Prosim o kontrolu Vyřešeno

Místo pro vaše HiJackThis logy a logy z dalších programů…

Moderátoři: Mods_senior, Security team

malkisakk
nováček
Příspěvky: 25
Registrován: leden 21
Pohlaví: Muž
Stav:
Offline

Re: Prosim o kontrolu

Příspěvekod malkisakk » 20 led 2021 19:38

OCCT- zadny pad se nekonal, zadne obrazky mi to nevygenerovalo kdyz jsem dal stop, jdu zkusit neco zahrat a uvidim.

Reklama
Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43054
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Prosim o kontrolu

Příspěvekod jaro3 » 20 led 2021 19:57

OCCT , jak dlouho si nechal test bežet při CPU , pak u GPU a nakonec při Power Supply? Chtělo by to u každého testu tak aspon půl hodiny.Nespadlo to nikdy?
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

malkisakk
nováček
Příspěvky: 25
Registrován: leden 21
Pohlaví: Muž
Stav:
Offline

Re: Prosim o kontrolu

Příspěvekod malkisakk » 20 led 2021 20:06

15min, tak zkusim zase zitraa pul hodiny. Zatim dik.

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43054
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Prosim o kontrolu

Příspěvekod jaro3 » 20 led 2021 21:08

chce to dýl , nebo i hodinu.

Tak potom ještě jeden nástroj na viry , klidně zítra:
Vypni antivir i firewall.
Prosím stáhni příslušnou verzi programu pro Tvůj systém 32-bit/64-bit FarbarRecovery Scan Tool (FrSt)
32bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/81/
64bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/82/
další odkaz:
http://www.bleepingcomputer.com/downloa ... scan-tool/
a ulož jej na plochu. ,pak spusť FrSt.
Potvrď způsob užití.
Neměň žádné z výchozích nastavení a klikni na položku „Scan“ („Skenovat“) .Když je skenování dokončeno, ukážou se dva logy = FRST.txt a Addition.txt a uloží se na ploše.Prosím zkopíruj sem celý jejich obsah.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

malkisakk
nováček
Příspěvky: 25
Registrován: leden 21
Pohlaví: Muž
Stav:
Offline

Re: Prosim o kontrolu

Příspěvekod malkisakk » 21 led 2021 20:08

OCCT-tak jsem testoval Power, Vram, 3D, Memory, OCCT vse po pul hodine a vysledek u vseho bez problemu.

malkisakk
nováček
Příspěvky: 25
Registrován: leden 21
Pohlaví: Muž
Stav:
Offline

Re: Prosim o kontrolu

Příspěvekod malkisakk » 21 led 2021 20:22

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 20-01-2021
Ran by malki (administrator) on DESKTOP-M0TBJIK (MSI MS-7978) (21-01-2021 20:11:06)
Running from C:\Users\malki\Downloads
Loaded Profiles: malki
Platform: Windows 10 Pro Version 1703 15063.1418 (X64) Language: Čeština (Česká republika)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0361132.inf_amd64_1f7832db1fb1721f\B361196\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0361132.inf_amd64_1f7832db1fb1721f\B361196\atiesrxx.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler64.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <11>
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\rempl\sedlauncher.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\InstallAgentUserBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe
(Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2011.6-0\MsMpEng.exe
(Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.1000_x64__kzf8qxf38zg5c\SkypeHost.exe
(Wargaming.net Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\dlls\wgc_renderer.exe <3>
(Wargaming.net Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\WargamingErrorMonitor.exe
(Wargaming.net Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\wgc.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-4243952216-913355093-1413953572-1001\...\Run: [Wargaming.net Game Center] => C:\ProgramData\Wargaming.net\GameCenter\wgc.exe [2478848 2021-01-19] (Wargaming.net Limited -> Wargaming.net)
HKLM\...\Print\Monitors\IppMon: C:\Windows\system32\IPPMon.dll [225792 2017-03-18] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\87.0.4280.141\Installer\chrmstp.exe [2021-01-16] (Google LLC -> Google LLC)
HKLM\Software\...\Winlogon\GPExtensions: [{9650FDBC-053A-4715-AD14-FC2DC65E8330}] -> C:\Windows\system32\hvsigpext.dll [2017-03-20] (Microsoft Windows -> )

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {1D7B7A34-4F9E-46DB-AB99-715BD391FAC6} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2021-01-16] (Google LLC -> Google LLC)
Task: {20FDA633-3972-4CB8-BE05-C9217B52297F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2021-01-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {234DEDA0-B21F-4C1E-883E-9596B8AF7BA9} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1710464 2020-11-14] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {3D7CD47B-38BD-4C92-B3DC-5C917A5D13C3} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2021-01-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {3FBF4DFA-3639-4F9F-9660-B7E063624D1F} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1710464 2020-11-14] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {4246F8E1-F87D-46DA-9D3B-3C23398E1F6D} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [69304 2020-11-13] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {4BAF22FA-AD5E-49CB-9766-AF9D074D0B58} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2021-01-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {51131AB2-1548-413E-846A-B98D7BA99C8D} - System32\Tasks\AMHelper => C:\Users\Public\Desktop\AntiMalware\AntiMalware.exe [658808 2020-07-29] (Zemana D.O.O. Sarajevo -> Zemana Ltd.)
Task: {51E68C41-AB5C-4ACC-B8E8-8DA3B1EAD6D0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2021-01-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6C1F4F7A-8AAD-407D-8BEE-60A23F986824} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [61624 2020-11-13] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {B90665EB-AA4C-43EF-91DC-7EB79377C3D6} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1710464 2020-11-14] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {C6B4026C-744F-4733-910F-B3A2B37ACA22} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2021-01-16] (Google LLC -> Google LLC)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{6a3d8384-8740-4458-8929-47805999a5bd}: [DhcpNameServer] 192.168.0.1

