Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Windows 10 1903

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
samsungs6edge
Návštěvník
Návštěvník
Příspěvky: 134
Registrován: 26 kvě 2017 14:48

Windows 10 1903

#1 Příspěvek od samsungs6edge »

Dobrý den dnes jsem nainstaloval Windows 10 1903.A potřeboval bych zkontrolovat zda je vše v pořádku nastavené.Děkuji moc

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 19-05.2019
Ran by Administrator (administrator) on DESKTOP-LB1POA3 (ASUSTeK Computer Inc. K52De) (24-05-2019 16:08:31)
Running from C:\Users\Administrator\Desktop
Loaded Profiles: Administrator (Available Profiles: Administrator)
Platform: Windows 10 Home Version 1903 18362.116 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1904.1-0\MsMpEng.exe
(Microsoft Corporation -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1904.1-0\NisSrv.exe
(Microsoft Windows -> ) C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Users\Administrator\AppData\Local\Temp\321AE81B-8883-4B01-9176-6D8DA01EC447\DismHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Dism.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\msiexec.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.110_none_5f52ccdc58d07895\TiWorker.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE64.EXE

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18381792 2019-05-08] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3242696 2015-10-07] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-19\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup
HKU\S-1-5-20\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup
HKU\S-1-5-21-2047033312-1710764599-1795834438-500\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup
HKU\S-1-5-21-2047033312-1710764599-1795834438-500\...\Policies\Explorer: [NoAutoTrayNotify] 1
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\74.0.3729.169\Installer\chrmstp.exe [2019-05-24] (Google LLC -> Google Inc.)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {083F3813-82BC-4622-A1B0-070C619B7D11} - System32\Tasks\Microsoft\Windows\Diagnosis\RecommendedTroubleshootingScanner => C:\Windows\system32\mitigationscanner.exe [58880 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
Task: {0AAC7DBA-F4C0-4EE4-949A-C2309CD5095F} - System32\Tasks\Disable LockScreen => reg.exe add HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\LogonUI\SessionData /t REG_DWORD /v AllowLockScreen /d 0 /f
Task: {2E24827D-4649-43E4-8C8D-A2D3F727A41E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1904.1-0\MpCmdRun.exe [480352 2019-05-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {4559AC9A-3147-4330-A183-93330E2312C2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1904.1-0\MpCmdRun.exe [480352 2019-05-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {613A083C-17CD-47F4-AC35-96FC308E59CF} - System32\Tasks\Microsoft\Windows\Workplace Join\Device-Sync
Task: {66D5D955-39EF-44E6-B294-566473B57E05} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1904.1-0\MpCmdRun.exe [480352 2019-05-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {71920313-BEA1-4A6C-9818-AD9C0CE303F9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-05-24] (Google Inc -> Google LLC)
Task: {83FE5AF4-5F8B-4DD2-A585-A9F6ABC7A1AD} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-05-24] (Google Inc -> Google LLC)
Task: {90C28B5C-2A50-48E1-9579-EEE75F1B1F2E} - System32\Tasks\Microsoft\Windows\StateRepository\MaintenanceTasks => %windir%\system32\rundll32.exe %windir%\system32\Windows.StateRepositoryClient.dll,StateRepositoryDoMaintenanceTasks
Task: {91655BA3-49BE-4A10-9C02-3A159F3AE009} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1489920 2019-05-08] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {941EA21F-9451-44CB-9106-70FF8DCCE231} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1904.1-0\MpCmdRun.exe [480352 2019-05-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {D0C1F3D4-EB0F-46AF-8FD0-D79D07D1BC0B} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1489920 2019-05-08] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {EC8B0738-24A3-4C8C-998F-BAAF97B696A5} - System32\Tasks\Microsoft\OneCore\DirectX\DirectXDatabaseUpdater => C:\Windows\system32\directxdatabaseupdater.exe [252928 2019-03-19] (Microsoft Windows -> Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{a78d05e0-e702-4129-8dfc-3d3014d3cdce}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =

FireFox:
========
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-24] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-24] (Google Inc -> Google LLC)

Chrome:
=======
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR StartupUrls: Default -> "hxxp://www.seznam.cz/"
CHR Profile: C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default [2019-05-24]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-05-24]
CHR Extension: (Chrome Media Router) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-05-24]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AarSvc; C:\Windows\System32\AarSvc.dll [148992 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S4 AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [255472 2019-05-08] (Microsoft Windows Hardware Compatibility Publisher -> AMD)
S4 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [351944 2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
S3 autotimesvc; C:\Windows\System32\autotimesvc.dll [116224 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 CredentialEnrollmentManagerUserSvc; C:\Windows\system32\CredentialEnrollmentManager.exe [380120 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 CredentialEnrollmentManagerUserSvc_3a32d; C:\Windows\system32\CredentialEnrollmentManager.exe [380120 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 DeviceAssociationBrokerSvc; C:\Windows\System32\deviceaccess.dll [231912 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 DeviceAssociationBrokerSvc; C:\Windows\SysWOW64\deviceaccess.dll [185944 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
R2 DispBrokerDesktopSvc; C:\Windows\System32\DispBroker.Desktop.dll [396288 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S4 ETDService; C:\Program Files\Elantech\ETDService.exe [144072 2015-10-07] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [324608 2019-05-08] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
S3 TroubleshootingSvc; C:\Windows\system32\MitigationClient.dll [394752 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
R2 UsoSvc; C:\Windows\system32\usosvc.dll [509952 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1904.1-0\NisSrv.exe [3851264 2019-05-24] (Microsoft Corporation -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1904.1-0\MsMpEng.exe [118144 2019-05-24] (Microsoft Corporation -> Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 Acx01000; C:\Windows\System32\drivers\Acx01000.sys [337920 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 amdgpio2; C:\Windows\System32\drivers\amdgpio2.sys [18432 2019-03-19] (Microsoft Windows -> Advanced Micro Devices, Inc)
S3 amdi2c; C:\Windows\System32\drivers\amdi2c.sys [37888 2019-03-19] (Microsoft Windows -> Advanced Micro Devices, Inc)
R3 amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [21648880 2019-05-08] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [674288 2019-05-08] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R2 AODDriver4.3; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R3 athr; C:\Windows\System32\drivers\athw10x.sys [4321160 2019-05-08] (Qualcomm Atheros -> Qualcomm Atheros Communications, Inc.)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWT6.sys [110096 2016-04-18] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R3 btusbflt; C:\Windows\system32\drivers\btusbflt.sys [53800 2019-05-08] (Broadcom Corporation -> Broadcom Corporation.)
S3 genericusbfn; C:\Windows\System32\DriverStore\FileRepository\genericusbfn.inf_amd64_dbcdd1a51a139f61\genericusbfn.sys [20992 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 intelpmax; C:\Windows\System32\drivers\intelpmax.sys [28672 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 NDKPing; C:\Windows\System32\drivers\NDKPing.sys [63488 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
R3 NETJME; C:\Windows\System32\drivers\NETJME.sys [137728 2019-03-19] (Microsoft Windows -> JMicron Technology Corp.)
S3 portcfg; C:\Windows\System32\drivers\portcfg.sys [25600 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
R3 SNP2UVC; C:\Windows\system32\DRIVERS\snp2uvc.sys [1806400 2019-05-08] (SONIX TECHNOLOGY CO. , LTD -> )
S3 UEFI; C:\Windows\System32\DriverStore\FileRepository\uefi.inf_amd64_245b553a99d0abd8\UEFI.sys [32776 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 UfxChipidea; C:\Windows\System32\DriverStore\FileRepository\ufxchipidea.inf_amd64_a4b229fb37a19c3f\UfxChipidea.sys [108344 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
R3 umbus; C:\Windows\System32\DriverStore\FileRepository\umbus.inf_amd64_0a69be6a385b49f7\umbus.sys [57856 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 UrsChipidea; C:\Windows\System32\DriverStore\FileRepository\urschipidea.inf_amd64_5bdb369042347ad7\urschipidea.sys [30008 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 UrsSynopsys; C:\Windows\System32\DriverStore\FileRepository\urssynopsys.inf_amd64_38704576f04a98fd\urssynopsys.sys [28472 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 usbaudio2; C:\Windows\System32\drivers\usbaudio2.sys [257024 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [46472 2019-05-24] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [344544 2019-05-24] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [60896 2019-05-24] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

