Stránka 1 z 1

Kontrola, velmi pomalý ntb

Napsal: 29 srp 2020 12:42
od Pajas92
Zdravím,

včera jsem provedl obnovu továrního nastavení notebook HP. NTB byl velmi pomalý, spouštění Win trvalo i 15-20 minut. Načítání dalších programů trvalo i déle.
Po obnově je stále notebook pomalý. Ne tolik, ale chtěl bych to vyřešit.
Prosím o kontrolu.
Děkuji

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 26-08-2020
Ran by Míra (administrator) on LAPTOP-6U7E1JP1 (HP HP Laptop 15-bw0xx) (29-08-2020 13:37:17)
Running from C:\Users\Míra\Desktop
Loaded Profiles: Míra
Platform: Windows 10 Home Version 1709 16299.15 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Advanced Micro Devices, Inc. -> ) C:\Program Files\ATI Technologies\ATI.ACE\a4\AdaptiveSleepService.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\atiesrxx.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartBridge.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP JumpStart Launch\HPJumpStartLaunch.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe
(HP Inc. -> HP Inc.) C:\Program Files\HPCommRecovery\HPCommRecovery.exe
(HP Inc. -> HP) C:\Program Files (x86)\HP\HP Wireless Button Driver\HPRadioMgr64.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(McAfee, Inc. -> Intel Security, Inc.) C:\Program Files\Common Files\intel security\pef\CORE\PEFService.exe
(McAfee, Inc. -> McAfee LLC) C:\Program Files\Common Files\mcafee\SystemCore\mfefire.exe <2>
(McAfee, Inc. -> McAfee LLC) C:\Program Files\Common Files\mcafee\SystemCore\mfemms.exe
(McAfee, Inc. -> McAfee LLC) C:\Windows\System32\mfevtps.exe <2>
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\mcafee\csp\2.5.312.0\McCSPServiceHost.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\mcafee\modulecore\ModuleCoreService.exe <2>
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\mcafee\platform\mcsvchost\McSvHost.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\mcafee\platform\McUICnt.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\mcafee\vscore_15_7\mcapexe.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\mcafee\mfeav\MfeAVSvc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\Míra\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.16299.15_none_2c4b8d3b386eed8e\TiWorker.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor Corp. -> Realtek) C:\Program Files (x86)\Realtek\PCIE Wireless LAN\RtlS5Wake\RtlS5Wake.exe
(Realtek Semiconductor Corp.) [File not signed] C:\Program Files (x86)\Realtek\REALTEK Bluetooth\BTDevMgr.exe
(Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.18.596.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [630168 2017-09-29] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9217024 2017-10-21] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [4388440 2017-10-20] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe [703312 2017-07-21] (HP Inc. -> HP Inc.)
HKLM-x32\...\Run: [RtlS5Wake] => C:\Program Files (x86)\Realtek\PCIE Wireless LAN\RtlS5Wake\RtlS5Wake.exe [1660760 2017-06-26] (Realtek Semiconductor Corp. -> Realtek)
HKLM-x32\...\Run: [HPRadioMgr] => C:\Program Files (x86)\HP\HP Wireless Button Driver\HPRadioMgr64.exe [324600 2017-04-25] (HP Inc. -> HP)
HKLM\...\Print\Monitors\IppMon: C:\windows\system32\IPPMon.dll [226816 2017-09-29] (Microsoft Windows -> Microsoft Corporation)

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {19241223-B2BF-4545-B281-A46877C43399} - System32\Tasks\McAfee Remediation (Prepare) => C:\Program Files\Common Files\AV\McAfee VirusScan\upgrade.exe [3949168 2017-08-03] (McAfee, Inc. -> McAfee, Inc.)
Task: {1BD05C85-A05D-4311-8968-303559753785} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent => {ABCECA3B-EA5A-496B-A021-5C6BAB365E5C} C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe [1015416 2017-07-24] (McAfee, Inc. -> McAfee, Inc.)
Task: {1E69DED6-40A0-4135-B076-EC61B0402781} - System32\Tasks\McAfee\McAfee Idle Detection Task => {ABCDCA3B-DE6B-5A7C-B132-6D7CBA63E5C5} C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe [1015416 2017-07-24] (McAfee, Inc. -> McAfee, Inc.)
Task: {31BF0D8E-7B0C-4AF3-9C34-AC4FD39900ED} - System32\Tasks\HPEA3JOBS => C:\Program [Argument = Files\HP\HP ePrint\hpeprint.exe /CheckJobs]
Task: {33637821-2285-4F55-875B-8D4A0E3EDA83} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [216432 2017-09-27] (HP Inc. -> HP Inc.)
Task: {381BE33F-913A-4FF6-B31B-0CF79CDB476E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Opt-in For HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF_Utils.exe [58736 2017-09-27] (HP Inc. -> HP Inc.)
Task: {46D392A3-DA1A-4383-ADAD-F10376334A37} - System32\Tasks\HPAudioSwitch => C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe [1644960 2017-02-02] (HP Inc. -> HP Inc.)
Task: {6430ED92-B0DA-4538-B39C-3FE60030260A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [651632 2017-09-27] (HP Inc. -> HP Inc.)
Task: {A06600C4-9778-4489-AD47-2F5D91FE61B5} - System32\Tasks\HPJumpStartLaunch => C:\Program Files (x86)\HP\HP JumpStart Launch\HPJumpStartLaunch.exe [461824 2017-10-06] (HP Inc. -> HP Inc.)
Task: {A97DCEA7-05E3-4C6F-A9E3-A18F3DA12C32} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [198696 2017-09-27] (HP Inc. -> HP Inc.)
Task: {C18FBA30-1F55-450A-9DDF-906947C7E623} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1490800 2017-09-27] (HP Inc. -> HP Inc.)
Task: {DBD2D7C5-BB7C-45B3-B1E7-7B302CD0CAC0} - System32\Tasks\StartCN => c:\Program Files\AMD\CNext\CNext\cncmd.exe [52104 2017-09-25] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {E243FDEA-3C84-41CC-8858-A93EE3849DA8} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Active Health Launcher => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [198696 2017-09-27] (HP Inc. -> HP Inc.)
Task: {F294B254-3A22-44DD-9DBF-B31CEC222313} - System32\Tasks\McAfeeLogon => C:\Program Files\Common Files\mcafee\platform\McUICnt.exe [745296 2017-05-31] (McAfee, Inc. -> McAfee, Inc.)
Task: {FA5216A7-E1A0-4584-8C2F-9615E2BA314D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1490800 2017-09-27] (HP Inc. -> HP Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-31] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 07 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-31] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{7babbc06-afd3-4c0d-bead-8e5b0abc5020}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp17win10.msn.com/?pc=HCTE
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp17win10.msn.com/?pc=HCTE
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
HKU\S-1-5-21-2391460587-3527569240-2793632488-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp17win10.msn.com/?pc=HCTE
HKU\S-1-5-21-2391460587-3527569240-2793632488-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
SearchScopes: HKLM -> {97C49150-339E-4C79-BA96-EDD20BB8A6CF} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {97C49150-339E-4C79-BA96-EDD20BB8A6CF} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKU\S-1-5-21-2391460587-3527569240-2793632488-1001 -> {97C49150-339E-4C79-BA96-EDD20BB8A6CF} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2017-09-27] (HP Inc. -> HP Inc.)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2017-09-27] (HP Inc. -> HP Inc.)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\mcafee\msc\McSnIePl64.dll [2017-09-25] (McAfee, Inc. -> McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\msc\McSnIePl.dll [2017-09-25] (McAfee, Inc. -> McAfee, Inc.)

FireFox:
========
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF Extension: (McAfee Anti-Spam Thunderbird Extension) - C:\Program Files\McAfee\MSK [2020-08-29] [Legacy] [not signed]
FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2017-09-25] (McAfee, Inc. -> )
FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL [2017-09-25] (McAfee, Inc. -> )

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdaptiveSleepService; c:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe [155016 2017-09-25] (Advanced Micro Devices, Inc. -> )
R2 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [127488 2017-08-30] (Realtek Semiconductor Corp.) [File not signed]
S3 ClientAnalyticsService; C:\Program Files\Common Files\McAfee\ClientAnalytics\Legacy\McClientAnalytics.exe [1511728 2017-08-10] (McAfee, Inc. -> McAfee, Inc.)
R2 HomeNetSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [641520 2017-02-22] (McAfee, Inc. -> McAfee, Inc.)
R2 HP Comm Recover; C:\Program Files\HPCommRecovery\HPCommRecovery.exe [1327400 2017-09-05] (HP Inc. -> HP Inc.)
R2 HPJumpStartBridge; c:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartBridge.exe [477184 2017-10-06] (HP Inc. -> HP Inc.)
S3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1031704 2016-06-03] (Hewlett-Packard Company -> HP)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [323952 2017-09-27] (HP Inc. -> HP Inc.)
R2 HPWMISVC; c:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [628768 2017-07-13] (HP Inc. -> HP Inc.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6541008 2018-05-09] (Malwarebytes Corporation -> Malwarebytes)
R2 McAPExe; C:\Program Files\Common Files\McAfee\VSCore_15_7\McApExe.exe [993768 2017-10-17] (McAfee, Inc. -> McAfee, Inc.)
S3 McAWFwk; c:\Program Files\Common Files\mcafee\actwiz\McAWFwk.exe [454560 2017-01-17] (McAfee, Inc. -> McAfee, Inc.)
R2 McBootDelayStartSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [641520 2017-02-22] (McAfee, Inc. -> McAfee, Inc.)
R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\2.5.312.0\\McCSPServiceHost.exe [2139832 2017-05-31] (McAfee, Inc. -> McAfee, Inc.)
R2 McMPFSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [641520 2017-02-22] (McAfee, Inc. -> McAfee, Inc.)
R2 mcpltsvc; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [641520 2017-02-22] (McAfee, Inc. -> McAfee, Inc.)
R2 McProxy; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [641520 2017-02-22] (McAfee, Inc. -> McAfee, Inc.)
R3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe [357840 2017-09-14] (McAfee, Inc. -> McAfee LLC)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [509904 2017-09-14] (McAfee, Inc. -> McAfee LLC)
R2 mfevtp; C:\windows\system32\mfevtps.exe [466384 2017-09-14] (McAfee, Inc. -> McAfee LLC)
R2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1546904 2017-08-17] (McAfee, Inc. -> McAfee, Inc.)
S3 MSK80Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [641520 2017-02-22] (McAfee, Inc. -> McAfee, Inc.)
R2 PEFService; C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe [1046456 2017-09-14] (McAfee, Inc. -> Intel Security, Inc.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [355304 2017-09-29] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [105944 2017-09-29] (Microsoft Corporation -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 cfwids; C:\windows\System32\drivers\cfwids.sys [77288 2017-10-17] (McAfee, Inc. -> McAfee LLC)
R1 ESProtectionDriver; C:\windows\system32\drivers\mbae64.sys [152184 2018-04-26] (Malwarebytes Corporation -> Malwarebytes)
S3 HipShieldK; C:\windows\System32\drivers\HipShieldK.sys [218336 2017-10-09] (McAfee, Inc. -> McAfee, Inc.)
R2 MBAMChameleon; C:\windows\System32\Drivers\MbamChameleon.sys [190696 2020-08-29] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMFarflt; C:\windows\System32\DRIVERS\farflt.sys [112864 2020-08-29] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMProtection; C:\windows\system32\DRIVERS\mbam.sys [44768 2020-08-29] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMSwissArmy; C:\windows\System32\Drivers\mbamswissarmy.sys [253664 2020-08-29] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMWebProtection; C:\windows\system32\DRIVERS\mwac.sys [103648 2020-08-29] (Malwarebytes Corporation -> Malwarebytes)
R3 mfeaack; C:\windows\System32\drivers\mfeaack.sys [492520 2017-10-17] (McAfee, Inc. -> McAfee LLC)
R3 mfeavfk; C:\windows\System32\drivers\mfeavfk.sys [355304 2017-10-17] (McAfee, Inc. -> McAfee LLC)
U3 mfeavfk01; no ImagePath
S0 mfeelamk; C:\windows\System32\drivers\mfeelamk.sys [84024 2017-10-17] (Microsoft Windows Early Launch Anti-malware Publisher -> McAfee LLC)
R3 mfefirek; C:\windows\System32\drivers\mfefirek.sys [505320 2017-10-17] (McAfee, Inc. -> McAfee LLC)
R0 mfehidk; C:\windows\System32\drivers\mfehidk.sys [936936 2017-10-17] (McAfee, Inc. -> McAfee LLC)
R3 mfencbdc; C:\windows\System32\DRIVERS\mfencbdc.sys [504792 2017-10-09] (McAfee, Inc. -> McAfee LLC.)
S3 mfencrk; C:\windows\System32\DRIVERS\mfencrk.sys [108504 2017-10-09] (McAfee, Inc. -> McAfee LLC.)
R3 mfeplk; C:\windows\System32\drivers\mfeplk.sys [115176 2017-10-17] (McAfee, Inc. -> McAfee LLC)
R0 mfewfpk; C:\windows\System32\drivers\mfewfpk.sys [252896 2017-10-17] (McAfee, Inc. -> McAfee LLC)
S3 WdBoot; C:\windows\system32\drivers\WdBoot.sys [44608 2017-09-29] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\windows\system32\drivers\WdFilter.sys [309144 2017-09-29] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\windows\System32\Drivers\WdNisDrv.sys [119192 2017-09-29] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\windows\system32\DRIVERS\WirelessButtonDriver64.sys [30392 2017-04-25] (HP Inc. -> HP)
S3 H2OFFT; \SystemRoot\System32\drivers\H2OFFT64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Re: Kontrola, velmi pomalý ntb