Chrome:
=======
CHR Profile: C:\Users\malki\AppData\Local\Google\Chrome\User Data\Default [2021-01-21]
CHR HomePage: Default -> hxxps://www.seznam.cz/
CHR StartupUrls: Default -> "hxxps://www.google.cz/webhp?sourceid=chrome-instant&ion=1&espv=2&ie=UTF-8"
CHR Extension: (Prezentace) - C:\Users\malki\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-01-20]
CHR Extension: (Dokumenty) - C:\Users\malki\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-01-20]
CHR Extension: (Disk Google) - C:\Users\malki\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-01-20]
CHR Extension: (YouTube) - C:\Users\malki\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-01-20]
CHR Extension: (Tabulky) - C:\Users\malki\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-01-20]
CHR Extension: (Dokumenty Google offline) - C:\Users\malki\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-01-20]
CHR Extension: (AdBlock — best ad blocker) - C:\Users\malki\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2021-01-20]
CHR Extension: (Tlačítko „Uložit“ pro Pinterest) - C:\Users\malki\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2021-01-20]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\malki\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-20]
CHR Extension: (Gmail) - C:\Users\malki\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-01-20]
CHR Extension: (Chrome Media Router) - C:\Users\malki\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-01-20]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7456464 2021-01-18] (Malwarebytes Inc -> Malwarebytes)
S2 rkrtservice; C:\Program Files\RogueKiller\RogueKillerSvc.exe [13686080 2021-01-13] (Adlice -> )
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [3913064 2018-06-08] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\NisSrv.exe [2491880 2021-01-16] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MsMpEng.exe [128376 2021-01-16] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AMDXE; C:\Windows\System32\drivers\amdxe.sys [62056 2020-07-27] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R1 amsdk; C:\Windows\system32\drivers\amsdk.sys [232792 2021-01-20] (Zemana D.O.O. Sarajevo -> Copyright 2018.)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [159600 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [220160 2021-01-19] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [19912 2021-01-18] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248992 2021-01-18] (Malwarebytes Inc -> Malwarebytes)
R2 speedfan; C:\Windows\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [48536 2021-01-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [429296 2021-01-16] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [70896 2021-01-16] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-01-21 20:11 - 2021-01-21 20:11 - 000012444 _____ C:\Users\malki\Downloads\FRST.txt
2021-01-21 20:10 - 2021-01-21 20:11 - 000000000 ____D C:\FRST
2021-01-21 20:04 - 2021-01-21 20:04 - 002295808 _____ (Farbar) C:\Users\malki\Downloads\FRST64.exe
2021-01-20 18:47 - 2021-01-21 20:07 - 000005514 _____ C:\Users\malki\Downloads\OCCT.config.json
2021-01-20 18:43 - 2021-01-20 18:43 - 017985776 _____ (OCCT - Ocbase - Adrien Mercier) C:\Users\malki\Downloads\OCCT7.2.5.exe
2021-01-20 18:20 - 2021-01-20 18:20 - 000000000 ____D C:\Users\malki\AppData\Roaming\JAM Software
2021-01-20 18:19 - 2021-01-20 18:19 - 000001293 _____ C:\Users\malki\Desktop\HeavyLoad.lnk
2021-01-20 18:19 - 2021-01-20 18:19 - 000001255 _____ C:\Users\Public\Desktop\HeavyLoad.lnk
2021-01-20 18:19 - 2021-01-20 18:19 - 000000000 ____D C:\Users\Public\Desktop\HeavyLoad
2021-01-20 18:17 - 2021-01-20 18:17 - 015534704 _____ (JAM Software ) C:\Users\malki\Downloads\HeavyLoad-x64-Setup.exe
2021-01-20 18:10 - 2021-01-20 18:10 - 000000000 ____D C:\Users\malki\AppData\Local\cache
2021-01-20 18:08 - 2021-01-21 20:10 - 001032736 _____ C:\Windows\ZAM.krnl.trace
2021-01-20 18:08 - 2021-01-20 18:08 - 000232792 _____ (Copyright 2018.) C:\Windows\system32\Drivers\amsdk.sys
2021-01-20 18:08 - 2021-01-20 18:08 - 000003546 _____ C:\Windows\system32\Tasks\AMHelper
2021-01-20 18:08 - 2021-01-20 18:08 - 000002159 _____ C:\Users\Public\Desktop\Zemana AntiMalware.lnk
2021-01-20 18:08 - 2021-01-20 18:08 - 000000000 ____D C:\Users\Public\Desktop\AntiMalware
2021-01-20 18:08 - 2021-01-20 18:08 - 000000000 ____D C:\Users\malki\AppData\Local\Zemana
2021-01-20 18:08 - 2021-01-20 18:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zemana AntiMalware
2021-01-20 18:06 - 2021-01-20 18:09 - 000000000 ____D C:\Users\malki\AppData\Local\AMSDK
2021-01-20 18:06 - 2021-01-20 18:06 - 012795472 _____ (Zemana Ltd. ) C:\Users\malki\Downloads\AntiMalware_Setup.exe
2021-01-20 17:58 - 2014-02-13 23:59 - 000024064 _____ C:\Windows\zoek-delete.exe
2021-01-20 17:44 - 2021-01-20 17:56 - 000000000 ____D C:\zoek_backup
2021-01-20 17:43 - 2021-01-20 17:43 - 000000000 ____D C:\Users\malki\Desktop\zoek1
2021-01-20 17:42 - 2021-01-20 17:42 - 001800862 _____ C:\Users\malki\Desktop\zoek1.rar
2021-01-20 15:29 - 2021-01-20 15:29 - 000017671 _____ C:\Users\malki\Desktop\MemTest.zip
2021-01-20 15:29 - 2021-01-20 15:29 - 000000000 ____D C:\Users\malki\Desktop\MemTest
2021-01-20 15:11 - 2021-01-20 15:16 - 000000000 ____D C:\ProgramData\RogueKiller
2021-01-20 15:11 - 2021-01-20 15:11 - 000000899 _____ C:\Users\Public\Desktop\RogueKiller.lnk
2021-01-20 15:11 - 2021-01-20 15:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
2021-01-20 15:11 - 2021-01-20 15:11 - 000000000 ____D C:\Program Files\RogueKiller
2021-01-20 15:05 - 2021-01-20 15:05 - 040487584 _____ (Adlice Software ) C:\Users\malki\Desktop\RogueKiller_setup.exe
2021-01-19 18:24 - 2021-01-19 18:24 - 000002775 _____ C:\Users\Public\Desktop\Sophos Virus Removal Tool.lnk
2021-01-19 18:24 - 2021-01-19 18:24 - 000000000 ____D C:\ProgramData\Sophos
2021-01-19 18:24 - 2021-01-19 18:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sophos
2021-01-19 18:24 - 2021-01-19 18:24 - 000000000 ____D C:\Program Files (x86)\Sophos
2021-01-19 18:14 - 2021-01-19 18:24 - 206758184 _____ (Sophos Limited) C:\Users\malki\Desktop\Sophos Virus Removal Tool.exe
2021-01-19 18:07 - 2021-01-19 18:07 - 000000546 _____ C:\Users\malki\Desktop\JRT.txt
2021-01-19 18:05 - 2021-01-19 18:05 - 001790024 _____ (Malwarebytes) C:\Users\malki\Desktop\JRT.exe
2021-01-19 17:49 - 2021-01-19 17:49 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2021-01-19 17:45 - 2021-01-19 18:11 - 000001076 _____ C:\Users\malki\Desktop\SpeedFan.lnk
2021-01-19 17:45 - 2021-01-19 18:11 - 000000000 ____D C:\Program Files (x86)\SpeedFan
2021-01-19 17:45 - 2021-01-19 17:45 - 000000045 _____ C:\Windows\SysWOW64\initdebug.nfo
2021-01-19 17:45 - 2021-01-19 17:45 - 000000000 ____D C:\Users\malki\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan
2021-01-19 17:44 - 2021-01-19 17:44 - 003086696 _____ C:\Users\malki\Desktop\instspeedfan452_1.exe
2021-01-19 15:29 - 2021-01-19 15:30 - 000000000 ____D C:\CrystalDiskInfo
2021-01-19 15:29 - 2021-01-19 15:29 - 000001590 _____ C:\Users\malki\Desktop\CrystalDiskInfo.lnk
2021-01-19 15:28 - 2021-01-19 15:28 - 004695704 _____ (Crystal Dew World ) C:\Users\malki\Desktop\CrystalDiskInfo8_9_0.exe
2021-01-19 15:19 - 2021-01-19 15:19 - 000220160 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2021-01-19 15:15 - 2021-01-19 15:15 - 008447152 _____ (Malwarebytes) C:\Users\malki\Desktop\AdwCleaner.exe
2021-01-19 15:11 - 2021-01-19 15:11 - 000000922 _____ C:\Users\malki\Desktop\TFC.txt
2021-01-19 15:09 - 2021-01-19 15:09 - 000448512 _____ (OldTimer Tools) C:\Users\malki\Downloads\TFC.exe
2021-01-18 21:06 - 2021-01-18 21:06 - 000522824 _____ C:\Users\malki\Downloads\Ladislav Dofek.jpeg
2021-01-18 21:02 - 2021-01-18 21:02 - 000050688 _____ (Atribune.org) C:\Users\malki\Downloads\ATF-Cleaner.exe
2021-01-18 20:55 - 2021-01-18 20:55 - 000000000 ____D C:\Intel
2021-01-18 20:53 - 2021-01-18 20:53 - 000000000 ____D C:\Users\malki\Downloads\intel_vga_skl
2021-01-18 20:52 - 2021-01-18 20:52 - 000000000 ____D C:\Program Files\Intel
2021-01-18 20:51 - 2021-01-18 20:51 - 000000000 ____D C:\Users\malki\Downloads\intel_chipset_9
2021-01-18 20:43 - 2021-01-20 19:36 - 000000000 ____D C:\Program Files (x86)\InstallShield Installation Information
2021-01-18 20:41 - 2021-01-18 20:41 - 000000000 ____D C:\ProgramData\Downloaded Installations
2021-01-18 20:41 - 2021-01-18 20:41 - 000000000 _____ C:\Users\malki\AppData\Local\Driver_LOM_8171Present.flag
2021-01-18 20:33 - 2021-01-18 20:35 - 249085970 _____ C:\Users\malki\Downloads\intel_vga_skl.zip
2021-01-18 20:33 - 2021-01-18 20:33 - 000000000 ____D C:\Users\malki\Downloads\Killer_network_w10
2021-01-18 20:32 - 2021-01-18 20:32 - 003795004 _____ C:\Users\malki\Downloads\intel_chipset_9.zip
2021-01-18 20:30 - 2021-01-18 20:32 - 192500570 _____ C:\Users\malki\Downloads\Killer_network_w10.zip
2021-01-18 18:20 - 2021-01-18 18:20 - 000388608 _____ (Trend Micro Inc.) C:\Users\malki\Downloads\HijackThis.exe
2021-01-18 18:12 - 2021-01-20 17:44 - 000000000 ____D C:\Users\malki\AppData\Local\CrashDumps
2021-01-18 18:07 - 2021-01-18 18:07 - 000000000 ____D C:\Users\malki\AppData\Local\mbam
2021-01-18 18:06 - 2021-01-18 18:06 - 000248992 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2021-01-18 18:06 - 2021-01-18 18:06 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-01-18 18:06 - 2021-01-18 18:06 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2021-01-18 18:06 - 2021-01-18 18:06 - 000000000 ____D C:\ProgramData\Malwarebytes
2021-01-18 18:06 - 2021-01-18 18:05 - 000153312 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2021-01-18 18:06 - 2021-01-18 18:05 - 000019912 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamElam.sys
2021-01-18 18:04 - 2021-01-18 18:04 - 000000000 ____D C:\Program Files\Malwarebytes
2021-01-18 14:54 - 2021-01-20 20:20 - 000000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
2021-01-18 14:54 - 2021-01-18 14:54 - 000000000 ____D C:\Users\malki\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server
2021-01-18 14:53 - 2021-01-18 17:01 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner
2021-01-18 14:53 - 2021-01-18 14:53 - 000001155 _____ C:\Users\malki\Desktop\MSI Afterburner.lnk
2021-01-18 14:53 - 2021-01-18 14:53 - 000000000 ____D C:\Users\malki\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
2021-01-18 14:51 - 2021-01-18 14:52 - 050718256 _____ C:\Users\malki\Downloads\MSIAfterburnerSetup462.exe
2021-01-18 14:38 - 2021-01-18 14:49 - 000000000 ____D C:\Users\malki\AppData\Local\ElevatedDiagnostics
2021-01-17 11:00 - 2021-01-17 11:00 - 002804630 _____ C:\Users\malki\Downloads\E7978v2.1.zip
2021-01-17 11:00 - 2021-01-17 11:00 - 000000000 ____D C:\Users\malki\Downloads\E7978v2.1
2021-01-16 15:08 - 2021-01-16 15:08 - 000000982 _____ C:\Users\malki\Desktop\World of Tanks EU.lnk
2021-01-16 15:05 - 2021-01-16 15:08 - 000000000 ____D C:\Users\malki\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wargaming.net
2021-01-16 15:05 - 2021-01-16 15:05 - 000001892 _____ C:\Users\malki\Desktop\Game Center.lnk
2021-01-16 15:04 - 2021-01-16 15:04 - 004753832 _____ (Wargaming.net ) C:\Users\malki\Downloads\wargaming_game_center_install_eu_c8kn0vrlsv9c.exe
2021-01-16 15:03 - 2021-01-16 15:03 - 000001044 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TechPowerUp GPU-Z.lnk
2021-01-16 15:03 - 2021-01-16 15:03 - 000001032 _____ C:\Users\Public\Desktop\TechPowerUp GPU-Z.lnk
2021-01-16 15:03 - 2021-01-16 15:03 - 000000000 ____D C:\Program Files (x86)\GPU-Z
2021-01-16 15:02 - 2021-01-16 15:02 - 009972856 _____ (techPowerUp (www.techpowerup.com)) C:\Users\malki\Downloads\GPU-Z.2.36.0.exe
2021-01-16 14:54 - 2021-01-16 14:54 - 000000000 ____D C:\Users\malki\AppData\Local\CEF
2021-01-16 14:52 - 2021-01-16 15:05 - 000000000 ____D C:\Users\malki\AppData\Roaming\Wargaming.net
2021-01-16 14:48 - 2021-01-16 14:48 - 006513880 _____ (Wargaming.net ) C:\Users\malki\Downloads\world_of_tanks_install_eu_c8kmodolnf6o.exe