NETSVC: TroubleshootingSvc -> C:\Windows\system32\MitigationClient.dll (Microsoft Corporation)

==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-05-24 16:08 - 2019-05-24 16:12 - 000014834 _____ C:\Users\Administrator\Desktop\FRST.txt
2019-05-24 16:08 - 2019-05-24 16:08 - 000000000 ____D C:\FRST
2019-05-24 16:05 - 2019-05-24 16:05 - 000000000 ____D C:\Users\Administrator\AppData\Local\Viber Media S.à r.l
2019-05-24 16:04 - 2019-05-24 16:06 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\ViberPC
2019-05-24 16:04 - 2019-05-24 16:04 - 000001037 _____ C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Viber.lnk
2019-05-24 16:04 - 2019-05-24 16:04 - 000001035 _____ C:\Users\Administrator\Desktop\Viber.lnk
2019-05-24 16:04 - 2019-05-24 16:04 - 000000000 ____D C:\Users\Administrator\Documents\ViberDownloads
2019-05-24 16:04 - 2019-05-24 16:04 - 000000000 ____D C:\Users\Administrator\AppData\Local\AMD
2019-05-24 16:03 - 2019-05-24 16:04 - 000000000 ____D C:\Users\Administrator\AppData\Local\Viber
2019-05-24 16:03 - 2019-05-24 16:03 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Viber
2019-05-24 16:03 - 2019-05-24 16:03 - 000000000 ____D C:\Users\Administrator\AppData\Local\Package Cache
2019-05-24 15:58 - 2019-05-24 16:01 - 000000000 ____D C:\Users\Administrator\Documents\GTA San Andreas User Files
2019-05-24 15:57 - 2019-05-24 15:57 - 000001174 _____ C:\Users\Administrator\Desktop\GTA.lnk
2019-05-24 15:49 - 2019-05-24 15:50 - 000000125 _____ C:\Users\Administrator\Desktop\vyčistit složku WinSxS.txt
2019-05-24 15:48 - 2019-05-24 16:06 - 000001210 _____ C:\Users\Administrator\Desktop\Příkazový řádek.lnk
2019-05-24 15:47 - 2019-05-24 15:47 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2019-05-24 15:47 - 2019-05-24 15:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games
2019-05-24 15:47 - 2019-05-24 15:47 - 000000000 ____D C:\Program Files (x86)\Rockstar Games
2019-05-24 15:45 - 2019-05-24 15:45 - 000000000 ____D C:\1
2019-05-24 15:32 - 2019-05-24 15:32 - 000001194 _____ C:\Users\Administrator\Desktop\Vyčištění disku.lnk
2019-05-24 15:01 - 2019-05-24 15:01 - 025444864 _____ (Microsoft Corporation) C:\Windows\system32\Hydrogen.dll
2019-05-24 15:01 - 2019-05-24 15:01 - 019849728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2019-05-24 15:01 - 2019-05-24 15:01 - 018007040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2019-05-24 15:01 - 2019-05-24 15:01 - 008010240 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2019-05-24 15:01 - 2019-05-24 15:01 - 007006720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2019-05-24 15:01 - 2019-05-24 15:01 - 005924864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2019-05-24 15:01 - 2019-05-24 15:01 - 005499904 _____ (Microsoft Corporation) C:\Windows\system32\cdp.dll
2019-05-24 15:01 - 2019-05-24 15:01 - 004576768 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2019-05-24 15:01 - 2019-05-24 15:01 - 004306944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdp.dll
2019-05-24 15:01 - 2019-05-24 15:01 - 004128904 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2019-05-24 15:01 - 2019-05-24 15:01 - 003837440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2019-05-24 15:01 - 2019-05-24 15:01 - 003485696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2019-05-24 15:01 - 2019-05-24 15:01 - 002494464 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2019-05-24 15:01 - 2019-05-24 15:01 - 001603584 _____ (Microsoft Corporation) C:\Windows\system32\HologramCompositor.dll
2019-05-24 15:01 - 2019-05-24 15:01 - 001537024 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2019-05-24 15:01 - 2019-05-24 15:01 - 001311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjet40.dll
2019-05-24 15:01 - 2019-05-24 15:01 - 001271808 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2019-05-24 15:01 - 2019-05-24 15:01 - 001098720 _____ (Microsoft Corporation) C:\Windows\system32\DolbyDecMFT.dll
2019-05-24 15:01 - 2019-05-24 15:01 - 001079296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2019-05-24 15:01 - 2019-05-24 15:01 - 001060352 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2019-05-24 15:01 - 2019-05-24 15:01 - 000684544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2019-05-24 15:01 - 2019-05-24 15:01 - 000529408 _____ (Microsoft Corporation) C:\Windows\system32\nltest.exe
2019-05-24 15:01 - 2019-05-24 15:01 - 000429568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werui.dll
2019-05-24 15:01 - 2019-05-24 15:01 - 000422912 _____ (Microsoft Corporation) C:\Windows\system32\rdpencom.dll
2019-05-24 15:01 - 2019-05-24 15:01 - 000420152 _____ (Microsoft Corporation) C:\Windows\system32\MSAudDecMFT.dll
2019-05-24 15:01 - 2019-05-24 15:01 - 000376320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mspbde40.dll
2019-05-24 15:01 - 2019-05-24 15:01 - 000353280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpencom.dll
2019-05-24 15:01 - 2019-05-24 15:01 - 000353280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd3x40.dll
2019-05-24 15:01 - 2019-05-24 15:01 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexcl40.dll
2019-05-24 15:01 - 2019-05-24 15:01 - 000256000 _____ (Microsoft Corporation) C:\Windows\system32\RdpRelayTransport.dll
2019-05-24 15:01 - 2019-05-24 15:01 - 000240640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msltus40.dll
2019-05-24 15:01 - 2019-05-24 15:01 - 000186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWWIN.EXE
2019-05-24 15:01 - 2019-05-24 15:01 - 000136720 _____ (Microsoft Corporation) C:\Windows\system32\microsoft-windows-kernel-processor-power-events.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 025903104 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 022611456 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 009917968 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2019-05-24 15:00 - 2019-05-24 15:00 - 007887104 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 007831368 _____ (Microsoft Corporation) C:\Windows\system32\OneCoreUAPCommonProxyStub.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 007759872 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 007636608 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 007275008 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 006538848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 006068328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 005939712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 005040640 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 004867584 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 004562688 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2019-05-24 15:00 - 2019-05-24 15:00 - 004537344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 003771392 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 003734456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OneCoreUAPCommonProxyStub.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 003726336 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2019-05-24 15:00 - 2019-05-24 15:00 - 003682304 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 003591184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2019-05-24 15:00 - 2019-05-24 15:00 - 002990600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2019-05-24 15:00 - 2019-05-24 15:00 - 002800128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2019-05-24 15:00 - 2019-05-24 15:00 - 002769976 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 002762472 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 002724352 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2019-05-24 15:00 - 2019-05-24 15:00 - 002699280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2019-05-24 15:00 - 2019-05-24 15:00 - 002550584 _____ (Microsoft Corporation) C:\Windows\system32\UpdateAgent.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 002449216 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 002420736 _____ (Microsoft Corporation) C:\Windows\system32\InstallService.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 002281472 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 002256592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 002081464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 001999656 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 001954960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 001853952 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 001830416 _____ (Microsoft Corporation) C:\Windows\system32\rdpserverbase.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 001784832 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 001753000 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2019-05-24 15:00 - 2019-05-24 15:00 - 001745408 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 001709056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallService.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 001697792 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 001697280 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 001689600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 001633648 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 001608704 _____ (Microsoft Corporation) C:\Windows\system32\wpncore.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 001587712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aadtb.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 001562640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpserverbase.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 001508912 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2019-05-24 15:00 - 2019-05-24 15:00 - 001505808 _____ (Microsoft Corporation) C:\Windows\system32\rdpbase.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 001478656 _____ (Microsoft Corporation) C:\Windows\system32\rdpsharercom.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 001458176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 001435136 _____ (Microsoft Corporation) C:\Windows\system32\usocoreworker.exe
2019-05-24 15:00 - 2019-05-24 15:00 - 001418240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2019-05-24 15:00 - 2019-05-24 15:00 - 001395600 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 001392136 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe
2019-05-24 15:00 - 2019-05-24 15:00 - 001356800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 001321472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 001313792 _____ (Microsoft Corporation) C:\Windows\system32\wpnapps.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 001282560 _____ (Microsoft Corporation) C:\Windows\system32\werconcpl.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 001258496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpsharercom.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 001213456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpbase.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 001149928 _____ (Microsoft Corporation) C:\Windows\system32\ApplyTrustOffline.exe
2019-05-24 15:00 - 2019-05-24 15:00 - 001071928 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe
2019-05-24 15:00 - 2019-05-24 15:00 - 001042944 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2019-05-24 15:00 - 2019-05-24 15:00 - 001007160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 001007104 _____ (Microsoft Corporation) C:\Windows\system32\StorSvc.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 001006592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpnapps.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 000913408 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 000879576 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 000878080 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2019-05-24 15:00 - 2019-05-24 15:00 - 000864768 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 000840192 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 000811192 _____ C:\Windows\SysWOW64\locale.nls
2019-05-24 15:00 - 2019-05-24 15:00 - 000811192 _____ C:\Windows\system32\locale.nls
2019-05-24 15:00 - 2019-05-24 15:00 - 000804664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys
2019-05-24 15:00 - 2019-05-24 15:00 - 000797112 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 000781096 _____ (Microsoft Corporation) C:\Windows\system32\tcblaunch.exe
2019-05-24 15:00 - 2019-05-24 15:00 - 000722072 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 000680760 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 000679368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 000673080 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 000663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netlogon.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 000628616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 000613688 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 000595456 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 000592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 000578560 _____ (Microsoft Corporation) C:\Windows\system32\SppExtComObj.Exe
2019-05-24 15:00 - 2019-05-24 15:00 - 000568120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 000531456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 000515896 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe
2019-05-24 15:00 - 2019-05-24 15:00 - 000496128 _____ (Microsoft Corporation) C:\Windows\system32\werui.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 000467456 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2019-05-24 15:00 - 2019-05-24 15:00 - 000466624 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 000465208 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 000451896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
