Právě je 24 čer 2019 14:01

Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Všechny časy jsou v UTC + 1 hodina


Pravidla fóra


Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní: viewtopic.php?f=12&t=123975 . Děkujeme za pochopení.



Odeslat nové téma Toto téma je zamknuté. Nemůžete posílat nové příspěvky ani odpovídat na starší.  [ Příspěvků: 10 ] 
Autor Zpráva
PříspěvekNapsal: 14 dub 2019 13:44 
Offline
Návštěvník
Návštěvník

Registrován: 14 dub 2019 13:07
Příspěvky: 12
Zdravím mám problém s hláškou : Při spouštění souboru winscomrssv.dll došlo k problému. Uvedený modul nebyl nalezen. Stahoval jsem nějaký program na animace jenže obsahoval i nechtěný balast na víc, tak jsem to vše smazal. Jenže pak se začala objevovat tahle chyba a PC nelze uložit do režimu spánku. Přikládám text FRST a Addition jako přílohu. (PC používá celá rodina)
Díky za pomoc.

FRST
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 17.03.2019
Ran by Viktor (administrator) on GRONUS (14-04-2019 14:18:15)
Running from A:\Users\Viktor\Downloads
Loaded Profiles: Viktor (Available Profiles: Viktor)
Platform: Windows 10 Home Version 1803 17134.523 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files (x86)\Comodo\Internet Security Essentials\isesrv.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Comodo Security Solutions, Inc. -> Comodo) C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Malwarebytes Corporation -> Malwarebytes) A:\Users\Viktor\Downloads\adwcleaner_7.3.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.38.138.0_x64__kzf8qxf38zg5c\SkypeApp.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.38.138.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19011.11311.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.7\GoogleCrashHandler.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.7\GoogleCrashHandler64.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Microsoft Corporation) [File not signed] C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.38.138.0_x64__kzf8qxf38zg5c\SkypeBridge\SkypeBridge.exe
(Valve -> Valve Corporation) A:\Program Files (x86)\Steam\Steam.exe
(Google Inc -> ) C:\Program Files\Google\Drive\googledrivesync.exe
(Google Inc -> ) C:\Program Files\Google\Drive\googledrivesync.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
() [File not signed] C:\Program Files (x86)\Gaming Keyboard\Monitor.EXE
(Valve -> Valve Corporation) A:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
() [File not signed] C:\Program Files (x86)\Gaming Keyboard\OSD.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve -> Valve Corporation) A:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) A:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) A:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) A:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\rempl\sedsvc.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(win.rar GmbH -> Alexander Roshal) C:\Program Files\WinRAR\WinRAR.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [193024 2019-02-13] (Microsoft Corporation) [File not signed]
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9197568 2017-01-11] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [winlogui] => C:\WINDOWS\system32\winlogui.exe [1803776 2019-04-03] (Microsoft Corporation) [File not signed]
HKLM-x32\...\Run: [VICTORY Gaming Keyboard] => C:\Program Files (x86)\Gaming Keyboard\Monitor.exe [270336 2013-04-09] () [File not signed]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [653648 2018-06-27] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [IseUI] => C:\Program Files (x86)\COMODO\Internet Security Essentials\vkise.exe [4187856 2019-01-29] (Comodo Security Solutions, Inc. -> COMODO)
HKLM\...\Policies\Explorer: [HideSCAHealth] 1
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-3348608579-3824376785-1914751379-1001\...\Run: [Steam] => "A:\Program Files (x86)\Steam\steam.exe" -silent
HKU\S-1-5-21-3348608579-3824376785-1914751379-1001\...\Run: [Gaijin.Net Agent] => C:\Users\Viktor\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [2125384 2018-10-27] (Gaijin Network LTD -> Gaijin Entertainment)
HKU\S-1-5-21-3348608579-3824376785-1914751379-1001\...\Run: [Discord] => C:\Users\Viktor\AppData\Local\Discord\app-0.0.301\Discord.exe [57816920 2018-04-30] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-3348608579-3824376785-1914751379-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [19645800 2019-01-10] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3348608579-3824376785-1914751379-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [46504696 2018-12-07] (Google Inc -> )
HKLM\...\Drivers32: [vidc.VP60] => C:\WINDOWS\SysWOW64\vp6vfw.dll [447752 2014-09-16] (Electronic Arts -> On2.com)
HKLM\...\Drivers32: [vidc.VP61] => C:\WINDOWS\SysWOW64\vp6vfw.dll [447752 2014-09-16] (Electronic Arts -> On2.com)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\73.0.3683.103\Installer\chrmstp.exe [2019-04-11] (Google LLC -> Google Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{7C88A368-4F75-4C37-9469-2391468D556A}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-3348608579-3824376785-1914751379-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
BHO: No Name -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> No File
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre-10.0.2\bin\jp2ssv.dll [2018-10-10] (Oracle America, Inc. -> Oracle Corporation)
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - No File

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=13.0.2.0 -> C:\Program Files\Java\jre-10.0.2\bin\dtplugin\npDeployJava1.dll [2018-10-10] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=13.0.2.0 -> C:\Program Files\Java\jre-10.0.2\bin\plugin2\npjp2.dll [2018-10-10] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll [2017-07-14] (Adobe Systems Incorporated -> )
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [No File]
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-07-30] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-07-30] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-03-28] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-03-28] (Google Inc -> Google LLC)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-11-29] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-11-29] (VideoLAN -> VideoLAN)

Chrome:
=======
CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default [2019-04-14]
CHR Extension: (Prezentace) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
CHR Extension: (Dokumenty) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Disk Google) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-05-19]
CHR Extension: (Seznam doplněk - Email) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2019-04-14]
CHR Extension: (YouTube) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-05-19]
CHR Extension: (Tabulky) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
CHR Extension: (Dokumenty Google offline) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-22]
CHR Extension: (AdBlock) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-04-13]
CHR Extension: (Discord Screen Sharing) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\lcbhdgefieegnkbopmgklhlpjjdgmbog [2018-02-10]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2019-02-26]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-04]
CHR Extension: (Enhanced Steam) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\okadibdjfemgnhjiembecghcbfknbfhg [2019-02-06]
CHR Extension: (Seznam doplněk - Esko) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2019-04-14]
CHR Extension: (Gmail) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-05-19]
CHR Extension: (Chrome Media Router) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-04-02]
CHR Extension: (Unmask Password - zobrazit hesla) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\pmmeddaccflimcipblojlnfandenhicb [2017-07-01]
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx <not found>
CHR HKU\S-1-5-21-3348608579-3824376785-1914751379-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bgjpfhpjcgdppjbgnpnjllokbmcdllig] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-3348608579-3824376785-1914751379-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-3348608579-3824376785-1914751379-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8361960 2019-01-25] (BattlEye Innovations e.K. -> )
R2 DragonUpdater; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2942224 2019-03-28] (Comodo Security Solutions, Inc. -> Comodo)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [779392 2019-01-24] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 isesrv; C:\Program Files (x86)\COMODO\Internet Security Essentials\isesrv.exe [1044176 2019-01-29] (Comodo Security Solutions, Inc. -> COMODO)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782320 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782320 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1901.7-0\NisSrv.exe [4096976 2019-01-24] (Microsoft Corporation -> Microsoft Corporation)
S3 aswbIDSAgent; "C:\Program Files\AVAST Software\Avast\aswidsagent.exe" [X]
S2 avast! Antivirus; "C:\Program Files\AVAST Software\Avast\AvastSvc.exe" [X]
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvTelemetry\plugins" -r