2021-01-16 14:48 - 2021-01-16 14:48 - 000000000 ____D C:\ProgramData\Wargaming.net
2021-01-16 14:42 - 2021-01-16 14:43 - 000000000 ____D C:\AdwCleaner
2021-01-16 14:42 - 2020-06-04 13:22 - 000000062 _____ C:\Users\malki\Documents\Vyplatnice.txt
2021-01-16 14:34 - 2021-01-16 14:34 - 000000000 ____D C:\Users\Public\Documents\Steam
2021-01-16 14:34 - 2021-01-16 14:34 - 000000000 ____D C:\Users\malki\AppData\Local\UnrealEngine
2021-01-16 14:34 - 2021-01-16 14:34 - 000000000 ____D C:\Users\malki\AppData\Local\Styx2
2021-01-16 14:31 - 2021-01-18 14:55 - 000000000 ____D C:\Windows\SysWOW64\directx
2021-01-16 14:23 - 2021-01-16 14:31 - 000000000 ____D C:\Users\malki\AppData\Local\AMD
2021-01-16 14:22 - 2020-11-17 22:49 - 000107048 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\amdkmpfd.sys
2021-01-16 14:21 - 2021-01-21 14:55 - 000003126 _____ C:\Windows\system32\Tasks\AMDInstallLauncher
2021-01-16 14:21 - 2021-01-21 14:55 - 000003110 _____ C:\Windows\system32\Tasks\AMDLinkUpdate
2021-01-16 14:21 - 2021-01-16 14:21 - 000003488 _____ C:\Windows\system32\Tasks\ModifyLinkUpdate
2021-01-16 14:20 - 2021-01-16 14:20 - 000000000 ____D C:\Windows\system32\AMD
2021-01-16 14:20 - 2021-01-16 14:20 - 000000000 ____D C:\Program Files\Common Files\ATI Technologies
2021-01-16 14:19 - 2021-01-16 14:19 - 000003160 _____ C:\Windows\system32\Tasks\StartCN
2021-01-16 14:19 - 2021-01-16 14:19 - 000003080 _____ C:\Windows\system32\Tasks\StartDVR
2021-01-16 14:19 - 2021-01-16 14:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Radeon Software
2021-01-16 14:19 - 2021-01-16 14:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Bug Report Tool
2021-01-16 14:18 - 2021-01-16 14:18 - 000000000 ____D C:\ProgramData\AMD
2021-01-16 14:15 - 2020-11-17 22:52 - 001753912 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2021-01-16 14:15 - 2020-11-17 22:52 - 001753912 _____ C:\Windows\system32\vulkaninfo.exe
2021-01-16 14:15 - 2020-11-17 22:52 - 001359680 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2021-01-16 14:15 - 2020-11-17 22:52 - 001359680 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2021-01-16 14:15 - 2020-11-17 22:52 - 001047992 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2021-01-16 14:15 - 2020-11-17 22:52 - 001047992 _____ C:\Windows\system32\vulkan-1.dll
2021-01-16 14:15 - 2020-11-17 22:52 - 000910456 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2021-01-16 14:15 - 2020-11-17 22:52 - 000910456 _____ C:\Windows\SysWOW64\vulkan-1.dll
2021-01-16 14:15 - 2020-11-17 22:51 - 001593664 _____ (AMD) C:\Windows\system32\coinst_20.45.dll
2021-01-16 14:15 - 2020-11-17 22:51 - 000737080 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Rapidfire64.dll
2021-01-16 14:15 - 2020-11-17 22:51 - 000621376 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\Rapidfire.dll
2021-01-16 14:15 - 2020-11-17 22:51 - 000496960 _____ C:\Windows\system32\GameManager64.dll
2021-01-16 14:15 - 2020-11-17 22:51 - 000493368 _____ C:\Windows\system32\dgtrayicon.exe
2021-01-16 14:15 - 2020-11-17 22:51 - 000380224 _____ C:\Windows\SysWOW64\GameManager32.dll
2021-01-16 14:15 - 2020-11-17 22:51 - 000339776 _____ C:\Windows\system32\clinfo.exe
2021-01-16 14:15 - 2020-11-17 22:51 - 000187200 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll
2021-01-16 14:15 - 2020-11-17 22:51 - 000167232 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atisamu64.dll
2021-01-16 14:15 - 2020-11-17 22:51 - 000166720 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll
2021-01-16 14:15 - 2020-11-17 22:51 - 000156992 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll
2021-01-16 14:15 - 2020-11-17 22:51 - 000142656 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll
2021-01-16 14:15 - 2020-11-17 22:51 - 000141120 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atisamu32.dll
2021-01-16 14:15 - 2020-11-17 22:51 - 000046904 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\RapidFireServer64.dll
2021-01-16 14:15 - 2020-11-17 22:51 - 000043832 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\RapidFireServer.dll
2021-01-16 14:15 - 2020-11-17 22:51 - 000019984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\detoured.dll
2021-01-16 14:15 - 2020-11-17 22:51 - 000019984 _____ (Microsoft Corporation) C:\Windows\system32\detoured.dll
2021-01-16 14:15 - 2020-11-17 22:50 - 004919616 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amfrt64.dll
2021-01-16 14:15 - 2020-11-17 22:50 - 004624704 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amfrt32.dll
2021-01-16 14:15 - 2020-11-17 22:50 - 001798464 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2021-01-16 14:15 - 2020-11-17 22:50 - 001490752 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiacm64.dll
2021-01-16 14:15 - 2020-11-17 22:50 - 001356096 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2021-01-16 14:15 - 2020-11-17 22:50 - 001356096 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxx.dll
2021-01-16 14:15 - 2020-11-17 22:50 - 000793920 _____ (AMD) C:\Windows\system32\atieclxx.exe
2021-01-16 14:15 - 2020-11-17 22:50 - 000468800 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll
2021-01-16 14:15 - 2020-11-17 22:50 - 000456512 _____ C:\Windows\system32\atieah64.exe
2021-01-16 14:15 - 2020-11-17 22:50 - 000352064 _____ C:\Windows\SysWOW64\atieah32.exe
2021-01-16 14:15 - 2020-11-17 22:50 - 000245568 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2021-01-16 14:15 - 2020-11-17 22:50 - 000213312 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2021-01-16 14:15 - 2020-11-17 22:50 - 000182600 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll
2021-01-16 14:15 - 2020-11-17 22:50 - 000158856 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll
2021-01-16 14:15 - 2020-11-17 22:50 - 000150336 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2021-01-16 14:15 - 2020-11-17 22:50 - 000136000 _____ (AMD) C:\Windows\system32\atimuixx.dll
2021-01-16 14:15 - 2020-11-17 22:50 - 000130880 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2021-01-16 14:15 - 2020-11-17 22:50 - 000125760 _____ C:\Windows\system32\atidxx64.dll
2021-01-16 14:15 - 2020-11-17 22:50 - 000107840 _____ C:\Windows\SysWOW64\atidxx32.dll
2021-01-16 14:15 - 2020-11-17 22:50 - 000070464 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ati2erec.dll
2021-01-16 14:15 - 2020-11-17 22:49 - 000941376 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdlvr64.dll
2021-01-16 14:15 - 2020-11-17 22:49 - 000768832 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdlvr32.dll
2021-01-16 14:15 - 2020-11-17 22:49 - 000122688 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdxc64.dll
2021-01-16 14:15 - 2020-11-17 22:49 - 000107328 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdxc32.dll
2021-01-16 14:15 - 2020-11-17 22:48 - 000489792 _____ C:\Windows\system32\amdgfxinfo64.dll
2021-01-16 14:15 - 2020-11-17 22:48 - 000380224 _____ C:\Windows\SysWOW64\amdgfxinfo32.dll
2021-01-16 14:15 - 2020-11-17 22:48 - 000202640 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdihk64.dll
2021-01-16 14:15 - 2020-11-17 22:48 - 000170192 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdihk32.dll
2021-01-16 14:15 - 2020-11-17 22:48 - 000130432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2021-01-16 14:15 - 2020-11-17 22:48 - 000130432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2021-01-16 14:15 - 2020-11-17 22:48 - 000108448 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2021-01-16 14:15 - 2020-11-17 22:48 - 000108448 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2021-01-16 14:15 - 2020-11-17 22:47 - 000547000 _____ C:\Windows\system32\amdmiracast.dll
2021-01-16 14:15 - 2020-11-17 22:47 - 000136128 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdave64.dll
2021-01-16 14:15 - 2020-11-17 22:47 - 000120464 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdave32.dll
2021-01-16 14:15 - 2020-11-17 21:15 - 003471376 _____ C:\Windows\SysWOW64\atiumdva.cap
2021-01-16 14:15 - 2020-11-17 21:15 - 003437632 _____ C:\Windows\system32\atiumd6a.cap
2021-01-16 14:15 - 2020-11-17 21:15 - 000553096 _____ C:\Windows\SysWOW64\atiapfxx.blb
2021-01-16 14:15 - 2020-11-17 21:15 - 000553096 _____ C:\Windows\system32\atiapfxx.blb
2021-01-16 14:15 - 2020-11-17 21:15 - 000204952 _____ C:\Windows\SysWOW64\ativvsvl.dat
2021-01-16 14:15 - 2020-11-17 21:15 - 000204952 _____ C:\Windows\system32\ativvsvl.dat
2021-01-16 14:15 - 2020-11-17 21:15 - 000157144 _____ C:\Windows\SysWOW64\ativvsva.dat
2021-01-16 14:15 - 2020-11-17 21:15 - 000157144 _____ C:\Windows\system32\ativvsva.dat
2021-01-16 14:15 - 2020-11-17 21:15 - 000154384 _____ C:\Windows\system32\samu_krnl_ci.sbin
2021-01-16 14:15 - 2020-11-17 21:15 - 000138832 _____ C:\Windows\system32\samu_krnl_isv_ci.sbin
2021-01-16 14:15 - 2020-11-17 21:15 - 000125488 _____ C:\Windows\system32\kapp_ci.sbin
2021-01-16 14:15 - 2020-11-17 21:15 - 000121168 _____ C:\Windows\system32\kapp_si.sbin
2021-01-16 14:15 - 2020-11-17 21:15 - 000076237 _____ C:\Windows\system32\AMDKernelEvents.man
2021-01-16 14:15 - 2020-11-17 21:15 - 000012344 _____ C:\Windows\system32\brandingWS_RSX.bmp
2021-01-16 14:15 - 2020-11-17 21:15 - 000012344 _____ C:\Windows\system32\brandingRSX.bmp
2021-01-16 14:15 - 2020-11-17 21:15 - 000011014 _____ C:\Windows\system32\atiacmLocalisation.ini
2021-01-16 14:15 - 2020-11-17 21:15 - 000000822 _____ C:\Windows\system32\branding.bmp
2021-01-16 14:15 - 2020-10-26 15:14 - 000511920 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdfendrsr.exe
2021-01-16 14:15 - 2020-10-26 15:14 - 000089008 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\amdfendr.sys
2021-01-16 14:15 - 2020-07-27 08:41 - 000062056 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\amdxe.sys
2021-01-16 14:15 - 2020-06-09 02:57 - 000107936 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\AtihdWT6.sys
2021-01-16 14:14 - 2020-11-17 22:50 - 079762240 _____ C:\Windows\system32\amd_comgr.dll
2021-01-16 14:14 - 2020-11-17 22:50 - 065448248 _____ C:\Windows\SysWOW64\amd_comgr32.dll
2021-01-16 14:07 - 2021-01-16 14:09 - 000000000 ____D C:\Users\malki\AppData\Local\AMD_Common
2021-01-16 14:07 - 2021-01-16 14:07 - 000000000 ____D C:\Users\malki\AppData\Local\RadeonInstaller
2021-01-16 14:05 - 2021-01-16 14:06 - 041449840 _____ (AMD Inc.) C:\Users\malki\Downloads\radeon-software-adrenalin-2020-20.12.1-minimalsetup-201207_web.exe
2021-01-16 13:49 - 2021-01-16 13:51 - 000000000 ____D C:\Windows\system32\Drivers\wd
2021-01-16 13:37 - 2021-01-16 13:38 - 000000000 ___SD C:\Windows\UpdateAssistantV2
2021-01-16 13:19 - 2021-01-16 13:20 - 000000000 ____D C:\Windows\system32\MRT
2021-01-16 13:18 - 2021-01-16 14:17 - 000000000 ____D C:\Program Files\CUAssistant
2021-01-16 13:18 - 2021-01-16 13:18 - 000000000 ____D C:\Program Files\rempl
2021-01-16 13:12 - 2018-05-21 11:52 - 001859584 _____ C:\Windows\SysWOW64\Windows.Mirage.dll
2021-01-16 13:12 - 2017-07-31 23:45 - 000518144 _____ C:\Windows\SysWOW64\msjetoledb40.dll
2021-01-16 13:11 - 2018-10-10 06:14 - 000804288 _____ C:\Windows\SysWOW64\locale.nls
2021-01-16 13:11 - 2018-10-10 06:14 - 000804288 _____ C:\Windows\system32\locale.nls
2021-01-16 13:11 - 2018-08-30 06:03 - 001397712 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2021-01-16 13:11 - 2018-08-30 06:03 - 001066128 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2021-01-16 13:11 - 2018-08-10 01:15 - 004171264 _____ (Gracenote, Inc.) C:\Windows\SysWOW64\gnsdk_fp.dll
2021-01-16 13:11 - 2018-08-10 00:49 - 004876800 _____ (Gracenote, Inc.) C:\Windows\system32\gnsdk_fp.dll
2021-01-16 13:11 - 2018-07-18 00:50 - 000432128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv
2021-01-16 13:11 - 2018-07-18 00:49 - 000547840 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2021-01-16 13:11 - 2018-06-08 06:30 - 000571392 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr
2021-01-16 13:11 - 2018-06-08 06:19 - 000753664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appwiz.cpl
2021-01-16 13:11 - 2018-06-08 06:19 - 000508416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoScreensaver.scr
2021-01-16 13:11 - 2018-05-24 22:28 - 002447360 _____ C:\Windows\system32\Windows.Mirage.dll
2021-01-16 13:11 - 2018-04-26 20:33 - 000526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hhctrl.ocx
2021-01-16 13:11 - 2018-03-18 22:02 - 000229376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksproxy.ax
2021-01-16 13:11 - 2018-03-02 10:46 - 000037376 _____ C:\Windows\system32\SpectrumSyncClient.dll
2021-01-16 13:11 - 2018-03-02 07:49 - 000005632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2021-01-16 13:11 - 2018-03-02 07:43 - 000494080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\timedate.cpl
2021-01-16 13:11 - 2018-03-02 07:36 - 000411648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sysmon.ocx
2021-01-16 13:11 - 2018-01-01 03:03 - 000311704 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2021-01-16 13:11 - 2018-01-01 02:38 - 000417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2021-01-16 13:11 - 2018-01-01 02:37 - 000038912 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2021-01-16 13:11 - 2018-01-01 02:32 - 000340480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2021-01-16 13:11 - 2018-01-01 02:32 - 000253952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\unimdm.tsp
2021-01-16 13:11 - 2017-11-30 03:42 - 000100864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscript.ocx
2021-01-16 13:11 - 2017-09-29 08:38 - 001135616 ____R (The ICU Project) C:\Windows\SysWOW64\icuuc.dll
2021-01-16 13:11 - 2017-06-20 05:39 - 000646144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmsys.cpl
2021-01-16 13:11 - 2017-06-20 05:30 - 000209920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdmaud.drv
2021-01-16 13:11 - 2017-05-20 09:26 - 000059904 _____ C:\Windows\SysWOW64\xboxgipsynthetic.dll
2021-01-16 13:10 - 2018-08-30 06:01 - 001018784 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2021-01-16 13:10 - 2018-08-30 05:56 - 000035296 _____ C:\Windows\system32\SyncAppvPublishingServer.exe
2021-01-16 13:10 - 2018-06-08 06:36 - 000778240 _____ C:\Windows\system32\MBR2GPT.EXE
2021-01-16 13:10 - 2018-06-08 06:32 - 000819712 _____ (Microsoft Corporation) C:\Windows\system32\appwiz.cpl
2021-01-16 13:10 - 2018-06-08 06:31 - 002079744 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2021-01-16 13:10 - 2018-06-08 06:19 - 002011648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2021-01-16 13:10 - 2018-04-26 20:33 - 000649728 _____ (Microsoft Corporation) C:\Windows\system32\hhctrl.ocx
2021-01-16 13:10 - 2018-01-01 03:27 - 000382864 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2021-01-16 13:10 - 2018-01-01 02:40 - 000082944 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2021-01-16 13:10 - 2018-01-01 02:38 - 000293376 _____ (Microsoft Corporation) C:\Windows\system32\unimdm.tsp
2021-01-16 13:10 - 2018-01-01 02:34 - 000072192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2021-01-16 13:10 - 2017-09-01 06:55 - 000031932 _____ C:\Windows\system32\edgehtmlpluginpolicy.bin
2021-01-16 13:09 - 2018-10-10 14:58 - 000017806 ____R C:\Windows\system32\CaptureToast.hcp
2021-01-16 13:09 - 2018-10-10 14:57 - 000125015 ____R C:\Windows\system32\CaptureCountdown.hcp
2021-01-16 13:09 - 2018-10-10 14:57 - 000119017 ____R C:\Windows\system32\CaptureBrackets.hcp
2021-01-16 13:09 - 2018-10-10 09:27 - 000966968 _____ (Microsoft Corporation) C:\Windows\system32\hvloader.efi
2021-01-16 13:09 - 2018-06-08 06:32 - 000540160 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2021-01-16 13:09 - 2018-03-18 22:07 - 000273408 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax
2021-01-16 13:09 - 2018-03-02 14:37 - 000459776 _____ (Microsoft Corporation) C:\Windows\system32\sysmon.ocx
2021-01-16 13:09 - 2018-01-01 02:42 - 000047104 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2021-01-16 13:09 - 2017-09-29 08:27 - 001321984 ____R (The ICU Project) C:\Windows\system32\icuuc.dll
2021-01-16 13:09 - 2017-06-20 06:05 - 000696320 _____ (Microsoft Corporation) C:\Windows\system32\mmsys.cpl
2021-01-16 13:09 - 2017-06-20 05:56 - 000241152 _____ (Microsoft Corporation) C:\Windows\system32\wdmaud.drv
2021-01-16 13:09 - 2017-05-20 07:08 - 000086016 _____ C:\Windows\system32\xboxgipsynthetic.dll
2021-01-16 12:23 - 2021-01-16 12:23 - 000002319 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-01-16 12:23 - 2021-01-16 12:23 - 000002278 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-01-16 12:23 - 2021-01-16 12:23 - 000000000 ____D C:\Users\malki\AppData\LocalLow\AMD
2021-01-16 12:22 - 2021-01-16 12:27 - 000003472 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2021-01-16 12:22 - 2021-01-16 12:27 - 000003348 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2021-01-16 12:22 - 2021-01-16 12:22 - 000000000 ____D C:\Program Files\Google
2021-01-16 12:22 - 2021-01-16 12:22 - 000000000 ____D C:\Program Files (x86)\Google
2021-01-16 12:21 - 2021-01-16 12:25 - 000000000 ____D C:\Users\malki\AppData\Local\Google
2021-01-16 12:12 - 2021-01-16 12:12 - 000000000 ____D C:\Users\malki\AppData\Local\OneDrive
2021-01-16 12:11 - 2021-01-16 12:11 - 000003378 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4243952216-913355093-1413953572-1001
2021-01-16 12:10 - 2021-01-16 12:15 - 000000000 ____D C:\Users\malki\AppData\Local\MicrosoftEdge
2021-01-16 12:10 - 2021-01-16 12:11 - 000002361 _____ C:\Users\malki\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-01-16 12:10 - 2021-01-16 12:11 - 000000000 ___RD C:\Users\malki\OneDrive
2021-01-16 12:09 - 2021-01-16 12:09 - 000000000 ____D C:\Users\malki\AppData\Local\Comms
2021-01-16 12:09 - 2021-01-16 12:09 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2021-01-16 12:08 - 2021-01-20 18:03 - 000065536 _____ C:\Windows\system32\spu_storage.bin
2021-01-16 12:08 - 2021-01-16 14:22 - 000000000 ____D C:\Program Files\AMD
2021-01-16 12:08 - 2021-01-16 14:08 - 000000000 ____D C:\AMD
2021-01-16 12:07 - 2021-01-16 13:46 - 000000000 __RHD C:\Users\Public\AccountPictures
2021-01-16 12:07 - 2021-01-16 13:24 - 000000000 ____D C:\Users\malki\AppData\Local\Publishers
2021-01-16 12:06 - 2021-01-18 18:24 - 000000000 ____D C:\Users\malki\AppData\Local\VirtualStore
2021-01-16 12:06 - 2021-01-16 13:25 - 000000000 ____D C:\Users\malki\AppData\Local\Packages
2021-01-16 12:06 - 2021-01-16 12:06 - 000000000 ____D C:\Users\malki\AppData\Roaming\Adobe
2021-01-16 12:06 - 2021-01-16 12:06 - 000000000 ____D C:\Users\malki\AppData\Local\TileDataLayer
2021-01-16 12:06 - 2021-01-16 12:06 - 000000000 ____D C:\Users\malki\AppData\Local\ConnectedDevicesPlatform
2021-01-16 12:03 - 2021-01-21 17:47 - 000000000 ____D C:\Users\malki
2021-01-16 12:03 - 2021-01-16 12:03 - 000000020 ___SH C:\Users\malki\ntuser.ini
2021-01-16 12:03 - 2021-01-16 12:03 - 000000000 _SHDL C:\Users\malki\Šablony
2021-01-16 12:03 - 2021-01-16 12:03 - 000000000 _SHDL C:\Users\malki\Soubory cookie
2021-01-16 12:03 - 2021-01-16 12:03 - 000000000 _SHDL C:\Users\malki\Poslední
2021-01-16 12:03 - 2021-01-16 12:03 - 000000000 _SHDL C:\Users\malki\Okolní tiskárny
2021-01-16 12:03 - 2021-01-16 12:03 - 000000000 _SHDL C:\Users\malki\Okolní síť
2021-01-16 12:03 - 2021-01-16 12:03 - 000000000 _SHDL C:\Users\malki\Nabídka Start
2021-01-16 12:03 - 2021-01-16 12:03 - 000000000 _SHDL C:\Users\malki\Dokumenty
2021-01-16 12:03 - 2021-01-16 12:03 - 000000000 _SHDL C:\Users\malki\Documents\Obrázky
2021-01-16 12:03 - 2021-01-16 12:03 - 000000000 _SHDL C:\Users\malki\Documents\Hudba
2021-01-16 12:03 - 2021-01-16 12:03 - 000000000 _SHDL C:\Users\malki\Documents\Filmy
2021-01-16 12:03 - 2021-01-16 12:03 - 000000000 _SHDL C:\Users\malki\Data aplikací
2021-01-16 12:03 - 2021-01-16 12:03 - 000000000 _SHDL C:\Users\malki\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2021-01-16 12:03 - 2021-01-16 12:03 - 000000000 _SHDL C:\Users\malki\AppData\Local\Data aplikací
2021-01-16 12:03 - 2021-01-16 12:03 - 000000000 ____D C:\ProgramData\USOShared
2021-01-16 12:01 - 2021-01-20 18:08 - 002048498 _____ C:\Windows\system32\PerfStringBackup.INI
2021-01-16 11:58 - 2021-01-16 11:58 - 000000000 ____D C:\Windows\CSC
2021-01-16 11:56 - 2021-01-16 11:56 - 000000000 _SHDL C:\Users\Public\Documents\Obrázky
2021-01-16 11:56 - 2021-01-16 11:56 - 000000000 _SHDL C:\Users\Public\Documents\Hudba
2021-01-16 11:56 - 2021-01-16 11:56 - 000000000 _SHDL C:\Users\Public\Documents\Filmy
2021-01-16 11:56 - 2021-01-16 11:56 - 000000000 _SHDL C:\Users\Default\Šablony
2021-01-16 11:56 - 2021-01-16 11:56 - 000000000 _SHDL C:\Users\Default\Soubory cookie
2021-01-16 11:56 - 2021-01-16 11:56 - 000000000 _SHDL C:\Users\Default\Poslední
2021-01-16 11:56 - 2021-01-16 11:56 - 000000000 _SHDL C:\Users\Default\Okolní tiskárny
2021-01-16 11:56 - 2021-01-16 11:56 - 000000000 _SHDL C:\Users\Default\Okolní síť
2021-01-16 11:56 - 2021-01-16 11:56 - 000000000 _SHDL C:\Users\Default\Nabídka Start
2021-01-16 11:56 - 2021-01-16 11:56 - 000000000 _SHDL C:\Users\Default\Dokumenty
2021-01-16 11:56 - 2021-01-16 11:56 - 000000000 _SHDL C:\Users\Default\Documents\Obrázky
2021-01-16 11:56 - 2021-01-16 11:56 - 000000000 _SHDL C:\Users\Default\Documents\Hudba
2021-01-16 11:56 - 2021-01-16 11:56 - 000000000 _SHDL C:\Users\Default\Documents\Filmy
2021-01-16 11:56 - 2021-01-16 11:56 - 000000000 _SHDL C:\Users\Default\Data aplikací
2021-01-16 11:56 - 2021-01-16 11:56 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2021-01-16 11:56 - 2021-01-16 11:56 - 000000000 _SHDL C:\Users\Default\AppData\Local\Data aplikací
2021-01-16 11:56 - 2021-01-16 11:56 - 000000000 _SHDL C:\Users\Default User\Šablony
2021-01-16 11:56 - 2021-01-16 11:56 - 000000000 _SHDL C:\Users\Default User\Soubory cookie
2021-01-16 11:56 - 2021-01-16 11:56 - 000000000 _SHDL C:\Users\Default User\Poslední
2021-01-16 11:56 - 2021-01-16 11:56 - 000000000 _SHDL C:\Users\Default User\Okolní tiskárny
2021-01-16 11:56 - 2021-01-16 11:56 - 000000000 _SHDL C:\Users\Default User\Okolní síť
2021-01-16 11:56 - 2021-01-16 11:56 - 000000000 _SHDL C:\Users\Default User\Nabídka Start
2021-01-16 11:56 - 2021-01-16 11:56 - 000000000 _SHDL C:\Users\Default User\Dokumenty
2021-01-16 11:56 - 2021-01-16 11:56 - 000000000 _SHDL C:\Users\Default User\Documents\Obrázky
2021-01-16 11:56 - 2021-01-16 11:56 - 000000000 _SHDL C:\Users\Default User\Documents\Hudba
2021-01-16 11:56 - 2021-01-16 11:56 - 000000000 _SHDL C:\Users\Default User\Documents\Filmy
2021-01-16 11:56 - 2021-01-16 11:56 - 000000000 _SHDL C:\Users\Default User\Data aplikací
2021-01-16 11:56 - 2021-01-16 11:56 - 000000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2021-01-16 11:56 - 2021-01-16 11:56 - 000000000 _SHDL C:\Users\Default User\AppData\Local\Data aplikací
2021-01-16 11:56 - 2021-01-16 11:56 - 000000000 _SHDL C:\ProgramData\Šablony
2021-01-16 11:56 - 2021-01-16 11:56 - 000000000 _SHDL C:\ProgramData\Plocha
2021-01-16 11:56 - 2021-01-16 11:56 - 000000000 _SHDL C:\ProgramData\Nabídka Start
2021-01-16 11:56 - 2021-01-16 11:56 - 000000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programy
2021-01-16 11:56 - 2021-01-16 11:56 - 000000000 _SHDL C:\ProgramData\Dokumenty
2021-01-16 11:56 - 2021-01-16 11:56 - 000000000 _SHDL C:\ProgramData\Data aplikací
2021-01-16 11:56 - 2021-01-16 11:56 - 000000000 _SHDL C:\Documents and Settings
2021-01-16 11:52 - 2021-01-16 11:52 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2021-01-16 11:51 - 2021-01-21 17:11 - 000000000 ____D C:\Windows\system32\SleepStudy
2021-01-16 11:51 - 2021-01-20 18:03 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-01-16 11:51 - 2021-01-18 17:35 - 000217352 _____ C:\Windows\system32\FNTCACHE.DAT
2021-01-16 11:51 - 2021-01-16 11:51 - 000000000 ____D C:\Windows\ServiceProfiles
2021-01-16 11:50 - 2021-01-16 11:55 - 000000000 ____D C:\Windows\Panther