Napsal: 29 srp 2020 12:43
od Pajas92
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 26-08-2020
Ran by Míra (29-08-2020 13:34:43)
Running from C:\Users\Míra\Desktop
Windows 10 Home Version 1709 16299.15 (X64) (2020-08-28 20:54:50)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2391460587-3527569240-2793632488-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2391460587-3527569240-2793632488-503 - Limited - Disabled)
Guest (S-1-5-21-2391460587-3527569240-2793632488-501 - Limited - Disabled)
Míra (S-1-5-21-2391460587-3527569240-2793632488-1001 - Administrator - Enabled) => C:\Users\Míra
WDAGUtilityAccount (S-1-5-21-2391460587-3527569240-2793632488-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AV: McAfee VirusScan (Enabled - Up to date) {8BCDACFA-D264-3528-5EF8-E94FD0BC1FBC}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: McAfee VirusScan (Enabled - Up to date) {30AC4D1E-F45E-3AA6-6448-D23DAB3B5501}
FW: McAfee Firewall (Enabled) {B3F62DDF-980B-3470-75A7-407A2E6F58C7}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 9.0.000.8 - Advanced Micro Devices, Inc.)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Catalyst Control Center Next Localization BR (HKLM\...\{4486FC50-ADE1-35F5-66D3-CFBBFC9A8A35}) (Version: 2017.0925.532.8136 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (HKLM\...\{1D9889C7-EF3A-2404-19E7-4517C20D8783}) (Version: 2017.0925.532.8136 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (HKLM\...\{B72AFCAB-62B2-64CB-7C01-3FAB601F163D}) (Version: 2017.0925.532.8136 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (HKLM\...\{E08332C8-2494-C7DF-AD2C-C5C8BDACFBCB}) (Version: 2017.0925.532.8136 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (HKLM\...\{24473F97-CBC2-F5E5-1679-E5A8E855B8C9}) (Version: 2017.0925.532.8136 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (HKLM\...\{F852D37B-B837-4DE4-E39D-5DDB8D3CFDB0}) (Version: 2017.0925.532.8136 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (HKLM\...\{C2897673-0B26-4063-9A23-A7A240853CD6}) (Version: 2017.0925.532.8136 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (HKLM\...\{AEA98D17-8D5A-1E46-8BE4-03B35F8E9E88}) (Version: 2017.0925.532.8136 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (HKLM\...\{B19E0896-465A-0886-2F49-6CD68AB7C229}) (Version: 2017.0925.532.8136 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (HKLM\...\{201D8B07-20D4-F26D-EF13-54D4646B180D}) (Version: 2017.0925.532.8136 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (HKLM\...\{F9F6F0CC-DE19-9FEA-5618-8D3891E57A2A}) (Version: 2017.0925.532.8136 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (HKLM\...\{F30F0CCF-3B16-2104-BA67-48F3B2672140}) (Version: 2017.0925.532.8136 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (HKLM\...\{122ADD10-7018-B294-8DC1-02342300D48C}) (Version: 2017.0925.532.8136 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (HKLM\...\{B5775CBB-66DA-C816-7673-A21562B89C75}) (Version: 2017.0925.532.8136 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (HKLM\...\{66D1F45C-49C4-9A92-9626-42ACF3F91A9F}) (Version: 2017.0925.532.8136 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (HKLM\...\{8273D1D8-B88C-D734-64B1-FCF240B64844}) (Version: 2017.0925.532.8136 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (HKLM\...\{47DF4A8E-AA22-1D21-928E-31321BDE2F54}) (Version: 2017.0925.532.8136 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (HKLM\...\{06CADB25-FB27-A855-2313-FC36E23EFA40}) (Version: 2017.0925.532.8136 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (HKLM\...\{8AAE5F4C-8872-7F86-79A6-0ECF95663F53}) (Version: 2017.0925.532.8136 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (HKLM\...\{592CD17B-5233-12E7-F0DE-BD29B5FC88E3}) (Version: 2017.0925.532.8136 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (HKLM\...\{002EA904-A5F5-0A9D-FEC6-E5C245C4AB56}) (Version: 2017.0925.532.8136 - Advanced Micro Devices, Inc.) Hidden
CrystalDiskInfo 7.6.0 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 7.6.0 - Crystal Dew World)
Energy Star (HKLM\...\{5CB22648-35F8-41BC-9C35-1E41FE6E12A5}) (Version: 1.1.1 - HP Inc.)
HP Audio Switch (HKLM-x32\...\{BC852AA8-58F6-4F07-ACB1-7377E52CA4F3}) (Version: 1.0.150.0 - HP Inc.)
HP Connection Optimizer (HKLM-x32\...\{6468C4A5-E47E-405F-B675-A70A70983EA6}) (Version: 2.0.9.0 - HP Inc.)
HP Documentation (HKLM\...\HP_Documentation) (Version: 1.0.0.1 - HP Inc.)
HP ePrint SW (HKLM-x32\...\{cdb5f70f-5107-4613-bf69-15de903b5b5d}) (Version: 5.5.22560 - HP Inc.)
HP JumpStart Bridge (HKLM-x32\...\{3FC961DB-BD36-4D8D-B276-0C456A2BB638}) (Version: 1.4.0.441 - HP Inc.)
HP JumpStart Launch (HKLM-x32\...\{F213102E-FD30-4E22-AF73-4C682D65FFEE}) (Version: 1.4.441.0 - HP Inc.)
HP Support Assistant (HKLM-x32\...\{4AAC4B07-77EF-4BCF-88DC-D24E4DE683E8}) (Version: 8.5.37.19 - HP Inc.)
HP Support Solutions Framework (HKLM-x32\...\{4E100CB6-9312-48BC-9DC0-4F4D5C338449}) (Version: 12.8.37.11 - HP Inc.)
HP System Event Utility (HKLM-x32\...\{4B0A7A8A-ECE5-4639-9A0D-C535F354313D}) (Version: 1.4.26 - HP Inc.)
HP Wireless Button Driver (HKLM-x32\...\{2EC9AB64-3ACA-460D-B309-0A7052B0C8C0}) (Version: 1.1.21.1 - HP)
Malwarebytes verze 3.5.1.2522 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.5.1.2522 - Malwarebytes)
McAfee LiveSafe (HKLM-x32\...\MSC) (Version: 16.0.3 - McAfee, Inc.)
Microsoft OneDrive (HKU\S-1-5-21-2391460587-3527569240-2793632488-1001\...\OneDriveSetup.exe) (Version: 20.134.0705.0008 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24123 (HKLM-x32\...\{2cbcedbb-f38c-48a3-a3e1-6c6fd821a7f4}) (Version: 14.0.24123.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24123 (HKLM-x32\...\{206898cc-4b41-4d98-ac28-9f9ae57f91fe}) (Version: 14.0.24123.0 - Microsoft Corporation)
OEM Application Profile (HKLM-x32\...\{12C2AEB0-ED60-4CCF-DD83-C65BC7CCFB50}) (Version: 1.00.0000 - Název společnosti:)
REALTEK Bluetooth Driver (HKLM-x32\...\{9D3D8C60-A5EF-4123-B2B9-172095903AB}) (Version: 1.0.0.79 - REALTEK Semiconductor Corp.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.15063.31235 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.21.811.2017 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8117 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN Driver (HKLM-x32\...\{A5107464-AA9B-4177-8129-5FF2F42DD322}) (Version: 1.0.0.104 - REALTEK Semiconductor Corp.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.3.31.31 - Synaptics Incorporated)
Vulkan Run Time Libraries 1.0.39.1 (HKLM\...\VulkanRT1.0.39.1) (Version: 1.0.39.1 - LunarG, Inc.)