2019-05-24 15:00 - 2019-05-24 15:00 - 000406528 _____ (Microsoft Corporation) C:\Windows\system32\rascustom.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 000404392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 000358944 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 000337408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys
2019-05-24 15:00 - 2019-05-24 15:00 - 000336896 _____ (Microsoft Corporation) C:\Windows\system32\AppxAllUserStore.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 000311296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2019-05-24 15:00 - 2019-05-24 15:00 - 000279624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 000278016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxAllUserStore.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 000274128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelpep.sys
2019-05-24 15:00 - 2019-05-24 15:00 - 000237056 _____ (Microsoft Corporation) C:\Windows\system32\JpnServiceDS.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 000231936 _____ (Microsoft Corporation) C:\Windows\system32\InstallServiceTasks.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 000226816 _____ (Microsoft Corporation) C:\Windows\system32\wersvc.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 000224768 _____ (Microsoft Corporation) C:\Windows\system32\DWWIN.EXE
2019-05-24 15:00 - 2019-05-24 15:00 - 000223248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelppm.sys
2019-05-24 15:00 - 2019-05-24 15:00 - 000220472 _____ (Microsoft Corporation) C:\Windows\system32\wermgr.exe
2019-05-24 15:00 - 2019-05-24 15:00 - 000208184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys
2019-05-24 15:00 - 2019-05-24 15:00 - 000201256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdppm.sys
2019-05-24 15:00 - 2019-05-24 15:00 - 000199688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys
2019-05-24 15:00 - 2019-05-24 15:00 - 000199184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe
2019-05-24 15:00 - 2019-05-24 15:00 - 000180536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wfplwfs.sys
2019-05-24 15:00 - 2019-05-24 15:00 - 000179712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallServiceTasks.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 000179712 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 000179512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2019-05-24 15:00 - 2019-05-24 15:00 - 000160256 _____ (Microsoft Corporation) C:\Windows\system32\oleprn.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 000146744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2019-05-24 15:00 - 2019-05-24 15:00 - 000141312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\luafv.sys
2019-05-24 15:00 - 2019-05-24 15:00 - 000138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 000125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleprn.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 000125952 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 000122368 _____ (Microsoft Corporation) C:\Windows\system32\wercplsupport.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 000114688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthenum.sys
2019-05-24 15:00 - 2019-05-24 15:00 - 000098816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 000098304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS
2019-05-24 15:00 - 2019-05-24 15:00 - 000093712 _____ (Microsoft Corporation) C:\Windows\system32\hvloader.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 000088064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\olepro32.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 000084280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\winhvr.sys
2019-05-24 15:00 - 2019-05-24 15:00 - 000084280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hvservice.sys
2019-05-24 15:00 - 2019-05-24 15:00 - 000066360 _____ (Microsoft Corporation) C:\Windows\system32\cryptdll.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\mf3216.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 000056008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdll.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 000046080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf3216.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 000036864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BthMini.SYS
2019-05-24 15:00 - 2019-05-24 15:00 - 000033280 _____ (Microsoft Corporation) C:\Windows\system32\sxssrv.dll
2019-05-24 15:00 - 2019-05-24 15:00 - 000013824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDJPN.DLL
2019-05-24 14:55 - 2019-05-24 16:08 - 002435072 _____ (Farbar) C:\Users\Administrator\Desktop\FRST64.exe
2019-05-24 14:55 - 2019-05-24 14:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2019-05-24 14:55 - 2019-05-24 14:55 - 000000000 ____D C:\Program Files\7-Zip
2019-05-24 14:55 - 2019-05-10 08:01 - 007025360 _____ (Malwarebytes) C:\Users\Administrator\Desktop\adwcleaner_7.3.exe
2019-05-24 14:54 - 2019-05-24 15:57 - 000002410 _____ C:\Windows\System32\Tasks\Disable LockScreen
2019-05-24 14:53 - 2019-05-24 14:53 - 000001232 _____ C:\Users\Administrator\Desktop\dfrgui.lnk
2019-05-24 14:48 - 2019-05-24 14:48 - 000000000 ____D C:\Program Files\ATI Technologies
2019-05-24 14:40 - 2019-05-24 15:33 - 000000000 ____D C:\Users\Administrator\AppData\Local\D3DSCache
2019-05-24 14:38 - 2019-05-24 14:38 - 000000836 _____ C:\Users\Administrator\Desktop\Stažené soubory.lnk
2019-05-24 14:33 - 2019-05-24 14:33 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Google
2019-05-24 14:32 - 2019-05-24 14:40 - 000000000 ____D C:\Windows\system32\MRT
2019-05-24 14:32 - 2019-05-24 14:32 - 132445408 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2019-05-24 14:30 - 2019-05-24 14:30 - 000000000 ____D C:\Users\Administrator\AppData\Local\Google
2019-05-24 14:29 - 2019-05-24 14:29 - 000002373 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-05-24 14:29 - 2019-05-24 14:29 - 000002332 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-05-24 14:28 - 2019-05-24 15:57 - 000003460 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2019-05-24 14:28 - 2019-05-24 15:57 - 000003236 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2019-05-24 14:28 - 2019-05-24 14:29 - 000000000 ____D C:\Program Files (x86)\Google
2019-05-24 14:26 - 2019-05-24 14:26 - 000000000 ___HD C:\Users\Administrator\MicrosoftEdgeBackups
2019-05-24 14:25 - 2019-05-24 14:25 - 000000000 ____D C:\ProgramData\Packages
2019-05-24 14:22 - 2019-05-24 14:22 - 000592616 _____ (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2019-05-24 14:18 - 2019-05-24 14:18 - 000000000 ____D C:\Users\Administrator\AppData\Local\Comms
2019-05-24 14:18 - 2019-05-24 14:18 - 000000000 ____D C:\Program Files\Elantech
2019-05-24 14:16 - 2019-05-24 15:57 - 000002406 _____ C:\Windows\System32\Tasks\RtHDVBg_ListenToDevice
2019-05-24 14:15 - 2019-05-24 15:57 - 000002362 _____ C:\Windows\System32\Tasks\RTKCPL
2019-05-24 14:15 - 2019-05-24 14:15 - 000000000 ____D C:\Windows\SysWOW64\RTCOM
2019-05-24 14:15 - 2019-05-24 14:15 - 000000000 ____D C:\Windows\system32\SRSLabs
2019-05-24 14:15 - 2019-05-24 14:15 - 000000000 ____D C:\Program Files\Realtek
2019-05-24 14:13 - 2019-05-24 14:48 - 000000000 ____D C:\ProgramData\AMD
2019-05-24 14:12 - 2019-05-24 14:48 - 000000000 ____D C:\Program Files (x86)\ATI Technologies
2019-05-24 14:12 - 2019-05-24 14:12 - 000000000 ____D C:\ProgramData\Package Cache
2019-05-24 14:11 - 2019-05-24 14:11 - 000000000 ____D C:\Program Files\Common Files\ATI Technologies
2019-05-24 14:11 - 2019-05-24 14:11 - 000000000 ____D C:\Program Files\AMD
2019-05-24 14:11 - 2019-05-24 14:11 - 000000000 ____D C:\AMD
2019-05-24 14:11 - 2019-05-24 14:11 - 000000000 _____ C:\Windows\ativpsrm.bin
2019-05-24 14:08 - 2019-05-24 14:08 - 000001446 _____ C:\Users\Administrator\Desktop\Microsoft Edge.lnk
2019-05-24 14:08 - 2019-05-24 14:08 - 000000000 ____D C:\Users\Administrator\AppData\Local\PlaceholderTileLogoFolder
2019-05-24 14:08 - 2019-05-24 14:08 - 000000000 ____D C:\Users\Administrator\AppData\Local\MicrosoftEdge
2019-05-24 14:08 - 2019-05-24 13:22 - 000000000 ____D C:\Windows\Panther
2019-05-24 14:07 - 2019-05-24 15:41 - 000000000 ____D C:\Users\Administrator\AppData\Local\Packages
2019-05-24 14:07 - 2019-05-24 14:26 - 000000000 ____D C:\Users\Administrator
2019-05-24 14:07 - 2019-05-24 14:07 - 000000020 ___SH C:\Users\Administrator\ntuser.ini
2019-05-24 14:07 - 2019-05-24 14:07 - 000000000 _SHDL C:\Users\Administrator\Šablony
2019-05-24 14:07 - 2019-05-24 14:07 - 000000000 _SHDL C:\Users\Administrator\Soubory cookie
2019-05-24 14:07 - 2019-05-24 14:07 - 000000000 _SHDL C:\Users\Administrator\Poslední
2019-05-24 14:07 - 2019-05-24 14:07 - 000000000 _SHDL C:\Users\Administrator\Okolní tiskárny
2019-05-24 14:07 - 2019-05-24 14:07 - 000000000 _SHDL C:\Users\Administrator\Okolní síť
2019-05-24 14:07 - 2019-05-24 14:07 - 000000000 _SHDL C:\Users\Administrator\Nabídka Start
2019-05-24 14:07 - 2019-05-24 14:07 - 000000000 _SHDL C:\Users\Administrator\Dokumenty
2019-05-24 14:07 - 2019-05-24 14:07 - 000000000 _SHDL C:\Users\Administrator\Documents\Obrázky
2019-05-24 14:07 - 2019-05-24 14:07 - 000000000 _SHDL C:\Users\Administrator\Documents\Hudba
2019-05-24 14:07 - 2019-05-24 14:07 - 000000000 _SHDL C:\Users\Administrator\Documents\Filmy
2019-05-24 14:07 - 2019-05-24 14:07 - 000000000 _SHDL C:\Users\Administrator\Data aplikací
2019-05-24 14:07 - 2019-05-24 14:07 - 000000000 _SHDL C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2019-05-24 14:07 - 2019-05-24 14:07 - 000000000 _SHDL C:\Users\Administrator\AppData\Local\Data aplikací
2019-05-24 14:07 - 2019-05-24 14:07 - 000000000 ___RD C:\Users\Administrator\3D Objects
2019-05-24 14:07 - 2019-05-24 14:07 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Adobe
2019-05-24 14:07 - 2019-05-24 14:07 - 000000000 ____D C:\Users\Administrator\AppData\Local\ConnectedDevicesPlatform
2019-05-24 14:07 - 2019-03-19 06:46 - 000001105 _____ C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-05-24 14:03 - 2019-05-24 14:07 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-05-24 13:32 - 2019-05-24 15:19 - 001606102 _____ C:\Windows\system32\PerfStringBackup.INI
2019-05-24 13:32 - 2019-05-24 13:32 - 000000000 ____D C:\Windows\minidump
2019-05-24 13:25 - 2019-05-24 13:25 - 000000000 _SHDL C:\Users\Public\Documents\Obrázky
2019-05-24 13:25 - 2019-05-24 13:25 - 000000000 _SHDL C:\Users\Public\Documents\Hudba
2019-05-24 13:25 - 2019-05-24 13:25 - 000000000 _SHDL C:\Users\Public\Documents\Filmy
2019-05-24 13:25 - 2019-05-24 13:25 - 000000000 _SHDL C:\Users\Default\Šablony
2019-05-24 13:25 - 2019-05-24 13:25 - 000000000 _SHDL C:\Users\Default\Soubory cookie
2019-05-24 13:25 - 2019-05-24 13:25 - 000000000 _SHDL C:\Users\Default\Poslední
2019-05-24 13:25 - 2019-05-24 13:25 - 000000000 _SHDL C:\Users\Default\Okolní tiskárny
2019-05-24 13:25 - 2019-05-24 13:25 - 000000000 _SHDL C:\Users\Default\Okolní síť
2019-05-24 13:25 - 2019-05-24 13:25 - 000000000 _SHDL C:\Users\Default\Nabídka Start
2019-05-24 13:25 - 2019-05-24 13:25 - 000000000 _SHDL C:\Users\Default\Dokumenty
2019-05-24 13:25 - 2019-05-24 13:25 - 000000000 _SHDL C:\Users\Default\Documents\Obrázky
2019-05-24 13:25 - 2019-05-24 13:25 - 000000000 _SHDL C:\Users\Default\Documents\Hudba
2019-05-24 13:25 - 2019-05-24 13:25 - 000000000 _SHDL C:\Users\Default\Documents\Filmy
2019-05-24 13:25 - 2019-05-24 13:25 - 000000000 _SHDL C:\Users\Default\Data aplikací
2019-05-24 13:25 - 2019-05-24 13:25 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2019-05-24 13:25 - 2019-05-24 13:25 - 000000000 _SHDL C:\Users\Default\AppData\Local\Data aplikací
2019-05-24 13:25 - 2019-05-24 13:25 - 000000000 _SHDL C:\Users\Default User\Documents\Obrázky
2019-05-24 13:25 - 2019-05-24 13:25 - 000000000 _SHDL C:\Users\Default User\Documents\Hudba
2019-05-24 13:25 - 2019-05-24 13:25 - 000000000 _SHDL C:\Users\Default User\Documents\Filmy
2019-05-24 13:25 - 2019-05-24 13:25 - 000000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2019-05-24 13:25 - 2019-05-24 13:25 - 000000000 _SHDL C:\Users\Default User\AppData\Local\Data aplikací
2019-05-24 13:25 - 2019-05-24 13:25 - 000000000 _SHDL C:\ProgramData\Šablony
2019-05-24 13:25 - 2019-05-24 13:25 - 000000000 _SHDL C:\ProgramData\Plocha
2019-05-24 13:25 - 2019-05-24 13:25 - 000000000 _SHDL C:\ProgramData\Nabídka Start
2019-05-24 13:25 - 2019-05-24 13:25 - 000000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programy
2019-05-24 13:25 - 2019-05-24 13:25 - 000000000 _SHDL C:\ProgramData\Dokumenty
2019-05-24 13:25 - 2019-05-24 13:25 - 000000000 _SHDL C:\ProgramData\Data aplikací
2019-05-24 13:25 - 2019-05-24 13:25 - 000000000 _SHDL C:\Documents and Settings
2019-05-24 13:15 - 2019-05-24 13:15 - 000000000 ____D C:\ProgramData\USOShared
2019-05-24 13:14 - 2019-03-19 06:43 - 002873856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2019-05-24 13:12 - 2019-05-24 13:12 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2019-05-24 13:11 - 2019-05-24 14:48 - 000000000 ____D C:\Windows\system32\Drivers\wd
2019-05-24 13:10 - 2019-05-24 15:43 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-05-24 13:10 - 2019-05-24 15:15 - 000258096 _____ C:\Windows\system32\FNTCACHE.DAT
2019-05-24 13:10 - 2019-05-24 13:54 - 000000000 ____D C:\Windows\system32\SleepStudy
2019-05-24 13:10 - 2019-05-24 13:10 - 000000000 ____D C:\Windows\ServiceProfiles
2019-05-21 14:33 - 2019-05-08 13:10 - 004321160 _____ (Qualcomm Atheros Communications, Inc.) C:\Windows\system32\Drivers\athw10x.sys
2019-05-21 14:33 - 2019-05-08 13:08 - 000874480 _____ (AMD) C:\Windows\system32\coinst_15.20.dll
2019-05-21 14:33 - 2019-05-08 13:08 - 000243696 _____ C:\Windows\system32\clinfo.exe
2019-05-21 14:33 - 2019-05-08 13:08 - 000136176 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll