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37104 2019-02-06] (AVAST Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [205400 2019-02-06] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [225680 2019-02-06] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [196072 2019-02-06] (AVAST Software s.r.o. -> AVAST Software)
R0 aswblog; C:\WINDOWS\System32\drivers\aswblog.sys [320696 2019-02-06] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [57960 2019-02-06] (AVAST Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [15488 2019-02-06] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [249456 2019-02-06] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42288 2019-02-06] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [167304 2019-02-06] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [112312 2019-02-06] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [87944 2019-02-06] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [1034432 2019-02-06] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [474456 2019-02-06] (AVAST Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [216784 2019-02-06] (AVAST Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [379952 2019-02-06] (AVAST Software s.r.o. -> AVAST Software)
R1 isedrv; C:\WINDOWS\system32\drivers\isedrv.sys [63256 2018-08-30] (Comodo Security Solutions, Inc. -> COMODO)
R1 ISODrive; C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [115448 2013-11-21] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_52ac7eb8f32780d5\nvlddmkm.sys [17211376 2018-08-01] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-02-26] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [70024 2018-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [66792 2018-10-03] (NVIDIA Corporation -> NVIDIA Corporation)
S3 qcfilter; C:\WINDOWS\System32\drivers\qcusbfilter.sys [49208 2017-03-15] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated)
S3 qcusbnet; C:\WINDOWS\system32\DRIVERS\qcusbnet.sys [428600 2017-03-15] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated)
S3 qcusbser; C:\WINDOWS\system32\DRIVERS\qcusbser.sys [254520 2017-03-15] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [604160 2018-04-12] (Microsoft Windows -> Realtek )
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46488 2019-01-24] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [343032 2019-01-24] (Microsoft Windows -> Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [159936 2016-08-16] (NGO -> MBB)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [63480 2019-01-24] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-04-14 14:16 - 2019-04-14 14:18 - 000000000 ____D C:\FRST
2019-04-14 13:55 - 2019-04-14 13:57 - 000000000 ____D C:\AdwCleaner
2019-04-14 02:02 - 2019-04-14 02:02 - 000000000 ___DC C:\Users\Viktor\AppData\Local\Tempzxpsignf3ccd56604a6f1ce
2019-04-14 01:57 - 2019-04-14 01:57 - 000000000 ___DC C:\Users\Viktor\AppData\Local\Tempzxpsign689c36f6b586d2e3
2019-04-14 01:55 - 2019-04-14 01:55 - 000000000 ___DC C:\Users\Viktor\AppData\Local\Tempzxpsign003510523f393a63
2019-04-14 01:11 - 2019-04-14 01:11 - 000000000 ___DC C:\Users\Viktor\AppData\Local\Tempzxpsignd844b315cfb03a40
2019-04-14 01:03 - 2019-04-14 01:03 - 000000000 ___DC C:\Users\Viktor\AppData\Local\Tempzxpsignd05436b799aa4477
2019-04-14 00:38 - 2019-04-14 00:38 - 000000000 ___DC C:\Users\Viktor\AppData\Local\Tempzxpsign124104dc2ff97511
2019-04-14 00:37 - 2019-04-14 00:37 - 000000000 ___DC C:\Users\Viktor\AppData\Local\Tempzxpsignd492c9d4e8f9042a
2019-04-14 00:37 - 2019-04-14 00:37 - 000000000 ___DC C:\Users\Viktor\AppData\Local\Tempzxpsign325f5095b18056f1
2019-04-14 00:37 - 2019-04-14 00:37 - 000000000 ___DC C:\Users\Viktor\AppData\Local\Tempzxpsign23630efe59e689da
2019-04-13 13:54 - 2019-04-13 13:54 - 000001324 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Registry Repair.lnk
2019-04-13 13:54 - 2019-04-13 13:54 - 000001312 _____ C:\Users\Public\Desktop\Registry Repair.lnk
2019-04-13 13:54 - 2019-04-13 13:54 - 000000000 ___DC C:\Users\Viktor\AppData\Roaming\GlarySoft
2019-04-13 13:54 - 2019-04-13 13:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glarysoft
2019-04-13 13:54 - 2019-04-13 13:54 - 000000000 ____D C:\Program Files (x86)\Glarysoft
2019-04-13 02:22 - 2019-04-13 02:22 - 000699824 ____C C:\Users\Viktor\Documents\cc_20190413_022209.reg
2019-04-13 02:19 - 2019-04-13 02:19 - 003210112 _____ C:\WINDOWS\system32\Drivers\fvstore.dat
2019-04-13 02:19 - 2019-04-13 02:19 - 000000000 ____D C:\ProgramData\Shared Space
2019-04-13 01:54 - 2019-04-13 01:54 - 000000000 ___DC C:\Users\Viktor\AppData\Local\Tempzxpsign8b87c090ef903010
2019-04-13 01:41 - 2019-04-13 01:41 - 000000000 ___DC C:\Users\Viktor\AppData\Local\Tempzxpsign8d24925776db14e9
2019-04-13 01:08 - 2019-04-13 01:08 - 000000000 ___DC C:\Users\Viktor\AppData\Local\Tempzxpsignf92f806b41f021f8
2019-04-13 01:05 - 2019-04-13 01:05 - 000000000 ___DC C:\Users\Viktor\AppData\Local\Tempzxpsign29f568f672d5b4a7
2019-04-13 00:29 - 2019-04-13 00:29 - 000000000 ___DC C:\Users\Viktor\AppData\Local\Tempzxpsignb32499e6640af6ef
2019-04-13 00:29 - 2019-04-13 00:29 - 000000000 ___DC C:\Users\Viktor\AppData\Local\Tempzxpsign346aec6a6a76ad2d
2019-04-13 00:25 - 2019-04-13 00:25 - 000000000 ___DC C:\Users\Viktor\AppData\Local\Tempzxpsign110e15a64e51cfae
2019-04-12 23:30 - 2019-04-13 02:20 - 000000000 ____D C:\WINDOWS\System32\Tasks\NCH Software
2019-04-12 23:29 - 2019-04-13 02:20 - 000000000 ____D C:\ProgramData\NCH Software
2019-04-12 23:29 - 2019-04-13 02:18 - 000000000 ___DC C:\Users\Viktor\AppData\Roaming\NCH Software
2019-04-12 22:13 - 2019-04-12 22:13 - 000000000 ___DC C:\Users\Viktor\AppData\Local\Tempzxpsignf7e51400cfa6fa7d
2019-04-12 15:23 - 2019-04-12 15:23 - 000000814 _____ C:\Users\Public\Desktop\Frostpunk.lnk
2019-04-12 15:23 - 2019-04-12 15:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Frostpunk [GOG.com]
2019-04-12 01:15 - 2019-04-12 01:15 - 000000000 ___DC C:\Users\Viktor\AppData\Local\Tempzxpsign0426d50f0d2e7d23
2019-04-12 00:52 - 2019-04-12 00:52 - 000000000 ___DC C:\Users\Viktor\AppData\Local\Tempzxpsign71dbd6bdf7a9f829
2019-04-11 23:49 - 2019-04-11 23:49 - 000000000 ___DC C:\Users\Viktor\AppData\Local\Tempzxpsign494651ddf307f466
2019-04-11 23:37 - 2019-04-11 23:40 - 000000000 ___DC C:\Users\Viktor\Desktop\svět po světě
2019-04-11 00:41 - 2019-04-11 00:41 - 000000000 ___DC C:\Users\Viktor\AppData\Local\Tempzxpsign084e453206e6c1f0
2019-04-11 00:38 - 2019-04-11 00:38 - 000000000 ___DC C:\Users\Viktor\AppData\Local\Tempzxpsignf06a5cd787eddea0
2019-04-11 00:38 - 2019-04-11 00:38 - 000000000 ___DC C:\Users\Viktor\AppData\Local\Tempzxpsign70793c8a3803f36f
2019-04-09 22:03 - 2019-04-09 22:03 - 000000782 ____C C:\Users\Viktor\Desktop\ЗапуститьAssassins Creed Odyssey.lnk
2019-04-08 20:04 - 2019-04-08 20:04 - 000001430 _____ C:\Users\Public\Desktop\Farming Simulator 19.lnk
2019-04-08 20:00 - 2019-04-08 20:00 - 000000000 ___DC C:\Users\Viktor\AppData\Local\AdvinstAnalytics
2019-04-08 13:24 - 2019-04-08 13:24 - 000000000 ___DC C:\Users\Viktor\AppData\Local\Targem
2019-04-08 12:17 - 2019-04-08 12:17 - 000000222 ____C C:\Users\Viktor\Desktop\Crossout.url
2019-04-08 12:17 - 2019-04-08 12:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crossout
2019-04-06 22:58 - 2019-04-06 22:58 - 000000000 ___DC C:\Users\Viktor\AppData\Roaming\launcher
2019-04-05 03:03 - 2019-04-05 03:03 - 000000000 ____C C:\Users\Viktor\Desktop\Nový textový dokument (3).txt
2019-04-03 13:29 - 2019-04-03 13:29 - 000000000 _____ C:\WINDOWS\System32\Tasks\CIS_{81EFDD93-DBBE-415B-BE6E-49B9664E3E82}
2019-04-03 02:09 - 2019-04-13 02:19 - 000000000 ___HD C:\VTRoot
2019-04-03 01:59 - 2019-04-03 01:59 - 001060864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc71.dll
2019-04-03 01:59 - 2019-04-03 01:59 - 000348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr71.dll
2019-04-03 01:58 - 2019-04-03 01:58 - 001803776 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogui.exe
2019-04-03 01:54 - 2019-04-03 13:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo
2019-04-03 01:54 - 2019-04-03 01:59 - 000000000 ____D C:\Program Files (x86)\Comodo
2019-04-03 01:54 - 2019-04-03 01:54 - 000002185 _____ C:\Users\Public\Desktop\Comodo Dragon.lnk
2019-04-03 01:54 - 2019-04-03 01:54 - 000000000 ___DC C:\Users\Viktor\AppData\Local\Comodo
2019-04-03 01:54 - 2019-01-29 10:42 - 000254440 _____ (COMODO) C:\WINDOWS\system32\iseguard64.dll
2019-04-03 01:54 - 2019-01-29 10:42 - 000205024 _____ (COMODO) C:\WINDOWS\SysWOW64\iseguard32.dll
2019-04-03 01:54 - 2018-08-30 00:55 - 000063256 _____ (COMODO) C:\WINDOWS\system32\Drivers\isedrv.sys
2019-04-03 01:52 - 2019-04-13 02:19 - 000000000 ____D C:\ProgramData\Comodo
2019-04-02 13:59 - 2019-04-02 13:59 - 000001059 _____ C:\Users\Public\Desktop\Shadow Tactics - Blades of the Shogun.lnk
2019-04-02 13:59 - 2019-04-02 13:59 - 000000000 ___DC C:\Users\Viktor\AppData\LocalLow\Daedalic Entertainment GmbH
2019-04-02 13:59 - 2019-04-02 13:59 - 000000000 ___DC C:\Users\Viktor\AppData\Local\Daedalic Entertainment GmbH
2019-04-02 13:59 - 2019-04-02 13:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Shadow Tactics - Blades of the Shogun [GOG.com]
2019-04-02 11:35 - 2019-04-02 11:35 - 000000895 _____ C:\Users\Public\Desktop\Project Hospital.lnk
2019-04-02 11:35 - 2019-04-02 11:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Project Hospital [GOG.com]
2019-04-01 16:02 - 2019-04-01 16:03 - 000000000 ___DC C:\Users\Viktor\Desktop\game
2019-04-01 01:52 - 2019-04-01 01:52 - 000000837 ____C C:\Users\Viktor\Desktop\Europa Universalis IV Golden Century.lnk
2019-04-01 01:42 - 2019-04-01 01:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Europa Universalis IV Golden Century
2019-03-29 17:43 - 2019-04-03 01:44 - 000000000 ___DC C:\Users\Viktor\AppData\Local\WeMod
2019-03-28 19:00 - 2019-03-28 19:00 - 000000000 ___DC C:\Users\Viktor\AppData\LocalLow\Squad
2019-03-27 18:46 - 2019-03-28 12:14 - 000000130 ____C C:\Users\Viktor\Desktop\CPY.ini
2019-03-22 23:37 - 2014-09-16 16:45 - 000447752 _____ (On2.com) C:\WINDOWS\SysWOW64\vp6vfw.dll
2019-03-22 23:36 - 2019-03-22 23:36 - 000000924 _____ C:\Users\Public\Desktop\The Sims 4.lnk
2019-03-22 00:30 - 2019-03-22 01:07 - 000000960 ____C C:\Users\Viktor\Desktop\The Sims 4 StrangerVille.lnk
2019-03-22 00:30 - 2019-03-22 00:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Sims 4 StrangerVille
2019-03-19 13:18 - 2019-03-19 13:18 - 000000787 ____C C:\Users\Viktor\Desktop\Bio Inc. Redemption.lnk
2019-03-19 13:18 - 2019-03-19 13:18 - 000000000 ___DC C:\Users\Viktor\AppData\Roaming\Bio Inc. Redemption_Uninstall
2019-03-19 13:18 - 2019-03-19 13:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Mechanics
2019-03-15 22:41 - 2019-03-15 22:41 - 000000222 ____C C:\Users\Viktor\Desktop\Workers & Resources Soviet Republic.url