Packages:
=========
Amazon -> C:\Program Files\WindowsApps\Amazon.com.Amazon_2016.829.2400.0_x64__343d40qqvtj1t [2020-08-28] (Amazon.com)
Booking.com: Big savings on hotels in 96,000 destinations worldwide -> C:\Program Files\WindowsApps\PricelinePartnerNetwork.Booking.comBigsavingsonhot_1.2.0.0_x64__mgae2k3ys4ra0 [2020-08-28] (Priceline Partner Network)
Dropbox promotion -> C:\Program Files\WindowsApps\C27EB4BA.DropboxOEM_1.1.26.0_x64__xbfy0k16fey96 [2020-08-28] (Dropbox Inc.)
HP JumpStart -> C:\Program Files\WindowsApps\AD2F1837.HPJumpStart_1.4.443.0_x86__v10z8vjag6ke6 [2020-08-28] (HP Inc.)
Microsoft Access 2016 -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Access_16000.8528.2136.0_x86__8wekyb3d8bbwe [2017-11-11] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1705.4.0_x86__8wekyb3d8bbwe [2017-11-11] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1706.3.0_x64__8wekyb3d8bbwe [2020-08-28] (Microsoft Corporation) [MS Ad]
Microsoft Excel 2016 -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Excel_16000.8528.2136.0_x86__8wekyb3d8bbwe [2017-11-11] (Microsoft Corporation)
Microsoft Office Desktop Apps -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop_16000.8528.2136.0_x86__8wekyb3d8bbwe [2017-11-11] (Microsoft Corporation)
Microsoft Outlook 2016 -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16000.8528.2136.0_x86__8wekyb3d8bbwe [2017-11-11] (Microsoft Corporation)
Microsoft PowerPoint 2016 -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.PowerPoint_16000.8528.2136.0_x86__8wekyb3d8bbwe [2017-11-11] (Microsoft Corporation)
Microsoft Publisher 2016 -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Publisher_16000.8528.2136.0_x86__8wekyb3d8bbwe [2017-11-11] (Microsoft Corporation)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.17.8162.0_x64__8wekyb3d8bbwe [2017-11-11] (Microsoft Studios) [MS Ad]
Microsoft Word 2016 -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Word_16000.8528.2136.0_x86__8wekyb3d8bbwe [2017-11-11] (Microsoft Corporation)
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.21.2492.0_x64__8wekyb3d8bbwe [2017-11-11] (Microsoft Corporation) [MS Ad]
Power Media Player 14 for HP Consumer PCs with DVD -> C:\Program Files\WindowsApps\CyberLinkCorp.hs.PowerMediaPlayer14forHPConsumerPC_14.1.8028.0_x86__06qsbagp91rvg [2020-08-28] (CYBERLINKCOM CORP)
Simple Solitaire -> C:\Program Files\WindowsApps\26720RandomSaladGamesLLC.SimpleSolitaire_6.3.10.0_x64__kx24dqmazqk8j [2020-08-28] (Random Salad Games LLC) [MS Ad]
Skype -> C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.18.596.0_x64__kzf8qxf38zg5c [2017-11-11] (Skype)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.140.508.0_x86__zpdnekdrzrea0 [2020-08-29] (Spotify AB) [Startup Task]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2391460587-3527569240-2793632488-1001_Classes\CLSID\{C591CFEA-E432-495d-A0BE-58E4CCD87B17}\Shell\Open\Command -> C:\Program Files\Synaptics\SynTP\SynTPCpl.dll (Synaptics Incorporated -> Synaptics Incorporated)
ContextMenuHandlers1: [McCtxMenuFrmWrk] -> {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} => c:\Program Files\mcafee\msc\McCtxMenuFrmWrk.dll [2017-09-25] (McAfee, Inc. -> McAfee, Inc.)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-05-09] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => c:\Program Files\AMD\CNext\CNext\atiacm64.dll [2017-09-25] (Advanced Micro Devices, Inc.) [File not signed]
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-05-09] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [McCtxMenuFrmWrk] -> {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} => c:\Program Files\mcafee\msc\McCtxMenuFrmWrk.dll [2017-09-25] (McAfee, Inc. -> McAfee, Inc.)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2016-09-14 18:48 - 2016-09-14 18:48 - 000011776 _____ () [File not signed] c:\Program Files\AMD\CNext\CNext\libEGL.dll
2016-09-14 18:48 - 2016-09-14 18:48 - 002013696 _____ () [File not signed] c:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2016-09-14 18:49 - 2016-09-14 18:49 - 000014336 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2016-09-14 18:49 - 2016-09-14 18:49 - 000739840 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2016-09-14 18:49 - 2016-09-14 18:49 - 000191488 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll
2016-09-14 18:49 - 2016-09-14 18:49 - 000071168 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2016-09-14 18:49 - 2016-09-14 18:49 - 000014336 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2020-08-28 21:50 - 2020-08-28 21:50 - 000156672 _____ () [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_32\BRIDGECommon\20e1780d9e5053c8d1718e8d5925f331\BRIDGECommon.ni.dll
2020-08-28 21:51 - 2020-08-28 21:51 - 000121344 _____ () [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_32\BridgeExtension\d56932acd042feba763f300a0dfa9f55\BridgeExtension.ni.dll
2020-08-28 21:51 - 2020-08-28 21:51 - 000374784 _____ () [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_32\CleanStartController\87a342d7b1f60a4c40d7e213660bc4d0\CleanStartController.ni.dll
2017-11-11 04:36 - 2017-11-11 04:36 - 000141312 _____ () [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_32\Interop.IWs06dcaa36#\353874e31427205e4debda08db650373\Interop.IWshRuntimeLibrary.ni.dll
2020-08-28 21:51 - 2020-08-28 21:51 - 000139264 _____ () [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_32\Registratio4eabc192#\75114e8fa3dd125a2b1d60fa77c48145\RegistrationUtilities.ni.dll
2017-11-11 04:36 - 2017-11-11 04:36 - 000130048 _____ (hardcodet.net) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_32\Hardcodet.W6cab32f3#\36c736547c031ec1510856f7ff4ea34c\Hardcodet.Wpf.TaskbarNotification.ni.dll
2020-08-28 21:51 - 2020-08-28 21:51 - 000132096 _____ (HP Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_32\CommonPortable\39edd50180f7d05f0b67bf071ddc730b\CommonPortable.ni.dll
2020-08-29 13:22 - 2018-05-01 11:10 - 001677824 _____ (Igor Pavlov) [File not signed] C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\7z.dll
2017-11-11 04:36 - 2017-11-11 04:36 - 001549312 _____ (Mark Heath) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_32\NAudio\b2dc3cf934fec3c7681d4da87e29ce2c\NAudio.ni.dll
2017-11-11 04:36 - 2017-11-11 04:36 - 002226176 _____ (Newtonsoft) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_32\Newtonsoft.Json\600aa0a75b0d1c22fb9d6d7b38a70bd6\Newtonsoft.Json.ni.dll
2017-11-11 04:36 - 2017-11-11 04:36 - 000764928 _____ (The Apache Software Foundation) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_32\log4net\1c5c70bfbf2ed728021237f9bb47f835\log4net.ni.dll
2016-09-14 18:49 - 2016-09-14 18:49 - 000049664 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qdds.dll
2016-09-14 18:49 - 2016-09-14 18:49 - 000029696 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qgif.dll
2016-09-14 18:49 - 2016-09-14 18:49 - 000037376 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qicns.dll
2016-09-14 18:49 - 2016-09-14 18:49 - 000030208 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qico.dll
2016-09-14 18:49 - 2016-09-14 18:49 - 000459776 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qjp2.dll
2016-09-14 18:49 - 2016-09-14 18:49 - 000236544 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qjpeg.dll
2016-09-14 18:49 - 2016-09-14 18:49 - 000275456 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qmng.dll
2016-09-14 18:49 - 2016-09-14 18:49 - 000023552 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qsvg.dll
2016-09-14 18:49 - 2016-09-14 18:49 - 000022528 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qtga.dll
2016-09-14 18:49 - 2016-09-14 18:49 - 000351744 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qtiff.dll
2016-09-14 18:49 - 2016-09-14 18:49 - 000021504 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qwbmp.dll
2016-09-14 18:49 - 2016-09-14 18:49 - 000374784 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qwebp.dll
2016-09-14 18:49 - 2016-09-14 18:49 - 001212416 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\platforms\qwindows.dll
2016-09-14 18:48 - 2016-09-14 18:48 - 005496320 _____ (The Qt Company Ltd) [File not signed] c:\Program Files\AMD\CNext\CNext\Qt5Core.dll
2016-09-14 18:48 - 2016-09-14 18:48 - 005804544 _____ (The Qt Company Ltd) [File not signed] c:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
2016-09-14 18:48 - 2016-09-14 18:48 - 000912384 _____ (The Qt Company Ltd) [File not signed] c:\Program Files\AMD\CNext\CNext\Qt5Charts.dll
2016-09-14 18:48 - 2016-09-14 18:48 - 001061376 _____ (The Qt Company Ltd) [File not signed] c:\Program Files\AMD\CNext\CNext\Qt5Network.dll
2016-09-14 18:48 - 2016-09-14 18:48 - 003187712 _____ (The Qt Company Ltd) [File not signed] c:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
2016-09-14 18:48 - 2016-09-14 18:48 - 002924544 _____ (The Qt Company Ltd) [File not signed] c:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
2016-09-14 18:48 - 2016-09-14 18:48 - 000310784 _____ (The Qt Company Ltd) [File not signed] c:\Program Files\AMD\CNext\CNext\Qt5Svg.dll
2016-09-14 18:48 - 2016-09-14 18:48 - 005444608 _____ (The Qt Company Ltd) [File not signed] c:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
2016-09-14 18:48 - 2016-09-14 18:48 - 000277504 _____ (The Qt Company Ltd) [File not signed] c:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
2016-09-14 18:48 - 2016-09-14 18:48 - 000193024 _____ (The Qt Company Ltd) [File not signed] c:\Program Files\AMD\CNext\CNext\Qt5Xml.dll
2020-08-29 13:22 - 2018-01-18 16:16 - 000030208 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\iconengines\qsvgicon.dll
2020-08-29 13:22 - 2018-01-18 16:15 - 000024576 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qgif.dll
2020-08-29 13:22 - 2018-01-18 16:16 - 000031232 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qicns.dll
2020-08-29 13:22 - 2018-01-18 16:15 - 000025088 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qico.dll
2020-08-29 13:22 - 2018-01-18 16:15 - 000242688 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qjpeg.dll
2020-08-29 13:22 - 2018-01-18 16:16 - 000019968 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qsvg.dll
2020-08-29 13:22 - 2018-01-18 16:16 - 000018944 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qtga.dll
2020-08-29 13:22 - 2018-01-18 16:16 - 000318976 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qtiff.dll
2020-08-29 13:22 - 2018-01-18 16:16 - 000017920 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qwbmp.dll
2020-08-29 13:22 - 2018-01-18 16:16 - 000328704 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qwebp.dll
2020-08-29 13:22 - 2018-01-18 16:15 - 000993792 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\platforms\qwindows.dll
2020-08-29 13:22 - 2018-05-09 09:35 - 004809728 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dll
2020-08-29 13:22 - 2018-01-18 16:12 - 005100032 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Gui.dll
2020-08-29 13:22 - 2018-01-18 16:10 - 002012672 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Network.dll
2020-08-29 13:22 - 2018-01-18 16:18 - 002522112 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Qml.dll
2020-08-29 13:22 - 2018-01-18 16:20 - 002570752 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Quick.dll
2020-08-29 13:22 - 2018-01-18 16:16 - 000247808 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Svg.dll
2020-08-29 13:22 - 2018-01-18 16:14 - 004482048 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Widgets.dll
2020-08-29 13:22 - 2018-01-18 16:24 - 000206336 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5WinExtras.dll
2020-08-29 13:22 - 2018-01-18 16:22 - 000013312 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQml\Models.2\modelsplugin.dll
2020-08-29 13:22 - 2018-01-18 16:22 - 000013824 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick.2\qtquick2plugin.dll
2020-08-29 13:22 - 2018-01-18 16:27 - 000698368 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\qtquickcontrolsplugin.dll
2020-08-29 13:22 - 2018-01-18 16:27 - 000173056 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\dialogplugin.dll
2020-08-29 13:22 - 2018-01-18 16:26 - 000069632 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Layouts\qquicklayoutsplugin.dll
2020-08-29 13:22 - 2018-01-18 16:27 - 000097280 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\PrivateWidgets\widgetsplugin.dll
2020-08-29 13:22 - 2018-01-18 16:22 - 000013312 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Window.2\windowplugin.dll
2020-08-29 13:22 - 2018-01-18 16:29 - 000102400 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\scenegraph\softwarecontext.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ModuleCoreService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcapexe => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfemms => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeplk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeplk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ModuleCoreService => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2017-09-29 15:46 - 2017-09-29 15:44 - 000000824 _____ C:\windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2391460587-3527569240-2793632488-1001\Control Panel\Desktop\\Wallpaper -> C:\windows\web\wallpaper\HP Backgrounds\backgroundDefault.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{E6041327-048D-47AB-A410-BBE04A569912}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{4FB36CDE-DE6B-4036-B6B4-AE4C4446B455}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{DBB74A32-6712-4046-8D0F-64A66AE74582}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{C287F68D-ED97-4FB8-A0E5-BD80DF3AF7D4}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{93FEEE06-8001-483C-966A-9613CF483FCE}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe (McAfee, Inc. -> McAfee, Inc.)
FirewallRules: [{4B7B28E0-2682-44F3-8B13-DCEBBDA4B7C9}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.140.508.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{00B88803-A807-487B-9A18-085BD421A6DF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.140.508.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{A8CF99B6-EAE2-4724-A1C0-56C480026281}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.140.508.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{D5432CDA-C962-429E-816B-4B5B2D15B597}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.140.508.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{021A46FF-9434-4C73-A9EF-DAC8FDF79D9E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.140.508.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{F12CC694-8249-4F05-BEBB-2D9F59E61239}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.140.508.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{5695515E-A1C7-4BBD-9966-9D884EDDB6EB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.140.508.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{2535C84C-2680-4252-9CBD-2A1C2C30D0FC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.140.508.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)

==================== Restore Points =========================

29-08-2020 13:06:57 Windows Update

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (08/29/2020 01:21:42 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Procedura Open pro službu BITS v knihovně DLL C:\Windows\System32\bitsperf.dll se nezdařila. Výkonnostní data pro tuto službu nebudou k dispozici. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.

Error: (08/29/2020 01:05:24 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program explorer.exe verze 10.0.16299.15 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Zabezpečení a údržba.

ID procesu: 1b98

Čas spuštění: 01d67df3751ce7f6

Čas ukončení: 0

Cesta k aplikaci: C:\Windows\explorer.exe

ID hlášení: 85714ad9-a3ca-4bdd-a393-8ebcbfb755e4

Úplný název balíčku s chybou:

ID aplikace související s balíčkem s chybou:

Error: (08/29/2020 01:24:17 AM) (Source: ESENT) (EventID: 522) (User: )
Description: ShellExperienceHost (8116,P,0) TILEREPOSITORYS-1-5-21-2391460587-3527569240-2793632488-1001: Pokus o otevření zařízení s názvem \\.\C:, který obsahuje C:\, se nepodařil a došlo k systémové chybě 5 (0x00000005): Přístup byl odepřen. . Operace se nepodaří a dojde k chybě -1032 (0xfffffbf8).

Error: (08/29/2020 01:24:17 AM) (Source: ESENT) (EventID: 522) (User: )
Description: ShellExperienceHost (8116,P,0) TILEREPOSITORYS-1-5-21-2391460587-3527569240-2793632488-1001: Pokus o otevření zařízení s názvem \\.\C:, který obsahuje C:\, se nepodařil a došlo k systémové chybě 5 (0x00000005): Přístup byl odepřen. . Operace se nepodaří a dojde k chybě -1032 (0xfffffbf8).

Error: (08/29/2020 01:24:17 AM) (Source: ESENT) (EventID: 522) (User: )
Description: ShellExperienceHost (8116,P,0) TILEREPOSITORYS-1-5-21-2391460587-3527569240-2793632488-1001: Pokus o otevření zařízení s názvem \\.\C:, který obsahuje C:\, se nepodařil a došlo k systémové chybě 5 (0x00000005): Přístup byl odepřen. . Operace se nepodaří a dojde k chybě -1032 (0xfffffbf8).

Error: (08/29/2020 01:24:17 AM) (Source: ESENT) (EventID: 522) (User: )
Description: ShellExperienceHost (8116,P,0) TILEREPOSITORYS-1-5-21-2391460587-3527569240-2793632488-1001: Pokus o otevření zařízení s názvem \\.\C:, který obsahuje C:\, se nepodařil a došlo k systémové chybě 5 (0x00000005): Přístup byl odepřen. . Operace se nepodaří a dojde k chybě -1032 (0xfffffbf8).

Error: (08/29/2020 01:24:17 AM) (Source: ESENT) (EventID: 522) (User: )
Description: ShellExperienceHost (8116,P,0) TILEREPOSITORYS-1-5-21-2391460587-3527569240-2793632488-1001: Pokus o otevření zařízení s názvem \\.\C:, který obsahuje C:\, se nepodařil a došlo k systémové chybě 5 (0x00000005): Přístup byl odepřen. . Operace se nepodaří a dojde k chybě -1032 (0xfffffbf8).

Error: (08/29/2020 01:24:17 AM) (Source: ESENT) (EventID: 522) (User: )
Description: ShellExperienceHost (8116,P,0) TILEREPOSITORYS-1-5-21-2391460587-3527569240-2793632488-1001: Pokus o otevření zařízení s názvem \\.\C:, který obsahuje C:\, se nepodařil a došlo k systémové chybě 5 (0x00000005): Přístup byl odepřen. . Operace se nepodaří a dojde k chybě -1032 (0xfffffbf8).


System errors:
=============
Error: (08/29/2020 01:32:26 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (08/29/2020 01:29:23 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (08/29/2020 01:27:15 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (08/29/2020 01:20:42 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (08/29/2020 01:17:27 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
a APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (08/29/2020 01:17:27 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
a APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (08/29/2020 01:17:27 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
a APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (08/29/2020 01:17:27 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
a APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.


