext:
Aktuální stav: DoSnapshotSet

Error: (08/16/2019 09:54:25 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny QueryFullProcessImageNameW došlo k neočekávané chybě. hr= 0x80070006, Neplatný popisovač.
.


Operace:
Spouštění asynchronní operace

Kontext:
Aktuální stav: DoSnapshotSet

Error: (08/13/2019 10:48:01 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe_WpnUserService, verze: 10.0.17134.556, časové razítko: 0xf23cada5
Název chybujícího modulu: ntdll.dll, verze: 10.0.17134.799, časové razítko: 0x7f828745
Kód výjimky: 0xc000000d
Posun chyby: 0x0000000000108580
ID chybujícího procesu: 0x324
Čas spuštění chybující aplikace: 0x01d55206302852e7
Cesta k chybující aplikaci: c:\windows\system32\svchost.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
ID zprávy: 0b7f6fae-e9db-4d03-8242-afebb9f30456
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (08/13/2019 10:47:47 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe_WpnUserService, verze: 10.0.17134.556, časové razítko: 0xf23cada5
Název chybujícího modulu: ntdll.dll, verze: 10.0.17134.799, časové razítko: 0x7f828745
Kód výjimky: 0xc000000d
Posun chyby: 0x0000000000108580
ID chybujícího procesu: 0x324
Čas spuštění chybující aplikace: 0x01d55206302852e7
Cesta k chybující aplikaci: c:\windows\system32\svchost.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
ID zprávy: 72f369a6-d449-4a5b-b776-e0060abb339b
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (08/13/2019 10:05:32 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program javaw.exe verze 8.0.1810.13 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Zabezpečení a údržba.

ID procesu: ba0

Čas spuštění: 01d552124bca59c2

Čas ukončení: 10

Cesta k aplikaci: C:\Program Files (x86)\Java\jre1.8.0_181\bin\javaw.exe

ID hlášení: 5f7e8094-442e-4e42-9774-93001672fc1c

Úplný název balíčku s chybou:

ID aplikace související s balíčkem s chybou:

Error: (08/13/2019 09:32:34 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program android-studio-ide-183.5692245-windows.exe verze 3.4.0.0 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Zabezpečení a údržba.

ID procesu: 2f88

Čas spuštění: 01d5520da123e2bf

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Users\Davsa\Desktop\android-studio-ide-183.5692245-windows.exe

ID hlášení: a663a3a7-293e-4157-be9e-e84c85676650

Úplný název balíčku s chybou:

ID aplikace související s balíčkem s chybou:

Error: (08/12/2019 07:37:42 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Explorer.EXE, verze: 10.0.17134.858, časové razítko: 0x407a5e89
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000003930fd8
ID chybujícího procesu: 0x151c
Čas spuštění chybující aplikace: 0x01d5512b0955587f
Cesta k chybující aplikaci: C:\WINDOWS\Explorer.EXE
Cesta k chybujícímu modulu: unknown
ID zprávy: 1c9bdd36-dd12-4b17-b141-41236f50e905
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (08/09/2019 09:39:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: explorer.exe, verze: 10.0.17134.858, časové razítko: 0x407a5e89
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000006fe0fd8
ID chybujícího procesu: 0x1edc
Čas spuštění chybující aplikace: 0x01d54ee667ebb46d
Cesta k chybující aplikaci: C:\WINDOWS\explorer.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: ba44b5cc-9591-4422-b711-c73d4e1cf5b9
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:


System errors:
=============
Error: (08/29/2019 08:09:39 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Windows Remediation Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (08/29/2019 08:09:39 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba ICEsound Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (08/29/2019 08:09:39 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba NVIDIA Display Container LS byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 6000 milisekund: Restartovat službu.

Error: (08/29/2019 01:45:43 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 5

Error: (08/29/2019 01:19:02 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-U4PTRNG)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
a APPID
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
uživateli DESKTOP-U4PTRNG\Davsa (SID: S-1-5-21-2007123980-1391105969-2254186040-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Microsoft.Windows.ContentDeliveryManager_10.0.17134.1_neutral_neutral_cw5n1h2txyewy – SID (S-1-15-2-350187224-1905355452-1037786396-3028148496-2624191407-3283318427-1255436723). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (08/27/2019 09:43:02 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 5