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-04-14 14:07 - 2018-04-12 01:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-04-14 14:03 - 2018-05-14 17:13 - 001689050 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-04-14 14:03 - 2018-04-12 17:50 - 000715034 _____ C:\WINDOWS\system32\perfh005.dat
2019-04-14 14:03 - 2018-04-12 17:50 - 000144328 _____ C:\WINDOWS\system32\perfc005.dat
2019-04-14 14:03 - 2018-04-12 01:36 - 000000000 ___HD C:\WINDOWS\INF
2019-04-14 13:59 - 2017-05-19 16:48 - 000000000 ____D C:\ProgramData\NVIDIA
2019-04-14 13:58 - 2019-02-26 21:34 - 000000000 ___RD C:\Users\Viktor\Disk Google
2019-04-14 13:57 - 2018-05-14 17:10 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-04-14 13:57 - 2018-04-11 23:04 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-04-14 13:57 - 2018-02-02 10:31 - 000000000 ____D C:\ProgramData\BSD
2019-04-14 03:55 - 2017-09-19 21:34 - 000000000 ___DC C:\Users\Viktor\AppData\Roaming\uTorrent
2019-04-12 16:57 - 2018-05-14 17:04 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-04-12 15:23 - 2017-05-20 01:41 - 000000000 ____D C:\ProgramData\Package Cache
2019-04-11 15:29 - 2017-05-19 17:53 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-04-11 15:29 - 2017-05-19 17:53 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-04-11 00:41 - 2018-12-21 23:17 - 000000000 ___DC C:\Users\Viktor\Desktop\Nová složka
2019-04-08 20:04 - 2019-01-04 18:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Farming Simulator 19
2019-04-08 13:24 - 2018-07-14 21:08 - 000000000 ___DC C:\Users\Viktor\AppData\Roaming\EasyAntiCheat
2019-04-08 13:24 - 2017-05-21 00:34 - 000000000 ___DC C:\Users\Viktor\Documents\My Games
2019-04-08 12:17 - 2017-05-19 18:39 - 000000000 ___DC C:\Users\Viktor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2019-04-06 23:19 - 2017-05-22 19:25 - 000000000 ___DC C:\Users\Viktor\AppData\Roaming\TS3Client
2019-04-03 13:29 - 2019-02-26 21:34 - 000001965 ____C C:\Users\Viktor\Desktop\Disk Google.lnk
2019-04-03 13:29 - 2018-11-18 08:24 - 000002361 ____C C:\Users\Viktor\Desktop\WeMod.lnk
2019-04-03 13:29 - 2018-10-31 12:05 - 000001801 ____C C:\Users\Viktor\Desktop\ProjectHospital.exe – zástupce.lnk
2019-04-03 13:29 - 2018-10-27 01:14 - 000001621 ____C C:\Users\Viktor\Desktop\RimWorldWin64.exe – zástupce.lnk
2019-04-03 13:29 - 2018-05-21 21:23 - 000002441 ____C C:\Users\Viktor\Desktop\Discord.lnk
2019-04-03 13:29 - 2018-04-12 01:38 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2019-04-03 13:29 - 2017-09-19 21:34 - 000001196 ____C C:\Users\Viktor\Desktop\µTorrent.lnk
2019-04-03 13:29 - 2017-05-22 19:25 - 000001429 ____C C:\Users\Viktor\Desktop\TeamSpeak 3 Client.lnk
2019-04-03 01:58 - 2019-02-13 13:30 - 000000024 _____ C:\WINDOWS\system32\WinUpdates105.dat
2019-04-03 01:57 - 2017-05-19 16:48 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2019-04-03 01:56 - 2018-11-18 08:24 - 000000000 ___DC C:\Users\Viktor\AppData\Roaming\WeMod
2019-04-03 01:44 - 2018-11-18 08:24 - 000000000 ___DC C:\Users\Viktor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WeMod
2019-04-03 01:44 - 2018-05-21 21:23 - 000000000 ___DC C:\Users\Viktor\AppData\Local\SquirrelTemp
2019-04-01 18:02 - 2017-10-14 15:56 - 000000000 ___DC C:\Users\Viktor\AppData\Roaming\.minecraft
2019-04-01 16:02 - 2019-02-14 22:52 - 000000516 ____C C:\Users\Viktor\Desktop\updateLog.txt
2019-04-01 16:02 - 2018-09-08 19:37 - 000000843 ____C C:\Users\Viktor\Desktop\nativelog.txt
2019-04-01 16:02 - 2018-09-08 19:37 - 000000000 ___DC C:\Users\Viktor\Desktop\tmp
2019-04-01 16:02 - 2018-08-05 23:13 - 001526144 ____C (Mojang) C:\Users\Viktor\Desktop\Minecraft.exe
2019-04-01 01:53 - 2017-05-28 15:04 - 000000000 ___DC C:\Users\Viktor\Documents\Paradox Interactive
2019-04-01 01:26 - 2018-05-14 17:10 - 000003364 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3348608579-3824376785-1914751379-1001
2019-04-01 01:26 - 2018-05-14 17:06 - 000002404 ____C C:\Users\Viktor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-04-01 01:26 - 2017-12-28 17:28 - 000000000 ___RD C:\Users\Viktor\OneDrive
2019-03-29 17:46 - 2017-12-02 21:12 - 000000000 ___DC C:\Users\Viktor\AppData\Local\Ubisoft Game Launcher
2019-03-28 17:00 - 2018-05-15 23:22 - 000000000 ___DC C:\Users\Viktor\AppData\Local\D3DSCache
2019-03-28 12:14 - 2017-08-31 16:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\by.xatab
2019-03-28 01:39 - 2018-05-14 17:10 - 000003470 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2019-03-28 01:39 - 2018-05-14 17:10 - 000003346 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2019-03-27 22:17 - 2017-09-12 09:24 - 000000000 ___DC C:\Users\Viktor\Documents\CPY_SAVES
2019-03-27 18:57 - 2017-05-22 17:10 - 000000000 ___DC C:\Users\Viktor\AppData\Local\CrashDumps
2019-03-27 16:59 - 2019-02-06 14:55 - 000000000 ____D C:\Program Files\CCleaner
2019-03-20 23:12 - 2018-05-24 19:50 - 000003976 _____ C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-20 23:12 - 2018-05-24 19:50 - 000003940 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-20 23:12 - 2018-05-24 19:50 - 000003926 _____ C:\WINDOWS\System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-20 23:12 - 2018-05-24 19:50 - 000003926 _____ C:\WINDOWS\System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-20 23:12 - 2018-05-24 19:50 - 000003926 _____ C:\WINDOWS\System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-20 23:12 - 2018-05-14 17:10 - 000004308 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-20 23:12 - 2018-05-14 17:10 - 000004106 _____ C:\WINDOWS\System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-20 23:12 - 2018-05-14 17:10 - 000003894 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-20 23:12 - 2018-05-14 17:10 - 000003866 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-20 23:12 - 2018-05-14 17:10 - 000003858 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-20 23:12 - 2018-05-14 17:10 - 000003654 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-20 23:12 - 2017-05-20 01:43 - 000001447 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2019-03-20 23:12 - 2017-05-19 16:48 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2019-03-20 23:12 - 2017-05-19 16:48 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2019-03-19 13:19 - 2018-03-29 23:46 - 000000000 ___DC C:\Users\Viktor\AppData\LocalLow\DryGin Studios
2019-03-18 17:11 - 2018-05-24 19:50 - 002769904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2019-03-18 17:11 - 2018-05-24 19:50 - 002149872 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2019-03-18 17:11 - 2018-05-24 19:50 - 001323504 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvRtmpStreamer64.dll
2019-03-18 16:31 - 2017-05-20 01:43 - 000001951 _____ C:\WINDOWS\NvTelemetryContainerRecovery.bat