2019-05-21 14:33 - 2019-05-08 13:08 - 000122352 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll
2019-05-21 14:33 - 2019-05-08 13:08 - 000111600 _____ C:\Windows\system32\hsa-thunk64.dll
2019-05-21 14:33 - 2019-05-08 13:08 - 000111088 _____ C:\Windows\SysWOW64\hsa-thunk.dll
2019-05-21 14:33 - 2019-05-08 13:08 - 000103408 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll
2019-05-21 14:33 - 2019-05-08 13:08 - 000096752 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll
2019-05-21 14:33 - 2019-05-08 13:08 - 000012784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\detoured.dll
2019-05-21 14:33 - 2019-05-08 13:08 - 000012784 _____ (Microsoft Corporation) C:\Windows\system32\detoured.dll
2019-05-21 14:33 - 2019-05-08 13:07 - 047794160 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll
2019-05-21 14:33 - 2019-05-08 13:07 - 030775792 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll
2019-05-21 14:33 - 2019-05-08 13:07 - 027544560 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl12cl64.dll
2019-05-21 14:33 - 2019-05-08 13:07 - 025320432 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll
2019-05-21 14:33 - 2019-05-08 13:07 - 022327280 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl12cl.dll
2019-05-21 14:33 - 2019-05-08 13:07 - 021648880 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2019-05-21 14:33 - 2019-05-08 13:07 - 015725552 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd64.dll
2019-05-21 14:33 - 2019-05-08 13:07 - 014310896 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticaldd.dll
2019-05-21 14:33 - 2019-05-08 13:07 - 012088000 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx64.dll
2019-05-21 14:33 - 2019-05-08 13:07 - 010211016 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atidxx32.dll
2019-05-21 14:33 - 2019-05-08 13:07 - 009355016 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdxc64.dll
2019-05-21 14:33 - 2019-05-08 13:07 - 008982432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6a.dll
2019-05-21 14:33 - 2019-05-08 13:07 - 008864920 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd64.dll
2019-05-21 14:33 - 2019-05-08 13:07 - 008009360 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdva.dll
2019-05-21 14:33 - 2019-05-08 13:07 - 007683096 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdxc32.dll
2019-05-21 14:33 - 2019-05-08 13:07 - 007482560 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdag.dll
2019-05-21 14:33 - 2019-05-08 13:07 - 003471376 _____ C:\Windows\SysWOW64\atiumdva.cap
2019-05-21 14:33 - 2019-05-08 13:07 - 003437632 _____ C:\Windows\system32\atiumd6a.cap
2019-05-21 14:33 - 2019-05-08 13:07 - 001479808 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll
2019-05-21 14:33 - 2019-05-08 13:07 - 001256432 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2019-05-21 14:33 - 2019-05-08 13:07 - 001223544 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll
2019-05-21 14:33 - 2019-05-08 13:07 - 001196032 _____ C:\Windows\system32\amdocl_as64.exe
2019-05-21 14:33 - 2019-05-08 13:07 - 001070592 _____ C:\Windows\system32\amdocl_ld64.exe
2019-05-21 14:33 - 2019-05-08 13:07 - 001004032 _____ C:\Windows\SysWOW64\amdocl_as32.exe
2019-05-21 14:33 - 2019-05-08 13:07 - 000935408 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2019-05-21 14:33 - 2019-05-08 13:07 - 000935408 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxx.dll
2019-05-21 14:33 - 2019-05-08 13:07 - 000807424 _____ C:\Windows\SysWOW64\amdocl_ld32.exe
2019-05-21 14:33 - 2019-05-08 13:07 - 000737410 _____ C:\Windows\system32\atiicdxx.dat
2019-05-21 14:33 - 2019-05-08 13:07 - 000683504 _____ (AMD) C:\Windows\system32\atieclxx.exe
2019-05-21 14:33 - 2019-05-08 13:07 - 000674288 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2019-05-21 14:33 - 2019-05-08 13:07 - 000662400 _____ C:\Windows\SysWOW64\atiapfxx.blb
2019-05-21 14:33 - 2019-05-08 13:07 - 000662400 _____ C:\Windows\system32\atiapfxx.blb
2019-05-21 14:33 - 2019-05-08 13:07 - 000451056 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll
2019-05-21 14:33 - 2019-05-08 13:07 - 000375792 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2019-05-21 14:33 - 2019-05-08 13:07 - 000341488 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODE.exe
2019-05-21 14:33 - 2019-05-08 13:07 - 000322868 _____ C:\Windows\system32\ativvaxy_vi.dat
2019-05-21 14:33 - 2019-05-08 13:07 - 000321200 _____ C:\Windows\system32\ativvaxy_vi_nd.dat
2019-05-21 14:33 - 2019-05-08 13:07 - 000255808 _____ C:\Windows\system32\ativvaxy_cz_nd.dat
2019-05-21 14:33 - 2019-05-08 13:07 - 000255472 _____ (AMD) C:\Windows\system32\atiesrxx.exe
2019-05-21 14:33 - 2019-05-08 13:07 - 000250884 _____ C:\Windows\system32\ativvaxy_FJ.dat
2019-05-21 14:33 - 2019-05-08 13:07 - 000249088 _____ C:\Windows\system32\ativvaxy_FJ_nd.dat
2019-05-21 14:33 - 2019-05-08 13:07 - 000234420 _____ C:\Windows\system32\ativvaxy_cik.dat
2019-05-21 14:33 - 2019-05-08 13:07 - 000232752 _____ C:\Windows\system32\ativvaxy_cik_nd.dat
2019-05-21 14:33 - 2019-05-08 13:07 - 000204952 _____ C:\Windows\SysWOW64\ativvsvl.dat
2019-05-21 14:33 - 2019-05-08 13:07 - 000204952 _____ C:\Windows\system32\ativvsvl.dat
2019-05-21 14:33 - 2019-05-08 13:07 - 000199664 _____ (AMD) C:\Windows\system32\atitmm64.dll
2019-05-21 14:33 - 2019-05-08 13:07 - 000177344 _____ C:\Windows\system32\ativce03.dat
2019-05-21 14:33 - 2019-05-08 13:07 - 000168944 _____ C:\Windows\system32\atieah64.exe
2019-05-21 14:33 - 2019-05-08 13:07 - 000165360 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2019-05-21 14:33 - 2019-05-08 13:07 - 000162232 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxp64.dll
2019-05-21 14:33 - 2019-05-08 13:07 - 000157144 _____ C:\Windows\SysWOW64\ativvsva.dat
2019-05-21 14:33 - 2019-05-08 13:07 - 000157144 _____ C:\Windows\system32\ativvsva.dat
2019-05-21 14:33 - 2019-05-08 13:07 - 000152560 _____ C:\Windows\SysWOW64\atieah32.exe
2019-05-21 14:33 - 2019-05-08 13:07 - 000150512 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2019-05-21 14:33 - 2019-05-08 13:07 - 000143056 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll
2019-05-21 14:33 - 2019-05-08 13:07 - 000130064 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll
2019-05-21 14:33 - 2019-05-08 13:07 - 000112360 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiu9pag.dll
2019-05-21 14:33 - 2019-05-08 13:07 - 000100816 _____ C:\Windows\system32\ativce02.dat
2019-05-21 14:33 - 2019-05-08 13:07 - 000088000 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2019-05-21 14:33 - 2019-05-08 13:07 - 000088000 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2019-05-21 14:33 - 2019-05-08 13:07 - 000083952 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll
2019-05-21 14:33 - 2019-05-08 13:07 - 000081160 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2019-05-21 14:33 - 2019-05-08 13:07 - 000081160 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2019-05-21 14:33 - 2019-05-08 13:07 - 000078320 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll
2019-05-21 14:33 - 2019-05-08 13:07 - 000078320 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2019-05-21 14:33 - 2019-05-08 13:07 - 000073712 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2019-05-21 14:33 - 2019-05-08 13:07 - 000071152 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt64.dll
2019-05-21 14:33 - 2019-05-08 13:07 - 000068080 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2019-05-21 14:33 - 2019-05-08 13:07 - 000064496 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl64.dll
2019-05-21 14:33 - 2019-05-08 13:07 - 000060912 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalrt.dll
2019-05-21 14:33 - 2019-05-08 13:07 - 000059888 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODCLI.exe
2019-05-21 14:33 - 2019-05-08 13:07 - 000057840 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalcl.dll
2019-05-21 14:33 - 2019-05-08 13:07 - 000052208 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2019-05-21 14:33 - 2019-05-08 13:07 - 000038384 _____ (AMD) C:\Windows\system32\atimuixx.dll
2019-05-21 14:32 - 2019-05-08 13:07 - 039720944 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll
2019-05-21 14:32 - 2019-05-08 13:07 - 006686192 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmantle64.dll
2019-05-21 14:32 - 2019-05-08 13:07 - 005216240 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmantle32.dll
2019-05-21 14:32 - 2019-05-08 13:07 - 000833800 _____ C:\Windows\system32\amdicdxx.dat
2019-05-21 14:32 - 2019-05-08 13:07 - 000631792 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdlvr64.dll
2019-05-21 14:32 - 2019-05-08 13:07 - 000524272 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdlvr32.dll
2019-05-21 14:32 - 2019-05-08 13:07 - 000471320 _____ C:\Windows\system32\amdmiracast.dll
2019-05-21 14:32 - 2019-05-08 13:07 - 000143344 _____ C:\Windows\system32\amdhdl64.dll
2019-05-21 14:32 - 2019-05-08 13:07 - 000132080 _____ C:\Windows\SysWOW64\amdhdl32.dll
2019-05-21 14:32 - 2019-05-08 13:07 - 000059376 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmmcl6.dll
2019-05-21 14:32 - 2019-05-08 13:07 - 000048112 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmmcl.dll
2019-05-21 14:32 - 2019-05-08 13:06 - 001806400 _____ () C:\Windows\system32\Drivers\snp2uvc.sys
2019-05-21 14:32 - 2019-05-08 13:06 - 000213488 _____ C:\Windows\system32\amdgfxinfo64.dll
2019-05-21 14:32 - 2019-05-08 13:06 - 000198640 _____ C:\Windows\SysWOW64\amdgfxinfo32.dll
2019-05-21 14:32 - 2019-05-08 13:06 - 000175648 _____ C:\Windows\system32\amde31a.dat
2019-05-21 14:32 - 2019-05-08 13:06 - 000143472 _____ (JMicron Technology Corporation) C:\Windows\system32\Drivers\jmcr.sys
2019-05-21 14:32 - 2019-05-08 13:06 - 000110080 _____ (JMicron Technology Corporation) C:\Windows\system32\jmcricon.dll
2019-05-21 14:32 - 2019-05-08 13:06 - 000053800 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btusbflt.sys
2019-05-21 14:32 - 2019-05-08 13:06 - 000042176 _____ C:\Windows\system32\Drivers\sncduvc.sys
2019-05-21 14:32 - 2019-05-08 13:06 - 000019008 _____ (Chicony (C) 2006 ATC) C:\Windows\DrvInst.exe
2019-05-21 14:32 - 2019-05-08 13:06 - 000002908 _____ C:\Windows\Uninstvga.bat
2019-05-21 14:32 - 2019-05-08 13:06 - 000002008 _____ C:\Windows\Uninstsxga.bat
2019-05-21 14:32 - 2019-05-08 13:06 - 000001682 _____ C:\Windows\Uninstuxga.bat
2019-05-21 14:32 - 2019-05-08 13:06 - 000000386 _____ C:\Windows\Uninstuxga.reg
2019-05-21 14:32 - 2019-05-08 13:06 - 000000386 _____ C:\Windows\Uninstsxga.reg
2019-05-21 14:32 - 2019-05-08 13:06 - 000000384 _____ C:\Windows\Uninstvga.reg
2019-05-21 14:32 - 2019-05-08 13:04 - 003677160 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2019-05-21 14:32 - 2019-05-08 13:04 - 003410832 _____ (DTS, Inc.) C:\Windows\system32\slcnt64.dll
2019-05-21 14:32 - 2019-05-08 13:04 - 003205120 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2019-05-21 14:32 - 2019-05-08 13:04 - 003122656 _____ (DTS, Inc.) C:\Windows\system32\sltech64.dll
2019-05-21 14:32 - 2019-05-08 13:04 - 001382232 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll
2019-05-21 14:32 - 2019-05-08 13:04 - 000984912 _____ (DTS, Inc.) C:\Windows\system32\sl3apo64.dll
2019-05-21 14:32 - 2019-05-08 13:04 - 000873456 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo264.dll
2019-05-21 14:32 - 2019-05-08 13:04 - 000158696 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll
2019-05-21 14:32 - 2019-05-08 13:04 - 000075536 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\tepeqapo64.dll
2019-05-21 14:32 - 2019-05-08 13:03 - 012334923 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2019-05-21 14:32 - 2019-05-08 13:03 - 005826560 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2019-05-21 14:32 - 2019-05-08 13:03 - 003509256 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2019-05-21 14:32 - 2019-05-08 13:03 - 003507688 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2019-05-21 14:32 - 2019-05-08 13:03 - 002210304 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2019-05-21 14:32 - 2019-05-08 13:03 - 001347136 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2019-05-21 14:32 - 2019-05-08 13:03 - 000691680 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2019-05-21 14:32 - 2019-05-08 13:03 - 000387312 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2019-05-21 14:32 - 2019-05-08 13:03 - 000343704 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2019-05-21 14:32 - 2019-05-08 13:03 - 000321712 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2019-05-21 14:32 - 2019-05-08 13:03 - 000321712 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2019-05-21 14:32 - 2019-05-08 13:03 - 000214832 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2019-05-21 14:32 - 2019-05-08 13:03 - 000192976 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2019-05-21 14:32 - 2019-05-08 13:03 - 000110976 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2019-05-21 14:32 - 2019-05-08 13:03 - 000088344 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2019-05-21 14:32 - 2019-05-08 13:03 - 000023688 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2019-05-21 14:32 - 2019-05-08 13:01 - 004059960 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2019-05-21 14:32 - 2019-05-08 13:01 - 001616680 _____ (Conexant Systems Inc.) C:\Windows\system32\CX64APO.dll
2019-05-21 14:32 - 2019-05-08 13:01 - 001529136 _____ (Conexant Systems Inc.) C:\Windows\system32\CX64Proxy.dll
2019-05-21 14:32 - 2019-05-08 13:01 - 000574752 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2019-05-21 14:32 - 2019-05-08 13:01 - 000122320 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2019-05-21 14:32 - 2019-05-08 13:01 - 000118592 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2019-05-21 14:31 - 2019-05-08 12:58 - 000094208 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\AtihdW86.sys