Error: (08/27/2019 06:34:25 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-U4PTRNG)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
a APPID
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
uživateli DESKTOP-U4PTRNG\Davsa (SID: S-1-5-21-2007123980-1391105969-2254186040-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Microsoft.Windows.ContentDeliveryManager_10.0.17134.1_neutral_neutral_cw5n1h2txyewy – SID (S-1-15-2-350187224-1905355452-1037786396-3028148496-2624191407-3283318427-1255436723). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (08/27/2019 01:04:19 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 5


==================== Memory info ===========================

BIOS: American Megatrends Inc. 2603 06/26/2015
Motherboard: ASUSTeK COMPUTER INC. M5A97 R2.0
Processor: AMD FX(tm)-8300 Eight-Core Processor
Percentage of memory in use: 26%
Total physical RAM: 8092.36 MB
Available physical RAM: 5937.42 MB
Total Virtual: 9372.36 MB
Available Virtual: 6686.5 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:930.96 GB) (Free:636.62 GB) NTFS

\\?\Volume{70fe196f-fa64-42e4-8142-1278cfa192db}\ (Obnovení) (Fixed) (Total:0.44 GB) (Free:0.06 GB) NTFS
\\?\Volume{2597b995-0d33-4a2f-b1eb-16209d03e2e3}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 12C83BAF)

Partition: GPT.

==================== End of Addition.txt ============================

[Rudy]

Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [478]
C:\Users\Davsa\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

EmptyTemp:
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

[davsa]

Dobrý večer tady je log ale ted je strašně zpomalený prohlížeč a načítani stránek

Fix result of Farbar Recovery Scan Tool (x64) Version: 31-08-2019
Ran by Davsa (03-09-2019 21:46:29) Run:2
Running from C:\Users\Davsa\Desktop
Loaded Profiles: Davsa (Available Profiles: Davsa)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [478]
C:\Users\Davsa\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

EmptyTemp:
End
*****************

Processes closed successfully.
C:\Users\Public\Shared Files => ":VersionCache" ADS removed successfully
C:\Users\Davsa\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini => moved successfully

=========== EmptyTemp: ==========

BITS transfer queue => 9199616 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 1381050875 B
Java, Flash, Steam htmlcache => 2085 B
Windows/system/drivers => 23938 B
Edge => 23305 B
Chrome => 0 B
Firefox => 1109617647 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 11728 B
LocalService => 0 B
NetworkService => 0 B
NetworkService => 0 B
Davsa => 18793008 B

RecycleBin => 3244647741 B
EmptyTemp: => 5.4 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 21:47:47 ====

[Rudy]

Smazáno, nastala nějaká změna?

[davsa]

jak píšu víše je strašně zpomalený prohlížeč a načítaní stranek,děkuji za rady

[Rudy]

OK, prohlížeče vyčistíme. Spusťte postupně tyto utility:

1. Stahnete Zoek.exe http://download.bleepingcomputer.com/smeenk/zoek.exe a ulozte jej na plochu

Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
Do okna vlozte skript nize

autoclean;
resethosts;
emptyclsid;
IEdefaults;
FFdefaults;
CHRdefaults;
emptyIEcache;
emptyFFcache;
emptyCHRcache;
emptyalltemp;
emptyflash;
emptyjava;
emptyrecycle.bin;

Nasledne kliknete na Run Script
PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem.

a

2. Junkware removal tool: https://www.stahuj.cz/utility_a_ostatni ... oval-tool/
•Ulozte nejlepe na plochu
•Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
•Probehne vytvoreni zalohy a nasledne prohledavani
•Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte.

[davsa]

Zdravím tady je jedno

Zoek.exe v5.0.0.2 Updated 03-May-2018(Online Version)
Tool run by Davsa on 04.09.2019 at 18:55:07,71.
Microsoft Windows 10 Pro 10.0.17134 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Davsa\Downloads\zoek (1).exe [Scan all users] [Script inserted]

==== System Restore Info ======================

04.09.2019 18:57:17 Zoek.exe System Restore Point Created Successfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

# localhost name resolution is handled within DNS itself.
127.0.0.1 localhost
::1 localhost

==== Empty Folders Check ======================

C:\PROGRA~2\IObit deleted successfully
C:\PROGRA~2\Samsung deleted successfully
C:\Program Files\Malwarebytes deleted successfully
C:\PROGRA~3\Comms deleted successfully
C:\PROGRA~3\PCSettings deleted successfully
C:\PROGRA~3\SoftwareDistribution deleted successfully
C:\Users\Davsa\AppData\Roaming\bgtools deleted successfully
C:\Users\Davsa\AppData\Roaming\Samsung deleted successfully
C:\Users\Davsa\AppData\Local\Adobe deleted successfully
C:\Users\Davsa\AppData\Local\DBG deleted successfully
C:\Users\Davsa\AppData\Local\GHISLER deleted successfully
C:\Users\Davsa\AppData\Local\PeerDistRepub deleted successfully
C:\Users\Davsa\AppData\Local\Samsung deleted successfully
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\PeerDistPub deleted successfully
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\PeerDistRepub deleted successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== FireFox Fix ======================