==================== Files in the root of some directories =======

2018-07-28 22:55 - 2018-07-28 22:55 - 000000112 ____C () C:\Users\Viktor\AppData\Roaming\Předvolby CS6 pro JP2K
2019-01-15 21:35 - 2019-01-16 11:35 - 000000600 ____C () C:\Users\Viktor\AppData\Roaming\winscp.rnd
2018-10-13 14:13 - 2018-10-13 14:18 - 000001480 ____C () C:\Users\Viktor\AppData\Local\Adobe Uložit pro web 13.0 Prefs
2017-11-05 01:36 - 2017-11-05 01:38 - 000007605 ____C () C:\Users\Viktor\AppData\Local\Resmon.ResmonCfg

Some files in TEMP:
====================
2019-04-03 01:54 - 2019-04-14 03:28 - 000000000 ____C () C:\Users\Viktor\AppData\Local\Temp\stsrvl.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\dllhost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\dllhost.exe => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-05-14 17:04

==================== End of FRST.txt ============================


Přílohy:
Addition.rar [15.69 KiB]
7 krát
Nahoru
 Profil  
 
PříspěvekNapsal: 14 dub 2019 15:24 
Offline
Site Admin
Site Admin
Uživatelský avatar

Registrován: 30 říj 2003 13:42
Příspěvky: 108815
Bydliště: Plzeň
Zdravím!
Spusťte tuto utilitu:

Citace:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

_________________
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.


Nahoru
 Profil  
 
PříspěvekNapsal: 14 dub 2019 16:22 
Offline
Návštěvník
Návštěvník

Registrován: 14 dub 2019 13:07
Příspěvky: 12
# -------------------------------
# Malwarebytes AdwCleaner 7.3.0.0
# -------------------------------
# Build: 04-04-2019
# Database: 2019-04-10.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 04-14-2019
# Duration: 00:00:02
# OS: Windows 10 Home
# Cleaned: 37
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted C:\Program Files (x86)\Miped
Deleted C:\Program Files (x86)\ProxyGate
Deleted C:\Program Files (x86)\Seznam.cz
Deleted C:\Program Files (x86)\Solvusoft
Deleted C:\ProgramData\BSD\DriverHive
Deleted C:\ProgramData\BSD\DriverHiveEngine
Deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Solvusoft
Deleted C:\ProgramData\Solvusoft
Deleted C:\ProgramData\{0897014C-63E3-47DF-8A5F-4399CC5D61B9}
Deleted C:\Users\Viktor\AppData\Local\PCBooster
Deleted C:\Users\Viktor\AppData\Roaming\Seznam.cz
Deleted C:\Users\Viktor\AppData\Roaming\Solvusoft
Deleted C:\Windows\Installer\{4D0A0750-B034-4DF8-97DE-26F1212AC2FF}

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\warthunder.com
Deleted HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\warthunder.com
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|cz.seznam.software.autoupdate
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|cz.seznam.software.szndesktop
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2974C985-8151-4DE5-B23C-B875F0A8522F}
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Run|cz.seznam.software.autoupdate
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Run|cz.seznam.software.szndesktop
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SeznamInstall
Deleted HKCU\Software\Mozilla\NativeMessagingHosts\sznpp_nm
Deleted HKCU\Software\Seznam.cz
Deleted HKCU\Software\Solvusoft
Deleted HKCU\Software\csastats
Deleted HKLM\SOFTWARE\CLASSES\APPLICATIONS\SolvusoftTray.exe
Deleted HKLM\SOFTWARE\Classes\Applications\DriverDocSetup.exe
Deleted HKLM\Software\Classes\Installer\Features\0570A0D4430B8FD479ED621F12A22CFF
Deleted HKLM\Software\Classes\Installer\Products\0570A0D4430B8FD479ED621F12A22CFF
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32|seznam-listicka-distribuce
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\0570A0D4430B8FD479ED621F12A22CFF
Deleted HKLM\Software\Wow6432Node\BSD
Deleted HKLM\Software\Wow6432Node\Solvusoft
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Ext\Stats\{2974C985-8151-4DE5-B23C-B875F0A8522F}
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Run|seznam-listicka-distribuce

***** [ Chromium (and derivatives) ] *****

Deleted Seznam doplněk - Email
Deleted Seznam doplněk - Esko

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [4732 octets] - [14/04/2019 13:56:26]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########


Nahoru
 Profil  
 
PříspěvekNapsal: 14 dub 2019 16:50 
Offline
Site Admin
Site Admin
Uživatelský avatar

Registrován: 30 říj 2003 13:42
Příspěvky: 108815
Bydliště: Plzeň
OK. Dejte nové logy FRST+Addition.