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-05-24 15:46 - 2019-03-19 06:50 - 000000000 ____D C:\Windows\INF
2019-05-24 15:42 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\system32\spool
2019-05-24 15:42 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\AppReadiness
2019-05-24 15:42 - 2019-03-19 06:37 - 000524288 _____ C:\Windows\system32\config\BBI
2019-05-24 15:42 - 2019-03-19 06:37 - 000000000 ____D C:\Windows\CbsTemp
2019-05-24 15:41 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-05-24 15:19 - 2019-03-19 13:55 - 000683600 _____ C:\Windows\system32\perfh005.dat
2019-05-24 15:19 - 2019-03-19 13:55 - 000137282 _____ C:\Windows\system32\perfc005.dat
2019-05-24 15:11 - 2019-03-19 06:52 - 000000000 ___SD C:\Windows\system32\DiagSvcs
2019-05-24 15:11 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\system32\setup
2019-05-24 15:11 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\system32\appraiser
2019-05-24 15:11 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\ShellExperiences
2019-05-24 15:11 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\PolicyDefinitions
2019-05-24 15:11 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\bcastdvr
2019-05-24 15:09 - 2019-03-19 07:00 - 000384000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2019-05-24 15:09 - 2019-03-19 07:00 - 000215552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dplayx.dll
2019-05-24 15:09 - 2019-03-19 07:00 - 000060928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnathlp.dll
2019-05-24 15:09 - 2019-03-19 07:00 - 000045568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpwsockx.dll
2019-05-24 15:09 - 2019-03-19 07:00 - 000023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpmodemx.dll
2019-05-24 15:09 - 2019-03-19 07:00 - 000022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnsvr.exe
2019-05-24 15:09 - 2019-03-19 07:00 - 000020480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dplaysvr.exe
2019-05-24 15:09 - 2019-03-19 07:00 - 000008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhupnp.dll
2019-05-24 15:09 - 2019-03-19 07:00 - 000008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhpast.dll
2019-05-24 15:09 - 2019-03-19 07:00 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnlobby.dll
2019-05-24 15:09 - 2019-03-19 07:00 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnaddr.dll
2019-05-24 15:09 - 2019-03-19 06:57 - 000472064 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2019-05-24 15:09 - 2019-03-19 06:57 - 000067584 _____ (Microsoft Corporation) C:\Windows\system32\dpnathlp.dll
2019-05-24 15:09 - 2019-03-19 06:57 - 000027136 _____ (Microsoft Corporation) C:\Windows\system32\dpnsvr.exe
2019-05-24 15:09 - 2019-03-19 06:57 - 000010240 _____ (Microsoft Corporation) C:\Windows\system32\dpnhupnp.dll
2019-05-24 15:09 - 2019-03-19 06:57 - 000010240 _____ (Microsoft Corporation) C:\Windows\system32\dpnhpast.dll
2019-05-24 15:09 - 2019-03-19 06:57 - 000006144 _____ (Microsoft Corporation) C:\Windows\system32\dpnlobby.dll
2019-05-24 15:09 - 2019-03-19 06:57 - 000006144 _____ (Microsoft Corporation) C:\Windows\system32\dpnaddr.dll
2019-05-24 15:08 - 2019-03-19 06:37 - 000000000 ____D C:\Windows\servicing
2019-05-24 15:00 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\system32\WinBioDatabase
2019-05-24 14:48 - 2019-03-19 06:52 - 000000000 ____D C:\Program Files\Windows Defender
2019-05-24 14:40 - 2019-03-19 06:56 - 000835688 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe
2019-05-24 14:40 - 2019-03-19 06:56 - 000179816 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2019-05-24 14:25 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2019-05-24 14:19 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\USOPrivate
2019-05-24 14:08 - 2019-03-19 06:49 - 000028672 _____ C:\Windows\system32\config\BCD-Template
2019-05-24 13:33 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\ServiceState
2019-05-24 13:25 - 2019-03-19 06:52 - 000000000 ____D C:\Program Files\Windows NT
2019-05-24 13:14 - 2019-03-19 06:52 - 000000000 ___RD C:\Windows\PrintDialog
2019-05-24 13:14 - 2019-03-19 06:52 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2019-05-24 13:12 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\appcompat
2019-05-24 13:12 - 2019-03-19 06:37 - 000032768 _____ C:\Windows\system32\config\ELAM

