Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Klávesnice se chová zvláštně

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zpráva
Autor
martinJmenoMe
Návštěvník
Návštěvník
Příspěvky: 26
Registrován: 28 čer 2018 11:16

Klávesnice se chová zvláštně

#1 Příspěvek od martinJmenoMe »

Zdravím, mám problém se správnou funkcí klávesnice, zřejmě jsem si něco natáhnul do PC. Problém jsem poprvé zaregistroval dnes odpoledne, když jsem chtěl přepnout okna pomocí zkratky 'alt+tab' – funkční byla pouze klávesa 'tab'. Počítač jsem restartoval, problém se zdál jako vyřešený, ale po chvilce opět přestal 'alt' fungovat a některé znaky na klávesnici začaly vynechávat.

V některých chvílích ale vypadá, že je vše bez problémů, občas třeba 'alt' (a některé znaky) na chvíli začne fungovat, po chvíli ale opět ne.
Podobný problém jsem měl už v červenci a úspěšně jsem ho zde vyřešil, za což moc děkuju – https://forum.viry.cz/viewtopic.php?f=13&t=154458

Závada s největší pravděpodobností není mechanická. Díky moc za pomoc při hledání problému.


Přikládám log FRST:

Kód: Vybrat vše

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 19.12.2018 01
Ran by Marti (administrator) on DESKTOP-57RMD4K (20-12-2018 20:26:43)
Running from C:\Users\Marti\Desktop
Loaded Profiles: Marti (Available Profiles: Marti)
Platform: Windows 10 Home Version 1803 17134.472 (X64) Language: Čeština (Česko)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_463164d40c3d26ce\igfxCUIService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1812.3-0\MsMpEng.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1812.3-0\NisSrv.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_463164d40c3d26ce\igfxEM.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeApp.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
() C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeBridge\SkypeBridge.exe
(Microsoft Corporation) C:\Program Files\rempl\sedsvc.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.23\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.23\GoogleCrashHandler64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

"Path" (%INTEL_DEV_REDIST%redist\intel64\compiler;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\ -> %SystemRoot%\System32;%SystemRoot%;%SystemRoot%\System32\Wbem;%INTEL_DEV_REDIST%redist\intel64\compiler;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\) <==== Repaired successfully
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1804360 2016-03-22] (NVIDIA Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-10] (Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2675176 2018-12-13] (Adobe Systems, Incorporated)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2410968 2018-09-13] (Adobe Inc.)
HKU\S-1-5-21-810472551-3693116230-181698664-1001\...\Run: [Spotify] => C:\Users\Marti\AppData\Roaming\Spotify\Spotify.exe [26743016 2018-12-10] (Spotify Ltd)
HKLM\...\Drivers32: [MSVideo8] => C:\Windows\System32\VfWWDM32.dll [67072 2018-04-12] (Microsoft Corporation)
SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} -  ()
Startup: C:\Users\Marti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Poslat do aplikace OneNote.lnk [2018-10-28]
ShortcutTarget: Poslat do aplikace OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation)
GroupPolicy: Restriction ? <==== ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 10.100.100.1 10.100.100.6
Tcpip\..\Interfaces\{4d380795-624d-4ecf-a606-bd9f66438437}: [DhcpNameServer] 192.168.1.1 10.100.100.1 10.100.100.6
Tcpip\..\Interfaces\{68f0daae-8cde-4112-b40d-6dfe5d2c49df}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2018-12-14] (Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2018-12-01] (Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2018-12-01] (Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Windows\System32\ [] ()
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-12-01] (Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Windows\System32\ [] ()
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-12-01] (Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Windows\System32\ [] ()
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-12-01] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Windows\System32\ [] ()
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-12-01] (Microsoft Corporation)

FireFox:
========
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2018-09-13] (Adobe Systems)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2018-10-28] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2018-10-28] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-19] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-19] (Google Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2018-09-13] (Adobe Systems)