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-01-21 15:01 - 2017-03-18 22:03 - 000000000 ___HD C:\Program Files\WindowsApps
2021-01-21 15:01 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\AppReadiness
2021-01-20 19:35 - 2017-03-18 22:01 - 000000000 ____D C:\Windows\INF
2021-01-20 18:08 - 2017-03-20 05:39 - 000898716 _____ C:\Windows\system32\perfh005.dat
2021-01-20 18:08 - 2017-03-20 05:39 - 000198944 _____ C:\Windows\system32\perfc005.dat
2021-01-20 18:03 - 2017-03-18 12:40 - 000524288 _____ C:\Windows\system32\config\BBI
2021-01-20 15:35 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\LiveKernelReports
2021-01-19 17:11 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\rescache
2021-01-18 18:06 - 2017-03-18 22:03 - 000000000 ___HD C:\Windows\ELAMBKUP
2021-01-18 14:54 - 2017-03-18 22:03 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2021-01-18 14:49 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\system32\NDF
2021-01-16 13:49 - 2017-03-18 22:03 - 000000000 ____D C:\Program Files\Windows Defender
2021-01-16 13:38 - 2017-03-20 05:39 - 000000000 ____D C:\Windows\system32\cs
2021-01-16 13:38 - 2017-03-18 22:03 - 000000000 ___SD C:\Windows\SysWOW64\F12
2021-01-16 13:38 - 2017-03-18 22:03 - 000000000 ___SD C:\Windows\SysWOW64\DiagSvcs
2021-01-16 13:38 - 2017-03-18 22:03 - 000000000 ___SD C:\Windows\system32\F12
2021-01-16 13:38 - 2017-03-18 22:03 - 000000000 ___SD C:\Windows\system32\DiagSvcs
2021-01-16 13:38 - 2017-03-18 22:03 - 000000000 ___RD C:\Windows\PrintDialog
2021-01-16 13:38 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
2021-01-16 13:38 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\SysWOW64\setup
2021-01-16 13:38 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\SysWOW64\oobe
2021-01-16 13:38 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\SysWOW64\Dism
2021-01-16 13:38 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\system32\WinMetadata
2021-01-16 13:38 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2021-01-16 13:38 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\system32\SystemResetPlatform
2021-01-16 13:38 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\system32\setup
2021-01-16 13:38 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\system32\oobe
2021-01-16 13:38 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\system32\migwiz
2021-01-16 13:38 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\system32\appraiser
2021-01-16 13:38 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\ShellExperiences
2021-01-16 13:38 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\Provisioning
2021-01-16 13:38 - 2017-03-18 12:40 - 000000000 ____D C:\Windows\system32\Dism
2021-01-16 13:38 - 2017-03-18 12:40 - 000000000 ____D C:\Windows\servicing
2021-01-16 13:37 - 2017-03-20 05:41 - 000000000 __SHD C:\Windows\BitLockerDiscoveryVolumeContents
2021-01-16 13:37 - 2017-03-20 05:41 - 000000000 ____D C:\Windows\HoloShell
2021-01-16 13:37 - 2017-03-20 05:41 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-01-16 13:37 - 2017-03-18 22:03 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2021-01-16 13:37 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\PolicyDefinitions
2021-01-16 13:37 - 2017-03-18 22:03 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2021-01-16 13:37 - 2017-03-18 22:03 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2021-01-16 13:37 - 2017-03-18 22:03 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2021-01-16 13:37 - 2017-03-18 22:03 - 000000000 ____D C:\PerfLogs
2021-01-16 13:34 - 2017-03-18 22:03 - 000230400 _____ (Microsoft Corporation) C:\Windows\system32\msclmd.dll
2021-01-16 13:34 - 2017-03-18 22:03 - 000207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msclmd.dll
2021-01-16 13:24 - 2017-03-18 21:51 - 000000000 ____D C:\Windows\CbsTemp
2021-01-16 13:20 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\appcompat
2021-01-16 12:04 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\system32\WinBioDatabase
2021-01-16 12:03 - 2017-03-18 22:03 - 000000000 ____D C:\ProgramData\USOPrivate
2021-01-16 11:58 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\system32\spool
2021-01-16 11:58 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\system32\FxsTmp
2021-01-16 11:57 - 2017-03-18 22:03 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-01-16 11:56 - 2017-03-18 22:03 - 000000000 ____D C:\Program Files\Windows NT
2021-01-16 11:54 - 2017-03-18 12:40 - 000000000 ____D C:\Windows\system32\Sysprep
2021-01-16 11:52 - 2017-03-18 22:03 - 000000000 ___RD C:\Windows\MiracastView
2021-01-16 11:52 - 2017-03-18 12:40 - 000032768 _____ C:\Windows\system32\config\ELAM
2021-01-16 11:50 - 2017-03-18 22:03 - 000028672 _____ C:\Windows\system32\config\BCD-Template