_________________
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.


Nahoru
 Profil  
 
PříspěvekNapsal: 14 dub 2019 20:02 
Offline
Návštěvník
Návštěvník

Registrován: 14 dub 2019 13:07
Příspěvky: 12
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 17.03.2019
Ran by Viktor (administrator) on GRONUS (14-04-2019 21:00:01)
Running from A:\Users\Viktor\Downloads
Loaded Profiles: Viktor (Available Profiles: Viktor)
Platform: Windows 10 Home Version 1803 17134.523 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files (x86)\Comodo\Internet Security Essentials\isesrv.exe
(Comodo Security Solutions, Inc. -> Comodo) C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.38.138.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
(Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.38.138.0_x64__kzf8qxf38zg5c\SkypeApp.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.7\GoogleCrashHandler.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.7\GoogleCrashHandler64.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19011.11311.0_x64__8wekyb3d8bbwe\Video.UI.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Microsoft Corporation) [File not signed] C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.38.138.0_x64__kzf8qxf38zg5c\SkypeBridge\SkypeBridge.exe
(Valve -> Valve Corporation) A:\Program Files (x86)\Steam\Steam.exe
(Google Inc -> ) C:\Program Files\Google\Drive\googledrivesync.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Google Inc -> ) C:\Program Files\Google\Drive\googledrivesync.exe
() [File not signed] C:\Program Files (x86)\Gaming Keyboard\Monitor.EXE
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() [File not signed] C:\Program Files (x86)\Gaming Keyboard\OSD.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Valve -> Valve Corporation) A:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Valve -> Valve Corporation) A:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve -> Valve Corporation) A:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Valve -> Valve Corporation) A:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) A:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\rempl\sedsvc.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(uTorrent.CZ -> emc) [File not signed] C:\Users\Viktor\AppData\Roaming\uTorrent\uninstall.exe
(uTorrent.CZ -> BitTorrent, Inc.) [File not signed] C:\Users\Viktor\AppData\Roaming\uTorrent\utorrent.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [193024 2019-02-13] (Microsoft Corporation) [File not signed]
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9197568 2017-01-11] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [winlogui] => C:\WINDOWS\system32\winlogui.exe [1803776 2019-04-03] (Microsoft Corporation) [File not signed]
HKLM-x32\...\Run: [VICTORY Gaming Keyboard] => C:\Program Files (x86)\Gaming Keyboard\Monitor.exe [270336 2013-04-09] () [File not signed]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [653648 2018-06-27] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [IseUI] => C:\Program Files (x86)\COMODO\Internet Security Essentials\vkise.exe [4187856 2019-01-29] (Comodo Security Solutions, Inc. -> COMODO)
HKLM\...\Policies\Explorer: [HideSCAHealth] 1
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-3348608579-3824376785-1914751379-1001\...\Run: [Steam] => "A:\Program Files (x86)\Steam\steam.exe" -silent
HKU\S-1-5-21-3348608579-3824376785-1914751379-1001\...\Run: [Gaijin.Net Agent] => C:\Users\Viktor\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [2125384 2018-10-27] (Gaijin Network LTD -> Gaijin Entertainment)
HKU\S-1-5-21-3348608579-3824376785-1914751379-1001\...\Run: [Discord] => C:\Users\Viktor\AppData\Local\Discord\app-0.0.301\Discord.exe [57816920 2018-04-30] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-3348608579-3824376785-1914751379-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [19645800 2019-01-10] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3348608579-3824376785-1914751379-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [46504696 2018-12-07] (Google Inc -> )
HKLM\...\Drivers32: [vidc.VP60] => C:\WINDOWS\SysWOW64\vp6vfw.dll [447752 2014-09-16] (Electronic Arts -> On2.com)
HKLM\...\Drivers32: [vidc.VP61] => C:\WINDOWS\SysWOW64\vp6vfw.dll [447752 2014-09-16] (Electronic Arts -> On2.com)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\73.0.3683.103\Installer\chrmstp.exe [2019-04-11] (Google LLC -> Google Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{7C88A368-4F75-4C37-9469-2391468D556A}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-3348608579-3824376785-1914751379-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
BHO: No Name -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> No File
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre-10.0.2\bin\jp2ssv.dll [2018-10-10] (Oracle America, Inc. -> Oracle Corporation)
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - No File

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=13.0.2.0 -> C:\Program Files\Java\jre-10.0.2\bin\dtplugin\npDeployJava1.dll [2018-10-10] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=13.0.2.0 -> C:\Program Files\Java\jre-10.0.2\bin\plugin2\npjp2.dll [2018-10-10] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll [2017-07-14] (Adobe Systems Incorporated -> )
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [No File]
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-07-30] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-07-30] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-03-28] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-03-28] (Google Inc -> Google LLC)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-11-29] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-11-29] (VideoLAN -> VideoLAN)

Chrome:
=======
CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default [2019-04-14]
CHR Extension: (Prezentace) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
CHR Extension: (Dokumenty) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Disk Google) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-05-19]
CHR Extension: (Seznam doplněk - Email) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2019-04-14]
CHR Extension: (YouTube) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-05-19]
CHR Extension: (Tabulky) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
CHR Extension: (Dokumenty Google offline) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-22]
CHR Extension: (AdBlock) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-04-13]
CHR Extension: (Discord Screen Sharing) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\lcbhdgefieegnkbopmgklhlpjjdgmbog [2018-02-10]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2019-02-26]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-04]
CHR Extension: (Enhanced Steam) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\okadibdjfemgnhjiembecghcbfknbfhg [2019-02-06]
CHR Extension: (Seznam doplněk - Esko) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2019-04-14]
CHR Extension: (Gmail) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-05-19]
CHR Extension: (Chrome Media Router) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-04-02]
CHR Extension: (Unmask Password - zobrazit hesla) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\pmmeddaccflimcipblojlnfandenhicb [2017-07-01]
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx <not found>
CHR HKU\S-1-5-21-3348608579-3824376785-1914751379-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bgjpfhpjcgdppjbgnpnjllokbmcdllig] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-3348608579-3824376785-1914751379-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-3348608579-3824376785-1914751379-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8361960 2019-01-25] (BattlEye Innovations e.K. -> )
R2 DragonUpdater; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2942224 2019-03-28] (Comodo Security Solutions, Inc. -> Comodo)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [779392 2019-01-24] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 isesrv; C:\Program Files (x86)\COMODO\Internet Security Essentials\isesrv.exe [1044176 2019-01-29] (Comodo Security Solutions, Inc. -> COMODO)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782320 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782320 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1901.7-0\NisSrv.exe [4096976 2019-01-24] (Microsoft Corporation -> Microsoft Corporation)
S3 aswbIDSAgent; "C:\Program Files\AVAST Software\Avast\aswidsagent.exe" [X]
S2 avast! Antivirus; "C:\Program Files\AVAST Software\Avast\AvastSvc.exe" [X]
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvTelemetry\plugins" -r