Chrome: 
=======
CHR HomePage: Default -> hxxp://google.com/
CHR Profile: C:\Users\Marti\AppData\Local\Google\Chrome\User Data\Default [2018-12-20]
CHR Extension: (Překladač Google) - C:\Users\Marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2018-10-25]
CHR Extension: (Prezentace) - C:\Users\Marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-10-25]
CHR Extension: (Dokumenty) - C:\Users\Marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-10-25]
CHR Extension: (Disk Google) - C:\Users\Marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-25]
CHR Extension: (YouTube) - C:\Users\Marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-10-25]
CHR Extension: (Intelligence Search) - C:\Users\Marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\dipfggodcibdmflidbceoaanadclgomm [2018-10-25]
CHR Extension: (Tabulky) - C:\Users\Marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-10-25]
CHR Extension: (StockBlocker) - C:\Users\Marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\gabmlabpkcpincifnadmjplohbbljdba [2018-11-22]
CHR Extension: (Dokumenty Google offline) - C:\Users\Marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-10-25]
CHR Extension: (Muzli 2 - Stay Inspired) - C:\Users\Marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\glcipcfhmopcgidicgdociohdoicpdfc [2018-12-04]
CHR Extension: (Eye Dropper) - C:\Users\Marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmdcmlfkchdmnmnmheododdhjedfccka [2018-10-25]
CHR Extension: (Auto Refresh) - C:\Users\Marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifooldnmmcmlbdennkpdnlnbgbmfalko [2018-12-02]
CHR Extension: (Yarr, Pirate maps) - C:\Users\Marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\jddbpdpkofboocpcdmfgjaglkgejhcoe [2018-10-25]
CHR Extension: (Webflow - Website Builder) - C:\Users\Marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\kabncpcembkecekibfmamlbogjefdnae [2018-10-25]
CHR Extension: (Grammarly for Chrome) - C:\Users\Marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2018-12-06]
CHR Extension: (Rozšíření Google Keep pro Chrome) - C:\Users\Marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\lpcaedmchfhocbbapmcbpinfpgnhiddi [2018-12-18]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-10-25]
CHR Extension: (Friends Visual Map) - C:\Users\Marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojnfeeadkmdfgjanophbgeldmfddoekd [2018-10-25]
CHR Extension: (Gmail) - C:\Users\Marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-10-25]
CHR Extension: (Chrome Media Router) - C:\Users\Marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-12-19]
CHR Profile: C:\Users\Marti\AppData\Local\Google\Chrome\User Data\System Profile [2018-12-20]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [818136 2018-09-13] (Adobe Inc.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [2917864 2018-12-13] (Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2709480 2018-12-13] (Adobe Systems, Incorporated)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9646240 2018-12-07] (Microsoft Corporation)
R2 esifsvc; C:\Windows\SysWOW64\esif_uf.exe [1394360 2015-08-12] (Intel Corporation)
S3 GoogleChromeElevationService; C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\elevation_service.exe [443872 2018-12-12] (Google Inc.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6347056 2018-09-19] (Malwarebytes)
R2 RtkBtManServ; C:\Windows\RtkBtManServ.exe [293344 2017-07-12] (Realtek Semiconductor Corp.)
S4 ssh-agent; C:\Windows\System32\OpenSSH\ssh-agent.exe [495616 2018-03-10] ()
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\NisSrv.exe [3880120 2018-12-11] (Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\MsMpEng.exe [114208 2018-12-11] (Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AsusSGDrv; C:\Windows\system32\DRIVERS\AsusSGDrv.sys [135992 2015-06-30] (ASUS Corporation)
R3 dptf_acpi; C:\Windows\System32\drivers\dptf_acpi.sys [55816 2015-08-12] (Intel Corporation)
R3 dptf_cpu; C:\Windows\System32\drivers\dptf_cpu.sys [53752 2015-08-12] (Intel Corporation)
R3 esif_lf; C:\Windows\system32\DRIVERS\esif_lf.sys [261624 2015-08-12] (Intel Corporation)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [152688 2018-12-04] (Malwarebytes)
R3 HIDSwitch; C:\Windows\System32\drivers\AsRadioControl.sys [34184 2018-05-02] (ASUS)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [198512 2018-12-20] (Malwarebytes)
R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [126624 2018-12-20] (Malwarebytes)
R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [72536 2018-12-20] (Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [261032 2018-12-20] (Malwarebytes)
R3 MBAMWebProtection; C:\Windows\system32\DRIVERS\mwac.sys [113016 2018-12-20] (Malwarebytes)
R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nvam.inf_amd64_1aae4f19e68d0780\nvlddmkm.sys [17003280 2017-12-12] (NVIDIA Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [604160 2018-04-12] (Realtek )
R3 RtkBtFilter; C:\Windows\system32\DRIVERS\RtkBtfilter.sys [724448 2017-07-12] (Realtek Semiconductor Corporation)
R3 RTSUER; C:\Windows\system32\Drivers\RtsUer.sys [428032 2017-02-16] (Realsil Semiconductor Corporation)
R3 RTWlanE; C:\Windows\System32\drivers\rtwlane.sys [6907240 2017-07-14] (Realtek Semiconductor Corporation )
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [46680 2018-12-11] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [330936 2018-12-11] (Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [62136 2018-12-11] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-12-20 20:26 - 2018-12-20 20:27 - 000017558 _____ C:\Users\Marti\Desktop\FRST.txt
2018-12-20 20:19 - 2018-12-20 20:19 - 000261032 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2018-12-20 20:19 - 2018-12-20 20:19 - 000126624 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2018-12-20 20:19 - 2018-12-20 20:19 - 000113016 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2018-12-20 20:19 - 2018-12-20 20:19 - 000072536 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2018-12-20 20:17 - 2018-12-20 20:18 - 000002450 _____ C:\Users\Marti\Desktop\Fixlog.txt
2018-12-20 20:12 - 2018-12-20 20:26 - 000000000 ____D C:\FRST
2018-12-20 20:11 - 2018-12-20 20:11 - 002419712 _____ (Farbar) C:\Users\Marti\Desktop\FRST64.exe
2018-12-20 20:04 - 2018-12-20 20:04 - 000000000 ____D C:\Users\Marti\AppData\Local\mbam
2018-12-20 20:04 - 2018-12-20 20:04 - 000000000 ____D C:\AdwCleaner
2018-12-20 20:03 - 2018-12-20 20:03 - 007321808 _____ (Malwarebytes) C:\Users\Marti\Downloads\adwcleaner_7.2.5.0.exe
2018-12-20 20:03 - 2018-12-20 20:03 - 000198512 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2018-12-20 20:03 - 2018-12-20 20:03 - 000001912 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2018-12-20 20:03 - 2018-12-20 20:03 - 000000000 ____D C:\Users\Marti\AppData\Local\mbamtray
2018-12-20 20:03 - 2018-12-20 20:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2018-12-20 20:03 - 2018-12-20 20:03 - 000000000 ____D C:\ProgramData\Malwarebytes
2018-12-20 20:03 - 2018-12-20 20:03 - 000000000 ____D C:\Program Files\Malwarebytes
2018-12-20 20:03 - 2018-12-04 08:09 - 000152688 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2018-12-20 20:01 - 2018-12-20 20:02 - 081227760 _____ (Malwarebytes ) C:\Users\Marti\Downloads\mb3-setup-consumer-3.6.1.2711-1.0.508-1.0.8211.exe
2018-12-20 19:03 - 2018-12-20 19:03 - 000645729 _____ (WDS Team) C:\Users\Marti\Downloads\windirstat1_1_2_setup.exe
2018-12-20 19:03 - 2018-12-20 19:03 - 000000000 ____D C:\Users\Marti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinDirStat
2018-12-20 19:03 - 2018-12-20 19:03 - 000000000 ____D C:\Program Files (x86)\WinDirStat
2018-12-20 16:09 - 2018-12-20 16:09 - 000000000 ____D C:\Users\Marti\Desktop\postprocessed-fb
2018-12-20 16:05 - 2018-12-20 16:06 - 000000000 ____D C:\Users\Marti\Desktop\postprocessed
2018-12-20 15:32 - 2018-12-20 15:32 - 000001106 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lightroom.exe.lnk
2018-12-19 20:50 - 2018-12-14 13:24 - 001364992 _____ (Microsoft Corporation) C:\Windows\system32\bcastdvruserservice.dll
2018-12-19 20:50 - 2018-12-14 08:29 - 006567472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2018-12-19 20:50 - 2018-12-14 08:29 - 001130760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvproc.dll
2018-12-19 20:50 - 2018-12-14 08:25 - 001035256 _____ (Microsoft Corporation) C:\Windows\system32\ApplyTrustOffline.exe
2018-12-19 20:50 - 2018-12-14 08:23 - 001221432 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe
2018-12-19 20:50 - 2018-12-14 08:23 - 001029944 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe
2018-12-19 20:50 - 2018-12-14 08:23 - 000566568 _____ (Microsoft Corporation) C:\Windows\system32\tcblaunch.exe
2018-12-19 20:50 - 2018-12-14 08:23 - 000134968 _____ (Microsoft Corporation) C:\Windows\system32\hvloader.dll
2018-12-19 20:50 - 2018-12-14 08:23 - 000076088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hvservice.sys
2018-12-19 20:50 - 2018-12-14 08:22 - 009084216 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2018-12-19 20:50 - 2018-12-14 08:22 - 007520104 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2018-12-19 20:50 - 2018-12-14 08:21 - 001457240 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2018-12-19 20:50 - 2018-12-14 08:21 - 001257672 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2018-12-19 20:50 - 2018-12-14 08:21 - 001140480 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2018-12-19 20:50 - 2018-12-14 08:21 - 001098064 _____ (Microsoft Corporation) C:\Windows\system32\msvproc.dll
2018-12-19 20:50 - 2018-12-14 08:21 - 000982912 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2018-12-19 20:50 - 2018-12-14 08:13 - 005775872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2018-12-19 20:50 - 2018-12-14 08:12 - 005307392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2018-12-19 20:50 - 2018-12-14 08:10 - 001295360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVPXENC.dll
2018-12-19 20:50 - 2018-12-14 08:07 - 000669696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2018-12-19 20:50 - 2018-12-14 07:55 - 003396608 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2018-12-19 20:50 - 2018-12-14 07:55 - 000209408 _____ (Microsoft Corporation) C:\Windows\system32\AppXApplicabilityBlob.dll
2018-12-19 20:50 - 2018-12-14 07:54 - 006032384 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2018-12-19 20:50 - 2018-12-14 07:54 - 001307648 _____ (Microsoft Corporation) C:\Windows\system32\MSVPXENC.dll
2018-12-19 20:50 - 2018-12-14 07:54 - 000154112 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2018-12-19 20:50 - 2018-12-14 07:53 - 007573504 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2018-12-19 20:50 - 2018-12-14 07:52 - 002173440 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2018-12-19 20:50 - 2018-12-14 07:52 - 001826816 _____ (Microsoft Corporation) C:\Windows\system32\Windows.CloudStore.dll
2018-12-19 20:50 - 2018-12-14 07:51 - 001551360 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2018-12-19 20:50 - 2018-12-14 07:50 - 000776192 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2018-12-19 20:50 - 2018-12-14 06:34 - 000001312 _____ C:\Windows\system32\tcbres.wim
2018-12-18 19:28 - 2018-12-18 19:28 - 006020492 _____ C:\Users\Marti\Documents\test.wav
2018-12-18 19:28 - 2018-12-18 19:28 - 000094004 _____ C:\Users\Marti\Documents\test.pkf
2018-12-18 17:46 - 2018-12-18 17:46 - 000000081 _____ C:\Users\Marti\Desktop\emanuel-etiketa.txt
2018-12-16 23:59 - 2018-12-17 00:00 - 005120579 _____ C:\Users\Marti\Downloads\Courantos Herald Gazette Chronicle 2. vydání.pdf
2018-12-16 23:57 - 2018-12-16 23:58 - 003481244 _____ C:\Users\Marti\Downloads\Courantos Herald Gazette Chronicle.pdf
2018-12-16 23:33 - 2018-12-16 23:33 - 000804468 _____ C:\Users\Marti\Downloads\2187141898.pdf
2018-12-16 23:33 - 2018-12-16 23:33 - 000718603 _____ C:\Users\Marti\Downloads\2187128500.pdf
2018-12-16 23:20 - 2018-12-16 23:20 - 000000000 ____D C:\Users\Marti\Desktop\D3200 Final Goodbye