Deleted from C:\Users\Davsa\AppData\Roaming\Mozilla\Firefox\Profiles\5egyowql.default\prefs.js:
user_pref("browser.startup.homepage", "http://www.seznam.cz/");
user_pref("browser.search.defaulturl", "");
user_pref("browser.search.selectedEngine", "Google");
user_pref("browser.search.useDBForOrder", true);

Added to C:\Users\Davsa\AppData\Roaming\Mozilla\Firefox\Profiles\5egyowql.default\prefs.js:

Deleted from C:\Users\Davsa\AppData\Roaming\Thunderbird\Profiles\5yyull42.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

Added to C:\Users\Davsa\AppData\Roaming\Thunderbird\Profiles\5yyull42.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

ProfilePath: C:\Users\Davsa\AppData\Roaming\Mozilla\Firefox\Profiles\5egyowql.default

user.js not found
---- FireFox user.js and prefs.js backups ----

prefs__1919_.backup

ProfilePath: C:\Users\Davsa\AppData\Roaming\Thunderbird\Profiles\5yyull42.default

user.js not found
---- FireFox user.js and prefs.js backups ----

prefs__1919_.backup

==== Deleting Files \ Folders ======================

C:\PROGRA~2\IObit not found
C:\PROGRA~2\Samsung not found
C:\Users\Davsa\AppData\Local\Samsung not found
C:\Users\Davsa\AppData\Roaming\apkpure deleted
C:\Users\Davsa\.android deleted
C:\Users\Davsa\AppData\Roaming\cdr.ini deleted
C:\PROGRA~3\ProductData deleted
C:\PROGRA~3\Package Cache deleted
C:\WINDOWS\SMSS-PFRO42b1.tmp deleted
"C:\Users\Davsa\AppData\Roaming\Mozilla\Firefox\Profiles\5egyowql.default\searchplugins\yahoo.xml" deleted
"C:\Users\Davsa\AppData\Roaming\Shuame\.clientid" deleted
"C:\Users\Davsa\AppData\Roaming\Shuame" deleted

==== Firefox Start and Search pages ======================

ProfilePath: C:\Users\Davsa\AppData\Roaming\Thunderbird\Profiles\5yyull42.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

==== Firefox Extensions ======================

ProfilePath: C:\Users\Davsa\AppData\Roaming\Mozilla\Firefox\Profiles\5egyowql.default
- Undetermined - %ProfilePath%\extensions\sfStatistics.xml
- Adblock Plus Pop-up Addon - %ProfilePath%\extensions\adblockpopups@jessehakanen.net.xpi
- Flash Video Downloader - %ProfilePath%\extensions\artur.dubovoy@gmail.com.xpi
- Add-on Compatibility Reporter - %ProfilePath%\extensions\compatibility@addons.mozilla.org.xpi
- Noia-4 temahanterare - %ProfilePath%\extensions\Noia4Options@ArisT2.xpi
- Noia Fox Einstellungen - %ProfilePath%\extensions\NoiaFoxoption@davidvincent.tld.xpi
- __MSG_swName__ - %ProfilePath%\extensions\nortonsafeweb@symantec.com.xpi
- short_ __MSG_extension_name__ - %ProfilePath%\extensions\s3download@statusbar.xpi
- Peter Olayev - %ProfilePath%\extensions\YoutubeDownloader@PeterOlayev.com.xpi
- NoScript - %ProfilePath%\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi
- Noia Fox - %ProfilePath%\extensions\{7b90e860-5d61-11e0-80e3-0800200c9a66}.xpi
- short_ ImTranslator - %ProfilePath%\extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}.xpi
- short_ __MSG_name__ - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
- Download Statusbar - %ProfilePath%\extensions\{D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}.xpi
- short_ __MSG_EXTENSION_SHORT_NAME__ - %ProfilePath%\extensions\{ea692a27-4873-406e-bbc6-010c2dd9e9b5}.xpi