==================== Files in the root of some directories ========

2021-01-18 20:41 - 2021-01-18 20:41 - 000000000 _____ () C:\Users\malki\AppData\Local\Driver_LOM_8171Present.flag

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

malkisakk
nováček
Příspěvky: 25
Registrován: leden 21
Pohlaví: Muž
Stav:
Offline

Re: Prosim o kontrolu

Příspěvekod malkisakk » 21 led 2021 20:22

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 20-01-2021
Ran by malki (21-01-2021 20:13:53)
Running from C:\Users\malki\Downloads
Windows 10 Pro Version 1703 15063.1418 (X64) (2021-01-16 10:56:40)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-4243952216-913355093-1413953572-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-4243952216-913355093-1413953572-503 - Limited - Disabled)
Guest (S-1-5-21-4243952216-913355093-1413953572-501 - Limited - Disabled)
malki (S-1-5-21-4243952216-913355093-1413953572-1001 - Administrator - Enabled) => C:\Users\malki

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 20.11.2 - Advanced Micro Devices, Inc.)
Branding64 (HKLM\...\{856DA29A-EA4A-468B-BBC2-B5F60DD75BFE}) (Version: 1.00.0002 - Advanced Micro Devices, Inc.) Hidden
CrystalDiskInfo 8.9.0 (HKLM\...\CrystalDiskInfo_is1) (Version: 8.9.0 - Crystal Dew World)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 87.0.4280.141 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.51 - Google LLC) Hidden
HeavyLoad V3.6 (64 bit) (HKLM\...\HeavyLoad_is1) (Version: 3.6 - JAM Software)
Intel® Chipset Device Software (HKLM-x32\...\{44ded3eb-1686-46a6-9770-fd79096c29f7}) (Version: 10.1.1.45 - Intel(R) Corporation) Hidden
Malwarebytes version 4.3.0.98 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.3.0.98 - Malwarebytes)
Microsoft OneDrive (HKU\S-1-5-21-4243952216-913355093-1413953572-1001\...\OneDriveSetup.exe) (Version: 20.201.1005.0009 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29325 (HKLM-x32\...\{33628a12-6787-4b9f-95a1-92449f69fae0}) (Version: 14.28.29325.2 - Microsoft Corporation)
MSI Afterburner 4.6.2 (HKLM-x32\...\Afterburner) (Version: 4.6.2 - MSI Co., LTD)
RivaTuner Statistics Server 7.2.3 (HKLM-x32\...\RTSS) (Version: 7.2.3 - Unwinder)
RogueKiller version 14.8.4.0 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 14.8.4.0 - Adlice Software)
Sophos Virus Removal Tool (HKLM-x32\...\{B829E117-D072-41EA-9606-9826A38D34C1}) (Version: 2.7.0 - Sophos Limited)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
TechPowerUp GPU-Z (HKLM-x32\...\{8B0F211E-5846-4FB2-B0B9-4EB31546FDF9}}_is1) (Version: - TechPowerUp)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{6753CC12-A884-47B2-9270-F5CD31B6F256}) (Version: 2.67.0.0 - Microsoft Corporation) Hidden
Update for Windows 10 for x64-based Systems (KB4480730) (HKLM\...\{0746492E-47B6-4251-940C-44462DFD74BB}) (Version: 2.55.0.0 - Microsoft Corporation)
Wargaming.net Game Center (HKU\S-1-5-21-4243952216-913355093-1413953572-1001\...\Wargaming.net Game Center) (Version: 20.8.0.3331 - Wargaming.net)
World of Tanks EU (HKU\S-1-5-21-4243952216-913355093-1413953572-1001\...\WOT.EU.PRODUCTION) (Version: - Wargaming.net)
Zemana AntiMalware verze 3.2.27 (HKLM-x32\...\{4E1F3677-C72E-4F7D-B66E-85467B1A289E}_is1) (Version: 3.2.27 - Zemana)