2018-12-15 03:17 - 2018-12-15 03:17 - 000002583 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visio.lnk
2018-12-15 03:17 - 2018-12-15 03:17 - 000002559 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2018-12-15 03:17 - 2018-12-15 03:17 - 000002553 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2018-12-15 03:17 - 2018-12-15 03:17 - 000002535 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Project.lnk
2018-12-15 03:17 - 2018-12-15 03:17 - 000002530 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2018-12-15 03:17 - 2018-12-15 03:17 - 000002525 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2018-12-15 03:17 - 2018-12-15 03:17 - 000002518 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype pro firmy.lnk
2018-12-15 03:17 - 2018-12-15 03:17 - 000002486 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2018-12-15 03:17 - 2018-12-15 03:17 - 000002451 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2018-12-15 03:17 - 2018-12-15 03:17 - 000002447 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2018-12-15 03:17 - 2018-12-15 03:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje Microsoft Office
2018-12-14 23:42 - 2018-12-14 23:42 - 000000000 ____D C:\Users\Marti\AppData\Local\Microsoft Help
2018-12-13 00:00 - 2018-12-16 20:19 - 000012976 _____ C:\Users\Marti\Desktop\BUDGET.xlsx
2018-12-12 21:45 - 2018-12-08 13:42 - 001634944 _____ (Microsoft Corporation) C:\Windows\system32\gdi32full.dll
2018-12-12 21:45 - 2018-12-08 13:41 - 002394960 _____ (Microsoft Corporation) C:\Windows\system32\WMVCORE.DLL
2018-12-12 21:45 - 2018-12-08 13:40 - 001454648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32full.dll
2018-12-12 21:45 - 2018-12-08 13:28 - 012710400 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2018-12-12 21:45 - 2018-12-08 13:25 - 012500992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2018-12-12 21:45 - 2018-12-08 13:25 - 011902976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2018-12-12 21:45 - 2018-12-08 13:23 - 003649024 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2018-12-12 21:45 - 2018-12-08 13:23 - 002892288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2018-12-12 21:45 - 2018-12-08 13:23 - 001856512 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2018-12-12 21:45 - 2018-12-08 13:22 - 001586176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2018-12-12 21:45 - 2018-12-08 09:06 - 001017168 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2adec.dll
2018-12-12 21:45 - 2018-12-08 09:06 - 000709936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2018-12-12 21:45 - 2018-12-08 09:06 - 000491416 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2018-12-12 21:45 - 2018-12-08 09:05 - 002822656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2018-12-12 21:45 - 2018-12-08 09:05 - 002463384 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2018-12-12 21:45 - 2018-12-08 09:05 - 001935008 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2018-12-12 21:45 - 2018-12-08 09:05 - 001209888 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2018-12-12 21:45 - 2018-12-08 09:05 - 000793592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys
2018-12-12 21:45 - 2018-12-08 09:05 - 000706040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys
2018-12-12 21:45 - 2018-12-08 09:05 - 000594224 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2018-12-12 21:45 - 2018-12-08 09:05 - 000413920 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2018-12-12 21:45 - 2018-12-08 09:05 - 000171008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2018-12-12 21:45 - 2018-12-08 09:04 - 002590296 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2018-12-12 21:45 - 2018-12-08 09:04 - 002371296 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2018-12-12 21:45 - 2018-12-08 09:04 - 001150312 _____ (Microsoft Corporation) C:\Windows\system32\MSVP9DEC.dll
2018-12-12 21:45 - 2018-12-08 09:04 - 000885760 _____ (Microsoft Corporation) C:\Windows\system32\CoreMessaging.dll
2018-12-12 21:45 - 2018-12-08 09:04 - 000604984 _____ (Microsoft Corporation) C:\Windows\system32\securekernel.exe
2018-12-12 21:45 - 2018-12-08 09:04 - 000416024 _____ (Microsoft Corporation) C:\Windows\system32\MSAudDecMFT.dll
2018-12-12 21:45 - 2018-12-08 09:04 - 000413176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2018-12-12 21:45 - 2018-12-08 08:47 - 000861744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2adec.dll
2018-12-12 21:45 - 2018-12-08 08:46 - 002331480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2018-12-12 21:45 - 2018-12-08 08:46 - 001989040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2018-12-12 21:45 - 2018-12-08 08:46 - 001397104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVP9DEC.dll
2018-12-12 21:45 - 2018-12-08 08:46 - 000457056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSAudDecMFT.dll
2018-12-12 21:45 - 2018-12-08 08:45 - 004789952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2018-12-12 21:45 - 2018-12-08 08:45 - 002307240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2018-12-12 21:45 - 2018-12-08 08:45 - 001805656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2018-12-12 21:45 - 2018-12-08 08:45 - 001011872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2018-12-12 21:45 - 2018-12-08 08:45 - 000567256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CoreMessaging.dll
2018-12-12 21:45 - 2018-12-08 08:42 - 022715392 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2018-12-12 21:45 - 2018-12-08 08:40 - 004384768 _____ (Microsoft Corporation) C:\Windows\system32\EdgeContent.dll
2018-12-12 21:45 - 2018-12-08 08:36 - 002364928 _____ (Microsoft Corporation) C:\Windows\system32\OpcServices.dll
2018-12-12 21:45 - 2018-12-08 08:36 - 001768448 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2018-12-12 21:45 - 2018-12-08 08:35 - 000808448 _____ (Microsoft Corporation) C:\Windows\system32\EdgeManager.dll
2018-12-12 21:45 - 2018-12-08 08:35 - 000623104 _____ (Microsoft Corporation) C:\Windows\system32\PsmServiceExtHost.dll
2018-12-12 21:45 - 2018-12-08 08:34 - 001535488 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2018-12-12 21:45 - 2018-12-08 08:34 - 000684544 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2018-12-12 21:45 - 2018-12-08 08:33 - 002904064 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2018-12-12 21:45 - 2018-12-08 08:32 - 001032704 _____ (Microsoft Corporation) C:\Windows\system32\modernexecserver.dll
2018-12-12 21:45 - 2018-12-08 08:32 - 000542208 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2018-12-12 21:45 - 2018-12-08 08:26 - 001348096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OpcServices.dll
2018-12-12 21:45 - 2018-12-08 08:24 - 000533504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2018-12-12 21:45 - 2018-11-09 06:59 - 008623616 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2018-12-12 21:45 - 2018-11-09 06:56 - 000392192 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2018-12-12 21:45 - 2018-11-09 06:55 - 000878592 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2018-12-12 21:45 - 2018-11-09 06:20 - 007987712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2018-12-12 21:45 - 2018-11-09 06:18 - 000344576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2018-12-12 21:45 - 2018-11-09 06:17 - 000704000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2018-12-12 21:45 - 2018-11-09 03:49 - 000565048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2018-12-12 21:45 - 2018-11-09 03:48 - 003179760 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2018-12-12 21:45 - 2018-11-09 03:48 - 001613288 _____ (Microsoft Corporation) C:\Windows\system32\D3D12.dll
2018-12-12 21:45 - 2018-11-09 03:47 - 002765344 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2018-12-12 21:45 - 2018-11-09 03:47 - 002571128 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2018-12-12 21:45 - 2018-11-09 03:21 - 004866560 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2018-12-12 21:45 - 2018-11-09 03:21 - 000119808 _____ (Microsoft Corporation) C:\Windows\system32\UserDataTimeUtil.dll
2018-12-12 21:45 - 2018-11-09 03:19 - 002368512 _____ (Microsoft Corporation) C:\Windows\system32\WebRuntimeManager.dll
2018-12-12 21:45 - 2018-11-09 03:19 - 000726528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2018-12-12 21:45 - 2018-11-09 03:18 - 003320320 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2018-12-12 21:45 - 2018-11-09 03:16 - 004939776 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2018-12-12 21:45 - 2018-11-09 03:16 - 002224640 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2018-12-12 21:45 - 2018-11-09 03:15 - 000505344 _____ (Microsoft Corporation) C:\Windows\system32\edgeIso.dll
2018-12-12 21:45 - 2018-11-09 03:07 - 002417976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2018-12-12 21:45 - 2018-11-09 03:07 - 001299704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3D12.dll
2018-12-12 21:45 - 2018-11-09 02:48 - 000550728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2018-12-12 21:45 - 2018-11-09 02:46 - 002253184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2018-12-12 21:45 - 2018-11-09 02:46 - 001980776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2018-12-12 21:45 - 2018-11-09 02:31 - 000094720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataTimeUtil.dll
2018-12-12 21:45 - 2018-11-09 02:29 - 003711488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2018-12-12 21:45 - 2018-11-09 02:29 - 000561152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2018-12-12 21:45 - 2018-11-09 02:28 - 002900992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2018-12-12 21:45 - 2018-11-09 02:26 - 004514816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2018-12-12 21:44 - 2018-12-08 13:47 - 001048712 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Shell.Broker.dll
2018-12-12 21:44 - 2018-12-08 13:47 - 000645320 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2018-12-12 21:44 - 2018-12-08 13:46 - 000549760 _____ (Microsoft Corporation) C:\Windows\system32\AppResolver.dll
2018-12-12 21:44 - 2018-12-08 13:42 - 004527800 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2018-12-12 21:44 - 2018-12-08 13:42 - 001616824 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2018-12-12 21:44 - 2018-12-08 13:41 - 000481880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2018-12-12 21:44 - 2018-12-08 13:39 - 000444416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppResolver.dll
2018-12-12 21:44 - 2018-12-08 13:29 - 013572608 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2018-12-12 21:44 - 2018-12-08 13:29 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\iemigplugin.dll
2018-12-12 21:44 - 2018-12-08 13:28 - 006586880 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2018-12-12 21:44 - 2018-12-08 13:28 - 004708864 _____ (Microsoft Corporation) C:\Windows\system32\twinui.pcshell.dll
2018-12-12 21:44 - 2018-12-08 13:27 - 005657600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2018-12-12 21:44 - 2018-12-08 13:27 - 000082432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storqosflt.sys
2018-12-12 21:44 - 2018-12-08 13:27 - 000068608 _____ (Microsoft Corporation) C:\Windows\system32\fdBth.dll
2018-12-12 21:44 - 2018-12-08 13:27 - 000059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdBth.dll
2018-12-12 21:44 - 2018-12-08 13:23 - 001661440 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2018-12-12 21:44 - 2018-12-08 13:23 - 000503296 _____ (Microsoft Corporation) C:\Windows\system32\sppcext.dll
2018-12-12 21:44 - 2018-12-08 13:23 - 000471040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AcSpecfc.dll
2018-12-12 21:44 - 2018-12-08 13:22 - 001469952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2018-12-12 21:44 - 2018-12-08 13:22 - 000577024 _____ (Microsoft Corporation) C:\Windows\system32\SppExtComObj.Exe
2018-12-12 21:44 - 2018-12-08 09:12 - 000272408 _____ (Microsoft Corporation) C:\Windows\system32\SgrmEnclave.dll