==================== SigCheck ===============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ============================




Additional scan result of Farbar Recovery Scan Tool (x64) Version: 19-05.2019
Ran by Administrator (24-05-2019 16:13:41)
Running from C:\Users\Administrator\Desktop
Windows 10 Home Version 1903 18362.116 (X64) (2019-05-24 11:32:01)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2047033312-1710764599-1795834438-500 - Administrator - Enabled) => C:\Users\Administrator
DefaultAccount (S-1-5-21-2047033312-1710764599-1795834438-503 - Limited - Disabled)
Guest (S-1-5-21-2047033312-1710764599-1795834438-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-2047033312-1710764599-1795834438-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)
AMD Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD)
ELAN Touchpad 11.15.0.18_X64 (HKLM\...\Elantech) (Version: 11.15.0.18 - ELAN Microelectronic Corp.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 74.0.3729.169 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.11 - Google LLC) Hidden
GTA San Andreas (HKLM-x32\...\{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}) (Version: 1.00.00001 - Rockstar Games)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8186 - Realtek Semiconductor Corp.)
USB 2.0 VGA UVC WebCam (HKLM\...\USB 2.0 VGA UVC WebCam) (Version: - )
Viber (HKLM-x32\...\{A2955866-F5A4-42AD-A2BD-F5675BE8380E}) (Version: 10.7.0.16 - Viber Media S.a.r.l) Hidden
Viber (HKU\S-1-5-21-2047033312-1710764599-1795834438-500\...\{ba8c53fd-c5c0-4fdf-bc48-cc39988fa84f}) (Version: 10.7.0.16 - Viber Media S.a.r.l)