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37104 2019-02-06] (AVAST Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [205400 2019-02-06] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [225680 2019-02-06] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [196072 2019-02-06] (AVAST Software s.r.o. -> AVAST Software)
R0 aswblog; C:\WINDOWS\System32\drivers\aswblog.sys [320696 2019-02-06] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [57960 2019-02-06] (AVAST Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [15488 2019-02-06] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [249456 2019-02-06] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42288 2019-02-06] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [167304 2019-02-06] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [112312 2019-02-06] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [87944 2019-02-06] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [1034432 2019-02-06] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [474456 2019-02-06] (AVAST Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [216784 2019-02-06] (AVAST Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [379952 2019-02-06] (AVAST Software s.r.o. -> AVAST Software)
R1 isedrv; C:\WINDOWS\system32\drivers\isedrv.sys [63256 2018-08-30] (Comodo Security Solutions, Inc. -> COMODO)
R1 ISODrive; C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [115448 2013-11-21] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_52ac7eb8f32780d5\nvlddmkm.sys [17211376 2018-08-01] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-02-26] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [70024 2018-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [66792 2018-10-03] (NVIDIA Corporation -> NVIDIA Corporation)
S3 qcfilter; C:\WINDOWS\System32\drivers\qcusbfilter.sys [49208 2017-03-15] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated)
S3 qcusbnet; C:\WINDOWS\system32\DRIVERS\qcusbnet.sys [428600 2017-03-15] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated)
S3 qcusbser; C:\WINDOWS\system32\DRIVERS\qcusbser.sys [254520 2017-03-15] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [604160 2018-04-12] (Microsoft Windows -> Realtek )
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46488 2019-01-24] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [343032 2019-01-24] (Microsoft Windows -> Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [159936 2016-08-16] (NGO -> MBB)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [63480 2019-01-24] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-04-14 17:30 - 2019-04-14 17:30 - 000001631 ____C C:\Users\Viktor\Desktop\RimWorldWin64.exe – zástupce (2).lnk
2019-04-14 17:14 - 2019-04-14 17:11 - 007025360 ____C (Malwarebytes) C:\Users\Viktor\Desktop\AdwCleaner.exe
2019-04-14 14:16 - 2019-04-14 21:00 - 000000000 ____D C:\FRST
2019-04-14 13:55 - 2019-04-14 13:57 - 000000000 ____D C:\AdwCleaner
2019-04-14 02:02 - 2019-04-14 02:02 - 000000000 ___DC C:\Users\Viktor\AppData\Local\Tempzxpsignf3ccd56604a6f1ce
2019-04-14 01:57 - 2019-04-14 01:57 - 000000000 ___DC C:\Users\Viktor\AppData\Local\Tempzxpsign689c36f6b586d2e3
2019-04-14 01:55 - 2019-04-14 01:55 - 000000000 ___DC C:\Users\Viktor\AppData\Local\Tempzxpsign003510523f393a63
2019-04-14 01:11 - 2019-04-14 01:11 - 000000000 ___DC C:\Users\Viktor\AppData\Local\Tempzxpsignd844b315cfb03a40
2019-04-14 01:03 - 2019-04-14 01:03 - 000000000 ___DC C:\Users\Viktor\AppData\Local\Tempzxpsignd05436b799aa4477
2019-04-14 00:38 - 2019-04-14 00:38 - 000000000 ___DC C:\Users\Viktor\AppData\Local\Tempzxpsign124104dc2ff97511
2019-04-14 00:37 - 2019-04-14 00:37 - 000000000 ___DC C:\Users\Viktor\AppData\Local\Tempzxpsignd492c9d4e8f9042a
2019-04-14 00:37 - 2019-04-14 00:37 - 000000000 ___DC C:\Users\Viktor\AppData\Local\Tempzxpsign325f5095b18056f1
2019-04-14 00:37 - 2019-04-14 00:37 - 000000000 ___DC C:\Users\Viktor\AppData\Local\Tempzxpsign23630efe59e689da
2019-04-13 13:54 - 2019-04-13 13:54 - 000001324 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Registry Repair.lnk
2019-04-13 13:54 - 2019-04-13 13:54 - 000001312 _____ C:\Users\Public\Desktop\Registry Repair.lnk
2019-04-13 13:54 - 2019-04-13 13:54 - 000000000 ___DC C:\Users\Viktor\AppData\Roaming\GlarySoft
2019-04-13 13:54 - 2019-04-13 13:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glarysoft
2019-04-13 13:54 - 2019-04-13 13:54 - 000000000 ____D C:\Program Files (x86)\Glarysoft
2019-04-13 02:22 - 2019-04-13 02:22 - 000699824 ____C C:\Users\Viktor\Documents\cc_20190413_022209.reg
2019-04-13 02:19 - 2019-04-13 02:19 - 003210112 _____ C:\WINDOWS\system32\Drivers\fvstore.dat
2019-04-13 02:19 - 2019-04-13 02:19 - 000000000 ____D C:\ProgramData\Shared Space
2019-04-13 01:54 - 2019-04-13 01:54 - 000000000 ___DC C:\Users\Viktor\AppData\Local\Tempzxpsign8b87c090ef903010
2019-04-13 01:41 - 2019-04-13 01:41 - 000000000 ___DC C:\Users\Viktor\AppData\Local\Tempzxpsign8d24925776db14e9
2019-04-13 01:08 - 2019-04-13 01:08 - 000000000 ___DC C:\Users\Viktor\AppData\Local\Tempzxpsignf92f806b41f021f8
2019-04-13 01:05 - 2019-04-13 01:05 - 000000000 ___DC C:\Users\Viktor\AppData\Local\Tempzxpsign29f568f672d5b4a7
2019-04-13 00:29 - 2019-04-13 00:29 - 000000000 ___DC C:\Users\Viktor\AppData\Local\Tempzxpsignb32499e6640af6ef
2019-04-13 00:29 - 2019-04-13 00:29 - 000000000 ___DC C:\Users\Viktor\AppData\Local\Tempzxpsign346aec6a6a76ad2d
2019-04-13 00:25 - 2019-04-13 00:25 - 000000000 ___DC C:\Users\Viktor\AppData\Local\Tempzxpsign110e15a64e51cfae
2019-04-12 23:30 - 2019-04-13 02:20 - 000000000 ____D C:\WINDOWS\System32\Tasks\NCH Software
2019-04-12 23:29 - 2019-04-13 02:20 - 000000000 ____D C:\ProgramData\NCH Software
2019-04-12 23:29 - 2019-04-13 02:18 - 000000000 ___DC C:\Users\Viktor\AppData\Roaming\NCH Software
2019-04-12 22:13 - 2019-04-12 22:13 - 000000000 ___DC C:\Users\Viktor\AppData\Local\Tempzxpsignf7e51400cfa6fa7d
2019-04-12 15:23 - 2019-04-12 15:23 - 000000814 _____ C:\Users\Public\Desktop\Frostpunk.lnk
2019-04-12 15:23 - 2019-04-12 15:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Frostpunk [GOG.com]
2019-04-12 01:15 - 2019-04-12 01:15 - 000000000 ___DC C:\Users\Viktor\AppData\Local\Tempzxpsign0426d50f0d2e7d23
2019-04-12 00:52 - 2019-04-12 00:52 - 000000000 ___DC C:\Users\Viktor\AppData\Local\Tempzxpsign71dbd6bdf7a9f829
2019-04-11 23:49 - 2019-04-11 23:49 - 000000000 ___DC C:\Users\Viktor\AppData\Local\Tempzxpsign494651ddf307f466
2019-04-11 23:37 - 2019-04-11 23:40 - 000000000 ___DC C:\Users\Viktor\Desktop\svět po světě
2019-04-11 00:41 - 2019-04-11 00:41 - 000000000 ___DC C:\Users\Viktor\AppData\Local\Tempzxpsign084e453206e6c1f0
2019-04-11 00:38 - 2019-04-11 00:38 - 000000000 ___DC C:\Users\Viktor\AppData\Local\Tempzxpsignf06a5cd787eddea0
2019-04-11 00:38 - 2019-04-11 00:38 - 000000000 ___DC C:\Users\Viktor\AppData\Local\Tempzxpsign70793c8a3803f36f
2019-04-09 22:03 - 2019-04-09 22:03 - 000000782 ____C C:\Users\Viktor\Desktop\ЗапуститьAssassins Creed Odyssey.lnk
2019-04-08 20:04 - 2019-04-08 20:04 - 000001430 _____ C:\Users\Public\Desktop\Farming Simulator 19.lnk
2019-04-08 20:00 - 2019-04-08 20:00 - 000000000 ___DC C:\Users\Viktor\AppData\Local\AdvinstAnalytics
2019-04-08 13:24 - 2019-04-08 13:24 - 000000000 ___DC C:\Users\Viktor\AppData\Local\Targem
2019-04-08 12:17 - 2019-04-08 12:17 - 000000222 ____C C:\Users\Viktor\Desktop\Crossout.url
2019-04-08 12:17 - 2019-04-08 12:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crossout
2019-04-06 22:58 - 2019-04-06 22:58 - 000000000 ___DC C:\Users\Viktor\AppData\Roaming\launcher
2019-04-05 03:03 - 2019-04-05 03:03 - 000000000 ____C C:\Users\Viktor\Desktop\Nový textový dokument (3).txt
2019-04-03 13:29 - 2019-04-03 13:29 - 000000000 _____ C:\WINDOWS\System32\Tasks\CIS_{81EFDD93-DBBE-415B-BE6E-49B9664E3E82}
2019-04-03 02:09 - 2019-04-13 02:19 - 000000000 ___HD C:\VTRoot
2019-04-03 01:59 - 2019-04-03 01:59 - 001060864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc71.dll
2019-04-03 01:59 - 2019-04-03 01:59 - 000348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr71.dll
2019-04-03 01:58 - 2019-04-03 01:58 - 001803776 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogui.exe
2019-04-03 01:54 - 2019-04-03 13:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo
2019-04-03 01:54 - 2019-04-03 01:59 - 000000000 ____D C:\Program Files (x86)\Comodo
2019-04-03 01:54 - 2019-04-03 01:54 - 000002185 _____ C:\Users\Public\Desktop\Comodo Dragon.lnk
2019-04-03 01:54 - 2019-04-03 01:54 - 000000000 ___DC C:\Users\Viktor\AppData\Local\Comodo
2019-04-03 01:54 - 2019-01-29 10:42 - 000254440 _____ (COMODO) C:\WINDOWS\system32\iseguard64.dll
2019-04-03 01:54 - 2019-01-29 10:42 - 000205024 _____ (COMODO) C:\WINDOWS\SysWOW64\iseguard32.dll
2019-04-03 01:54 - 2018-08-30 00:55 - 000063256 _____ (COMODO) C:\WINDOWS\system32\Drivers\isedrv.sys
2019-04-03 01:52 - 2019-04-13 02:19 - 000000000 ____D C:\ProgramData\Comodo
2019-04-02 13:59 - 2019-04-02 13:59 - 000001059 _____ C:\Users\Public\Desktop\Shadow Tactics - Blades of the Shogun.lnk
2019-04-02 13:59 - 2019-04-02 13:59 - 000000000 ___DC C:\Users\Viktor\AppData\LocalLow\Daedalic Entertainment GmbH
2019-04-02 13:59 - 2019-04-02 13:59 - 000000000 ___DC C:\Users\Viktor\AppData\Local\Daedalic Entertainment GmbH
2019-04-02 13:59 - 2019-04-02 13:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Shadow Tactics - Blades of the Shogun [GOG.com]
2019-04-02 11:35 - 2019-04-02 11:35 - 000000895 _____ C:\Users\Public\Desktop\Project Hospital.lnk
2019-04-02 11:35 - 2019-04-02 11:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Project Hospital [GOG.com]
2019-04-01 16:02 - 2019-04-01 16:03 - 000000000 ___DC C:\Users\Viktor\Desktop\game
2019-04-01 01:52 - 2019-04-01 01:52 - 000000837 ____C C:\Users\Viktor\Desktop\Europa Universalis IV Golden Century.lnk
2019-04-01 01:42 - 2019-04-01 01:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Europa Universalis IV Golden Century
2019-03-29 17:43 - 2019-04-03 01:44 - 000000000 ___DC C:\Users\Viktor\AppData\Local\WeMod
2019-03-28 19:00 - 2019-03-28 19:00 - 000000000 ___DC C:\Users\Viktor\AppData\LocalLow\Squad
2019-03-22 23:37 - 2014-09-16 16:45 - 000447752 _____ (On2.com) C:\WINDOWS\SysWOW64\vp6vfw.dll
2019-03-22 23:36 - 2019-03-22 23:36 - 000000924 _____ C:\Users\Public\Desktop\The Sims 4.lnk
2019-03-22 00:30 - 2019-03-22 01:07 - 000000960 ____C C:\Users\Viktor\Desktop\The Sims 4 StrangerVille.lnk
2019-03-22 00:30 - 2019-03-22 00:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Sims 4 StrangerVille
2019-03-19 13:18 - 2019-03-19 13:18 - 000000787 ____C C:\Users\Viktor\Desktop\Bio Inc. Redemption.lnk
2019-03-19 13:18 - 2019-03-19 13:18 - 000000000 ___DC C:\Users\Viktor\AppData\Roaming\Bio Inc. Redemption_Uninstall
2019-03-19 13:18 - 2019-03-19 13:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Mechanics
2019-03-15 22:41 - 2019-03-15 22:41 - 000000222 ____C C:\Users\Viktor\Desktop\Workers & Resources Soviet Republic.url