Packages:
=========
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2021-01-16] (Autodesk Inc.)
Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_7.1.17.0_x86__kgqvnymyfvs32 [2021-01-16] (king.com)
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.185.400.0_x86__kgqvnymyfvs32 [2021-01-21] (king.com)
Hidden City: Hidden Object Adventure -> C:\Program Files\WindowsApps\828B5831.HiddenCityMysteryofShadows_1.39.3900.0_x86__ytsefhwckbdv6 [2021-01-16] (G5 Entertainment AB)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2021-01-16] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2021-01-16] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.4.6132.0_x64__8wekyb3d8bbwe [2021-01-16] (Microsoft Studios) [MS Ad]
Microsoft Zprávy -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.31.12124.0_x64__8wekyb3d8bbwe [2021-01-16] (Microsoft Corporation) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.31.11905.0_x64__8wekyb3d8bbwe [2021-01-16] (Microsoft Corporation) [MS Ad]
MSN Sports -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.31.11905.0_x64__8wekyb3d8bbwe [2021-01-16] (Microsoft Corporation) [MS Ad]
Pošta a Kalendář -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11001.20116.0_x64__8wekyb3d8bbwe [2021-01-16] (Microsoft Corporation) [MS Ad]
Skype -> C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.1000_x64__kzf8qxf38zg5c [2021-01-16] (Skype)
WinZip Universal -> C:\Program Files\WindowsApps\WinZipComputing.WinZipUniversal_1.5.13516.0_x64__3ykzqggjzj4z0 [2021-01-16] (WinZip Computing)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ContextMenuHandlers1: [2.0 Zemana AntiMalware] -> {6ABB1C11-E261-4CEA-BBB5-3836225689DD} => C:\Users\Public\Desktop\AntiMalware\AM_ShellExt64.dll [2020-07-29] (Zemana D.O.O. Sarajevo -> Advanced Malware Protection. Copyright 2019.)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-01-18] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Windows\System32\atiacm64.dll [2020-11-17] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [2.0 Zemana AntiMalware] -> {6ABB1C11-E261-4CEA-BBB5-3836225689DD} => C:\Users\Public\Desktop\AntiMalware\AM_ShellExt64.dll [2020-07-29] (Zemana D.O.O. Sarajevo -> Advanced Malware Protection. Copyright 2019.)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-01-18] (Malwarebytes Corporation -> Malwarebytes)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\system32\rtvcvfw64.dll [246272 2012-09-28] () [File not signed]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [File not signed]

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2020-07-27 14:14 - 2020-07-27 14:14 - 000017920 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libEGL.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 003567616 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2020-11-13 14:48 - 2020-11-13 14:48 - 001470976 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\AMD\WVR\OpenVR\bin\win64\driver_amdwvr.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qgif.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 000039424 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qicns.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qico.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 000414720 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qjpeg.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 000025088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qsvg.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 000024576 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qtga.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 000023552 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwbmp.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 000532992 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwebp.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 001441792 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\platforms\qwindows.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 001189888 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\sqldrivers\qsqlite.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 000134656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\styles\qwindowsvistastyle.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 006184448 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 006867456 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 001104896 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 000325120 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 003668480 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 000517120 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QmlModels.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 000051712 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QmlWorkerScript.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 004228608 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 000171008 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QuickControls2.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 001085440 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QuickTemplates2.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 000205824 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Sql.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 000329728 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 000390656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 095598080 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 000127488 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 005587968 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 000462848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 000188928 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll
2020-07-27 14:14 - 2020-07-27 14:14 - 002878464 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 000055808 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 000059392 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQml\qmlplugin.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 000284160 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls.2\qtquickcontrols2plugin.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 000333824 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 000136704 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 000090112 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 000313856 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Templates.2\qtquicktemplates2plugin.dll
2020-07-27 14:15 - 2020-07-27 14:15 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2020-11-13 15:00 - 2020-11-13 15:00 - 000091648 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtWebEngine\qtwebengineplugin.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\amsdk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\amsdk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

SearchScopes: HKU\S-1-5-21-4243952216-913355093-1413953572-1001 -> DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-4243952216-913355093-1413953572-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2017-03-18 22:03 - 2021-01-20 17:47 - 000000841 _____ C:\Windows\system32\drivers\etc\hosts
127.0.0.1 localhost

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-4243952216-913355093-1413953572-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is disabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKU\S-1-5-21-4243952216-913355093-1413953572-1001\...\StartupApproved\Run: => "OneDrive"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [TCP Query User{B59C8D0C-169D-4769-A72A-2C321F90698F}F:\gamesy\world of tanks\world_of_tanks_closed_beta\win64\worldoftanks.exe] => (Block) F:\gamesy\world of tanks\world_of_tanks_closed_beta\win64\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{5B1DE656-EF1D-4F01-9FE3-05BE11EF0A8D}F:\gamesy\world of tanks\world_of_tanks_closed_beta\win64\worldoftanks.exe] => (Block) F:\gamesy\world of tanks\world_of_tanks_closed_beta\win64\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [TCP Query User{D121CB15-857E-42A4-A7FA-B8E7B284B4E2}C:\program files\google\chrome\application\chrome.exe] => (Allow) C:\program files\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [UDP Query User{2D15E4C3-D8C9-4248-B6AA-A13EA50B31A2}C:\program files\google\chrome\application\chrome.exe] => (Allow) C:\program files\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [TCP Query User{021F9ADB-30F1-4454-AA8F-959F87270E66}C:\program files\google\chrome\application\chrome.exe] => (Allow) C:\program files\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [UDP Query User{ACE2A88E-CC18-4510-B172-22ED4A83E816}C:\program files\google\chrome\application\chrome.exe] => (Allow) C:\program files\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [TCP Query User{4B040028-4F74-465D-9363-AFC4E2FFF146}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{ACD565C1-6066-4549-BE53-B5A7F29D126D}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)

==================== Restore Points =========================

16-01-2021 11:59:15 Instalační služba modulů systému Windows
19-01-2021 17:49:51 Windows Update
19-01-2021 18:06:37 JRT Pre-Junkware Removal

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (01/21/2021 08:14:43 PM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Při aktualizaci stavu na SECURITY_PRODUCT_STATE_OFF došlo k chybě.

Error: (01/21/2021 08:14:38 PM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Při aktualizaci stavu na SECURITY_PRODUCT_STATE_OFF došlo k chybě.

Error: (01/21/2021 08:14:33 PM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Při aktualizaci stavu na SECURITY_PRODUCT_STATE_OFF došlo k chybě.

Error: (01/21/2021 08:14:28 PM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Při aktualizaci stavu na SECURITY_PRODUCT_STATE_OFF došlo k chybě.

Error: (01/21/2021 08:14:23 PM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Při aktualizaci stavu na SECURITY_PRODUCT_STATE_OFF došlo k chybě.

Error: (01/21/2021 08:14:18 PM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Při aktualizaci stavu na SECURITY_PRODUCT_STATE_OFF došlo k chybě.

Error: (01/21/2021 08:14:13 PM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Při aktualizaci stavu na SECURITY_PRODUCT_STATE_OFF došlo k chybě.

Error: (01/21/2021 08:14:08 PM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Při aktualizaci stavu na SECURITY_PRODUCT_STATE_OFF došlo k chybě.


System errors:
=============
Error: (01/20/2021 08:20:16 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-M0TBJIK)
Description: Server Microsoft.Windows.Cortana_1.8.12.15063_neutral_neutral_cw5n1h2txyewy!CortanaUI.AppX6jbm6fjqte5wzzrf5807m7eq0z44q5gf.mca se v daném časovém limitu neregistroval u služby DCOM.

Error: (01/20/2021 06:03:52 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba CldFlt neuspěla při spuštění v důsledku následující chyby:
Požadavek není podporován.

Error: (01/20/2021 06:03:00 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-M0TBJIK)
Description: Server {9BA05972-F6A8-11CF-A442-00A0C90A8F39} se v daném časovém limitu neregistroval u služby DCOM.

Error: (01/20/2021 05:56:10 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (01/20/2021 05:56:10 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (01/20/2021 05:56:09 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (01/20/2021 05:56:09 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (01/20/2021 05:56:09 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.


Windows Defender:
===================================
Date: 2021-01-20 18:02:44.624
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {FAE22915-CE70-42CF-BAF4-58BE9C4DE2B3}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-01-19 19:55:49.924
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: HackTool:Win32/AutoKMS
ID: 2147685180
Závažnost: Vysoké
Kategorie: Nástroj
Cesta: containerfile:_F:\Windows 8.1 + crack\Microsoft Toolkit.exe; file:_F:\Windows 8.1 + crack\Microsoft Toolkit.exe; file:_F:\Windows 8.1 + crack\Microsoft Toolkit.exe->[SAResource]->[MSILRES:?.?.resources]
Původ zjišťování: Místní počítač
Typ zjišťování: FastPath
Zdroj zjišťování: Systém
Uživatel: NT AUTHORITY\SYSTEM
Název procesu: C:\Program Files (x86)\Sophos\Sophos Virus Removal Tool\SVRTservice.exe
Verze podpisu: AV: 1.329.2479.0, AS: 1.329.2479.0, NIS: 1.329.2479.0
Verze modulu: AM: 1.1.17700.4, NIS: 1.1.17700.4

Date: 2021-01-19 19:55:49.075
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: HackTool:Win32/AutoKMS
ID: 2147685180
Závažnost: Vysoké
Kategorie: Nástroj
Cesta: containerfile:_F:\Windows 8.1 + crack\Microsoft Toolkit.exe; file:_F:\Windows 8.1 + crack\Microsoft Toolkit.exe; file:_F:\Windows 8.1 + crack\Microsoft Toolkit.exe->[SAResource]->[MSILRES:?.?.resources]
Původ zjišťování: Místní počítač
Typ zjišťování: FastPath
Zdroj zjišťování: Systém
Uživatel: NT AUTHORITY\SYSTEM
Název procesu: Unknown
Verze podpisu: AV: 1.329.2479.0, AS: 1.329.2479.0, NIS: 1.329.2479.0
Verze modulu: AM: 1.1.17700.4, NIS: 1.1.17700.4