2018-12-12 21:44 - 2018-12-08 09:12 - 000269336 _____ (Microsoft Corporation) C:\Windows\system32\SgrmEnclave_secure.dll
2018-12-12 21:44 - 2018-12-08 09:12 - 000092688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bindflt.sys
2018-12-12 21:44 - 2018-12-08 09:07 - 005625352 _____ (Microsoft Corporation) C:\Windows\system32\StartTileData.dll
2018-12-12 21:44 - 2018-12-08 09:07 - 001328632 _____ (Microsoft Corporation) C:\Windows\system32\wpx.dll
2018-12-12 21:44 - 2018-12-08 09:07 - 001063416 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2018-12-12 21:44 - 2018-12-08 09:06 - 000777512 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2018-12-12 21:44 - 2018-12-08 09:06 - 000433168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2018-12-12 21:44 - 2018-12-08 09:06 - 000249088 _____ (Microsoft Corporation) C:\Windows\system32\weretw.dll
2018-12-12 21:44 - 2018-12-08 09:05 - 007436216 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2018-12-12 21:44 - 2018-12-08 09:05 - 001018880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ClipSp.sys
2018-12-12 21:44 - 2018-12-08 09:05 - 000421176 _____ (Microsoft Corporation) C:\Windows\system32\xbgmengine.dll
2018-12-12 21:44 - 2018-12-08 09:05 - 000130312 _____ (Microsoft Corporation) C:\Windows\system32\rmclient.dll
2018-12-12 21:44 - 2018-12-08 09:05 - 000086016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fileinfo.sys
2018-12-12 21:44 - 2018-12-08 09:04 - 004404720 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2018-12-12 21:44 - 2018-12-08 09:04 - 001943328 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2018-12-12 21:44 - 2018-12-08 09:04 - 001188512 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2018-12-12 21:44 - 2018-12-08 09:04 - 000527160 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2018-12-12 21:44 - 2018-12-08 09:04 - 000375608 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msrpc.sys
2018-12-12 21:44 - 2018-12-08 09:04 - 000335672 _____ (Microsoft Corporation) C:\Windows\system32\moshostcore.dll
2018-12-12 21:44 - 2018-12-08 09:04 - 000268280 _____ (Microsoft Corporation) C:\Windows\system32\browserbroker.dll
2018-12-12 21:44 - 2018-12-08 09:04 - 000260800 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2018-12-12 21:44 - 2018-12-08 09:04 - 000158624 _____ (Microsoft Corporation) C:\Windows\system32\vertdll.dll
2018-12-12 21:44 - 2018-12-08 09:04 - 000128824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tm.sys
2018-12-12 21:44 - 2018-12-08 09:04 - 000058168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\iorate.sys
2018-12-12 21:44 - 2018-12-08 09:04 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\browser_broker.exe
2018-12-12 21:44 - 2018-12-08 08:49 - 025855488 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2018-12-12 21:44 - 2018-12-08 08:47 - 000785760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2018-12-12 21:44 - 2018-12-08 08:46 - 000665224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2018-12-12 21:44 - 2018-12-08 08:46 - 000101192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rmclient.dll
2018-12-12 21:44 - 2018-12-08 08:45 - 006043496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2018-12-12 21:44 - 2018-12-08 08:45 - 001620472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2018-12-12 21:44 - 2018-12-08 08:45 - 001379816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll
2018-12-12 21:44 - 2018-12-08 08:45 - 000356864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
2018-12-12 21:44 - 2018-12-08 08:45 - 000129296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2018-12-12 21:44 - 2018-12-08 08:42 - 009084928 _____ (Microsoft Corporation) C:\Windows\system32\BingMaps.dll
2018-12-12 21:44 - 2018-12-08 08:41 - 007057408 _____ (Microsoft Corporation) C:\Windows\system32\mos.dll
2018-12-12 21:44 - 2018-12-08 08:40 - 004710912 _____ (Microsoft Corporation) C:\Windows\system32\cdp.dll
2018-12-12 21:44 - 2018-12-08 08:39 - 000036352 _____ (Microsoft Corporation) C:\Windows\system32\wpnsruprov.dll
2018-12-12 21:44 - 2018-12-08 08:38 - 022016000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2018-12-12 21:44 - 2018-12-08 08:38 - 003392000 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2018-12-12 21:44 - 2018-12-08 08:38 - 002739200 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2018-12-12 21:44 - 2018-12-08 08:38 - 000419328 _____ (Microsoft Corporation) C:\Windows\system32\eeprov.dll
2018-12-12 21:44 - 2018-12-08 08:38 - 000310272 _____ (Microsoft Corporation) C:\Windows\system32\wc_storage.dll
2018-12-12 21:44 - 2018-12-08 08:38 - 000132608 _____ (Microsoft Corporation) C:\Windows\system32\DataUsageLiveTileTask.exe
2018-12-12 21:44 - 2018-12-08 08:38 - 000085504 _____ (Microsoft Corporation) C:\Windows\system32\LocationFrameworkInternalPS.dll
2018-12-12 21:44 - 2018-12-08 08:38 - 000083456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wcnfs.sys
2018-12-12 21:44 - 2018-12-08 08:38 - 000055296 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2018-12-12 21:44 - 2018-12-08 08:37 - 002825728 _____ (Microsoft Corporation) C:\Windows\system32\MapGeocoder.dll
2018-12-12 21:44 - 2018-12-08 08:37 - 000395776 _____ (Microsoft Corporation) C:\Windows\system32\Search.ProtocolHandler.MAPI2.dll
2018-12-12 21:44 - 2018-12-08 08:37 - 000386048 _____ (Microsoft Corporation) C:\Windows\system32\Windows.System.Diagnostics.dll
2018-12-12 21:44 - 2018-12-08 08:37 - 000358912 _____ (Microsoft Corporation) C:\Windows\system32\DataUsageHandlers.dll
2018-12-12 21:44 - 2018-12-08 08:37 - 000184320 _____ (Microsoft Corporation) C:\Windows\system32\bthserv.dll
2018-12-12 21:44 - 2018-12-08 08:37 - 000170496 _____ (Microsoft Corporation) C:\Windows\system32\appsruprov.dll
2018-12-12 21:44 - 2018-12-08 08:37 - 000157696 _____ (Microsoft Corporation) C:\Windows\system32\energyprov.dll
2018-12-12 21:44 - 2018-12-08 08:37 - 000106496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthenum.sys
2018-12-12 21:44 - 2018-12-08 08:37 - 000099328 _____ (Microsoft Corporation) C:\Windows\system32\utcutil.dll
2018-12-12 21:44 - 2018-12-08 08:37 - 000079872 _____ (Microsoft Corporation) C:\Windows\system32\offreg.dll
2018-12-12 21:44 - 2018-12-08 08:36 - 003381248 _____ (Microsoft Corporation) C:\Windows\system32\MapRouter.dll
2018-12-12 21:44 - 2018-12-08 08:36 - 003090432 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2018-12-12 21:44 - 2018-12-08 08:36 - 000894464 _____ (Microsoft Corporation) C:\Windows\system32\webplatstorageserver.dll
2018-12-12 21:44 - 2018-12-08 08:36 - 000566784 _____ (Microsoft Corporation) C:\Windows\system32\daxexec.dll
2018-12-12 21:44 - 2018-12-08 08:36 - 000462336 _____ (Microsoft Corporation) C:\Windows\system32\bcdedit.exe
2018-12-12 21:44 - 2018-12-08 08:36 - 000356352 _____ (Microsoft Corporation) C:\Windows\system32\dusmsvc.dll
2018-12-12 21:44 - 2018-12-08 08:36 - 000227328 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2018-12-12 21:44 - 2018-12-08 08:36 - 000153600 _____ (Microsoft Corporation) C:\Windows\system32\RMapi.dll
2018-12-12 21:44 - 2018-12-08 08:36 - 000043008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mmcss.sys
2018-12-12 21:44 - 2018-12-08 08:35 - 002126336 _____ (Microsoft Corporation) C:\Windows\system32\LocationFramework.dll
2018-12-12 21:44 - 2018-12-08 08:35 - 001708544 _____ (Microsoft Corporation) C:\Windows\system32\MSPhotography.dll
2018-12-12 21:44 - 2018-12-08 08:34 - 001023488 _____ (Microsoft Corporation) C:\Windows\system32\ShareHost.dll
2018-12-12 21:44 - 2018-12-08 08:34 - 000884224 _____ (Microsoft Corporation) C:\Windows\system32\NMAA.dll
2018-12-12 21:44 - 2018-12-08 08:34 - 000693248 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Connectivity.dll
2018-12-12 21:44 - 2018-12-08 08:34 - 000491520 _____ (Microsoft Corporation) C:\Windows\system32\defragsvc.dll
2018-12-12 21:44 - 2018-12-08 08:33 - 019405312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2018-12-12 21:44 - 2018-12-08 08:33 - 001457152 _____ (Microsoft Corporation) C:\Windows\system32\dosvc.dll
2018-12-12 21:44 - 2018-12-08 08:33 - 001264640 _____ (Microsoft Corporation) C:\Windows\system32\JpMapControl.dll
2018-12-12 21:44 - 2018-12-08 08:33 - 001058304 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2018-12-12 21:44 - 2018-12-08 08:33 - 000949248 _____ (Microsoft Corporation) C:\Windows\system32\wcmsvc.dll
2018-12-12 21:44 - 2018-12-08 08:33 - 000823296 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll
2018-12-12 21:44 - 2018-12-08 08:33 - 000176640 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2018-12-12 21:44 - 2018-12-08 08:32 - 001097728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2018-12-12 21:44 - 2018-12-08 08:32 - 000895488 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.OnlineId.dll
2018-12-12 21:44 - 2018-12-08 08:32 - 000796672 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2018-12-12 21:44 - 2018-12-08 08:32 - 000406528 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2018-12-12 21:44 - 2018-12-08 08:30 - 006647296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BingMaps.dll
2018-12-12 21:44 - 2018-12-08 08:30 - 002966528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdp.dll
2018-12-12 21:44 - 2018-12-08 08:30 - 000074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dtdump.exe
2018-12-12 21:44 - 2018-12-08 08:29 - 005883904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mos.dll
2018-12-12 21:44 - 2018-12-08 08:29 - 002700288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2018-12-12 21:44 - 2018-12-08 08:29 - 000311296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.System.Diagnostics.dll
2018-12-12 21:44 - 2018-12-08 08:29 - 000032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werdiagcontroller.dll
2018-12-12 21:44 - 2018-12-08 08:28 - 002258944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2018-12-12 21:44 - 2018-12-08 08:28 - 001361408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSPhotography.dll
2018-12-12 21:44 - 2018-12-08 08:28 - 000391680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\daxexec.dll
2018-12-12 21:44 - 2018-12-08 08:28 - 000288768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2018-12-12 21:44 - 2018-12-08 08:27 - 002449408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapRouter.dll
2018-12-12 21:44 - 2018-12-08 08:27 - 001986560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapGeocoder.dll
2018-12-12 21:44 - 2018-12-08 08:27 - 000608768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EdgeManager.dll
2018-12-12 21:44 - 2018-12-08 08:27 - 000578560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webplatstorageserver.dll
2018-12-12 21:44 - 2018-12-08 08:27 - 000555008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.Connectivity.dll
2018-12-12 21:44 - 2018-12-08 08:27 - 000059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\offreg.dll
2018-12-12 21:44 - 2018-12-08 08:26 - 000848384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ShareHost.dll
2018-12-12 21:44 - 2018-12-08 08:25 - 000978944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JpMapControl.dll
2018-12-12 21:44 - 2018-12-08 08:25 - 000856576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2018-12-12 21:44 - 2018-12-08 08:25 - 000729088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NMAA.dll
2018-12-12 21:44 - 2018-12-08 08:25 - 000702464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.appcore.dll
2018-12-12 21:44 - 2018-12-08 08:25 - 000145408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2018-12-12 21:44 - 2018-12-08 08:24 - 000795648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2018-12-12 21:44 - 2018-12-08 08:24 - 000735744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2018-12-12 21:44 - 2018-12-08 08:24 - 000345088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2018-12-12 21:44 - 2018-11-09 07:15 - 021388752 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2018-12-12 21:44 - 2018-11-09 07:00 - 000177664 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2018-12-12 21:44 - 2018-11-09 06:58 - 000244736 _____ (Microsoft Corporation) C:\Windows\system32\WinSCard.dll