CodeIntegrity:
===================================

Date: 2020-08-29 13:35:10.166
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2020-08-29 13:35:10.157
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2020-08-29 13:32:35.605
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2020-08-29 13:32:35.599
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2020-08-29 13:32:28.449
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2020-08-29 13:32:28.394
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2020-08-29 13:31:45.916
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2020-08-29 13:31:45.910
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

==================== Memory info ===========================

BIOS: Insyde F.51 05/31/2019
Motherboard: HP 8331
Processor: AMD A9-9420 RADEON R5, 5 COMPUTE CORES 2C+3G
Percentage of memory in use: 38%
Total physical RAM: 7645.68 MB
Available physical RAM: 4730.09 MB
Total Virtual: 9501.68 MB
Available Virtual: 6451.34 MB

==================== Drives ================================

Drive c: (WINDOWS) (Fixed) (Total:917.41 GB) (Free:879.53 GB) NTFS
Drive d: (RECOVERY) (Fixed) (Total:12.87 GB) (Free:1.54 GB) NTFS ==>[system with boot components (obtained from drive)]

\\?\Volume{a7b5877a-f22f-43e4-bbf8-4aec9e3d4d1d}\ () (Fixed) (Total:0.25 GB) (Free:0.19 GB) FAT32
\\?\Volume{077bd1a7-ae8d-4c37-b979-b74af55d74f5}\ (Windows RE tools) (Fixed) (Total:0.96 GB) (Free:0.55 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 7E2B67A8)

Partition: GPT.

==================== End of Addition.txt =======================

Re: Kontrola, velmi pomalý ntb

Napsal: 29 srp 2020 13:37
od Rudy
Zdravím!
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

Re: Kontrola, velmi pomalý ntb

Napsal: 29 srp 2020 15:05
od Pajas92
# -------------------------------
# Malwarebytes AdwCleaner 7.1.1.0
# -------------------------------
# Build: 04-27-2018
# Database:
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 08-29-2020
# Duration: 00:00:17
# OS: Windows 10 Home
# Scanned: 31078
# Detected: 0


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.



########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S02].txt ##########

Re: Kontrola, velmi pomalý ntb

Napsal: 29 srp 2020 16:13
od Rudy
Log FRST (ne Addition) není kompletní.

Re: Kontrola, velmi pomalý ntb

Napsal: 29 srp 2020 17:01
od Pajas92
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 29-08-2020
Ran by Míra (administrator) on LAPTOP-6U7E1JP1 (HP HP Laptop 15-bw0xx) (29-08-2020 17:54:51)
Running from C:\Users\Míra\Desktop
Loaded Profiles: Míra
Platform: Windows 10 Home Version 1709 16299.15 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Advanced Micro Devices, Inc. -> ) C:\Program Files\ATI Technologies\ATI.ACE\a4\AdaptiveSleepService.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\atiesrxx.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\msiexec.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor Corp. -> Realtek) C:\Program Files (x86)\Realtek\PCIE Wireless LAN\RtlS5Wake\RtlS5Wake.exe
(Realtek Semiconductor Corp.) [File not signed] C:\Program Files (x86)\Realtek\REALTEK Bluetooth\BTDevMgr.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [630168 2017-09-29] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9217024 2017-10-21] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [4388440 2017-10-20] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM-x32\...\Run: [RtlS5Wake] => C:\Program Files (x86)\Realtek\PCIE Wireless LAN\RtlS5Wake\RtlS5Wake.exe [1660760 2017-06-26] (Realtek Semiconductor Corp. -> Realtek)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [35760 2010-09-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [932288 2010-09-20] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKU\S-1-5-21-2391460587-3527569240-2793632488-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [29271224 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM\...\Print\Monitors\IppMon: C:\windows\system32\IPPMon.dll [226816 2017-09-29] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\85.0.4183.83\Installer\chrmstp.exe [2020-08-29] (Google LLC -> Google LLC)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {5ED20405-6B5A-4583-9238-DEEC9C7BBBD0} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [24770744 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {7F6DD055-09CA-4796-ACF8-E322412BA333} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2020-08-29] (Google Inc -> Google Inc.)
Task: {A06600C4-9778-4489-AD47-2F5D91FE61B5} - System32\Tasks\HPJumpStartLaunch => C:\Program Files (x86)\HP\HP JumpStart Launch\HPJumpStartLaunch.exe
Task: {A904FEED-E515-4008-9AA7-DAE067A7F9F0} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {CD3B39AD-5170-41BC-833C-DCF027FF8F07} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2020-08-29] (Google Inc -> Google Inc.)
Task: {DBD2D7C5-BB7C-45B3-B1E7-7B302CD0CAC0} - System32\Tasks\StartCN => c:\Program Files\AMD\CNext\CNext\cncmd.exe [52104 2017-09-25] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{7babbc06-afd3-4c0d-bead-8e5b0abc5020}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp17win10.msn.com/?pc=HCTE
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp17win10.msn.com/?pc=HCTE
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
HKU\S-1-5-21-2391460587-3527569240-2793632488-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp17win10.msn.com/?pc=HCTE
HKU\S-1-5-21-2391460587-3527569240-2793632488-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
SearchScopes: HKLM -> {97C49150-339E-4C79-BA96-EDD20BB8A6CF} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {97C49150-339E-4C79-BA96-EDD20BB8A6CF} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKU\S-1-5-21-2391460587-3527569240-2793632488-1001 -> {97C49150-339E-4C79-BA96-EDD20BB8A6CF} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll => No File
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll => No File

FireFox:
========
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32.dll [2020-08-29] (Adobe Systems Incorporated -> )