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-04-14 21:00 - 2017-09-19 21:34 - 000000000 ___DC C:\Users\Viktor\AppData\Roaming\uTorrent
2019-04-14 21:00 - 2017-05-22 17:10 - 000000000 ___DC C:\Users\Viktor\AppData\Local\CrashDumps
2019-04-14 20:53 - 2018-05-14 17:04 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-04-14 20:43 - 2018-04-12 01:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-04-14 17:23 - 2018-05-14 17:13 - 001689050 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-04-14 17:23 - 2018-04-12 17:50 - 000715034 _____ C:\WINDOWS\system32\perfh005.dat
2019-04-14 17:23 - 2018-04-12 17:50 - 000144328 _____ C:\WINDOWS\system32\perfc005.dat
2019-04-14 17:23 - 2018-04-12 01:36 - 000000000 ___HD C:\WINDOWS\INF
2019-04-14 17:19 - 2017-05-19 16:48 - 000000000 ____D C:\ProgramData\NVIDIA
2019-04-14 17:18 - 2019-02-26 21:34 - 000000000 ___RD C:\Users\Viktor\Disk Google
2019-04-14 17:17 - 2018-05-14 17:10 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-04-14 17:17 - 2018-04-11 23:04 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-04-14 13:57 - 2018-02-02 10:31 - 000000000 ____D C:\ProgramData\BSD
2019-04-12 15:23 - 2017-05-20 01:41 - 000000000 ____D C:\ProgramData\Package Cache
2019-04-11 15:29 - 2017-05-19 17:53 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-04-11 15:29 - 2017-05-19 17:53 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-04-11 00:41 - 2018-12-21 23:17 - 000000000 ___DC C:\Users\Viktor\Desktop\Nová složka
2019-04-08 20:04 - 2019-01-04 18:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Farming Simulator 19
2019-04-08 13:24 - 2018-07-14 21:08 - 000000000 ___DC C:\Users\Viktor\AppData\Roaming\EasyAntiCheat
2019-04-08 13:24 - 2017-05-21 00:34 - 000000000 ___DC C:\Users\Viktor\Documents\My Games
2019-04-08 12:17 - 2017-05-19 18:39 - 000000000 ___DC C:\Users\Viktor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2019-04-06 23:19 - 2017-05-22 19:25 - 000000000 ___DC C:\Users\Viktor\AppData\Roaming\TS3Client
2019-04-03 13:29 - 2019-02-26 21:34 - 000001965 ____C C:\Users\Viktor\Desktop\Disk Google.lnk
2019-04-03 13:29 - 2018-11-18 08:24 - 000002361 ____C C:\Users\Viktor\Desktop\WeMod.lnk
2019-04-03 13:29 - 2018-10-31 12:05 - 000001801 ____C C:\Users\Viktor\Desktop\ProjectHospital.exe – zástupce.lnk
2019-04-03 13:29 - 2018-10-27 01:14 - 000001621 ____C C:\Users\Viktor\Desktop\RimWorldWin64.exe – zástupce.lnk
2019-04-03 13:29 - 2018-05-21 21:23 - 000002441 ____C C:\Users\Viktor\Desktop\Discord.lnk
2019-04-03 13:29 - 2018-04-12 01:38 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2019-04-03 13:29 - 2017-09-19 21:34 - 000001196 ____C C:\Users\Viktor\Desktop\µTorrent.lnk
2019-04-03 13:29 - 2017-05-22 19:25 - 000001429 ____C C:\Users\Viktor\Desktop\TeamSpeak 3 Client.lnk
2019-04-03 01:58 - 2019-02-13 13:30 - 000000024 _____ C:\WINDOWS\system32\WinUpdates105.dat
2019-04-03 01:57 - 2017-05-19 16:48 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2019-04-03 01:56 - 2018-11-18 08:24 - 000000000 ___DC C:\Users\Viktor\AppData\Roaming\WeMod
2019-04-03 01:44 - 2018-11-18 08:24 - 000000000 ___DC C:\Users\Viktor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WeMod
2019-04-03 01:44 - 2018-05-21 21:23 - 000000000 ___DC C:\Users\Viktor\AppData\Local\SquirrelTemp
2019-04-01 18:02 - 2017-10-14 15:56 - 000000000 ___DC C:\Users\Viktor\AppData\Roaming\.minecraft
2019-04-01 16:02 - 2019-02-14 22:52 - 000000516 ____C C:\Users\Viktor\Desktop\updateLog.txt
2019-04-01 16:02 - 2018-09-08 19:37 - 000000843 ____C C:\Users\Viktor\Desktop\nativelog.txt
2019-04-01 16:02 - 2018-09-08 19:37 - 000000000 ___DC C:\Users\Viktor\Desktop\tmp
2019-04-01 16:02 - 2018-08-05 23:13 - 001526144 ____C (Mojang) C:\Users\Viktor\Desktop\Minecraft.exe
2019-04-01 01:53 - 2017-05-28 15:04 - 000000000 ___DC C:\Users\Viktor\Documents\Paradox Interactive
2019-04-01 01:26 - 2018-05-14 17:10 - 000003364 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3348608579-3824376785-1914751379-1001
2019-04-01 01:26 - 2018-05-14 17:06 - 000002404 ____C C:\Users\Viktor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-04-01 01:26 - 2017-12-28 17:28 - 000000000 ___RD C:\Users\Viktor\OneDrive
2019-03-29 17:46 - 2017-12-02 21:12 - 000000000 ___DC C:\Users\Viktor\AppData\Local\Ubisoft Game Launcher
2019-03-28 17:00 - 2018-05-15 23:22 - 000000000 ___DC C:\Users\Viktor\AppData\Local\D3DSCache
2019-03-28 12:14 - 2017-08-31 16:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\by.xatab
2019-03-28 01:39 - 2018-05-14 17:10 - 000003470 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2019-03-28 01:39 - 2018-05-14 17:10 - 000003346 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2019-03-27 22:17 - 2017-09-12 09:24 - 000000000 ___DC C:\Users\Viktor\Documents\CPY_SAVES
2019-03-27 16:59 - 2019-02-06 14:55 - 000000000 ____D C:\Program Files\CCleaner
2019-03-20 23:12 - 2018-05-24 19:50 - 000003976 _____ C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-20 23:12 - 2018-05-24 19:50 - 000003940 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-20 23:12 - 2018-05-24 19:50 - 000003926 _____ C:\WINDOWS\System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-20 23:12 - 2018-05-24 19:50 - 000003926 _____ C:\WINDOWS\System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-20 23:12 - 2018-05-24 19:50 - 000003926 _____ C:\WINDOWS\System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-20 23:12 - 2018-05-14 17:10 - 000004308 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-20 23:12 - 2018-05-14 17:10 - 000004106 _____ C:\WINDOWS\System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-20 23:12 - 2018-05-14 17:10 - 000003894 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-20 23:12 - 2018-05-14 17:10 - 000003866 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-20 23:12 - 2018-05-14 17:10 - 000003858 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-20 23:12 - 2018-05-14 17:10 - 000003654 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-20 23:12 - 2017-05-20 01:43 - 000001447 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2019-03-20 23:12 - 2017-05-19 16:48 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2019-03-20 23:12 - 2017-05-19 16:48 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2019-03-19 13:19 - 2018-03-29 23:46 - 000000000 ___DC C:\Users\Viktor\AppData\LocalLow\DryGin Studios
2019-03-18 17:11 - 2018-05-24 19:50 - 002769904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2019-03-18 17:11 - 2018-05-24 19:50 - 002149872 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2019-03-18 17:11 - 2018-05-24 19:50 - 001323504 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvRtmpStreamer64.dll
2019-03-18 16:31 - 2017-05-20 01:43 - 000001951 _____ C:\WINDOWS\NvTelemetryContainerRecovery.bat