2018-12-12 21:44 - 2018-11-09 06:57 - 000208896 _____ (Microsoft Corporation) C:\Windows\system32\sensrsvc.dll
2018-12-12 21:44 - 2018-11-09 06:56 - 000381952 _____ (Microsoft Corporation) C:\Windows\system32\ninput.dll
2018-12-12 21:44 - 2018-11-09 06:56 - 000103936 _____ (Microsoft Corporation) C:\Windows\system32\DeviceSoftwareInstallationClient.dll
2018-12-12 21:44 - 2018-11-09 06:55 - 001254400 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.Handlers.dll
2018-12-12 21:44 - 2018-11-09 06:54 - 001535488 _____ (Microsoft Corporation) C:\Windows\system32\wbengine.exe
2018-12-12 21:44 - 2018-11-09 06:32 - 020383832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2018-12-12 21:44 - 2018-11-09 06:22 - 000138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll
2018-12-12 21:44 - 2018-11-09 06:19 - 000181248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinSCard.dll
2018-12-12 21:44 - 2018-11-09 06:18 - 000320512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ninput.dll
2018-12-12 21:44 - 2018-11-09 03:56 - 001213472 _____ (Microsoft Corporation) C:\Windows\system32\ClipUp.exe
2018-12-12 21:44 - 2018-11-09 03:49 - 000723416 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2018-12-12 21:44 - 2018-11-09 03:49 - 000368656 _____ (Microsoft Corporation) C:\Windows\system32\thumbcache.dll
2018-12-12 21:44 - 2018-11-09 03:48 - 002719736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2018-12-12 21:44 - 2018-11-09 03:48 - 000899920 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2018-12-12 21:44 - 2018-11-09 03:48 - 000766704 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2018-12-12 21:44 - 2018-11-09 03:48 - 000745472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2018-12-12 21:44 - 2018-11-09 03:48 - 000375296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys
2018-12-12 21:44 - 2018-11-09 03:47 - 002062392 _____ (Microsoft Corporation) C:\Windows\system32\mfsrcsnk.dll
2018-12-12 21:44 - 2018-11-09 03:47 - 001285432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2018-12-12 21:44 - 2018-11-09 03:47 - 000930616 _____ (Microsoft Corporation) C:\Windows\system32\WWAHost.exe
2018-12-12 21:44 - 2018-11-09 03:47 - 000537912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2018-12-12 21:44 - 2018-11-09 03:22 - 000185344 _____ (Microsoft Corporation) C:\Windows\system32\InstallServiceTasks.dll
2018-12-12 21:44 - 2018-11-09 03:22 - 000097792 _____ (Microsoft Corporation) C:\Windows\system32\winhttpcom.dll
2018-12-12 21:44 - 2018-11-09 03:21 - 001627136 _____ (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll
2018-12-12 21:44 - 2018-11-09 03:21 - 000112128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthhfenum.sys
2018-12-12 21:44 - 2018-11-09 03:21 - 000002560 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2018-12-12 21:44 - 2018-11-09 03:20 - 000530432 _____ (Microsoft Corporation) C:\Windows\system32\MapConfiguration.dll
2018-12-12 21:44 - 2018-11-09 03:20 - 000399872 _____ (Microsoft Corporation) C:\Windows\system32\BthAvctpSvc.dll
2018-12-12 21:44 - 2018-11-09 03:20 - 000193536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndiswan.sys
2018-12-12 21:44 - 2018-11-09 03:20 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\tzautoupdate.dll
2018-12-12 21:44 - 2018-11-09 03:19 - 000304128 _____ (Microsoft Corporation) C:\Windows\system32\domgmt.dll
2018-12-12 21:44 - 2018-11-09 03:18 - 001487360 _____ (Microsoft Corporation) C:\Windows\system32\InstallService.dll
2018-12-12 21:44 - 2018-11-09 03:18 - 000573952 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2018-12-12 21:44 - 2018-11-09 03:18 - 000514048 _____ (Microsoft Corporation) C:\Windows\system32\BTAGService.dll
2018-12-12 21:44 - 2018-11-09 03:18 - 000300032 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2018-12-12 21:44 - 2018-11-09 03:17 - 002584576 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2018-12-12 21:44 - 2018-11-09 03:17 - 001069568 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Streaming.dll
2018-12-12 21:44 - 2018-11-09 03:16 - 001364992 _____ (Microsoft Corporation) C:\Windows\system32\lpasvc.dll
2018-12-12 21:44 - 2018-11-09 03:16 - 001225216 _____ (Microsoft Corporation) C:\Windows\system32\MapsStore.dll
2018-12-12 21:44 - 2018-11-09 03:16 - 000308736 _____ (Microsoft Corporation) C:\Windows\system32\EnterpriseAppMgmtSvc.dll
2018-12-12 21:44 - 2018-11-09 03:15 - 000943616 _____ (Microsoft Corporation) C:\Windows\system32\BingOnlineServices.dll
2018-12-12 21:44 - 2018-11-09 03:15 - 000933888 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll
2018-12-12 21:44 - 2018-11-09 03:15 - 000884224 _____ (Microsoft Corporation) C:\Windows\system32\MapControlCore.dll
2018-12-12 21:44 - 2018-11-09 02:47 - 000295224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\thumbcache.dll
2018-12-12 21:44 - 2018-11-09 02:46 - 002161008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsrcsnk.dll
2018-12-12 21:44 - 2018-11-09 02:46 - 000829960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
2018-12-12 21:44 - 2018-11-09 02:46 - 000721024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2018-12-12 21:44 - 2018-11-09 02:46 - 000573504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2018-12-12 21:44 - 2018-11-09 02:31 - 000002560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2018-12-12 21:44 - 2018-11-09 02:30 - 000142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallServiceTasks.dll
2018-12-12 21:44 - 2018-11-09 02:30 - 000082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttpcom.dll
2018-12-12 21:44 - 2018-11-09 02:29 - 000392704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapConfiguration.dll
2018-12-12 21:44 - 2018-11-09 02:29 - 000331264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgeIso.dll
2018-12-12 21:44 - 2018-11-09 02:27 - 000463872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2018-12-12 21:44 - 2018-11-09 02:26 - 001110528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallService.dll
2018-12-12 21:44 - 2018-11-09 02:26 - 000873472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Streaming.dll
2018-12-12 21:44 - 2018-11-09 02:26 - 000251904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msIso.dll
2018-12-12 21:44 - 2018-11-09 02:25 - 000713216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BingOnlineServices.dll
2018-12-12 21:44 - 2018-11-09 02:25 - 000705024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapControlCore.dll
2018-12-11 23:15 - 2018-12-11 23:16 - 007913220 _____ C:\Users\Marti\Downloads\drive-download-20181211T221540Z-001.zip
2018-12-11 18:35 - 2018-12-11 18:35 - 000043549 _____ C:\Users\Marti\Downloads\blecha-vypisky.odt
2018-12-11 18:35 - 2018-12-11 18:35 - 000000000 ____D C:\Users\Marti\Downloads\Žáby1
2018-12-11 15:28 - 2018-12-11 15:29 - 003215872 _____ C:\Users\Marti\Downloads\6.Vzestup_moderni_organizace.ppt
2018-12-11 15:28 - 2018-12-11 15:29 - 003211264 _____ C:\Users\Marti\Downloads\6.Vzestup_moderni_organizace (1).ppt
2018-12-11 10:00 - 2018-12-11 10:00 - 003993983 _____ C:\Users\Marti\Downloads\Testy_Pravopis.zip
2018-12-11 09:38 - 2018-12-11 11:00 - 625337488 _____ C:\Users\Marti\Downloads\Žáby1.rar
2018-12-10 23:01 - 2018-12-10 23:01 - 001443160 _____ C:\Users\Marti\Downloads\MedialniPraxe-dulezite!.zip
2018-12-10 22:23 - 2018-12-10 22:23 - 000663241 _____ C:\Users\Marti\Downloads\ČESKÝ NÁRODNÍ KORPUS (1).pptx
2018-12-10 21:53 - 2018-12-10 21:54 - 001384600 _____ C:\Users\Marti\Downloads\Testy.zip
2018-12-09 21:41 - 2018-12-09 21:41 - 001030302 _____ C:\Users\Marti\Downloads\USKB jou.pdf
2018-12-09 19:16 - 2018-12-09 19:16 - 000356766 _____ C:\Users\Marti\Downloads\31755618.pdf
2018-12-06 22:30 - 2018-12-06 22:30 - 000014597 _____ C:\Users\Marti\Downloads\dopcr080118_2.xlsx
2018-12-06 22:28 - 2018-12-06 22:28 - 000050083 _____ C:\Users\Marti\Downloads\osdcr100318_2.xlsx
2018-12-05 08:12 - 2018-12-05 08:12 - 004457075 _____ C:\Users\Marti\Downloads\úvod-do-studia-médií.pdf
2018-12-04 22:26 - 2018-12-04 22:26 - 001514676 _____ C:\Users\Marti\Documents\TOTALITNÍ REŽIMY.pptx
2018-12-04 15:40 - 2018-12-04 15:40 - 000016840 _____ C:\Users\Marti\Downloads\bestin-full.svg
2018-12-04 15:22 - 2018-12-04 15:22 - 000013866 _____ C:\Users\Marti\Downloads\[KAM]+Transform+Each+2.1.jsx
2018-12-04 14:46 - 2018-12-04 14:46 - 000304407 _____ C:\Users\Marti\Downloads\Governor_Personal_License.zip
2018-12-04 14:44 - 2018-12-04 14:44 - 000104011 _____ C:\Users\Marti\Downloads\lovelo.zip
2018-12-04 14:15 - 2018-12-04 14:16 - 002617603 _____ C:\Users\Marti\Downloads\ostrich-sans-master.zip
2018-12-04 14:03 - 2018-12-04 14:04 - 000446741 _____ C:\Users\Marti\Downloads\Josefin_Sans.zip
2018-12-02 21:05 - 2018-12-02 21:05 - 001375683 _____ C:\Users\Marti\Downloads\portfolioMS2.pdf
2018-12-02 12:05 - 2018-12-02 12:07 - 063635868 _____ C:\Users\Marti\Downloads\Lutify-me-Free-3D-LUTs-Package-1.6.0.zip
2018-11-30 21:52 - 2018-11-30 21:52 - 000167950 _____ C:\Users\Marti\Downloads\Londrina_Solid.zip
2018-11-30 21:52 - 2018-11-30 21:52 - 000150878 _____ C:\Users\Marti\Downloads\Cavorting_MM.zip
2018-11-30 21:51 - 2018-11-30 22:07 - 025917579 _____ C:\Users\Marti\Downloads\final_05.psd
2018-11-30 18:20 - 2018-11-30 18:20 - 000097735 _____ C:\Users\Marti\Downloads\dokument_01 (1).pdf
2018-11-30 17:59 - 2018-11-30 17:59 - 000097735 _____ C:\Users\Marti\Downloads\dokument_01.pdf
2018-11-30 17:22 - 2018-11-30 17:22 - 001005620 _____ C:\Users\Marti\Downloads\_19___paint_brushes_by_domino_88_abr.zip
2018-11-30 16:57 - 2018-11-30 16:57 - 001328736 _____ C:\Users\Marti\Downloads\CMnet_Pixl_AdobeRGB_testimage05.zip
2018-11-29 22:03 - 2018-11-29 22:03 - 085321999 _____ C:\Users\Marti\Downloads\applause-audience-band-1120162.psd
2018-11-28 16:09 - 2018-12-20 20:16 - 000004208 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{4D333B27-8768-4DBC-8AD0-C0B521DDE50A}
2018-11-28 08:31 - 2018-11-28 08:31 - 000158126 _____ C:\Users\Marti\Downloads\Space_Mono.zip
2018-11-26 19:04 - 2018-12-17 14:04 - 000000000 ____D C:\Users\Marti\Desktop\Ostatní
2018-11-26 18:44 - 2018-11-26 18:44 - 000002658 _____ C:\Users\Marti\Downloads\like.eps
2018-11-26 18:15 - 2018-11-26 18:15 - 002182524 _____ C:\Users\Marti\Downloads\Fantastic-coffee-pattern-with-decorative-items.zip
2018-11-26 12:38 - 2018-11-26 12:38 - 003607217 _____ C:\Users\Marti\Downloads\Prezentace-novodobé-dějiny-českých-zemi.pptx
2018-11-26 12:38 - 2018-11-26 12:38 - 001120537 _____ C:\Users\Marti\Downloads\Napoleon.pptx
2018-11-26 12:38 - 2018-11-26 12:38 - 000098967 _____ C:\Users\Marti\Downloads\Velká francouzská revoluce - prezentace.pptx
2018-11-25 22:05 - 2018-11-25 22:05 - 000236777 _____ C:\Users\Marti\Downloads\31265097.pdf
2018-11-24 19:34 - 2018-11-24 19:34 - 000290556 _____ C:\Users\Marti\Downloads\PT_Sans_Narrow.zip
2018-11-24 19:27 - 2018-11-24 19:27 - 000887907 _____ C:\Users\Marti\Downloads\PT_Sans.zip
2018-11-24 19:21 - 2018-11-24 19:21 - 000000000 ____D C:\ProgramData\Automatic Duck
2018-11-23 19:40 - 2018-11-23 19:40 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2018-11-23 19:40 - 2017-09-14 00:20 - 000798008 _____ C:\Windows\SysWOW64\vulkan-1.dll
2018-11-23 19:40 - 2017-09-14 00:20 - 000490296 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2018-11-23 19:40 - 2017-09-14 00:19 - 000927544 _____ C:\Windows\system32\vulkan-1.dll
2018-11-23 19:40 - 2017-09-14 00:19 - 000591160 _____ C:\Windows\system32\vulkaninfo.exe
2018-11-23 19:39 - 2017-12-04 20:19 - 000001951 _____ C:\Windows\NvContainerRecovery.bat
2018-11-23 14:36 - 2018-11-23 14:35 - 000298537 ____T C:\Users\Marti\Documents\potvrzeni-o-studiu.pdf
2018-11-22 22:19 - 2018-11-22 22:19 - 000783163 _____ C:\Users\Marti\Downloads\instrumentum-laboris.pdf
2018-11-22 19:45 - 2018-11-22 19:46 - 000000000 ____D C:\Users\Marti\Documents\USB
2018-11-22 19:22 - 2018-11-22 19:22 - 000317432 _____ C:\Users\Marti\Downloads\WinUSB.diagcab
2018-11-22 09:40 - 2018-11-22 09:40 - 002655584 _____ C:\Users\Marti\Downloads\X555UFAS300.zip