Chrome:
=======
CHR Profile: C:\Users\Míra\AppData\Local\Google\Chrome\User Data\Default [2020-08-29]
StartMenuInternet: Google Chrome - C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdaptiveSleepService; c:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe [155016 2017-09-25] (Advanced Micro Devices, Inc. -> )
R2 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [127488 2017-08-30] (Realtek Semiconductor Corp.) [File not signed]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6541008 2018-05-09] (Malwarebytes Corporation -> Malwarebytes)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [355304 2017-09-29] (Microsoft Corporation -> Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [105944 2017-09-29] (Microsoft Corporation -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 ESProtectionDriver; C:\windows\system32\drivers\mbae64.sys [152184 2018-04-26] (Malwarebytes Corporation -> Malwarebytes)
R2 MBAMChameleon; C:\windows\System32\Drivers\MbamChameleon.sys [190696 2020-08-29] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMFarflt; C:\windows\System32\DRIVERS\farflt.sys [112864 2020-08-29] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMProtection; C:\windows\system32\DRIVERS\mbam.sys [44768 2020-08-29] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMSwissArmy; C:\windows\System32\Drivers\mbamswissarmy.sys [253664 2020-08-29] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMWebProtection; C:\windows\system32\DRIVERS\mwac.sys [103648 2020-08-29] (Malwarebytes Corporation -> Malwarebytes)
S0 WdBoot; C:\windows\System32\drivers\WdBoot.sys [44608 2017-09-29] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\windows\System32\drivers\WdFilter.sys [309144 2017-09-29] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\windows\System32\Drivers\WdNisDrv.sys [119192 2017-09-29] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\windows\system32\DRIVERS\WirelessButtonDriver64.sys [35392 2019-11-15] (HP Inc. -> HP)
S3 H2OFFT; \SystemRoot\System32\drivers\H2OFFT64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-08-29 17:54 - 2020-08-29 17:56 - 000011372 _____ C:\Users\Míra\Desktop\FRST.txt
2020-08-29 17:54 - 2020-08-29 17:54 - 000000000 ____D C:\Users\Míra\Desktop\FRST-OlderVersion
2020-08-29 16:20 - 2020-08-29 16:20 - 001388448 _____ C:\Users\Public\ASR.dat
2020-08-29 16:14 - 2020-08-29 16:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero
2020-08-29 16:14 - 2020-08-29 16:14 - 000000000 ____D C:\ProgramData\Nero
2020-08-29 16:14 - 2020-08-29 16:14 - 000000000 ____D C:\Program Files (x86)\Nero
2020-08-29 16:11 - 2020-08-29 16:11 - 000000000 ____D C:\Users\Míra\AppData\Roaming\vlc
2020-08-29 16:10 - 2020-08-29 16:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2020-08-29 16:09 - 2020-08-29 16:09 - 000002290 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-08-29 16:09 - 2020-08-29 16:09 - 000002249 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-08-29 16:09 - 2020-08-29 16:09 - 000000000 ____D C:\Users\Míra\AppData\LocalLow\AMD
2020-08-29 16:09 - 2020-08-29 16:09 - 000000000 ____D C:\Program Files\VideoLAN
2020-08-29 16:09 - 2020-08-29 16:09 - 000000000 ____D C:\Program Files\Google
2020-08-29 16:08 - 2020-08-29 16:14 - 000003474 _____ C:\windows\system32\Tasks\GoogleUpdateTaskMachineUA
2020-08-29 16:08 - 2020-08-29 16:14 - 000003350 _____ C:\windows\system32\Tasks\GoogleUpdateTaskMachineCore
2020-08-29 16:08 - 2020-08-29 16:13 - 000000000 ____D C:\Program Files (x86)\Google
2020-08-29 16:08 - 2020-08-29 16:09 - 000000000 ____D C:\Users\Míra\AppData\Local\Google
2020-08-29 16:08 - 2020-08-29 16:08 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader 9.lnk
2020-08-29 16:08 - 2020-08-29 16:08 - 000000000 ____D C:\ProgramData\Adobe
2020-08-29 16:08 - 2020-08-29 16:08 - 000000000 ____D C:\Program Files (x86)\Adobe
2020-08-29 16:07 - 2020-08-29 16:07 - 000000000 ____D C:\Users\Míra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-08-29 16:07 - 2020-08-29 16:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-08-29 16:07 - 2020-08-29 16:07 - 000000000 ____D C:\Program Files\WinRAR
2020-08-29 14:29 - 2020-08-29 14:28 - 000744808 ____N (Microsoft Corporation) C:\windows\system32\MpSigStub.exe
2020-08-29 14:27 - 2020-08-29 14:27 - 000000000 ____D C:\zoek_backup
2020-08-29 14:15 - 2020-08-29 14:15 - 000000000 ____D C:\Users\Míra\AppData\Local\CEF
2020-08-29 14:10 - 2020-08-29 14:21 - 000000000 ____D C:\ProgramData\AVG
2020-08-29 14:10 - 2020-08-29 14:10 - 000003936 _____ C:\windows\system32\Tasks\CCleaner Update
2020-08-29 14:10 - 2020-08-29 14:10 - 000002886 _____ C:\windows\system32\Tasks\CCleanerSkipUAC
2020-08-29 14:10 - 2020-08-29 14:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2020-08-29 14:10 - 2020-08-29 14:10 - 000000000 ____D C:\Program Files\CCleaner
2020-08-29 14:05 - 2020-08-29 14:05 - 000000000 ____D C:\Users\Míra\AppData\Local\Hewlett-Packard
2020-08-29 14:03 - 2020-08-29 14:06 - 000000000 ____D C:\windows\system32\MRT
2020-08-29 14:03 - 2020-08-29 14:03 - 120636720 ____C (Microsoft Corporation) C:\windows\system32\MRT.exe
2020-08-29 14:02 - 2020-08-29 14:04 - 000000000 ____D C:\Users\Míra\AppData\Roaming\hpqLog
2020-08-29 13:31 - 2020-08-29 17:55 - 000000000 ____D C:\FRST
2020-08-29 13:30 - 2020-08-29 17:54 - 002298880 _____ (Farbar) C:\Users\Míra\Desktop\FRST64.exe
2020-08-29 13:28 - 2020-08-29 13:28 - 000000000 ___HD C:\$WINDOWS.~BT
2020-08-29 13:22 - 2020-08-29 16:18 - 000253664 _____ (Malwarebytes) C:\windows\system32\Drivers\mbamswissarmy.sys
2020-08-29 13:22 - 2020-08-29 16:18 - 000112864 _____ (Malwarebytes) C:\windows\system32\Drivers\farflt.sys
2020-08-29 13:22 - 2020-08-29 16:18 - 000103648 _____ (Malwarebytes) C:\windows\system32\Drivers\mwac.sys
2020-08-29 13:22 - 2020-08-29 16:18 - 000044768 _____ (Malwarebytes) C:\windows\system32\Drivers\mbam.sys
2020-08-29 13:22 - 2020-08-29 13:22 - 000190696 _____ (Malwarebytes) C:\windows\system32\Drivers\MbamChameleon.sys
2020-08-29 13:22 - 2020-08-29 13:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2020-08-29 13:22 - 2020-08-29 13:22 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-08-29 13:22 - 2020-08-29 13:22 - 000000000 ____D C:\Program Files\Malwarebytes
2020-08-29 13:22 - 2018-04-26 05:36 - 000152184 _____ (Malwarebytes) C:\windows\system32\Drivers\mbae64.sys
2020-08-29 13:19 - 2020-08-29 13:19 - 000000000 ____D C:\AdwCleaner
2020-08-29 13:07 - 2018-06-08 14:09 - 000130808 _____ (Microsoft Corporation) C:\windows\system32\osrss.dll
2020-08-29 13:03 - 2020-08-29 13:05 - 000000000 ____D C:\Users\Míra\AppData\Local\MicrosoftEdge
2020-08-29 13:03 - 2020-08-29 13:03 - 000000000 ___HD C:\Users\Míra\MicrosoftEdgeBackups
2020-08-29 13:02 - 2020-08-29 13:09 - 000000000 ____D C:\Users\Míra\AppData\Local\PlaceholderTileLogoFolder
2020-08-29 13:02 - 2020-08-29 13:02 - 000000000 ____D C:\Users\Míra\AppData\Roaming\HP Active Health
2020-08-29 13:01 - 2020-08-29 13:01 - 000000000 ____D C:\Users\Míra\AppData\Local\Comms
2020-08-29 13:00 - 2020-08-29 13:00 - 000000000 ____D C:\Users\Míra\AppData\Local\DBG
2020-08-29 06:00 - 2020-08-28 21:05 - 000000000 ____D C:\windows\holoshell
2020-08-29 06:00 - 2017-09-29 14:55 - 030041088 _____ (Microsoft Corporation) C:\windows\system32\HolographicBenchmark.exe
2020-08-29 06:00 - 2017-09-29 14:18 - 000529408 _____ (Microsoft Corporation) C:\windows\system32\SettingsHandlers_HoloLens_Environment.dll
2020-08-29 06:00 - 2017-09-29 14:17 - 000535040 ____R (Microsoft Corporation) C:\windows\system32\MixedRealityCapture.Pipeline.dll
2020-08-29 06:00 - 2017-09-29 14:16 - 000996864 _____ (Microsoft Corporation) C:\windows\system32\Windows.Media.MixedRealityCapture.dll
2020-08-29 06:00 - 2017-09-29 14:12 - 001193472 _____ (Microsoft Corporation) C:\windows\system32\HoloSI.PCShell.dll
2020-08-29 06:00 - 2017-09-29 14:11 - 000136192 _____ (Microsoft Corporation) C:\windows\system32\SettingsHandlers_AnalogShell.dll
2020-08-29 06:00 - 2017-09-29 14:10 - 000125440 _____ (Microsoft Corporation) C:\windows\system32\DesktopView.Internal.Broker.dll
2020-08-29 06:00 - 2017-09-29 14:10 - 000018432 _____ (Microsoft Corporation) C:\windows\system32\DesktopView.Internal.Broker.ProxyStub.dll
2020-08-29 06:00 - 2017-09-29 14:09 - 000160768 _____ (Microsoft Corporation) C:\windows\system32\Windows.Cortana.Analog.dll
2020-08-29 06:00 - 2017-09-29 14:09 - 000042496 _____ (Microsoft Corporation) C:\windows\system32\Windows.Cortana.Analog.ProxyStub.dll
2020-08-29 06:00 - 2017-09-29 14:07 - 000246272 _____ (Microsoft Corporation) C:\windows\system32\HoloSHExtensions.dll
2020-08-29 06:00 - 2017-09-29 14:06 - 000114176 ____R (Microsoft Corporation) C:\windows\system32\MixedRealityCapture.Broker.dll
2020-08-29 06:00 - 2017-09-29 14:06 - 000051712 ____R (Microsoft Corporation) C:\windows\system32\Windows.Mirage.Internal.Capture.Pipeline.ProxyStub.dll
2020-08-29 06:00 - 2017-09-29 13:14 - 000857600 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Media.MixedRealityCapture.dll
2020-08-29 06:00 - 2017-09-29 05:06 - 000013824 _____ C:\windows\system32\HolographicShareInterop.ProxyStub.dll
2020-08-29 06:00 - 2017-09-29 01:46 - 000000002 _____ C:\windows\system32\hologramcompositor.lock
2020-08-29 05:59 - 2017-09-29 15:42 - 000035138 _____ C:\windows\Core.xml
2020-08-29 01:30 - 2020-08-29 01:30 - 000001280 _____ C:\Users\Míra\Desktop\CrystalDiskInfo.lnk
2020-08-29 01:30 - 2020-08-29 01:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2020-08-29 01:29 - 2020-08-29 01:30 - 000000000 ____D C:\Program Files (x86)\CrystalDiskInfo
2020-08-29 01:28 - 2020-08-29 13:03 - 000000000 ____D C:\Users\Míra\Desktop\Programy_cisteni
2020-08-29 01:28 - 2020-08-29 01:28 - 000003378 _____ C:\windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2391460587-3527569240-2793632488-1001
2020-08-29 01:27 - 2020-08-29 01:28 - 000002369 _____ C:\Users\Míra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-08-29 01:27 - 2020-08-29 01:28 - 000000000 ___RD C:\Users\Míra\OneDrive
2020-08-29 01:27 - 2020-08-29 01:27 - 000000000 ____D C:\Users\Míra\AppData\Roaming\Hewlett-Packard
2020-08-29 01:24 - 2020-08-29 13:45 - 000000000 ____D C:\Users\Míra\AppData\Roaming\HP
2020-08-29 01:24 - 2020-08-29 13:20 - 000000000 ____D C:\Users\Míra\AppData\Local\AMD
2020-08-29 01:24 - 2020-08-29 01:24 - 000000000 ____D C:\Users\Míra\AppData\Local\Publishers
2020-08-29 01:23 - 2020-08-29 14:20 - 000000000 ____D C:\Users\Míra\AppData\Local\Packages
2020-08-29 01:23 - 2020-08-29 13:03 - 000000000 ____D C:\Users\Míra\AppData\Local\VirtualStore
2020-08-29 01:23 - 2020-08-29 01:23 - 000000000 ___RD C:\Users\Míra\3D Objects
2020-08-29 01:23 - 2020-08-29 01:23 - 000000000 ____D C:\Users\Míra\AppData\Roaming\Synaptics
2020-08-29 01:23 - 2020-08-29 01:23 - 000000000 ____D C:\Users\Míra\AppData\Roaming\Adobe
2020-08-29 01:23 - 2020-08-29 01:23 - 000000000 ____D C:\Users\Míra\AppData\Local\ConnectedDevicesPlatform
2020-08-29 01:22 - 2020-08-29 13:03 - 000000000 ____D C:\Users\Míra
2020-08-29 01:22 - 2020-08-29 01:22 - 000000020 ___SH C:\Users\Míra\ntuser.ini
2020-08-29 01:22 - 2020-08-29 01:22 - 000000000 _SHDL C:\Users\Míra\Šablony
2020-08-29 01:22 - 2020-08-29 01:22 - 000000000 _SHDL C:\Users\Míra\Soubory cookie
2020-08-29 01:22 - 2020-08-29 01:22 - 000000000 _SHDL C:\Users\Míra\Poslední
2020-08-29 01:22 - 2020-08-29 01:22 - 000000000 _SHDL C:\Users\Míra\Okolní tiskárny
2020-08-29 01:22 - 2020-08-29 01:22 - 000000000 _SHDL C:\Users\Míra\Okolní síť
2020-08-29 01:22 - 2020-08-29 01:22 - 000000000 _SHDL C:\Users\Míra\Nabídka Start
2020-08-29 01:22 - 2020-08-29 01:22 - 000000000 _SHDL C:\Users\Míra\Dokumenty
2020-08-29 01:22 - 2020-08-29 01:22 - 000000000 _SHDL C:\Users\Míra\Documents\Obrázky
2020-08-29 01:22 - 2020-08-29 01:22 - 000000000 _SHDL C:\Users\Míra\Documents\Hudba
2020-08-29 01:22 - 2020-08-29 01:22 - 000000000 _SHDL C:\Users\Míra\Documents\Filmy
2020-08-29 01:22 - 2020-08-29 01:22 - 000000000 _SHDL C:\Users\Míra\Data aplikací
2020-08-29 01:22 - 2020-08-29 01:22 - 000000000 _SHDL C:\Users\Míra\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2020-08-29 01:22 - 2020-08-29 01:22 - 000000000 _SHDL C:\Users\Míra\AppData\Local\Data aplikací
2020-08-29 01:22 - 2017-11-11 04:33 - 000000000 ___HD C:\Users\Míra\Documents\hp.system.package.metadata
2020-08-29 01:22 - 2017-11-11 04:33 - 000000000 ___HD C:\Users\Míra\Documents\hp.applications.package.appdata
2020-08-28 22:53 - 2020-08-28 22:53 - 000000000 _SHDL C:\Users\Public\Documents\Obrázky
2020-08-28 22:53 - 2020-08-28 22:53 - 000000000 _SHDL C:\Users\Public\Documents\Hudba
2020-08-28 22:53 - 2020-08-28 22:53 - 000000000 _SHDL C:\Users\Public\Documents\Filmy
2020-08-28 22:53 - 2020-08-28 22:53 - 000000000 _SHDL C:\Users\Default\Šablony
2020-08-28 22:53 - 2020-08-28 22:53 - 000000000 _SHDL C:\Users\Default\Soubory cookie
2020-08-28 22:53 - 2020-08-28 22:53 - 000000000 _SHDL C:\Users\Default\Poslední
2020-08-28 22:53 - 2020-08-28 22:53 - 000000000 _SHDL C:\Users\Default\Okolní tiskárny
2020-08-28 22:53 - 2020-08-28 22:53 - 000000000 _SHDL C:\Users\Default\Okolní síť
2020-08-28 22:53 - 2020-08-28 22:53 - 000000000 _SHDL C:\Users\Default\Nabídka Start
2020-08-28 22:53 - 2020-08-28 22:53 - 000000000 _SHDL C:\Users\Default\Dokumenty
2020-08-28 22:53 - 2020-08-28 22:53 - 000000000 _SHDL C:\Users\Default\Documents\Obrázky
2020-08-28 22:53 - 2020-08-28 22:53 - 000000000 _SHDL C:\Users\Default\Documents\Hudba
2020-08-28 22:53 - 2020-08-28 22:53 - 000000000 _SHDL C:\Users\Default\Documents\Filmy
2020-08-28 22:53 - 2020-08-28 22:53 - 000000000 _SHDL C:\Users\Default\Data aplikací
2020-08-28 22:53 - 2020-08-28 22:53 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2020-08-28 22:53 - 2020-08-28 22:53 - 000000000 _SHDL C:\Users\Default\AppData\Local\Data aplikací
2020-08-28 22:53 - 2020-08-28 22:53 - 000000000 _SHDL C:\Users\Default User\Šablony
2020-08-28 22:53 - 2020-08-28 22:53 - 000000000 _SHDL C:\Users\Default User\Soubory cookie
2020-08-28 22:53 - 2020-08-28 22:53 - 000000000 _SHDL C:\Users\Default User\Poslední
2020-08-28 22:53 - 2020-08-28 22:53 - 000000000 _SHDL C:\Users\Default User\Okolní tiskárny
2020-08-28 22:53 - 2020-08-28 22:53 - 000000000 _SHDL C:\Users\Default User\Okolní síť
2020-08-28 22:53 - 2020-08-28 22:53 - 000000000 _SHDL C:\Users\Default User\Nabídka Start
2020-08-28 22:53 - 2020-08-28 22:53 - 000000000 _SHDL C:\Users\Default User\Dokumenty
2020-08-28 22:53 - 2020-08-28 22:53 - 000000000 _SHDL C:\Users\Default User\Documents\Obrázky
2020-08-28 22:53 - 2020-08-28 22:53 - 000000000 _SHDL C:\Users\Default User\Documents\Hudba
2020-08-28 22:53 - 2020-08-28 22:53 - 000000000 _SHDL C:\Users\Default User\Documents\Filmy
2020-08-28 22:53 - 2020-08-28 22:53 - 000000000 _SHDL C:\Users\Default User\Data aplikací
2020-08-28 22:53 - 2020-08-28 22:53 - 000000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2020-08-28 22:53 - 2020-08-28 22:53 - 000000000 _SHDL C:\Users\Default User\AppData\Local\Data aplikací
2020-08-28 22:53 - 2020-08-28 22:53 - 000000000 _SHDL C:\ProgramData\Šablony
2020-08-28 22:53 - 2020-08-28 22:53 - 000000000 _SHDL C:\ProgramData\Plocha
2020-08-28 22:53 - 2020-08-28 22:53 - 000000000 _SHDL C:\ProgramData\Nabídka Start
2020-08-28 22:53 - 2020-08-28 22:53 - 000000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programy
2020-08-28 22:53 - 2020-08-28 22:53 - 000000000 _SHDL C:\ProgramData\Dokumenty
2020-08-28 22:53 - 2020-08-28 22:53 - 000000000 _SHDL C:\ProgramData\Data aplikací
2020-08-28 22:53 - 2020-08-28 22:53 - 000000000 _SHDL C:\Documents and Settings
2020-08-28 22:10 - 2020-08-28 22:10 - 000000000 ____D C:\windows\AMDTAs
2020-08-28 21:56 - 2020-08-28 22:08 - 000030483 _____ C:\windows\diagwrn.xml
2020-08-28 21:56 - 2020-08-28 22:08 - 000030483 _____ C:\windows\diagerr.xml
2020-08-28 21:36 - 2020-08-29 13:54 - 000000000 ____D C:\windows\system32\Tasks\McAfee
2020-08-28 21:35 - 2020-08-29 13:56 - 000000000 ____D C:\Program Files (x86)\McAfee
2020-08-28 21:34 - 2020-08-28 22:53 - 000002856 _____ C:\windows\system32\Tasks\HPJumpStartLaunch
2020-08-28 21:32 - 2020-08-28 21:32 - 000000000 ____D C:\windows\HP
2020-08-28 21:28 - 2020-08-28 21:28 - 000000000 __RSH C:\windows\SysWOW64\Drivers\103C_HP_cNB_Laptop 15-bw0xx_Y5335KV_0U_QCND75236F7_ECND716002898 DPS_4A_I8331_SHP_V27.35_BF.51_T190531_W1101-0_L405_M7646_J1000_7AMD_8F00_93.00_#200828_N10ECD723;10EC8168_(2YL63EA#BCM)_XMOBILE_CN10_Z.MRK
2020-08-28 21:28 - 2020-08-28 21:28 - 000000000 __RSH C:\windows\system32\Drivers\103C_HP_cNB_Laptop 15-bw0xx_Y5335KV_0U_QCND75236F7_ECND716002898 DPS_4A_I8331_SHP_V27.35_BF.51_T190531_W1101-0_L405_M7646_J1000_7AMD_8F00_93.00_#200828_N10ECD723;10EC8168_(2YL63EA#BCM)_XMOBILE_CN10_Z.MRK
2020-08-28 21:27 - 2020-08-28 21:27 - 000000000 ____D C:\ProgramData\Synaptics
2020-08-28 21:25 - 2020-08-28 21:25 - 000000000 ____H C:\windows\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2020-08-28 21:25 - 2020-08-28 21:25 - 000000000 ____H C:\windows\system32\Drivers\Msft_Kernel_Smb_driver_AMDASF_01011.Wdf
2020-08-28 21:25 - 2020-08-28 21:25 - 000000000 ____D C:\Program Files\Synaptics
2020-08-28 21:25 - 2017-10-20 20:52 - 000045144 _____ (Synaptics Incorporated) C:\windows\system32\Drivers\Smb_driver_AMDASF.sys
2020-08-28 21:24 - 2020-08-28 22:10 - 000000000 ____D C:\windows\SysWOW64\sda
2020-08-28 21:24 - 2020-08-28 21:24 - 000000000 ____D C:\ProgramData\Realtek
2020-08-28 21:24 - 2017-11-08 15:04 - 001176936 _____ (Realtek Semiconductor Corp. ) C:\windows\system32\Rtlihvs.dll
2020-08-28 21:24 - 2017-11-08 14:54 - 000040263 _____ C:\windows\system32\Drivers\rtldata.txt