ProfilePath: C:\Users\Davsa\AppData\Roaming\Thunderbird\Profiles\5yyull42.default
- Lightning - %ProfilePath%\extensions\{e2fda1a4-762b-4020-b5ad-a41df1933103}
- Attachment Options - %ProfilePath%\extensions\attachmentoptions@mozillamessaging.com.xpi
- Czech CZ Language Pack - %ProfilePath%\extensions\langpack-cs@thunderbird.mozilla.org.xpi
- Noia 2.0 eXtreme - %ProfilePath%\extensions\noia2_full@gd.noia.xpi
- Noia 2.0 eXtreme XT - %ProfilePath%\extensions\noia2_full_xt@gd.noia.xpi
- Titlebar Cleaner - %ProfilePath%\extensions\titlebarCleaner@agrude.com.xpi

==== Firefox Plugins ======================

Profilepath: C:\Users\Davsa\AppData\Roaming\Mozilla\Firefox\Profiles\5egyowql.default
- C:\WINDOWS\system32\Macromed\Flash\NPSWF64_30_0_0_154.dll - [?]
ED8F804406F13FF43EB02C726D2A499C - C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll - Java(TM) Platform SE 8 U45
A577CB24AE815964CBB37707D42B4B13 - C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npdeployJava1.dll - Java Deployment Toolkit 8.0.450.14


==== Chromium Look ======================

Comodo Dragon Browser Version: 76.0.3809.100.

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
iikflkcanblccfahdhdonehdalibjnif - No path found[]

Comodo Drag&Drop Service - Davsa\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\aneodkojaglhnkkdbbdnmmmgimlcaogo
Comodo Media Downloader - Davsa\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dihmnpngfonlhjmgkflpnibiaaliendo
Comodo Dragon Browser Light Theme - Davsa\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\kglppafajjeikfgmjjegogphhkjnnmgc
Google Dictionary (by Google) - Davsa\AppData\Local\Vivaldi\User Data\Default\Extensions\mgijmajocgfcbeboacabfgobmjgjcoja
Chrome Media Router - Davsa\AppData\Local\Vivaldi\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"

==== All HKLM and HKCU SearchScopes ======================

HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKCU\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms}
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTer ... ORM=IESR02

==== Reset Google Chrome ======================

C:\Users\Davsa\AppData\Local\Comodo\Dragon\User Data\Default\Preferences was reset successfully
C:\Users\Davsa\AppData\Local\Comodo\Dragon\User Data\Default\Secure Preferences was reset successfully
C:\Users\Davsa\AppData\Local\Vivaldi\User Data\Default\Preferences was reset successfully
C:\Users\Davsa\AppData\Local\Vivaldi\User Data\Default\Secure Preferences was reset successfully
C:\Users\Davsa\AppData\Local\Comodo\Dragon\User Data\Default\Web Data was reset successfully
C:\Users\Davsa\AppData\Local\Comodo\Dragon\User Data\Default\Web Data-journal was reset successfully
C:\Users\Davsa\AppData\Local\Vivaldi\User Data\Default\Web Data was reset successfully
C:\Users\Davsa\AppData\Local\Vivaldi\User Data\Default\Web Data-journal was reset successfully

==== Empty IE Cache ======================

C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Davsa\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Davsa\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully

==== Empty FireFox Cache ======================

C:\Users\Davsa\AppData\Local\Mozilla\Firefox\Profiles\5egyowql.default\cache2 emptied successfully

==== Empty Edge Cache ======================

Edge Cache Emptied Successfully

==== Empty Chrome Cache ======================

C:\Users\Davsa\AppData\Local\Comodo\Dragon\User Data\Default\Cache emptied successfully
C:\Users\Davsa\AppData\Local\Vivaldi\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=51 folders=49 56949296 bytes)

==== Empty Temp Folders ======================

C:\Users\Davsa\AppData\Local\Temp will be emptied at reboot
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\Users\Davsa\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on 04.09.2019 at 19:29:06,32 ======================

[davsa]

zde je druhý


~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.4 (07.09.2017)
Operating System: Windows 10 Enterprise x64
Ran by Davsa (Administrator) on 04.09.2019 at 19:34:10,60
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 2

Successfully deleted: C:\Users\Davsa\AppData\Roaming\Mozilla\Firefox\Profiles\5egyowql.default\extensions\artur.dubovoy@gmail.com.xpi (File)
Successfully deleted: C:\WINDOWS\system32\REN485.tmp (File)



Registry: 0





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 04.09.2019 at 19:38:47,04
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

[Rudy]

OK. Problém pominul?

[davsa]

Vypadá že je to ok,děkuji a přeji hezký den,

[Rudy]

Rádo se stalo a též hezký den!