Packages:
=========
Start -> C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy [2019-05-24] (Microsoft Corporation)
Volat -> C:\Windows\SystemApps\Microsoft.Windows.CallingShellApp_cw5n1h2txyewy [2019-05-24] (Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2019-05-24 14:55 - 2019-02-21 18:00 - 000078336 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll

==================== Alternate Data Streams (Whitelisted) =========

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CBDHSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CBDHSvc => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-03-19 06:49 - 2019-03-19 06:49 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2047033312-1710764599-1795834438-500\Control Panel\Desktop\\Wallpaper -> D:\Asus driver\494096.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Windows Firewall is disabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

MSCONFIG\Services: AMD External Events Utility => 2
MSCONFIG\Services: ETDService => 2
MSCONFIG\Services: GoogleChromeElevationService => 3
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "ETDCtrl"
HKLM\...\StartupApproved\Run: => "RtHDVCpl"
HKU\S-1-5-21-2047033312-1710764599-1795834438-500\...\StartupApproved\Run: => "OneDriveSetup"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [Microsoft-Windows-DeviceManagement-deviceenroller-TCP-Out] => (Allow) %SystemRoot%\system32\deviceenroller.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{F8A8133D-0A0D-4552-9131-A550010F2AE1}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.)

==================== Restore Points =========================

ATTENTION: System Restore is disabled

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (05/24/2019 03:02:14 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program explorer.exe verze 10.0.18362.1 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 10e0

Čas spuštění: 01d5122e762bcda0

Čas ukončení: 0

Cesta k aplikaci: C:\Windows\explorer.exe

ID hlášení: 71a07743-2a90-4f5a-a641-7cc5cd7a6330

Úplný název balíčku s chybou:

ID aplikace relativní podle balíčku s chybou:

Typ zablokování: Unknown

Error: (05/24/2019 02:46:42 PM) (Source: Microsoft-Windows-RestartManager) (EventID: 10007) (User: DESKTOP-LB1POA3)
Description: Aplikaci nebo službu AMD FUEL Service nelze restartovat.