2020-08-28 21:24 - 2017-09-21 19:50 - 009891328 _____ (Realtek Semiconductor Corp.) C:\windows\SysWOW64\RsCRIcon.dll
2020-08-28 21:24 - 2017-09-21 19:50 - 004332032 _____ (Realtek Semiconductor Corp.) C:\windows\RtCRU64.exe
2020-08-28 21:24 - 2017-09-21 19:50 - 000420832 _____ (Realsil Semiconductor Corporation) C:\windows\system32\Drivers\RtsUer.sys
2020-08-28 21:24 - 2017-09-21 19:50 - 000084480 _____ (Realtek Semiconductor.) C:\windows\system32\RtCRX64.dll
2020-08-28 21:24 - 2017-08-28 09:54 - 000054192 _____ C:\windows\system32\rtl8723d_mp_chip_bt40_fw_asic_rom_patch_new.dll
2020-08-28 21:24 - 2017-08-28 09:54 - 000050960 _____ C:\windows\system32\rtl8723b_mp_chip_bt40_fw_asic_rom_patch_new.dll
2020-08-28 21:24 - 2017-08-28 09:54 - 000046708 _____ C:\windows\system32\rtl8822b_mp_chip_bt40_fw_asic_rom_patch_new.dll
2020-08-28 21:24 - 2017-08-28 09:54 - 000039420 _____ C:\windows\system32\rtl8821c_mp_chip_bt40_fw_asic_rom_patch_new.dll
2020-08-28 21:24 - 2017-08-27 23:24 - 000750072 _____ (Realtek Semiconductor Corporation) C:\windows\system32\Drivers\RtkBtfilter.sys
2020-08-28 21:24 - 2016-09-20 19:00 - 000001156 _____ C:\windows\PidVid_List.dll
2020-08-28 21:24 - 2013-04-01 23:19 - 000574464 _____ (Realtek Semiconductor Corp. ) C:\windows\system32\rtl8723de.dll
2020-08-28 21:23 - 2020-08-28 21:23 - 000000372 _____ C:\windows\HPSetLog.txt
2020-08-28 21:23 - 2010-12-01 09:31 - 000451072 _____ C:\windows\SysWOW64\ISSRemoveSP.exe
2020-08-28 21:22 - 2020-08-28 22:53 - 000002146 _____ C:\windows\system32\Tasks\StartCN
2020-08-28 21:22 - 2020-08-28 21:22 - 000000000 ____H C:\windows\system32\Drivers\Msft_Kernel_amdpsp_01011.Wdf
2020-08-28 21:22 - 2020-08-28 21:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Radeon Settings
2020-08-28 21:22 - 2020-08-28 21:22 - 000000000 ____D C:\Program Files\ATI Technologies
2020-08-28 21:22 - 2020-08-28 21:22 - 000000000 ____D C:\Program Files (x86)\ATI Technologies
2020-08-28 21:22 - 2020-08-28 21:22 - 000000000 ____D C:\Program Files (x86)\AMD
2020-08-28 21:22 - 2017-08-25 07:30 - 001009128 _____ (Realtek ) C:\windows\system32\Drivers\rt640x64.sys
2020-08-28 21:21 - 2020-08-29 16:17 - 000065536 _____ C:\windows\psp_storage.bin
2020-08-28 21:20 - 2020-08-28 21:20 - 000000000 ____D C:\Program Files\Common Files\ATI Technologies
2020-08-28 21:20 - 2020-08-28 21:20 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2020-08-28 21:20 - 2017-10-14 01:55 - 003471376 _____ C:\windows\SysWOW64\atiumdva.cap
2020-08-28 21:20 - 2017-10-14 01:55 - 000933288 _____ (AMD) C:\windows\system32\coinst_17.10.dll
2020-08-28 21:20 - 2017-10-14 01:55 - 000560544 _____ C:\windows\system32\dgtrayicon.exe
2020-08-28 21:20 - 2017-10-14 01:55 - 000555424 _____ (Advanced Micro Devices, Inc.) C:\windows\system32\Rapidfire64.dll
2020-08-28 21:20 - 2017-10-14 01:55 - 000540064 _____ C:\windows\system32\GameManager64.dll
2020-08-28 21:20 - 2017-10-14 01:55 - 000486816 _____ (Advanced Micro Devices, Inc.) C:\windows\SysWOW64\Rapidfire.dll
2020-08-28 21:20 - 2017-10-14 01:55 - 000374184 _____ C:\windows\SysWOW64\GameManager32.dll
2020-08-28 21:20 - 2017-10-14 01:55 - 000287136 _____ C:\windows\system32\clinfo.exe
2020-08-28 21:20 - 2017-10-14 01:55 - 000285088 _____ C:\windows\system32\hsa-thunk64.dll
2020-08-28 21:20 - 2017-10-14 01:55 - 000250792 _____ C:\windows\SysWOW64\hsa-thunk.dll
2020-08-28 21:20 - 2017-10-14 01:55 - 000204952 _____ C:\windows\SysWOW64\ativvsvl.dat
2020-08-28 21:20 - 2017-10-14 01:55 - 000204952 _____ C:\windows\system32\ativvsvl.dat
2020-08-28 21:20 - 2017-10-14 01:55 - 000200096 _____ (Advanced Micro Devices, Inc. ) C:\windows\system32\mantle64.dll
2020-08-28 21:20 - 2017-10-14 01:55 - 000178592 _____ (Advanced Micro Devices, Inc. ) C:\windows\system32\mantleaxl64.dll
2020-08-28 21:20 - 2017-10-14 01:55 - 000159648 _____ (Advanced Micro Devices, Inc. ) C:\windows\SysWOW64\mantle32.dll
2020-08-28 21:20 - 2017-10-14 01:55 - 000157144 _____ C:\windows\SysWOW64\ativvsva.dat
2020-08-28 21:20 - 2017-10-14 01:55 - 000157144 _____ C:\windows\system32\ativvsva.dat
2020-08-28 21:20 - 2017-10-14 01:55 - 000154384 _____ C:\windows\system32\samu_krnl_ci.sbin
2020-08-28 21:20 - 2017-10-14 01:55 - 000143784 _____ (Advanced Micro Devices, Inc. ) C:\windows\SysWOW64\mantleaxl32.dll
2020-08-28 21:20 - 2017-10-14 01:55 - 000138832 _____ C:\windows\system32\samu_krnl_isv_ci.sbin
2020-08-28 21:20 - 2017-10-14 01:55 - 000120368 _____ C:\windows\system32\kapp_ci.sbin
2020-08-28 21:20 - 2017-10-14 01:55 - 000114704 _____ C:\windows\system32\kapp_si.sbin
2020-08-28 21:20 - 2017-10-14 01:55 - 000053664 _____ (Advanced Micro Devices, Inc.) C:\windows\system32\RapidFireServer64.dll
2020-08-28 21:20 - 2017-10-14 01:55 - 000051104 _____ (Advanced Micro Devices, Inc.) C:\windows\SysWOW64\RapidFireServer.dll
2020-08-28 21:20 - 2017-10-14 01:55 - 000037800 _____ (Microsoft Corporation) C:\windows\SysWOW64\detoured.dll
2020-08-28 21:20 - 2017-10-14 01:55 - 000037800 _____ (Microsoft Corporation) C:\windows\system32\detoured.dll
2020-08-28 21:20 - 2017-10-14 01:55 - 000027016 _____ (Advanced Micro Devices, INC.) C:\windows\system32\Drivers\AmdAS4.sys
2020-08-28 21:20 - 2017-10-14 01:54 - 001804672 _____ (Microsoft Corporation) C:\windows\system32\WdfCoInstaller01011.dll
2020-08-28 21:20 - 2017-10-14 01:54 - 000243048 _____ (Advanced Micro Devices, Inc. ) C:\windows\system32\Drivers\amdpsp.sys
2020-08-28 21:20 - 2017-10-14 01:54 - 000129008 _____ (Advanced Micro Devices, Inc. ) C:\windows\system32\tbaseregistry64.dll
2020-08-28 21:20 - 2017-10-14 01:54 - 000108528 _____ (Advanced Micro Devices, Inc. ) C:\windows\SysWOW64\tbaseregistry32.dll
2020-08-28 21:20 - 2017-10-14 01:54 - 000106480 _____ (AMD) C:\windows\system32\pspcoins.dll
2020-08-28 21:20 - 2017-10-14 01:54 - 000101232 _____ (Advanced Micro Devices, Inc. ) C:\windows\system32\Drivers\amdkmcsp.sys
2020-08-28 21:20 - 2017-10-14 01:54 - 000091632 _____ (Advanced Micro Devices, Inc. ) C:\windows\system32\amdumcsp.dll
2020-08-28 21:20 - 2017-10-14 01:54 - 000071664 _____ (Advanced Micro Devices, Inc. ) C:\windows\SysWOW64\amdumcsp.dll
2020-08-28 21:20 - 2017-10-14 01:54 - 000028656 _____ (Advanced Micro Devices, Inc. ) C:\windows\system32\amdtee_api.dll
2020-08-28 21:20 - 2017-10-14 01:54 - 000026096 _____ (Advanced Micro Devices, Inc. ) C:\windows\system32\t-base_client_api.dll
2020-08-28 21:20 - 2017-10-14 01:54 - 000023536 _____ (Advanced Micro Devices, Inc. ) C:\windows\SysWOW64\amdtee_api.dll
2020-08-28 21:20 - 2017-10-14 01:54 - 000021992 _____ (Advanced Micro Devices, Inc. ) C:\windows\SysWOW64\t-base_client_api.dll
2020-08-28 21:19 - 2020-08-28 21:22 - 000000000 ____D C:\Program Files\AMD
2020-08-28 21:19 - 2020-08-28 21:19 - 001702619 _____ C:\windows\system32\Drivers\rtkhdasetting.zip
2020-08-28 21:19 - 2020-08-28 21:19 - 000002063 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audio Control.lnk
2020-08-28 21:19 - 2020-08-28 21:19 - 000000000 ____D C:\windows\SysWOW64\RTCOM
2020-08-28 21:19 - 2020-08-28 21:19 - 000000000 ____D C:\windows\system32\SRSLabs
2020-08-28 21:19 - 2020-08-28 21:19 - 000000000 ____D C:\ProgramData\SoundResearch
2020-08-28 21:19 - 2020-08-28 21:19 - 000000000 ____D C:\Program Files\Realtek
2020-08-28 21:19 - 2017-10-14 01:55 - 003437632 _____ C:\windows\system32\atiumd6a.cap
2020-08-28 21:19 - 2017-10-14 01:55 - 000176552 _____ (Advanced Micro Devices, Inc. ) C:\windows\system32\atisamu64.dll
2020-08-28 21:19 - 2017-10-14 01:55 - 000142248 _____ (Advanced Micro Devices, Inc. ) C:\windows\SysWOW64\atisamu32.dll
2020-08-28 21:19 - 2017-10-14 01:55 - 000113392 _____ (Advanced Micro Devices) C:\windows\system32\DelayAPO.dll
2020-08-28 21:19 - 2017-10-14 01:55 - 000110088 _____ (Advanced Micro Devices) C:\windows\system32\Drivers\AtihdWT6.sys
2020-08-28 21:19 - 2017-10-14 01:54 - 010331040 _____ (Advanced Micro Devices, Inc. ) C:\windows\system32\amdvlk64.dll
2020-08-28 21:19 - 2017-10-14 01:54 - 008488864 _____ (Advanced Micro Devices, Inc. ) C:\windows\SysWOW64\amdvlk32.dll
2020-08-28 21:19 - 2017-10-14 01:54 - 002545064 _____ (Advanced Micro Devices, Inc.) C:\windows\system32\amfrt64.dll
2020-08-28 21:19 - 2017-10-14 01:54 - 002207136 _____ (Advanced Micro Devices, Inc.) C:\windows\SysWOW64\amfrt32.dll
2020-08-28 21:19 - 2017-10-14 01:54 - 001525160 _____ (Advanced Micro Devices, Inc.) C:\windows\system32\atiadlxx.dll
2020-08-28 21:19 - 2017-10-14 01:54 - 001049512 _____ (Advanced Micro Devices, Inc.) C:\windows\SysWOW64\atiadlxy.dll
2020-08-28 21:19 - 2017-10-14 01:54 - 001049512 _____ (Advanced Micro Devices, Inc.) C:\windows\SysWOW64\atiadlxx.dll
2020-08-28 21:19 - 2017-10-14 01:54 - 000872872 _____ (Advanced Micro Devices, Inc.) C:\windows\system32\amdlvr64.dll
2020-08-28 21:19 - 2017-10-14 01:54 - 000798936 _____ C:\windows\SysWOW64\atiapfxx.blb
2020-08-28 21:19 - 2017-10-14 01:54 - 000798936 _____ C:\windows\system32\atiapfxx.blb
2020-08-28 21:19 - 2017-10-14 01:54 - 000788392 _____ (AMD) C:\windows\system32\atieclxx.exe
2020-08-28 21:19 - 2017-10-14 01:54 - 000704936 _____ (Advanced Micro Devices, Inc.) C:\windows\SysWOW64\amdlvr32.dll
2020-08-28 21:19 - 2017-10-14 01:54 - 000587640 _____ C:\windows\system32\amdmiracast.dll
2020-08-28 21:19 - 2017-10-14 01:54 - 000561576 _____ (AMD) C:\windows\system32\atiesrxx.exe
2020-08-28 21:19 - 2017-10-14 01:54 - 000523176 _____ C:\windows\system32\amdgfxinfo64.dll
2020-08-28 21:19 - 2017-10-14 01:54 - 000492448 _____ C:\windows\system32\atieah64.exe
2020-08-28 21:19 - 2017-10-14 01:54 - 000476072 _____ (Advanced Micro Devices, Inc.) C:\windows\system32\atidemgy.dll
2020-08-28 21:19 - 2017-10-14 01:54 - 000419752 _____ (Advanced Micro Devices, Inc.) C:\windows\system32\atiapfxx.exe
2020-08-28 21:19 - 2017-10-14 01:54 - 000369056 _____ C:\windows\SysWOW64\amdgfxinfo32.dll
2020-08-28 21:19 - 2017-10-14 01:54 - 000342952 _____ C:\windows\SysWOW64\atieah32.exe
2020-08-28 21:19 - 2017-10-14 01:54 - 000253864 _____ (Advanced Micro Devices, Inc. ) C:\windows\system32\atig6txx.dll
2020-08-28 21:19 - 2017-10-14 01:54 - 000212384 _____ (Advanced Micro Devices, Inc. ) C:\windows\SysWOW64\atigktxx.dll
2020-08-28 21:19 - 2017-10-14 01:54 - 000206776 _____ (Advanced Micro Devices, Inc.) C:\windows\system32\amdhcp64.dll
2020-08-28 21:19 - 2017-10-14 01:54 - 000174680 _____ (Advanced Micro Devices, Inc.) C:\windows\SysWOW64\amdhcp32.dll
2020-08-28 21:19 - 2017-10-14 01:54 - 000165440 _____ (Advanced Micro Devices, Inc. ) C:\windows\system32\aticfx64.dll
2020-08-28 21:19 - 2017-10-14 01:54 - 000157176 _____ (Advanced Micro Devices, Inc. ) C:\windows\SysWOW64\aticfx32.dll
2020-08-28 21:19 - 2017-10-14 01:54 - 000149208 _____ (Advanced Micro Devices, Inc. ) C:\windows\system32\amdave64.dll
2020-08-28 21:19 - 2017-10-14 01:54 - 000141336 _____ (Advanced Micro Devices, Inc. ) C:\windows\system32\atimpc64.dll
2020-08-28 21:19 - 2017-10-14 01:54 - 000141336 _____ (Advanced Micro Devices, Inc. ) C:\windows\system32\amdpcom64.dll
2020-08-28 21:19 - 2017-10-14 01:54 - 000131496 _____ (AMD) C:\windows\system32\atimuixx.dll
2020-08-28 21:19 - 2017-10-14 01:54 - 000129960 _____ (Khronos Group) C:\windows\system32\OpenCL.dll
2020-08-28 21:19 - 2017-10-14 01:54 - 000125912 _____ (Advanced Micro Devices, Inc. ) C:\windows\SysWOW64\amdave32.dll
2020-08-28 21:19 - 2017-10-14 01:54 - 000123816 _____ C:\windows\system32\atidxx64.dll
2020-08-28 21:19 - 2017-10-14 01:54 - 000121248 _____ (Advanced Micro Devices, Inc. ) C:\windows\system32\amdxc64.dll
2020-08-28 21:19 - 2017-10-14 01:54 - 000120736 _____ (Khronos Group) C:\windows\SysWOW64\OpenCL.dll
2020-08-28 21:19 - 2017-10-14 01:54 - 000112216 _____ (Advanced Micro Devices, Inc. ) C:\windows\SysWOW64\atimpc32.dll
2020-08-28 21:19 - 2017-10-14 01:54 - 000112216 _____ (Advanced Micro Devices, Inc. ) C:\windows\SysWOW64\amdpcom32.dll
2020-08-28 21:19 - 2017-10-14 01:54 - 000110496 _____ C:\windows\SysWOW64\atidxx32.dll
2020-08-28 21:19 - 2017-10-14 01:54 - 000107944 _____ (Advanced Micro Devices, Inc. ) C:\windows\SysWOW64\amdxc32.dll
2020-08-28 21:19 - 2017-10-14 01:54 - 000100256 _____ (Advanced Micro Devices, Inc. ) C:\windows\system32\amdmcl64.dll
2020-08-28 21:19 - 2017-10-14 01:54 - 000083872 _____ (Advanced Micro Devices, Inc. ) C:\windows\SysWOW64\amdmcl32.dll
2020-08-28 21:19 - 2017-10-14 01:54 - 000077736 _____ (Advanced Micro Devices, Inc.) C:\windows\system32\ati2erec.dll
2020-08-28 21:19 - 2017-10-14 01:54 - 000020580 _____ C:\windows\system32\AMDKernelEvents.man
2020-08-28 21:19 - 2017-10-14 01:54 - 000000144 _____ C:\windows\SysWOW64\amd-vulkan32.json
2020-08-28 21:19 - 2017-10-14 01:54 - 000000144 _____ C:\windows\system32\amd-vulkan64.json
2020-08-28 21:18 - 2020-08-28 21:24 - 000000000 ____D C:\Program Files (x86)\Realtek
2020-08-28 21:18 - 2020-08-28 21:19 - 000000000 ___HD C:\Program Files (x86)\Temp
2020-08-28 21:18 - 2017-10-21 05:00 - 072520712 _____ (Realtek Semiconductor Corp.) C:\windows\system32\RCoRes64.dat
2020-08-28 21:18 - 2017-10-21 05:00 - 012261649 _____ C:\windows\system32\Drivers\RTAIODAT.DAT
2020-08-28 21:18 - 2017-10-21 05:00 - 005721088 _____ (Realtek Semiconductor Corp.) C:\windows\system32\Drivers\RTKVHD64.sys
2020-08-28 21:18 - 2017-10-21 05:00 - 003677184 _____ (Realtek Semiconductor Corp.) C:\windows\system32\RTSnMg64.cpl
2020-08-28 21:18 - 2017-10-21 05:00 - 003503040 _____ (Realtek Semiconductor Corp.) C:\windows\system32\RtkApi64.dll
2020-08-28 21:18 - 2017-10-21 05:00 - 003498400 _____ (Realtek Semiconductor Corp.) C:\windows\system32\RltkAPO64.dll
2020-08-28 21:18 - 2017-10-21 05:00 - 003410832 _____ (DTS, Inc.) C:\windows\system32\slcnt64.dll
2020-08-28 21:18 - 2017-10-21 05:00 - 003205120 _____ (Realtek Semiconductor Corp.) C:\windows\system32\RtPgEx64.dll
2020-08-28 21:18 - 2017-10-21 05:00 - 003122648 _____ (DTS, Inc.) C:\windows\system32\sltech64.dll
2020-08-28 21:18 - 2017-10-21 05:00 - 002209792 _____ (Realtek Semiconductor Corp.) C:\windows\system32\RCoInstII64.dll
2020-08-28 21:18 - 2017-10-21 05:00 - 001435136 _____ (Synopsys, Inc.) C:\windows\system32\SRRPTR64.dll
2020-08-28 21:18 - 2017-10-21 05:00 - 001353272 _____ (Realtek Semiconductor Corp.) C:\windows\system32\RTCOM64.dll
2020-08-28 21:18 - 2017-10-21 05:00 - 001015864 _____ (Sound Research, Corp.) C:\windows\system32\SEHDHF64.dll
2020-08-28 21:18 - 2017-10-21 05:00 - 000984904 _____ (DTS, Inc.) C:\windows\system32\sl3apo64.dll
2020-08-28 21:18 - 2017-10-21 05:00 - 000876400 _____ (Sound Research, Corp.) C:\windows\SysWOW64\SEHDHF32.dll
2020-08-28 21:18 - 2017-10-21 05:00 - 000867152 _____ (Sound Research, Corp.) C:\windows\system32\SECOMN64.dll
2020-08-28 21:18 - 2017-10-21 05:00 - 000865096 _____ (Sound Research, Corp.) C:\windows\system32\SEHDRA64.dll
2020-08-28 21:18 - 2017-10-21 05:00 - 000736936 _____ (Sound Research, Corp.) C:\windows\SysWOW64\SECOMN32.dll
2020-08-28 21:18 - 2017-10-21 05:00 - 000691672 _____ (Realtek Semiconductor Corp.) C:\windows\system32\RtDataProc64.dll
2020-08-28 21:18 - 2017-10-21 05:00 - 000532376 _____ (SRS Labs, Inc.) C:\windows\system32\SRSTSX64.dll
2020-08-28 21:18 - 2017-10-21 05:00 - 000525256 _____ (Sound Research, Corp.) C:\windows\system32\SEAPO64.dll
2020-08-28 21:18 - 2017-10-21 05:00 - 000467152 _____ (Synopsys, Inc.) C:\windows\system32\SRAPO64.dll
2020-08-28 21:18 - 2017-10-21 05:00 - 000387304 _____ (Dolby Laboratories, Inc.) C:\windows\system32\RTEEP64A.dll
2020-08-28 21:18 - 2017-10-21 05:00 - 000381408 _____ (Synopsys, Inc.) C:\windows\system32\SRCOM64.dll
2020-08-28 21:18 - 2017-10-21 05:00 - 000343696 _____ (Realtek Semiconductor Corp.) C:\windows\system32\RtlCPAPI64.dll
2020-08-28 21:18 - 2017-10-21 05:00 - 000341144 _____ (Synopsys, Inc.) C:\windows\SysWOW64\SRCOM.dll
2020-08-28 21:18 - 2017-10-21 05:00 - 000341144 _____ (Synopsys, Inc.) C:\windows\system32\SRCOM.dll
2020-08-28 21:18 - 2017-10-21 05:00 - 000321712 _____ (Dolby Laboratories, Inc.) C:\windows\system32\RP3DHT64.dll
2020-08-28 21:18 - 2017-10-21 05:00 - 000321712 _____ (Dolby Laboratories, Inc.) C:\windows\system32\RP3DAA64.dll
2020-08-28 21:18 - 2017-10-21 05:00 - 000258856 _____ (TODO: <Company name>) C:\windows\system32\slprp64.dll
2020-08-28 21:18 - 2017-10-21 05:00 - 000214824 _____ (Dolby Laboratories, Inc.) C:\windows\system32\RTEED64A.dll
2020-08-28 21:18 - 2017-10-21 05:00 - 000192976 _____ (Realtek Semiconductor Corp.) C:\windows\system32\RtkCfg64.dll
2020-08-28 21:18 - 2017-10-21 05:00 - 000166200 _____ (SRS Labs, Inc.) C:\windows\system32\SRSWOW64.dll
2020-08-28 21:18 - 2017-10-21 05:00 - 000110976 _____ (Dolby Laboratories, Inc.) C:\windows\system32\RTEEL64A.dll
2020-08-28 21:18 - 2017-10-21 05:00 - 000088336 _____ (Dolby Laboratories, Inc.) C:\windows\system32\RTEEG64A.dll
2020-08-28 21:18 - 2017-10-21 05:00 - 000023688 _____ (Realtek Semiconductor Corp.) C:\windows\system32\RtkCoLDR64.dll
2020-08-28 21:18 - 2017-10-21 04:59 - 002839520 _____ (Realtek Semiconductor Corp.) C:\windows\RtlExUpd.dll
2020-08-28 21:18 - 2017-10-21 04:59 - 001616680 _____ (Conexant Systems Inc.) C:\windows\system32\CX64APO.dll
2020-08-28 21:18 - 2017-10-21 04:59 - 001529128 _____ (Conexant Systems Inc.) C:\windows\system32\CX64Proxy.dll
2020-08-28 21:18 - 2017-10-21 04:59 - 000467136 _____ (Conexant Systems, Inc.) C:\windows\system32\CAF64APO2.dll
2020-08-28 21:18 - 2017-10-21 04:59 - 000122312 _____ (Real Sound Lab SIA) C:\windows\system32\CONEQMSAPOGUILibrary.dll
2020-08-28 21:18 - 2017-10-21 04:59 - 000112488 _____ (Conexant Systems, Inc.) C:\windows\system32\Caf64api.dll
2020-08-28 21:18 - 2017-10-21 04:59 - 000005604 _____ C:\windows\system32\cxapo.lncs
2020-08-28 21:18 - 2017-10-21 04:59 - 000000864 _____ C:\windows\system32\cxapo.prop