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-12-20 20:24 - 2018-10-25 21:34 - 001601516 _____ C:\Windows\system32\PerfStringBackup.INI
2018-12-20 20:24 - 2018-04-12 16:50 - 000683294 _____ C:\Windows\system32\perfh005.dat
2018-12-20 20:24 - 2018-04-12 16:50 - 000137174 _____ C:\Windows\system32\perfc005.dat
2018-12-20 20:24 - 2018-04-12 00:36 - 000000000 ____D C:\Windows\INF
2018-12-20 20:19 - 2018-10-26 03:18 - 000000000 ____D C:\ProgramData\NVIDIA
2018-12-20 20:19 - 2018-10-25 23:04 - 000000000 ____D C:\ProgramData\ASUS Smart Gesture
2018-12-20 20:19 - 2018-10-25 22:11 - 000000000 __SHD C:\Users\Marti\IntelGraphicsProfiles
2018-12-20 20:19 - 2018-10-25 21:27 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-12-20 20:19 - 2018-04-12 00:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2018-12-20 20:19 - 2018-04-11 22:04 - 000786432 _____ C:\Windows\system32\config\BBI
2018-12-20 20:15 - 2018-10-26 03:17 - 000003374 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-810472551-3693116230-181698664-1001
2018-12-20 20:15 - 2018-10-25 21:35 - 000000000 ___RD C:\Users\Marti\OneDrive
2018-12-20 20:15 - 2018-10-25 21:31 - 000002387 _____ C:\Users\Marti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2018-12-20 20:00 - 2018-10-25 22:09 - 000000000 ____D C:\Users\Marti\AppData\Roaming\uTorrent
2018-12-20 19:25 - 2018-10-29 09:56 - 000003726 _____ C:\Windows\System32\Tasks\AdobeGCInvoker-1.0-MicrosoftAccount-marti@outlook.com
2018-12-20 18:48 - 2018-10-25 21:27 - 000000000 ____D C:\Windows\system32\SleepStudy
2018-12-20 18:03 - 2018-10-25 21:33 - 000000000 ____D C:\Users\Marti\AppData\Roaming\Adobe
2018-12-20 17:38 - 2018-10-26 13:06 - 000000000 ____D C:\Users\Marti\AppData\Local\Spotify
2018-12-20 16:20 - 2018-10-26 13:03 - 000000000 ____D C:\Users\Marti\AppData\Roaming\Spotify
2018-12-20 15:37 - 2018-10-26 12:24 - 000000000 ____D C:\Users\Marti\AppData\Local\D3DSCache
2018-12-20 15:32 - 2018-10-26 12:09 - 000000000 ____D C:\Program Files\Adobe
2018-12-20 15:31 - 2018-10-25 23:00 - 000000000 ____D C:\ProgramData\Package Cache
2018-12-19 22:02 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\AppReadiness
2018-12-19 22:01 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\TextInput
2018-12-19 22:01 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\bcastdvr
2018-12-19 21:50 - 2018-04-12 00:30 - 000000000 ____D C:\Windows\CbsTemp
2018-12-18 20:22 - 2018-04-12 00:38 - 000000000 ___HD C:\Program Files\WindowsApps
2018-12-18 11:58 - 2018-10-25 21:57 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-12-18 11:57 - 2018-10-25 21:35 - 000000000 ____D C:\Users\Marti\AppData\Local\PlaceholderTileLogoFolder
2018-12-15 11:01 - 2018-10-25 21:33 - 000000000 ____D C:\Users\Marti\AppData\Local\Packages
2018-12-15 03:16 - 2018-10-28 14:01 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2018-12-15 03:16 - 2018-10-25 21:33 - 000000000 __RHD C:\Users\Public\AccountPictures
2018-12-15 03:16 - 2018-10-25 21:33 - 000000000 ___RD C:\Users\Marti\3D Objects
2018-12-15 03:16 - 2018-10-25 21:27 - 000583224 _____ C:\Windows\system32\FNTCACHE.DAT
2018-12-15 03:15 - 2018-04-12 00:38 - 000000000 ___SD C:\Windows\system32\DiagSvcs
2018-12-15 03:15 - 2018-04-12 00:38 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2018-12-15 03:15 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\ShellComponents
2018-12-12 21:50 - 2018-10-26 02:22 - 000000000 ____D C:\Windows\system32\MRT
2018-12-12 21:49 - 2018-10-26 02:22 - 137260640 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2018-12-12 09:45 - 2018-10-27 14:38 - 000000000 ____D C:\Users\Marti\Documents\UPOL
2018-12-11 13:59 - 2018-10-25 23:36 - 000592616 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2018-12-11 13:59 - 2018-10-25 21:27 - 000000000 ____D C:\Windows\system32\Drivers\wd
2018-12-11 10:02 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\LiveKernelReports
2018-12-07 16:34 - 2018-11-17 11:06 - 000000000 ____D C:\Program Files\rempl
2018-12-04 14:29 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\system32\NDF
2018-12-03 14:00 - 2018-10-25 21:38 - 000000000 ____D C:\Users\Marti\AppData\Local\Comms
2018-12-01 05:01 - 2018-04-12 00:41 - 000835688 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2018-12-01 05:01 - 2018-04-12 00:41 - 000179808 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2018-11-28 18:10 - 2018-11-13 18:14 - 041944027 _____ C:\Users\Marti\Documents\Co děláme.pptx
2018-11-26 12:24 - 2018-10-25 23:09 - 000000000 ____D C:\Users\Marti\AppData\Local\ElevatedDiagnostics
2018-11-24 14:12 - 2018-10-26 03:18 - 000000000 ____D C:\Users\Marti\AppData\Local\NVIDIA
2018-11-23 19:40 - 2018-10-26 03:17 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2018-11-23 19:39 - 2018-10-26 03:18 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation

==================== Files in the root of some directories =======

2018-10-29 09:55 - 2018-10-29 09:55 - 000000000 _____ () C:\Users\Marti\AppData\Local\oobelibMkey.log

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-10-25 21:27

==================== End of FRST.txt ============================
Přílohy
Addition.zip
(9.87 KiB) Staženo 72 x

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Klávesnice se chová zvláštně

#2 Příspěvek od Rudy »

Zdravím!
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

martinJmenoMe
Návštěvník
Návštěvník
Příspěvky: 26
Registrován: 28 čer 2018 11:16

Re: Klávesnice se chová zvláštně

#3 Příspěvek od martinJmenoMe »

Tady je log:

Kód: Vybrat vše

# -------------------------------
# Malwarebytes AdwCleaner 7.2.6.0
# -------------------------------
# Build:    12-18-2018
# Database: 2018-12-19.1 (Cloud)
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start:    12-21-2018
# Duration: 00:00:00
# OS:       Windows 10 Home
# Cleaned:  0
# Failed:   0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

No malicious registry entries cleaned.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [1250 octets] - [20/12/2018 20:04:37]
AdwCleaner[S01].txt - [1311 octets] - [20/12/2018 20:05:18]
AdwCleaner[C01].txt - [1497 octets] - [20/12/2018 20:05:27]
AdwCleaner[S02].txt - [1433 octets] - [21/12/2018 19:07:50]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C02].txt ##########

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Klávesnice se chová zvláštně

#4 Příspěvek od Rudy »

Toto je OK. Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - ()
GroupPolicy: Restriction ? <==== ATTENTION
CustomCLSID: HKU\S-1-5-21-810472551-3693116230-181698664-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-53FB27C4A866}\InprocServer32 -> %%systemroot%%\system32\shell32.dll => No File
Task: {410254F0-6294-43C2-8E8B-405614A6C895} - \GoogleUpdateTaskMachineCore -> No File <==== ATTENTION
Task: {B350274D-09FD-4E5F-AE58-2446973AA6CD} - \GoogleUpdateTaskMachineUA -> No File <==== ATTENTION

EmptyTemp:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

martinJmenoMe
Návštěvník
Návštěvník
Příspěvky: 26
Registrován: 28 čer 2018 11:16

Re: Klávesnice se chová zvláštně

#5 Příspěvek od martinJmenoMe »

Log zde:

Kód: Vybrat vše

Fix result of Farbar Recovery Scan Tool (x64) Version: 20.12.2018
Ran by Marti (21-12-2018 22:10:57) Run:2
Running from C:\Users\Marti\Desktop
Loaded Profiles: Marti (Available Profiles: Marti)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - ()
GroupPolicy: Restriction ? <==== ATTENTION
CustomCLSID: HKU\S-1-5-21-810472551-3693116230-181698664-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-53FB27C4A866}\InprocServer32 -> %%systemroot%%\system32\shell32.dll => No File
Task: {410254F0-6294-43C2-8E8B-405614A6C895} - \GoogleUpdateTaskMachineCore -> No File <==== ATTENTION
Task: {B350274D-09FD-4E5F-AE58-2446973AA6CD} - \GoogleUpdateTaskMachineUA -> No File <==== ATTENTION

EmptyTemp:
*****************

Processes closed successfully.
"HKLM\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck" => removed successfully
HKLM\Software\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED} => not found
C:\Windows\system32\GroupPolicy\Machine => moved successfully
C:\Windows\system32\GroupPolicy\GPT.ini => moved successfully
C:\Windows\SysWOW64\GroupPolicy\GPT.ini => moved successfully
HKU\S-1-5-21-810472551-3693116230-181698664-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-53FB27C4A866} => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{410254F0-6294-43C2-8E8B-405614A6C895}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{410254F0-6294-43C2-8E8B-405614A6C895}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B350274D-09FD-4E5F-AE58-2446973AA6CD}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B350274D-09FD-4E5F-AE58-2446973AA6CD}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => not found

=========== EmptyTemp: ==========

BITS transfer queue => 7888896 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 24247909 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 1030979 B
Edge => 3584 B
Chrome => 473225281 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
LocalService => 0 B
NetworkService => 3998 B
NetworkService => 0 B
Marti => 40897546 B

RecycleBin => 0 B
EmptyTemp: => 521.9 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 22:11:42 ====

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Klávesnice se chová zvláštně

#6 Příspěvek od Rudy »

Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

martinJmenoMe
Návštěvník
Návštěvník
Příspěvky: 26
Registrován: 28 čer 2018 11:16

Re: Klávesnice se chová zvláštně

#7 Příspěvek od martinJmenoMe »

Ne, bohužel moc ne, stále se to děje (a to hodně zvláštně, někdy mi přijde, že to je v pořádku, ale hlavně navečer se opět vyskytne problém). Plus jsem zaregistroval ještě jeden problém – Google mě jedenkrát vůbec nepustil k vyhledávání, vyskočila na mě stránka s tím, že mám napsat Captcha kód, ten se ale vůbec nezobrazil (vypadalo to, jako by byl nějak skrytý), takže jsem musel čekat, až se to vrátí do normálu (to se nakonec nějak vrátilo, ale bylo to nepříjemné).

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Klávesnice se chová zvláštně

#8 Příspěvek od Rudy »

Otevřte správce zařízení a odeberte (odinstalujte) klávesku. Pak restartujte (kláveska bude znovu načtena) a vyzkoušejte funkci. Ještě můžete vyčistit prohlížeče. Spusťte postupně tyto utility:

1. Stahnete Zoek.exe http://download.bleepingcomputer.com/smeenk/zoek.exe a ulozte jej na plochu

Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
Do okna vlozte skript nize




autoclean;
resethosts;
emptyclsid;
IEdefaults;
FFdefaults;
CHRdefaults;
emptyIEcache;
emptyFFcache;
emptyCHRcache;
emptyalltemp;
emptyflash;
emptyjava;
emptyrecycle.bin;





Nasledne kliknete na Run Script
PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem.

a

2. Junkware removal tool: https://www.stahuj.cz/utility_a_ostatni ... oval-tool/
•Ulozte nejlepe na plochu
•Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
•Probehne vytvoreni zalohy a nasledne prohledavani
•Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

hp184
Návštěvník
Návštěvník
Příspěvky: 75
Registrován: 23 pro 2008 20:20

Re: Klávesnice se chová zvláštně

#9 Příspěvek od hp184 »

Dobrý den. Provedl jsem dle pokynů. Přikládám obsah výpisu. Program zřejmě smazal i něco od Avastu, který v PC používám, tak mám obavu, zdali teď bude v pořádku fungovat.

výpis:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.4 (07.09.2017)
Operating System: Windows 10 Home x64
Ran by ZdenŘk (Administrator) on p  04.01.2019 at 12:44:46,83
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 7

Successfully deleted: C:\Users\ZdenŘk\AppData\Local\nico mak computing (Folder)
Successfully deleted: C:\WINDOWS\system32\drivers\swdumon.sys (File)
Successfully deleted: C:\WINDOWS\system32\Tasks\Avast Driver Updater Startup (Task)
Successfully deleted: C:\WINDOWS\Tasks\Avast Driver Updater Startup.job (Task)
Successfully deleted: C:\WINDOWS\wininit.ini (File)
Successfully deleted: C:\WINDOWS\SysWOW64\sho20F0.tmp (File)
Successfully deleted: C:\WINDOWS\SysWOW64\shoED21.tmp (File)