Error: (05/24/2019 02:46:41 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program SystemSettings.exe verze 10.0.18362.1 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 19a0

Čas spuštění: 01d5122e9d4f1aa1

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Windows\ImmersiveControlPanel\SystemSettings.exe

ID hlášení: 9c060991-4fb8-42d3-aa08-7170a87668e5

Úplný název balíčku s chybou: windows.immersivecontrolpanel_10.0.2.1000_neutral_neutral_cw5n1h2txyewy

ID aplikace relativní podle balíčku s chybou: microsoft.windows.immersivecontrolpanel

Typ zablokování: Cross-thread

Error: (05/24/2019 02:07:37 PM) (Source: ESENT) (EventID: 455) (User: )
Description: StartMenuExperienceHost (7052,R,98) TILEREPOSITORYS-1-5-21-2047033312-1710764599-1795834438-500: Při otevírání souboru protokolu C:\Users\Administrator\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (05/24/2019 02:07:37 PM) (Source: ESENT) (EventID: 522) (User: )
Description: StartMenuExperienceHost (7052,P,98) TILEREPOSITORYS-1-5-21-2047033312-1710764599-1795834438-500: Pokus o otevření zařízení s názvem \\.\C:, který obsahuje C:\, se nepodařil a došlo k systémové chybě 5 (0x00000005): Přístup byl odepřen. . Operace se nepodaří a dojde k chybě -1032 (0xfffffbf8).

Error: (05/24/2019 02:07:22 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Aktivace licence (slui.exe) se nezdařila s následujícím kódem chyby:
hr=0x800704CF
Argument příkazového řádku:
RuleId=31e71c49-8da7-4a2f-ad92-45d98a1c79ba;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2b1f36bb-c1cd-4306-bf5c-a0367c2d97d8;NotificationInterval=1440;Trigger=UserLogon;SessionId=3

Error: (05/24/2019 02:04:55 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Aktivace licence (slui.exe) se nezdařila s následujícím kódem chyby:
hr=0x800704CF
Argument příkazového řádku:
RuleId=31e71c49-8da7-4a2f-ad92-45d98a1c79ba;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2b1f36bb-c1cd-4306-bf5c-a0367c2d97d8;NotificationInterval=1440;Trigger=UserLogon;SessionId=2

Error: (05/24/2019 02:03:27 PM) (Source: ESENT) (EventID: 455) (User: )
Description: StartMenuExperienceHost (4912,R,98) TILEREPOSITORYS-1-5-21-2047033312-1710764599-1795834438-1001: Při otevírání souboru protokolu C:\Users\ASUS\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).


System errors:
=============
Error: (05/24/2019 02:46:41 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba AMD FUEL Service neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.

Error: (05/24/2019 02:41:03 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-LB1POA3)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.

Error: (05/24/2019 02:41:03 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-LB1POA3)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.

Error: (05/24/2019 02:41:03 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-LB1POA3)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.

Error: (05/24/2019 02:41:03 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-LB1POA3)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.

Error: (05/24/2019 02:41:03 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-LB1POA3)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.

Error: (05/24/2019 02:41:02 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-LB1POA3)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.

Error: (05/24/2019 02:12:34 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby AMD External Events Utility bylo dosaženo časového limitu (30000 ms).


==================== Memory info ===========================

BIOS: American Megatrends Inc. K52De.210 01/27/2011
Motherboard: ASUSTeK Computer Inc. K52De
Processor: AMD Athlon(tm) II P360 Dual-Core Processor
Percentage of memory in use: 54%
Total physical RAM: 4093.83 MB
Available physical RAM: 1857.12 MB
Total Virtual: 5501.83 MB
Available Virtual: 3422.93 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:97.06 GB) (Free:71.17 GB) NTFS
Drive d: (Dokumenty) (Fixed) (Total:390.62 GB) (Free:380.6 GB) NTFS
Drive e: () (Fixed) (Total:107.89 GB) (Free:107.8 GB) NTFS

\\?\Volume{9cb6883a-b6dd-440d-bcb2-61fa57bef34f}\ () (Fixed) (Total:0.49 GB) (Free:0.11 GB) NTFS
\\?\Volume{72a546b7-9172-46d4-9199-02d0703b9e4b}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Protective MBR) (Size: 596.2 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt ============================

samsungs6edge
Návštěvník
Návštěvník
Příspěvky: 134
Registrován: 26 kvě 2017 14:48

Re: Windows 10 1903

#2 Příspěvek od samsungs6edge »

# -------------------------------
# Malwarebytes AdwCleaner 7.3.0.0
# -------------------------------
# Build: 04-04-2019
# Database: 2019-04-29.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 05-24-2019
# Duration: 00:00:13
# OS: Windows 10 Home
# Scanned: 27335
# Detected: 0


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.



########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Windows 10 1903

#3 Příspěvek od Rudy »

Zdravím!
Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
Task: {71920313-BEA1-4A6C-9818-AD9C0CE303F9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-05-24] (Google Inc -> Google LLC)
Task: {83FE5AF4-5F8B-4DD2-A585-A9F6ABC7A1AD} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-05-24] (Google Inc -> Google LLC)
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File

EmptyTemp:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

samsungs6edge
Návštěvník
Návštěvník
Příspěvky: 134
Registrován: 26 kvě 2017 14:48

Re: Windows 10 1903

#4 Příspěvek od samsungs6edge »

Fix result of Farbar Recovery Scan Tool (x64) Version: 19-05.2019
Ran by Administrator (24-05-2019 17:17:32) Run:1
Running from C:\Users\Administrator\Desktop
Loaded Profiles: Administrator (Available Profiles: Administrator)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
Task: {71920313-BEA1-4A6C-9818-AD9C0CE303F9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-05-24] (Google Inc -> Google LLC)
Task: {83FE5AF4-5F8B-4DD2-A585-A9F6ABC7A1AD} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-05-24] (Google Inc -> Google LLC)
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File

EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{71920313-BEA1-4A6C-9818-AD9C0CE303F9}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{71920313-BEA1-4A6C-9818-AD9C0CE303F9}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{83FE5AF4-5F8B-4DD2-A585-A9F6ABC7A1AD}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{83FE5AF4-5F8B-4DD2-A585-A9F6ABC7A1AD}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer => removed successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Search Page => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Search Page => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Search_URL => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Search_URL => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Local Page => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Local Page => value restored successfully
"C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore" => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1 => removed successfully
HKLM\Software\Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524} => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2 => removed successfully
HKLM\Software\Classes\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282} => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3 => removed successfully
HKLM\Software\Classes\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30} => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4 => removed successfully
HKLM\Software\Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A} => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5 => removed successfully
HKLM\Software\Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive6 => removed successfully
HKLM\Software\Classes\CLSID\{9AA2F32D-362A-42D9-9328-24A483E2CCC3} => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7 => removed successfully
HKLM\Software\Classes\CLSID\{C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1 => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524} => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2 => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282} => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3 => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30} => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4 => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A} => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5 => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive6 => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{9AA2F32D-362A-42D9-9328-24A483E2CCC3} => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7 => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => not found

=========== EmptyTemp: ==========

BITS transfer queue => 6053888 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 9510284 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 0 B
Edge => 1096134 B
Chrome => 17176844 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
LocalService => 0 B
NetworkService => 3668 B
NetworkService => 0 B
Administrator => 1251779 B

RecycleBin => 0 B
EmptyTemp: => 33.5 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 17:18:39 ====

samsungs6edge
Návštěvník
Návštěvník
Příspěvky: 134
Registrován: 26 kvě 2017 14:48

Re: Windows 10 1903

#5 Příspěvek od samsungs6edge »

Děkuji za kontrolu

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Windows 10 1903

#6 Příspěvek od Rudy »

Zbytečnosti byly smazány. Nemáte zač! :)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Zamčeno