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-08-29 17:56 - 2017-09-29 15:46 - 000000000 ____D C:\windows\DeliveryOptimization
2020-08-29 17:56 - 2017-09-29 15:44 - 000000000 ____D C:\windows\INF
2020-08-29 16:18 - 2017-10-06 01:37 - 000000006 ____H C:\windows\Tasks\SA.DAT
2020-08-29 16:17 - 2017-09-29 10:45 - 000524288 _____ C:\windows\system32\config\BBI
2020-08-29 16:05 - 2017-09-29 15:37 - 000000000 ____D C:\windows\CbsTemp
2020-08-29 15:53 - 2017-10-06 01:37 - 000000000 ____D C:\windows\system32\SleepStudy
2020-08-29 14:23 - 2017-09-29 15:46 - 000000000 ___HD C:\Program Files\WindowsApps
2020-08-29 14:22 - 2017-09-29 15:46 - 000000000 ____D C:\windows\AppReadiness
2020-08-29 14:14 - 2017-11-11 04:33 - 000000000 ____D C:\Program Files (x86)\HP
2020-08-29 14:12 - 2017-09-29 15:46 - 000000000 ___HD C:\windows\ELAMBKUP
2020-08-29 14:04 - 2017-11-11 04:33 - 000000000 ____D C:\ProgramData\Hewlett-Packard
2020-08-29 14:03 - 2017-11-11 04:34 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
2020-08-29 14:03 - 2017-11-11 04:33 - 000000000 ____D C:\windows\system32\Tasks\Hewlett-Packard
2020-08-29 14:01 - 2017-11-11 04:33 - 000000000 ____D C:\Program Files\HP
2020-08-29 14:01 - 2017-11-11 04:31 - 000000000 ____D C:\ProgramData\Package Cache
2020-08-29 13:59 - 2017-11-11 04:37 - 000000000 ____D C:\Program Files\HPCommRecovery
2020-08-29 13:58 - 2017-11-11 04:33 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2020-08-29 13:45 - 2017-11-11 04:33 - 000000000 ____D C:\ProgramData\HP
2020-08-29 13:31 - 2017-10-06 02:33 - 000000000 ____D C:\windows\Panther
2020-08-29 13:23 - 2017-11-11 13:06 - 000932492 _____ C:\windows\system32\perfh005.dat
2020-08-29 13:23 - 2017-11-11 13:06 - 000211184 _____ C:\windows\system32\perfc005.dat
2020-08-29 13:23 - 2017-10-06 01:40 - 002217984 _____ C:\windows\system32\PerfStringBackup.INI
2020-08-29 13:06 - 2017-09-29 15:46 - 000000000 ____D C:\windows\system32\WinBioDatabase
2020-08-29 13:03 - 2017-09-29 15:46 - 000000000 ____D C:\windows\appcompat
2020-08-29 08:24 - 2017-11-11 12:54 - 000000000 ____D C:\SWSetup
2020-08-29 06:00 - 2017-09-29 15:46 - 000000000 ____D C:\windows\SystemApps
2020-08-29 05:59 - 2017-11-11 13:16 - 000000012 _____ C:\windows\CSUP.txt
2020-08-29 05:55 - 2017-09-29 15:46 - 000028672 _____ C:\windows\system32\config\BCD-Template
2020-08-29 01:23 - 2017-10-06 01:38 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-08-29 01:23 - 2017-09-19 23:13 - 000000000 ___HD C:\SYSTEM.SAV
2020-08-28 22:54 - 2017-10-06 01:38 - 000002770 _____ C:\windows\system32\Tasks\OneDrive Standalone Update Task v2
2020-08-28 22:53 - 2017-09-29 15:46 - 000000000 ____D C:\Program Files\windows nt
2020-08-28 22:40 - 2017-09-29 10:45 - 000000000 ____D C:\windows\system32\Sysprep
2020-08-28 22:37 - 2017-11-11 04:34 - 000000000 ___RD C:\Program Files\Online Services
2020-08-28 22:37 - 2017-11-11 04:34 - 000000000 ___RD C:\Program Files (x86)\Online Services
2020-08-28 22:08 - 2017-09-29 10:45 - 000032768 _____ C:\windows\system32\config\ELAM
2020-08-28 21:56 - 2017-09-29 15:46 - 000000000 ____D C:\windows\Registration
2020-08-28 21:49 - 2017-10-06 01:37 - 000308752 _____ C:\windows\system32\FNTCACHE.DAT
2020-08-28 21:39 - 2017-09-29 15:46 - 000000124 _____ C:\windows\win.ini
2020-08-28 21:18 - 2017-11-01 01:51 - 000000000 ___HD C:\hp