==================== Files in the root of some directories =======

2018-07-28 22:55 - 2018-07-28 22:55 - 000000112 ____C () C:\Users\Viktor\AppData\Roaming\Předvolby CS6 pro JP2K
2019-01-15 21:35 - 2019-01-16 11:35 - 000000600 ____C () C:\Users\Viktor\AppData\Roaming\winscp.rnd
2018-10-13 14:13 - 2018-10-13 14:18 - 000001480 ____C () C:\Users\Viktor\AppData\Local\Adobe Uložit pro web 13.0 Prefs
2017-11-05 01:36 - 2017-11-05 01:38 - 000007605 ____C () C:\Users\Viktor\AppData\Local\Resmon.ResmonCfg

Some files in TEMP:
====================
2019-04-03 01:54 - 2019-04-14 03:28 - 000000000 ____C () C:\Users\Viktor\AppData\Local\Temp\stsrvl.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\dllhost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\dllhost.exe => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-05-14 17:04

==================== End of FRST.txt ============================


Přílohy:
Addition.rar [16.03 KiB]
7 krát
Nahoru
 Profil  
 
PříspěvekNapsal: 14 dub 2019 21:01 
Offline
Site Admin
Site Admin
Uživatelský avatar

Registrován: 30 říj 2003 13:42
Příspěvky: 108815
Bydliště: Plzeň
Otevřte poznámkový blok a zkopírujte do něj:

Citace:
Start

CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
BHO: No Name -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> No File
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - No File
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [No File]
C:\Users\Viktor\AppData\Local\Temp
HKU\S-1-5-21-3348608579-3824376785-1914751379-1001\...\ChromeHTML: -> <==== ATTENTION
hellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
Task: {48FEA9D0-CEC6-4CDB-ACF5-546DFA67C016} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {28F02E2A-46CA-43D9-AEAD-620018C697F2} - System32\Tasks\Microsoft\Windows\WDI\SrvHost => rundll32.exe winscomrssrv.dll,SrvMainHost
Task: {AA436927-7061-491F-A037-1D1BF56031A0} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
AlternateDataStreams: C:\ProgramData\TEMP:9341E0C6 [310]

EmptyTemp:
End


Uložte do A:\Users\Viktor\Downloads jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

_________________
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.


Nahoru
 Profil  
 
PříspěvekNapsal: 15 dub 2019 12:05 
Offline
Návštěvník
Návštěvník

Registrován: 14 dub 2019 13:07
Příspěvky: 12
Zatím vše OK, režim spánku jede a hláška zmizela :thumbsup:

Fixlog:
Fix result of Farbar Recovery Scan Tool (x64) Version: 17.03.2019
Ran by Viktor (15-04-2019 12:57:57) Run:1
Running from A:\Users\Viktor\Downloads
Loaded Profiles: Viktor (Available Profiles: Viktor)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
BHO: No Name -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> No File
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - No File
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [No File]
C:\Users\Viktor\AppData\Local\Temp
HKU\S-1-5-21-3348608579-3824376785-1914751379-1001\...\ChromeHTML: -> <==== ATTENTION
hellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
Task: {48FEA9D0-CEC6-4CDB-ACF5-546DFA67C016} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {28F02E2A-46CA-43D9-AEAD-620018C697F2} - System32\Tasks\Microsoft\Windows\WDI\SrvHost => rundll32.exe winscomrssrv.dll,SrvMainHost
Task: {AA436927-7061-491F-A037-1D1BF56031A0} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
AlternateDataStreams: C:\ProgramData\TEMP:9341E0C6 [310]

EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => removed successfully
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} => removed successfully
HKLM\Software\Classes\CLSID\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} => not found
HKLM\Software\Classes\PROTOCOLS\Handler\wlpg => removed successfully
HKLM\Software\Classes\CLSID\{E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} => not found
HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3528.0331 => removed successfully
C:\Users\Viktor\AppData\Local\Temp => moved successfully
HKU\S-1-5-21-3348608579-3824376785-1914751379-1001_Classes\ChromeHTML => removed successfully
hellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File => Error: No automatic fix found for this entry.
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avg => removed successfully
HKLM\Software\Classes\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => not found
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\avast => removed successfully
HKLM\Software\Classes\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => not found
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\00asw => removed successfully
HKLM\Software\Classes\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => not found
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\avast => removed successfully
HKLM\Software\Classes\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{48FEA9D0-CEC6-4CDB-ACF5-546DFA67C016}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{48FEA9D0-CEC6-4CDB-ACF5-546DFA67C016}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{28F02E2A-46CA-43D9-AEAD-620018C697F2}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{28F02E2A-46CA-43D9-AEAD-620018C697F2}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\WDI\SrvHost => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\WDI\SrvHost" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{AA436927-7061-491F-A037-1D1BF56031A0}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AA436927-7061-491F-A037-1D1BF56031A0}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
C:\ProgramData\TEMP => ":9341E0C6" ADS removed successfully

=========== EmptyTemp: ==========

BITS transfer queue => 9461760 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 811236099 B
Java, Flash, Steam htmlcache => 398203873 B
Windows/system/drivers => 2423525 B
Edge => 5711147 B
Chrome => 412100152 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 31654 B
LocalService => 0 B
NetworkService => 360398 B
NetworkService => 0 B
Viktor => 8744500 B

RecycleBin => 163067109 B
EmptyTemp: => 1.7 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 12:58:34 ====


Nahoru
 Profil  
 
PříspěvekNapsal: 15 dub 2019 13:05 
Offline
Site Admin
Site Admin
Uživatelský avatar

Registrován: 30 říj 2003 13:42
Příspěvky: 108815
Bydliště: Plzeň
Tak to jsem rád! :)

_________________
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.


Nahoru
 Profil  
 
PříspěvekNapsal: 15 dub 2019 21:02 
Offline
Návštěvník
Návštěvník

Registrován: 14 dub 2019 13:07
Příspěvky: 12
Jste úžasný, kam se hrabe podpora na T-mobile, Microsoftu, nebo Steamu :P , tady by si měli brát příklad :idea: , díky moc :happy:


Nahoru
 Profil  
 
PříspěvekNapsal: 16 dub 2019 09:09 
Offline
Site Admin
Site Admin
Uživatelský avatar

Registrován: 30 říj 2003 13:42
Příspěvky: 108815
Bydliště: Plzeň
Nemáte zač! :-)

_________________
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.


Nahoru
 Profil  
 
Zobrazit příspěvky za předchozí:  Seřadit podle  
Odeslat nové téma Toto téma je zamknuté. Nemůžete posílat nové příspěvky ani odpovídat na starší.  [ Příspěvků: 10 ] 

Všechny časy jsou v UTC + 1 hodina


Kdo je online

Uživatelé procházející toto fórum: Žádní registrovaní uživatelé


Nemůžete zakládat nová témata v tomto fóru
Nemůžete odpovídat v tomto fóru
Nemůžete upravovat své příspěvky v tomto fóru
Nemůžete mazat své příspěvky v tomto fóru
Nemůžete přikládat soubory v tomto fóru

Hledat:
Přejít na:  
Založeno na phpBB® Forum Software © phpBB Group
Český překlad – phpBB.cz
Přispějete na provoz fóra?