Registry: 3

Successfully deleted: HKLM\SYSTEM\CurrentControlSet\services\SWDUMon (Registry Key)
Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827} (Registry Key)
Successfully deleted: HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827} (Registry Key)




~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on p  04.01.2019 at 12:51:11,91
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Klávesnice se chová zvláštně

#10 Příspěvek od Rudy »

Avast ba měl fungovat bez problémů. Kde je log Zoek?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

hp184
Návštěvník
Návštěvník
Příspěvky: 75
Registrován: 23 pro 2008 20:20

Re: Klávesnice se chová zvláštně

#11 Příspěvek od hp184 »

V mezičase jsem ještě spustil skenování Advcleaner a ten opět našel položky, které údajně JRT odstranil:

C:\Windows\System32\drivers\swdumon.sys
a
HKLM\Software\Wow6432Node\SlimWare Utilities Inc


pokud jde o C:\Users\Public\Documents\Downloaded Installers
to zřejmě nic nebude, protože tato položka se v Advercleaneru objevila až po doinstalaci nové verze Avast Updater - přestal mi totiž fungovat po zásahu JRT

a pokud jde o MSN Homepage & Bing Search Engine objeví se to ihned po spuštění chromu a i když jsem to odmítnul, někde to zřejmě je a Adwc. to detekuje. /Zřejmě nepůjde o nic závažného/

Spíš by mě zajímalo proč Advc detekuje něco /C:\Windows\System32\drivers\swdumon.sys
a
HKLM\Software\Wow6432Node\SlimWare Utilities Inc/, co JRC měl vymazat.









# -------------------------------
# Malwarebytes AdwCleaner 7.2.6.0
# -------------------------------
# Build: 12-18-2018
# Database: 2019-01-02.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 01-04-2019
# Duration: 00:00:39
# OS: Windows 10 Home
# Scanned: 32243
# Detected: 4


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

PUP.Optional.Legacy C:\Users\Public\Documents\Downloaded Installers

***** [ Files ] *****

PUP.Optional.Legacy C:\Windows\System32\drivers\swdumon.sys

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

PUP.Optional.SlimCleanerPlus HKLM\Software\Wow6432Node\SlimWare Utilities Inc

***** [ Chromium (and derivatives) ] *****

PUP.Optional.Legacy MSN Homepage & Bing Search Engine

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.


AdwCleaner[S00].txt - [2171 octets] - [03/01/2019 22:09:18]
AdwCleaner[C00].txt - [2151 octets] - [03/01/2019 22:17:10]
AdwCleaner[S01].txt - [1462 octets] - [03/01/2019 22:50:21]
AdwCleaner[C01].txt - [1608 octets] - [03/01/2019 23:03:57]
AdwCleaner[S02].txt - [1584 octets] - [04/01/2019 12:39:43]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S03].txt ##########

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Klávesnice se chová zvláštně

#12 Příspěvek od Rudy »

Detekoval jako potenciálně nechtěný sw. JRT to smazal do karantémy. Mě ale zajímá log Zoek.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

hp184
Návštěvník
Návštěvník
Příspěvky: 75
Registrován: 23 pro 2008 20:20

Re: Klávesnice se chová zvláštně

#13 Příspěvek od hp184 »

Z věty: /vycisti PC este s JRT - bod 2 https://forum.viry.cz/viewtopic.php?f=1 ... e#p1514790/
jsem pochopil, že mám postupovat podle bodu 2 v odkazované komunikaci, takže jsem Zoek nepoužil - udělám to a ozvu se.

P.S. Omylem jsem začal psát do odkazované cizí komunikace, omlouvám se za to. Mám tu zůstat, nebo se mám vrátit do naší původní komunikace?

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Klávesnice se chová zvláštně

#14 Příspěvek od Rudy »

Myslel jsem spustit obě utility jednu po druhé a dát sem logy. V tomto případě zůstaneme zde.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

hp184
Návštěvník
Návštěvník
Příspěvky: 75
Registrován: 23 pro 2008 20:20

Re: Klávesnice se chová zvláštně

#15 Příspěvek od hp184 »

Dobrý den. S odstupem se ozývám (musel jsem do práce). Udělal jsem ten test Zoek. Pro úplnost musím přiznat, že věci proběhly takto: pc, který řeším je pc mého táty a pracoval jsem na něm vzdáleně. Když jsem na něm včera dělal test Zoek, notebook nebyl připojen do sítě, bohužel došla baterie a tak tento první test nedoběhl do konce - byl v běhu přerušen tím, že se notebook vypnul. Dnes jsem k pc dojel fyzicky a test udělal znovu podruhé. Doběhl celý v pořádku a koncový log přikládám. Chtěl jsem toto uvést pro úplnost a doufám, že tento zádrhel nebude problém.

Tady je log:

Zoek.exe v5.0.0.2 Updated 03-May-2018(Online Version)
Tool run by ZdenŘk on so 05.01.2019 at 13:06:02,18.
Microsoft Windows 10 Home 10.0.17134 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\ZDENK~2\Desktop\zoek.exe [Scan all users] [Script inserted]

==== Older Logs ======================

C:\zoek-results2019-01-04-134046.log 1986 bytes

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

# localhost name resolution is handled within DNS itself.
127.0.0.1 localhost
::1 localhost

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== FireFox Fix ======================

Deleted from C:\Users\ZDENK~2\AppData\Roaming\Mozilla\Firefox\Profiles\rl8fng56.default\prefs.js:
user_pref("browser.startup.homepage", "https://www.seznam.cz/");
user_pref("browser.search.defaultenginename", "Seznam");
user_pref("browser.search.selectedEngine", "Seznam");
user_pref("keyword.URL", "http://www.bing.com/search?FORM=UP97DF&PC=UP97&q=");
user_pref("browser.search.useDBForOrder", true);

Added to C:\Users\ZDENK~2\AppData\Roaming\Mozilla\Firefox\Profiles\rl8fng56.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

Deleted from C:\Users\ZDENK~2\AppData\Roaming\Thunderbird\Profiles\i26nb5kd.default\prefs.js:

Added to C:\Users\ZDENK~2\AppData\Roaming\Thunderbird\Profiles\i26nb5kd.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

ProfilePath: C:\Users\ZDENK~2\AppData\Roaming\Mozilla\Firefox\Profiles\rl8fng56.default

user.js not found
---- Lines searchengine removed from prefs.js ----
user_pref("browser.pageActions.persistedActions", "{\"version\":1,\"ids\":[\"bookmark\",\"bookmarkSeparator\",\"copyURL\",\"emailLink\",\"sendToDevice
---- FireFox user.js and prefs.js backups ----

prefs_05.01.2019_1426_.backup

ProfilePath: C:\Users\ZDENK~2\AppData\Roaming\Thunderbird\Profiles\i26nb5kd.default

user.js not found
---- FireFox user.js and prefs.js backups ----

prefs_05.01.2019_1426_.backup

==== Deleting Files \ Folders ======================

C:\PROGRA~3\Package Cache deleted
C:\windows\SysNative\Tasks\Avast Driver Updater Startup deleted
C:\windows\SysNative\Tasks\Avast TUNEUP Update deleted
C:\Users\ZDENK~2\Downloads\ReimageRepair (1).exe deleted
"C:\WINDOWS\Installer\11d270.msi" deleted

==== Orphaned Tasks deleted from Registry ======================

Avast Driver Updater Startup deleted
Avast TUNEUP Update deleted
Games deleted
OfficeSoftwareProtectionPlatform\SvcRestartTask deleted

==== Firefox Start and Search pages ======================

ProfilePath: C:\Users\ZDENK~2\AppData\Roaming\Mozilla\Firefox\Profiles\rl8fng56.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

ProfilePath: C:\Users\ZDENK~2\AppData\Roaming\Thunderbird\Profiles\i26nb5kd.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"otis@digitalpersona.com"="c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt" [02.08.2012 19:58]

==== Firefox Extensions ======================

ProfilePath: C:\Users\ZDENK~2\AppData\Roaming\Mozilla\Firefox\Profiles\rl8fng56.default
- __MSG_avastAppName__ - %ProfilePath%\extensions\sp@avast.com.xpi
- Avast Online Security - %ProfilePath%\extensions\wrc@avast.com.xpi

==== Firefox Plugins ======================


==== Chromium Look ======================

Google Chrome Version: 71.0.3578.98

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
eofcbnmajmjmplflapaojjnihcjkigck - No path found[]
gomekmidlodglbbmalcneegieacbdmki - No path found[]

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
fcfenmboojpjinhpgggodefccipikbpd - No path found[]

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.seznam.cz/"
"Default_Page_URL"="http://www.bing.com?pc=CMNTDF"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://www.seznam.cz/"

==== All HKLM and HKCU SearchScopes ======================

HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTer ... -SearchBox
HKLM\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827} - http://eu.ask.com/web?q={searchterms}&l=dis&o=CMNTDF
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTer ... -SearchBox
HKCU\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms}
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTer ... -SearchBox

==== Reset Google Chrome ======================

Nothing found to reset

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\C0414088441357045962C166E262AC71 deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\cd_label.exe deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\hppa_main.exe deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\hpsf.exe deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\mediaimpression.exe deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\slideshowplayer.exe deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\tmextreme.exe deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\tmshowbiz.exe deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\udtstart.exe deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\utmstudioframe.exe deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\uwebcam.exe deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{8804140C-3144-4075-9526-1C662E26CA17} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Avast Driver Updater deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\C0414088441357045962C166E262AC71 deleted successfully

==== Empty IE Cache ======================

C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

No Chrome User Data found

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=13 folders=8 39698944 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\DefaultAppPool\AppData\Local\Temp emptied successfully
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\Users\ZDENK~2\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on so 05.01.2019 at 14:45:52,02 ======================

Zamčeno