==================== Files in the root of some directories ========

2020-08-29 16:20 - 2020-08-29 16:20 - 001388448 _____ () C:\Users\Public\ASR.dat

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Re: Kontrola, velmi pomalý ntb

Napsal: 29 srp 2020 17:53
od Rudy
Děkuji. Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {7F6DD055-09CA-4796-ACF8-E322412BA333} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2020-08-29] (Google Inc -> Google Inc.)
Task: {CD3B39AD-5170-41BC-833C-DCF027FF8F07} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2020-08-29] (Google Inc -> Google Inc.)
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
C:\windows\system32\Tasks\GoogleUpdateTaskMachineUA
C:\windows\system32\Tasks\GoogleUpdateTaskMachineCore

EmptyTemp:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Re: Kontrola, velmi pomalý ntb

Napsal: 29 srp 2020 18:26
od Pajas92
Fix result of Farbar Recovery Scan Tool (x64) Version: 29-08-2020
Ran by Míra (29-08-2020 19:22:15) Run:1
Running from C:\Users\Míra\Desktop
Loaded Profiles: Míra
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {7F6DD055-09CA-4796-ACF8-E322412BA333} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2020-08-29] (Google Inc -> Google Inc.)
Task: {CD3B39AD-5170-41BC-833C-DCF027FF8F07} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2020-08-29] (Google Inc -> Google Inc.)
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
C:\windows\system32\Tasks\GoogleUpdateTaskMachineUA
C:\windows\system32\Tasks\GoogleUpdateTaskMachineCore

EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{7F6DD055-09CA-4796-ACF8-E322412BA333}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7F6DD055-09CA-4796-ACF8-E322412BA333}" => removed successfully
C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CD3B39AD-5170-41BC-833C-DCF027FF8F07}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CD3B39AD-5170-41BC-833C-DCF027FF8F07}" => removed successfully
C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => value restored successfully
"C:\windows\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\windows\system32\Tasks\GoogleUpdateTaskMachineCore" => not found

=========== EmptyTemp: ==========

BITS transfer queue => 6053888 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 20336952 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 2483622 B
Edge => 46930557 B
Chrome => 15952382 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 35084 B
NetworkService => 39974 B
Míra => 152742156 B

RecycleBin => 109626 B
EmptyTemp: => 233.3 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 19:22:43 ====

Re: Kontrola, velmi pomalý ntb

Napsal: 29 srp 2020 18:32
od Pajas92
správce.PNG
správce.PNG (160.57 KiB) Zobrazeno 335 x
Takhle vypadá správce úloh při jednom otevřeném okně Chrome. Podobné je to i u jiných spuštěných aplikací.

Re: Kontrola, velmi pomalý ntb

Napsal: 29 srp 2020 18:59
od Rudy
Smazáno. Ještě vyčistíme prohlížeče. Spusťte postupně tyto utility:

1. Stahnete Zoek.exe http://download.bleepingcomputer.com/smeenk/zoek.exe a ulozte jej na plochu

Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
Do okna vlozte skript nize




autoclean;
resethosts;
emptyclsid;
IEdefaults;
FFdefaults;
CHRdefaults;
emptyIEcache;
emptyFFcache;
emptyCHRcache;
emptyalltemp;
emptyflash;
emptyjava;
emptyrecycle.bin;





Nasledne kliknete na Run Script
PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem.

a

2. Junkware removal tool: https://www.stahuj.cz/utility_a_ostatni ... oval-tool/
•Ulozte nejlepe na plochu
•Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
•Probehne vytvoreni zalohy a nasledne prohledavani
•Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte.

Re: Kontrola, velmi pomalý ntb

Napsal: 29 srp 2020 21:34
od Pajas92
Zoek.exe v5.0.0.2 Updated 03-May-2018(Online Version)
Tool run by Mˇra on 29.08.2020 at 21:09:25,43.
Microsoft Windows 10 Home 10.0.16299 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\MRA~1\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

29.08.2020 21:10:55 Zoek.exe System Restore Point Created Successfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

# localhost name resolution is handled within DNS itself.
127.0.0.1 localhost
::1 localhost

==== Empty Folders Check ======================

C:\PROGRA~3\SoftwareDistribution deleted successfully
C:\Users\MRA~1\AppData\Local\ConnectedDevicesPlatform deleted successfully
C:\Users\MRA~1\AppData\Local\DBG deleted successfully
C:\Users\MRA~1\AppData\Local\PlaceholderTileLogoFolder deleted successfully
C:\windows\serviceprofiles\Localservice\AppData\Local\Packages deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-2391460587-3527569240-2793632488-1001\Software\Microsoft\Internet Explorer\SearchScopes\{97C49150-339E-4C79-BA96-EDD20BB8A6CF} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{97C49150-339E-4C79-BA96-EDD20BB8A6CF} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{97C49150-339E-4C79-BA96-EDD20BB8A6CF} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== Deleting Files \ Folders ======================

C:\PROGRA~3\Package Cache deleted

==== Orphaned Tasks deleted from Registry ======================

Hewlett-Packard\HP Active Health deleted

==== Chromium Look ======================

Chrome Media Router - MRA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://hp17win10.msn.com/?pc=HCTE"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://hp17win10.msn.com/?pc=HCTE"

==== All HKLM and HKCU SearchScopes ======================

HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTer ... TR&pc=HCTE
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKCU\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms}
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTer ... TR&pc=HCTE

==== Reset Google Chrome ======================

C:\Users\MRA~1\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\MRA~1\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\MRA~1\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\MRA~1\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset successfully

==== Empty IE Cache ======================

C:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\MRA~1\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\MRA~1\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Edge Cache ======================

Edge Cache Emptied Successfully

==== Empty Chrome Cache ======================

C:\Users\MRA~1\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

No Flash Cache Found

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=49 folders=57 57691371 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\MRA~1\AppData\Local\Temp will be emptied at reboot
C:\windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\windows\Temp successfully emptied
C:\Users\MRA~1\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on 29.08.2020 at 22:28:53,96 ======================

Re: Kontrola, velmi pomalý ntb

Napsal: 29 srp 2020 21:42
od Pajas92
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.4 (07.09.2017)
Operating System: Windows 10 Home x64
Ran by Mˇra (Administrator) on 29.08.2020 at 22:34:59,55
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 0




Registry: 0





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 29.08.2020 at 22:39:46,62
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Re: Kontrola, velmi pomalý ntb

Napsal: 30 srp 2020 10:10
od Rudy
OK. Změnilo se něco nyní?

Re: Kontrola, velmi pomalý ntb

Napsal: 31 srp 2020 13:04
od Pajas92
Práci mimo windows (aplikace třetích stran) jsou rychlejší.
Při práci s Windows (vyhledávání, správce úloh, průzkumník,..) stále je to pomalejší.
Zkusím na tom pracovat, zda se to neustálí po aktualizacích.
Děkuji za pomoc.

Re: Kontrola, velmi pomalý ntb

Napsal: 31 srp 2020 13:13
od Rudy
Můžete ještě zkusit defragmentovat disk. Nemáte zač! :)