Date: 2021-01-19 18:52:44.761
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Trojan:Win32/Dynamer!rfn
ID: 2147721515
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_E:\Call of Duty Black Ops II\3DMGAME.dll; file:_E:\Call of Duty Black Ops II\buddha.dll
Původ zjišťování: Místní počítač
Typ zjišťování: Konkrétní
Zdroj zjišťování: Ochrana v reálném čase
Uživatel: NT AUTHORITY\SYSTEM
Název procesu: C:\Program Files (x86)\Sophos\Sophos Virus Removal Tool\SVRTservice.exe
Verze podpisu: AV: 1.329.2479.0, AS: 1.329.2479.0, NIS: 1.329.2479.0
Verze modulu: AM: 1.1.17700.4, NIS: 1.1.17700.4

Date: 2021-01-19 18:52:42.760
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Trojan:Win32/Dynamer!rfn
ID: 2147721515
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_E:\Call of Duty Black Ops II\3DMGAME.dll
Původ zjišťování: Místní počítač
Typ zjišťování: Konkrétní
Zdroj zjišťování: Ochrana v reálném čase
Uživatel: NT AUTHORITY\SYSTEM
Název procesu: C:\Program Files (x86)\Sophos\Sophos Virus Removal Tool\SVRTservice.exe
Verze podpisu: AV: 1.329.2479.0, AS: 1.329.2479.0, NIS: 1.329.2479.0
Verze modulu: AM: 1.1.17700.4, NIS: 1.1.17700.4

==================== Memory info ===========================

BIOS: American Megatrends Inc. A.40 01/22/2016
Motherboard: MSI Z170A GAMING M3 (MS-7978)
Processor: Intel(R) Core(TM) i3-6100 CPU @ 3.70GHz
Percentage of memory in use: 23%
Total physical RAM: 16346.79 MB
Available physical RAM: 12503.14 MB
Total Virtual: 20566.24 MB
Available Virtual: 14163.96 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:465.21 GB) (Free:375.4 GB) NTFS
Drive d: (Místní disk (E:)) (Fixed) (Total:146.48 GB) (Free:120.64 GB) NTFS
Drive e: (Místní disk (F:)) (Fixed) (Total:931.51 GB) (Free:177.93 GB) NTFS
Drive f: (Místní disk (D:)) (Fixed) (Total:232.88 GB) (Free:66.09 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive h: () (Fixed) (Total:86.39 GB) (Free:71.01 GB) NTFS

\\?\Volume{822f3db3-778b-48fe-947a-cfdea42de6a7}\ (Obnovení) (Fixed) (Total:0.44 GB) (Free:0.1 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 71F16582)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==========================================================
Disk: 1 (Size: 232.9 GB) (Disk ID: E9F8CCD2)
Partition 1: (Active) - (Size=146.5 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=86.4 GB) - (Type=0F Extended)

==========================================================
Disk: 2 (Size: 465.8 GB) (Disk ID: 4E83BD12)

Partition: GPT.

==========================================================
Disk: 3 (MBR Code: Windows 7/8/10) (Size: 232.9 GB) (Disk ID: B9A2E6B8)
Partition 1: (Active) - (Size=232.9 GB) - (Type=07 NTFS)

==================== End of Addition.txt =======================

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43054
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Prosim o kontrolu

Příspěvekod jaro3 » 21 led 2021 21:21

Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.

Kód: Vybrat vše

Start
CreateRestorePoint:
CloseProcesses:
Task: {1D7B7A34-4F9E-46DB-AB99-715BD391FAC6} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2021-01-16] (Google LLC -> Google LLC)
Task: {C6B4026C-744F-4733-910F-B3A2B37ACA22} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2021-01-16] (Google LLC -> Google LLC)
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
SearchScopes: HKU\S-1-5-21-4243952216-913355093-1413953572-1001 -> DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-4243952216-913355093-1413953572-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}

Virustotal: C:\Users\malki\Downloads\wargaming_game_center_install_eu_c8kn0vrlsv9c.exe

EmptyTemp:
End

(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).

Ulož jej na na plochu jako fixlist.txt


Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.

Nic závadného.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

malkisakk
nováček
Příspěvky: 25
Registrován: leden 21
Pohlaví: Muž
Stav:
Offline

Re: Prosim o kontrolu

Příspěvekod malkisakk » 22 led 2021 15:15

Fix result of Farbar Recovery Scan Tool (x64) Version: 22-01-2021
Ran by malki (22-01-2021 15:11:47) Run:1
Running from C:\Users\malki\Desktop
Loaded Profiles: malki
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CreateRestorePoint:
CloseProcesses:
Task: {1D7B7A34-4F9E-46DB-AB99-715BD391FAC6} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2021-01-16] (Google LLC -> Google LLC)
Task: {C6B4026C-744F-4733-910F-B3A2B37ACA22} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2021-01-16] (Google LLC -> Google LLC)
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
SearchScopes: HKU\S-1-5-21-4243952216-913355093-1413953572-1001 -> DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-4243952216-913355093-1413953572-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}

Virustotal: C:\Users\malki\Downloads\wargaming_game_center_install_eu_c8kn0vrlsv9c.exe

EmptyTemp:
End
*****************

Restore point was successfully created.
Processes closed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1D7B7A34-4F9E-46DB-AB99-715BD391FAC6}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1D7B7A34-4F9E-46DB-AB99-715BD391FAC6}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{C6B4026C-744F-4733-910F-B3A2B37ACA22}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C6B4026C-744F-4733-910F-B3A2B37ACA22}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore" => not found
"HKU\S-1-5-21-4243952216-913355093-1413953572-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
HKU\S-1-5-21-4243952216-913355093-1413953572-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} => removed successfully
VirusTotal: C:\Users\malki\Downloads\wargaming_game_center_install_eu_c8kn0vrlsv9c.exe => https://www.virustotal.com/gui/file/018 ... 1609166241

=========== EmptyTemp: ==========

BITS transfer queue => 7888896 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 29999225 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 42651 B
Edge => 0 B
Chrome => 449869175 B
Brave => 0 B
Vivaldi => 0 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 8648 B
malki => 55281008045 B

RecycleBin => 0 B
EmptyTemp: => 51.9 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 15:12:20 ====

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43054
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Prosim o kontrolu

Příspěvekod jaro3 » 22 led 2021 16:49

Stáhni si zde DelFix
Další odkazy:
https://toolslib.net/downloads/viewdownload/2-delfix/
http://ccm.net/download/download-24087-delfix
https://www.bleepingcomputer.com/download/delfix/

ulož si soubor na plochu.
Poklepáním na ikonu spusť nástroj Delfix.exe
( Ve Windows Vista, Windows 7, 8 a10 musíš spustit soubor pravým tlačítkem myši -> Spustit jako správce .
V hlavním menu, zkontroluj tyto možnosti - Odstranění dezinfekce nástrojů (Remove desinfection tools) – Vyčistit body obnovy (Purge System Restore)
Poté klikněte na tlačítko Spustit (Run) a nech nástroj dělat svoji práci

Poté se zpráva se otevře (DelFix.txt). Vlož celý obsah zprávy sem.Jinak je zpráva zde:
v C: \ DelFix.txt

Viry to nebude.
Zkus jinou sekci.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

malkisakk
nováček
Příspěvky: 25
Registrován: leden 21
Pohlaví: Muž
Stav:
Offline

Re: Prosim o kontrolu

Příspěvekod malkisakk » 22 led 2021 18:56

# DelFix v1.013 - Logfile created 22/01/2021 at 18:54:52
# Updated 17/04/2016 by Xplode
# Username : malki - DESKTOP-M0TBJIK
# Operating System : Windows 10 Pro (64 bits)

~ Removing disinfection tools ...

Deleted : C:\FRST
Deleted : C:\zoek_backup
Deleted : C:\AdwCleaner
Deleted : C:\Users\malki\Downloads\FRST-OlderVersion
Deleted : C:\zoek-results.log
Deleted : C:\Users\malki\Desktop\AdwCleaner.exe
Deleted : C:\Users\malki\Desktop\Fixlog.txt
Deleted : C:\Users\malki\Desktop\FRST64.exe
Deleted : C:\Users\malki\Desktop\JRT.exe
Deleted : C:\Users\malki\Desktop\JRT.txt
Deleted : C:\Users\malki\Desktop\RogueKiller_setup.exe
Deleted : C:\Users\malki\Desktop\TFC.txt
Deleted : C:\Users\malki\Desktop\zoek1.rar
Deleted : C:\Users\Public\Desktop\RogueKiller.lnk
Deleted : C:\Users\malki\Downloads\Addition.txt
Deleted : C:\Users\malki\Downloads\FRST.txt
Deleted : C:\Users\malki\Downloads\HijackThis.exe
Deleted : C:\Users\malki\Downloads\hijackthis.log
Deleted : C:\Users\malki\Downloads\TFC.exe
Deleted : HKLM\SOFTWARE\OldTimer Tools
Deleted : HKLM\SOFTWARE\TrendMicro\Hijackthis

~ Cleaning system restore ...

Deleted : RP #1 [Instalační služba modulů systému Windows | 01/16/2021 10:59:15]
Deleted : RP #2 [Windows Update | 01/19/2021 16:49:51]
Deleted : RP #3 [JRT Pre-Junkware Removal | 01/19/2021 17:06:37]

New restore point created !

########## - EOF - ##########

malkisakk
nováček
Příspěvky: 25
Registrován: leden 21
Pohlaví: Muž
Stav:
Offline

Re: Prosim o kontrolu

Příspěvekod malkisakk » 22 led 2021 19:03

Zatim to jede, tak uvidim jak dlouho to vydrzi, kazdopadne diky za pomoc a hlavne za ochotu a ukazani programku o kterych jsem vubec nevedel, neco jsem se zase naucil, diky a cau chlape.

Malkis.


Zpět na “HiJackThis”

Kdo je online

Uživatelé prohlížející si toto fórum: Seznam[Bot] a 11 hostů